97.13.138.124 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 97.13.138.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6405
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;97.13.138.124.			IN	A

;; AUTHORITY SECTION:
.			274	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011100 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 23:17:27 CST 2022
;; MSG SIZE  rcvd: 106

Host info

124.138.13.97.in-addr.arpa domain name pointer 124.sub-97-13-138.myvzw.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
124.138.13.97.in-addr.arpa	name = 124.sub-97-13-138.myvzw.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.176.147	attack	Mar 6 11:20:42 ift sshd\[55279\]: Invalid user kafka from 51.38.176.147Mar 6 11:20:45 ift sshd\[55279\]: Failed password for invalid user kafka from 51.38.176.147 port 43712 ssh2Mar 6 11:24:48 ift sshd\[55709\]: Invalid user alesiashavel from 51.38.176.147Mar 6 11:24:50 ift sshd\[55709\]: Failed password for invalid user alesiashavel from 51.38.176.147 port 52474 ssh2Mar 6 11:28:55 ift sshd\[56363\]: Invalid user doiserver from 51.38.176.147 ...	2020-03-06 18:24:16
45.95.33.246	attackspambots	Mar 6 05:26:49 mail.srvfarm.net postfix/smtpd[1924586]: NOQUEUE: reject: RCPT from unknown[45.95.33.246]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:33:51 mail.srvfarm.net postfix/smtpd[1923012]: NOQUEUE: reject: RCPT from unknown[45.95.33.246]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:33:51 mail.srvfarm.net postfix/smtpd[1922939]: NOQUEUE: reject: RCPT from unknown[45.95.33.246]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:33:51 mail.srvfarm.net postfix/smtpd[1924638]: NOQUEUE: reject: RCPT fr	2020-03-06 18:49:04
177.125.202.205	attack	Unauthorised access (Mar 6) SRC=177.125.202.205 LEN=44 TTL=50 ID=58149 TCP DPT=23 WINDOW=34494 SYN	2020-03-06 18:12:35
218.78.43.202	attackbotsspam	RDP Brute-Force (Grieskirchen RZ2)	2020-03-06 18:15:31
217.112.142.176	attackspambots	Mar 6 06:51:13 mail.srvfarm.net postfix/smtpd[1945070]: NOQUEUE: reject: RCPT from unknown[217.112.142.176]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:51:13 mail.srvfarm.net postfix/smtpd[1950405]: NOQUEUE: reject: RCPT from unknown[217.112.142.176]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:51:13 mail.srvfarm.net postfix/smtpd[1948399]: NOQUEUE: reject: RCPT from unknown[217.112.142.176]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:51:13 mail.srvfarm.net postfix/smtpd[1948819]: NOQUEUE: reject: RCPT from unknown[217.112.142.176]: 450	2020-03-06 18:33:57
124.235.171.114	attack	Repeated brute force against a port	2020-03-06 18:04:28
129.170.28.138	attackspambots	POP	2020-03-06 18:04:11
195.231.3.181	attack	Mar 6 09:50:34 mail.srvfarm.net postfix/smtpd[2023682]: warning: unknown[195.231.3.181]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 6 09:50:34 mail.srvfarm.net postfix/smtpd[2023682]: lost connection after AUTH from unknown[195.231.3.181] Mar 6 09:50:39 mail.srvfarm.net postfix/smtpd[2021240]: warning: unknown[195.231.3.181]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 6 09:50:39 mail.srvfarm.net postfix/smtpd[2023683]: warning: unknown[195.231.3.181]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 6 09:50:39 mail.srvfarm.net postfix/smtpd[2023684]: warning: unknown[195.231.3.181]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-06 18:39:38
185.143.223.161	attack	Mar 6 11:06:42 mail.srvfarm.net postfix/smtpd[2045407]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 6 11:06:42 mail.srvfarm.net postfix/smtpd[2045407]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 6 11:06:42 mail.srvfarm.net postfix/smtpd[2045407]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 6 11:06:42 mail.srvfarm.net postfix/smtpd[2045407]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=	2020-03-06 18:35:30
69.94.131.147	attackbots	Mar 5 19:38:23 web01 postfix/smtpd[21982]: connect from animated.avyatm.com[69.94.131.147] Mar 5 19:38:23 web01 postfix/smtpd[23371]: connect from animated.avyatm.com[69.94.131.147] Mar 5 19:38:24 web01 policyd-spf[23374]: None; identhostnamey=helo; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar 5 19:38:24 web01 policyd-spf[23038]: None; identhostnamey=helo; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar 5 19:38:24 web01 policyd-spf[23038]: Pass; identhostnamey=mailfrom; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar 5 19:38:24 web01 policyd-spf[23374]: Pass; identhostnamey=mailfrom; client-ip=69.94.131.147; helo=animated.ccdeexam.com; envelope-from=x@x Mar x@x Mar x@x Mar 5 19:38:24 web01 postfix/smtpd[21982]: disconnect from animated.avyatm.com[69.94.131.147] Mar 5 19:38:24 web01 postfix/smtpd[23371]: disconnect from animated.avyatm.com[69.94.131.147] Mar 5 19:44:50 web01 post........ -------------------------------	2020-03-06 18:46:08
178.154.171.105	attack	[Fri Mar 06 11:51:59.916401 2020] [:error] [pid 30070:tid 139858160908032] [client 178.154.171.105:44477] [client 178.154.171.105] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XmHW72gSg3uXizjxuBLcOgAAAUw"] ...	2020-03-06 18:08:36
63.82.48.35	attack	Email Subject: 'Wie kann man braten, ohne alles anzubrennen? Mit neuer Backplatte haftet nichts an'	2020-03-06 18:22:00
45.95.32.176	attackbotsspam	Mar 6 05:36:34 mail.srvfarm.net postfix/smtpd[1924637]: NOQUEUE: reject: RCPT from unknown[45.95.32.176]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:36:41 mail.srvfarm.net postfix/smtpd[1923662]: NOQUEUE: reject: RCPT from unknown[45.95.32.176]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:36:45 mail.srvfarm.net postfix/smtpd[1924628]: NOQUEUE: reject: RCPT from unknown[45.95.32.176]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 05:36:47 mail.srvfarm.net postfix/smtpd[1921413]: NOQUEUE: reject: RCPT from unknown[45.95.32.176]: 450 4.1.8 : Sender address	2020-03-06 18:50:13
112.85.42.189	attackbotsspam	DATE:2020-03-06 10:51:50, IP:112.85.42.189, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-03-06 18:21:43
31.47.103.33	attackbots	...	2020-03-06 18:22:17

Recently Reported IPs

9.246.178.168	230.164.30.38	26.29.58.193	99.201.110.124
222.225.110.4	129.32.126.88	221.199.37.183	182.154.63.46
198.187.157.120	180.134.39.10	2.164.140.182	78.32.94.62
12.175.116.182	80.83.43.44	246.115.168.80	158.90.104.53
124.96.103.66	142.52.230.129	81.145.222.165	213.55.151.203