2.138.198.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.138.198.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.138.198.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 17:03:00 CST 2025
;; MSG SIZE  rcvd: 104

Host info

2.198.138.2.in-addr.arpa domain name pointer 2.red-2-138-198.dynamicip.rima-tde.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.198.138.2.in-addr.arpa	name = 2.red-2-138-198.dynamicip.rima-tde.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.68.136.212	attackbots	F2B jail: sshd. Time: 2019-11-09 00:52:04, Reported by: VKReport	2019-11-09 07:58:07
222.239.8.248	attackspam	$f2bV_matches	2019-11-09 07:35:07
45.55.93.245	attack	Scans Wordpress for wp-login.php and xmlrpc.php + FullBrowserID: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0 + operating from Clifton (USA)	2019-11-09 07:37:43
79.2.22.244	attackspambots	$f2bV_matches	2019-11-09 07:24:28
95.58.194.143	attackbotsspam	Nov 8 13:00:49 php1 sshd\[28570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.58.194.143 user=root Nov 8 13:00:51 php1 sshd\[28570\]: Failed password for root from 95.58.194.143 port 57048 ssh2 Nov 8 13:04:40 php1 sshd\[28905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.58.194.143 user=root Nov 8 13:04:41 php1 sshd\[28905\]: Failed password for root from 95.58.194.143 port 37386 ssh2 Nov 8 13:08:28 php1 sshd\[32549\]: Invalid user 0 from 95.58.194.143 Nov 8 13:08:28 php1 sshd\[32549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.58.194.143	2019-11-09 07:38:19
87.3.24.101	attack	5555/tcp [2019-11-08]1pkt	2019-11-09 07:28:19
92.118.38.38	attackbotsspam	Nov 8 17:45:27 web1 postfix/smtpd[12280]: warning: unknown[92.118.38.38]: SASL LOGIN authentication failed: authentication failure ...	2019-11-09 07:47:40
112.64.34.165	attack	Nov 9 00:09:58 vps691689 sshd[20290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.34.165 Nov 9 00:10:00 vps691689 sshd[20290]: Failed password for invalid user ubnt from 112.64.34.165 port 51855 ssh2 Nov 9 00:14:54 vps691689 sshd[20413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.34.165 ...	2019-11-09 07:21:37
118.24.108.196	attackbotsspam	Nov 8 22:53:58 localhost sshd\[15019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.108.196 user=root Nov 8 22:54:01 localhost sshd\[15019\]: Failed password for root from 118.24.108.196 port 55822 ssh2 Nov 8 22:57:58 localhost sshd\[15134\]: Invalid user odoo from 118.24.108.196 port 35974 Nov 8 22:57:58 localhost sshd\[15134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.108.196 Nov 8 22:58:00 localhost sshd\[15134\]: Failed password for invalid user odoo from 118.24.108.196 port 35974 ssh2 ...	2019-11-09 07:22:44
45.82.153.133	attack	Nov 9 00:13:23 mail postfix/smtpd[13143]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 00:13:24 mail postfix/smtpd[24609]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 00:13:24 mail postfix/smtpd[24491]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 00:13:24 mail postfix/smtps/smtpd[7296]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 00:13:24 mail postfix/smtps/smtpd[23093]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 00:13:25 mail postfix/smtpd[24708]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 00:13:37 mail postfix/smtpd[20445]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-09 07:20:45
104.37.175.138	attackspam	\[2019-11-08 17:31:28\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T17:31:28.459-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="601146233833301",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/104.37.175.138/57341",ACLName="no_extension_match" \[2019-11-08 17:32:46\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T17:32:46.264-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0501146455378017",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/104.37.175.138/64126",ACLName="no_extension_match" \[2019-11-08 17:35:02\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T17:35:02.005-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="701146233833301",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/104.37.175.138/61953",ACLName="no	2019-11-09 07:51:11
124.13.190.237	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/124.13.190.237/ MY - 1H : (12) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : MY NAME ASN : ASN4788 IP : 124.13.190.237 CIDR : 124.13.128.0/18 PREFIX COUNT : 272 UNIQUE IP COUNT : 2955520 ATTACKS DETECTED ASN4788 : 1H - 2 3H - 2 6H - 2 12H - 5 24H - 9 DateTime : 2019-11-08 23:35:00 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-09 07:56:48
117.187.12.126	attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.187.12.126 user=root Failed password for root from 117.187.12.126 port 46810 ssh2 Invalid user support from 117.187.12.126 port 51008 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.187.12.126 Failed password for invalid user support from 117.187.12.126 port 51008 ssh2	2019-11-09 07:27:32
120.132.114.103	attackbotsspam	Nov 9 00:00:33 srv-ubuntu-dev3 sshd[76704]: Invalid user haha123456hh from 120.132.114.103 Nov 9 00:00:33 srv-ubuntu-dev3 sshd[76704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.114.103 Nov 9 00:00:33 srv-ubuntu-dev3 sshd[76704]: Invalid user haha123456hh from 120.132.114.103 Nov 9 00:00:35 srv-ubuntu-dev3 sshd[76704]: Failed password for invalid user haha123456hh from 120.132.114.103 port 33140 ssh2 Nov 9 00:05:02 srv-ubuntu-dev3 sshd[77274]: Invalid user dedtrick from 120.132.114.103 Nov 9 00:05:02 srv-ubuntu-dev3 sshd[77274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.114.103 Nov 9 00:05:02 srv-ubuntu-dev3 sshd[77274]: Invalid user dedtrick from 120.132.114.103 Nov 9 00:05:04 srv-ubuntu-dev3 sshd[77274]: Failed password for invalid user dedtrick from 120.132.114.103 port 42952 ssh2 Nov 9 00:09:36 srv-ubuntu-dev3 sshd[77779]: Invalid user kisslexiang@# from 120.132.114.1 ...	2019-11-09 07:59:44
159.203.22.143	attackbots	6 failed attempt(s) in the last 24h	2019-11-09 07:52:38

Recently Reported IPs

185.115.70.192	45.205.61.94	118.109.196.154	109.188.200.196
231.135.139.87	232.21.10.235	26.114.219.9	19.247.241.159
251.146.159.79	98.200.149.25	168.166.24.119	150.137.71.9
229.251.117.60	3.214.173.203	21.163.81.52	108.185.137.254
103.201.114.28	132.70.59.199	9.33.17.160	94.208.108.5