JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.36.98.130

138.36.98.130 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 20%: ?

20%

ISP	Red Uno SRL
Usage Type	Fixed Line ISP
ASN	AS263726
Domain Name	redunopatagonia.com.ar
Country	🇦🇷 Argentina
City	Puerto Madryn, Chubut

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.36.98.130

Whois 138.36.98.130

IP Abuse Reports for 138.36.98.130:

This IP address has been reported a total of 22 times from 18 distinct sources. 138.36.98.130 was first reported on January 23rd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-17 20:30:16 (4 days ago)	Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ... show more Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) \| Attack Signature Blocked: /wishlist/index/add/product/1173/form_key/dkb5L0NfnPBkPPQX/ \| UA: Mozilla/5.0 (iPod; U; CPU iPhone OS 4_2 like Mac OS X; be-BY) AppleWebKit/533.13.6 (KHTML, like Gecko) Version/4.0.5 Mobile/8B117 Safari/6533.13.6 \| (Magento Site) show less	Hacking Bad Web Bot Web App Attack
🇰🇷 zlhIcd	2026-06-16 00:35:05 (6 days ago)	138.36.98.130 - - [15/Jun/2026:19:37:33 +0900] "GET /pcwiki/index.php?days=30&from=20251122190940&hi ... show more 138.36.98.130 - - [15/Jun/2026:19:37:33 +0900] "GET /pcwiki/index.php?days=30&from=20251122190940&hideanons=1&hideliu=1&hideminor=1&limit=250&target=Awg HTTP/1.1" 404 460 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.6478.126 Safari/537.36" ... show less	Web Spam SQL Injection Bad Web Bot Web App Attack
🇩🇪 Inamin	2026-06-15 04:34:12 (1 week ago)	138.36.98.130 - - [15/Jun/2026:10:21:24 +0800] "GET /index.php?returnto=Donate&returntoquery=action% ... show more 138.36.98.130 - - [15/Jun/2026:10:21:24 +0800] "GET /index.php?returnto=Donate&returntoquery=action%3Dhistory%26offset%3D20201214130749&title=%E7%89%B9%E6%AE%8A%3A%E4%BD%BF%E7%94%A8%E8%80%85%E7%99%BB%E5%85%A5 HTTP/2.0" 502 157 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.0) AppleWebKit/531.2.6 (KHTML, like Gecko) Version/5.0 Safari/531.2.6" 138.36.98.130 - - [15/Jun/2026:12:34:11 +0800] "GET /index.php?action=info&title=%E5%84%AA%E6%9C%A8%E3%81%9B%E3%81%A4%E8%8F%9C%2F%E3%83%AC%E3%83%83%E3%82%B9%E3%83%B3%E3%82%BF%E3%82%A4%E3%83%A0%E3%83%BB%E3%83%8B%E3%82%B8%E3%82%AC%E3%82%AF HTTP/2.0" 502 559 "-" "Mozilla/5.0 (Windows 98; Win 9x 4.90) AppleWebKit/533.1 (KHTML, like Gecko) Chrome/31.0.866.0 Safari/533.1" ... show less	Brute-Force
🇺🇸 mnsf	2026-04-18 00:14:48 (2 months ago)	Login Too Frequent (8)	Brute-Force Web App Attack
Anonymous	2026-03-29 17:07:06 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 big-cloud.nl	2026-03-07 03:01:38 (3 months ago)	Try to access /xmlrpc.php	Web App Attack
🇺🇸 matt	2026-03-02 22:43:47 (3 months ago)	DDOS attack with query parameters attempting to overload WordPress site.	DDoS Attack
🇺🇸 gui-ying233	2026-01-27 05:00:55 (4 months ago)	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Sa ... show more Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 show less	Bad Web Bot
Anonymous	2026-01-12 02:54:13 (5 months ago)	DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: a ... show more DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: amplification attacks via third-parties e.g. HTTP_USER_AGENT facebookexternalhit/meta-externalagent/meta-externalfetcher or IPs from googleusercontent.com with fake HTTP_REFERER foxnews.com/newsweek.com/upwork.com/activision.com/... Port 443. show less	DDoS Attack Bad Web Bot Web App Attack
🇬🇧 Birdo	2026-01-11 16:07:14 (5 months ago)	[Birdo SSH Honeypot] SSH login attempt	Port Scan Hacking Brute-Force Exploited Host SSH
🇺🇸 MPL	2026-01-11 06:32:16 (5 months ago)	tcp/23 (4 or more attempts)	Port Scan
Anonymous	2026-01-10 05:21:08 (5 months ago)	scanning http requests from known botnet	Web App Attack
🇮🇹 VHosting	2025-12-23 14:50:27 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
Anonymous	2025-11-29 21:42:46 (6 months ago)	DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: a ... show more DDoS botnet 510.000+ IPs; URL with bing/trustpilot/githubhelp and %C2%A4 or \xc2\xa4. NEW 09/2025: amplification attacks via third-parties e.g. HTTP_USER_AGENT facebookexternalhit/meta-externalagent/meta-externalfetcher or IPs from googleusercontent.com with fake HTTP_REFERER foxnews.com/newsweek.com/upwork.com/activision.com/... Port 443. show less	DDoS Attack Bad Web Bot Web App Attack
Anonymous	2025-11-25 04:51:25 (6 months ago)	scanning http requests from known botnet	Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.242.226.17

🇲🇦 102.97.26.152

🇺🇸 92.204.138.198

🇳🇱 91.92.40.151

🇬🇧 45.82.76.110

🇨🇳 43.228.37.109

🇶🇦 34.153.65.29

🇦🇺 172.217.33.16

🇫🇷 159.26.105.36

🇷🇴 141.98.83.240

🇮🇩 103.49.223.111

🇳🇱 91.92.40.12

🇳🇱 45.148.10.15

🇺🇸 3.21.134.197

🇷🇴 2.57.121.25

🇨🇳 223.73.8.230

🇨🇳 218.78.46.81

🇲🇳 203.23.199.89

🇧🇬 78.128.113.22

🇺🇸 65.49.20.114