138.197.144.157

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.144.141	attackbotsspam	Invalid user marija from 138.197.144.141 port 40774	2020-09-04 02:02:48
138.197.144.141	attackbotsspam	Invalid user goncalo from 138.197.144.141 port 34796	2020-09-03 17:28:11
138.197.144.141	attackbotsspam	Sep 1 15:34:22 jane sshd[20465]: Failed password for root from 138.197.144.141 port 45508 ssh2 Sep 1 15:38:44 jane sshd[24066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.144.141 ...	2020-09-02 01:56:02
138.197.144.141	attackbots	$f2bV_matches	2020-08-16 06:54:52
138.197.144.141	attackbotsspam	$f2bV_matches	2020-08-11 17:08:44
138.197.144.141	attack	2020-07-14T06:57:51.664854abusebot.cloudsearch.cf sshd[10783]: Invalid user ashok from 138.197.144.141 port 45964 2020-07-14T06:57:51.670818abusebot.cloudsearch.cf sshd[10783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.144.141 2020-07-14T06:57:51.664854abusebot.cloudsearch.cf sshd[10783]: Invalid user ashok from 138.197.144.141 port 45964 2020-07-14T06:57:53.754023abusebot.cloudsearch.cf sshd[10783]: Failed password for invalid user ashok from 138.197.144.141 port 45964 ssh2 2020-07-14T07:01:20.016527abusebot.cloudsearch.cf sshd[10881]: Invalid user tsukamoto from 138.197.144.141 port 60838 2020-07-14T07:01:20.020667abusebot.cloudsearch.cf sshd[10881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.144.141 2020-07-14T07:01:20.016527abusebot.cloudsearch.cf sshd[10881]: Invalid user tsukamoto from 138.197.144.141 port 60838 2020-07-14T07:01:22.128988abusebot.cloudsearch.cf sshd[10881]: ...	2020-07-14 17:45:16
138.197.144.141	attackbots	2020-07-13T12:38:49+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-07-14 01:16:06
138.197.144.141	attackbotsspam	prod8 ...	2020-07-05 17:20:52
138.197.144.141	attackspambots	Jun 28 05:11:50 NG-HHDC-SVS-001 sshd[24821]: Invalid user amavis from 138.197.144.141 ...	2020-06-28 04:29:25
138.197.144.141	attack	2020-06-26T22:05:38.342227mail.broermann.family sshd[7468]: Invalid user admin from 138.197.144.141 port 36598 2020-06-26T22:05:38.349413mail.broermann.family sshd[7468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.144.141 2020-06-26T22:05:38.342227mail.broermann.family sshd[7468]: Invalid user admin from 138.197.144.141 port 36598 2020-06-26T22:05:40.496844mail.broermann.family sshd[7468]: Failed password for invalid user admin from 138.197.144.141 port 36598 ssh2 2020-06-26T22:10:05.815226mail.broermann.family sshd[7899]: Invalid user libuuid from 138.197.144.141 port 34290 ...	2020-06-27 05:44:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.144.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.144.157.		IN	A

;; AUTHORITY SECTION:
.			165	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100700 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 20:04:43 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 157.144.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 157.144.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.9.140	attack	159.89.9.140 - - \[12/Feb/2020:06:02:11 +0100\] "POST /wp-login.php HTTP/1.0" 200 6597 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.89.9.140 - - \[12/Feb/2020:06:02:12 +0100\] "POST /wp-login.php HTTP/1.0" 200 6410 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.89.9.140 - - \[12/Feb/2020:06:02:13 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-02-12 17:47:18
88.156.122.72	attack	$f2bV_matches	2020-02-12 18:16:12
62.234.83.50	attack	Feb 12 08:40:56 lnxmysql61 sshd[31800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.83.50	2020-02-12 17:44:51
212.171.69.132	attackbotsspam	Automatic report - Port Scan Attack	2020-02-12 18:01:58
162.243.130.210	attackbots	Scanning	2020-02-12 17:54:42
183.81.121.24	attack	1581483114 - 02/12/2020 05:51:54 Host: 183.81.121.24/183.81.121.24 Port: 445 TCP Blocked	2020-02-12 18:19:28
36.75.140.243	attackbots	Unauthorized connection attempt from IP address 36.75.140.243 on Port 445(SMB)	2020-02-12 18:08:56
49.235.145.231	attack	Feb 12 05:23:56 ovpn sshd\[29340\]: Invalid user italy from 49.235.145.231 Feb 12 05:23:56 ovpn sshd\[29340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.145.231 Feb 12 05:23:58 ovpn sshd\[29340\]: Failed password for invalid user italy from 49.235.145.231 port 34494 ssh2 Feb 12 05:52:00 ovpn sshd\[4277\]: Invalid user admin from 49.235.145.231 Feb 12 05:52:00 ovpn sshd\[4277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.145.231	2020-02-12 18:15:01
221.194.44.153	attackspambots	Unauthorised access (Feb 12) SRC=221.194.44.153 LEN=40 TTL=113 ID=256 TCP DPT=1433 WINDOW=16384 SYN Unauthorised access (Feb 11) SRC=221.194.44.153 LEN=40 TTL=113 ID=256 TCP DPT=1433 WINDOW=16384 SYN Unauthorised access (Feb 10) SRC=221.194.44.153 LEN=40 TTL=113 ID=256 TCP DPT=1433 WINDOW=16384 SYN	2020-02-12 18:05:26
209.99.168.233	attackbotsspam	0,69-03/03 [bc02/m45] PostRequest-Spammer scoring: zurich	2020-02-12 18:26:31
36.72.221.52	attackbots	Feb 12 05:52:11 vps339862 kernel: \[702048.814649\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:c6:00:b0:a8:71:bf:08:00 SRC=36.72.221.52 DST=51.254.206.43 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=17963 DF PROTO=TCP SPT=63620 DPT=8291 SEQ=1034153571 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT $020405A00103030801010402$ Feb 12 05:52:18 vps339862 kernel: \[702055.065064\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:c6:00:b0:a8:71:bf:08:00 SRC=36.72.221.52 DST=51.254.206.43 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=2695 DF PROTO=TCP SPT=63620 DPT=8291 SEQ=1034153571 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT $020405A00103030801010402$ Feb 12 05:52:18 vps339862 kernel: \[702055.344599\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:c6:00:b0:a8:71:bf:08:00 SRC=36.72.221.52 DST=51.254.206.43 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=4318 DF PROTO=TCP SPT=63620 DPT=8291 SEQ=1037352961 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT $020405A00103030801010402$ ...	2020-02-12 18:03:35
49.235.134.224	attackspam	Feb 12 14:41:13 gw1 sshd[7342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.134.224 Feb 12 14:41:14 gw1 sshd[7342]: Failed password for invalid user sakamaki from 49.235.134.224 port 43482 ssh2 ...	2020-02-12 18:24:59
123.207.237.146	attackspam	Invalid user admins from 123.207.237.146 port 35972	2020-02-12 17:52:04
89.248.160.193	attack	Feb 12 10:53:12 debian-2gb-nbg1-2 kernel: \[3760423.093579\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.160.193 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=49635 PROTO=TCP SPT=47897 DPT=20270 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-12 17:59:37
139.99.148.4	attackbots	xmlrpc attack	2020-02-12 18:23:19

Recently Reported IPs

115.22.242.78	59.0.133.234	125.138.125.238	59.1.240.222
14.51.10.61	59.13.150.110	203.251.123.50	103.196.29.154
14.36.131.215	159.203.7.7	39.109.84.11	151.67.146.74
20.242.108.199	182.178.199.245	31.6.21.114	128.90.0.251
125.136.194.67	213.89.193.95	192.177.188.192	43.152.203.84