138.197.101.242

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.101.254	attack	138.197.101.254 - - [28/Jul/2020:05:57:23 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.101.254 - - [28/Jul/2020:05:57:26 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.101.254 - - [28/Jul/2020:05:57:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-28 12:25:16
138.197.101.29	attackspam	Jul 14 05:43:44 mx sshd[875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.101.29 Jul 14 05:43:46 mx sshd[875]: Failed password for invalid user tomi from 138.197.101.29 port 33930 ssh2	2020-07-14 17:51:21
138.197.101.29	attackbots	Invalid user tcp from 138.197.101.29 port 56808	2020-07-02 08:33:19
138.197.101.125	attackspambots	Automatic report - XMLRPC Attack	2019-10-28 05:13:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.101.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35955
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.101.242.		IN	A

;; AUTHORITY SECTION:
.			484	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:31:14 CST 2022
;; MSG SIZE  rcvd: 108

Host info

242.101.197.138.in-addr.arpa domain name pointer gilmorecarmuseum.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.101.197.138.in-addr.arpa	name = gilmorecarmuseum.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.50.149.5	attackspam	Apr 18 23:17:26 host postfix/smtps/smtpd\[9602\]: warning: unknown\[185.50.149.5\]: SASL PLAIN authentication failed:	2020-04-19 05:21:52
177.97.246.245	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-19 05:19:07
139.199.162.224	attack	"INDICATOR-SCAN PHP backdoor scan attempt"	2020-04-19 05:46:22
203.252.139.180	attack	Apr 18 23:37:55 ift sshd\[32847\]: Invalid user cu from 203.252.139.180Apr 18 23:37:57 ift sshd\[32847\]: Failed password for invalid user cu from 203.252.139.180 port 38830 ssh2Apr 18 23:41:08 ift sshd\[33376\]: Invalid user d from 203.252.139.180Apr 18 23:41:10 ift sshd\[33376\]: Failed password for invalid user d from 203.252.139.180 port 45322 ssh2Apr 18 23:44:30 ift sshd\[33654\]: Failed password for root from 203.252.139.180 port 52302 ssh2 ...	2020-04-19 05:30:56
203.205.244.61	attack	ICMP MH Probe, Scan /Distributed -	2020-04-19 05:15:23
51.159.0.184	attack	SIP Server BruteForce Attack	2020-04-19 05:49:14
163.22.17.83	attack	2020-04-18T20:15:46.260256abusebot-4.cloudsearch.cf sshd[8441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.22.17.83 user=root 2020-04-18T20:15:48.360379abusebot-4.cloudsearch.cf sshd[8441]: Failed password for root from 163.22.17.83 port 50844 ssh2 2020-04-18T20:20:16.708819abusebot-4.cloudsearch.cf sshd[8711]: Invalid user lc from 163.22.17.83 port 33860 2020-04-18T20:20:16.715622abusebot-4.cloudsearch.cf sshd[8711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.22.17.83 2020-04-18T20:20:16.708819abusebot-4.cloudsearch.cf sshd[8711]: Invalid user lc from 163.22.17.83 port 33860 2020-04-18T20:20:18.213867abusebot-4.cloudsearch.cf sshd[8711]: Failed password for invalid user lc from 163.22.17.83 port 33860 ssh2 2020-04-18T20:24:44.395761abusebot-4.cloudsearch.cf sshd[8974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.22.17.83 user=root 2020-04- ...	2020-04-19 05:30:02
51.91.255.147	attackbots	SSH Invalid Login	2020-04-19 05:46:45
112.85.42.188	attackbotsspam	04/18/2020-17:23:00.259183 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-19 05:23:24
82.251.161.207	attack	$f2bV_matches	2020-04-19 05:25:22
49.234.212.177	attackspambots	Apr 18 22:20:17 mout sshd[4582]: Invalid user admin from 49.234.212.177 port 38320	2020-04-19 05:28:07
78.176.244.43	attackspam	firewall-block, port(s): 23/tcp	2020-04-19 05:44:55
201.69.44.251	attackbotsspam	Automatic report - Port Scan Attack	2020-04-19 05:24:07
203.135.20.36	attack	Apr 18 22:07:36 server sshd[26673]: Failed password for root from 203.135.20.36 port 57225 ssh2 Apr 18 22:15:07 server sshd[31996]: Failed password for invalid user git from 203.135.20.36 port 53815 ssh2 Apr 18 22:20:17 server sshd[3814]: Failed password for root from 203.135.20.36 port 34141 ssh2	2020-04-19 05:25:51
163.172.9.50	attack	ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak	2020-04-19 05:47:45

Recently Reported IPs

138.19.74.13	138.186.179.197	138.19.153.179	138.19.45.58
138.186.174.7	176.90.70.243	138.197.105.147	138.197.107.25
138.197.11.171	138.197.111.136	138.197.103.87	138.197.133.239
138.197.136.85	138.197.168.83	138.197.206.70	138.197.184.163
138.197.203.81	138.197.217.6	138.197.224.20	138.197.227.99