138.197.145.195

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.145.163	attackbots	Sent packet to closed port: 10394	2020-08-09 12:36:59
138.197.145.163	attackspambots	17087/tcp 14465/tcp 31783/tcp... [2020-06-22/08-04]112pkt,43pt.(tcp)	2020-08-05 06:04:02
138.197.145.163	attackspambots	Fail2Ban Ban Triggered	2020-07-28 23:02:10
138.197.145.26	attackspambots	Jul 27 11:20:58 mout sshd[4165]: Invalid user iwan from 138.197.145.26 port 37396	2020-07-27 17:31:36
138.197.145.26	attackbots	firewall-block, port(s): 8113/tcp	2020-07-26 15:25:19
138.197.145.26	attack	Scanned 3 times in the last 24 hours on port 22	2020-07-25 08:36:15
138.197.145.26	attackbots	Jul 24 10:54:47 vpn01 sshd[2993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 24 10:54:49 vpn01 sshd[2993]: Failed password for invalid user batal from 138.197.145.26 port 53418 ssh2 ...	2020-07-24 17:20:04
138.197.145.26	attackbots	Jul 18 15:58:36 ns382633 sshd\[12725\]: Invalid user sdo from 138.197.145.26 port 41884 Jul 18 15:58:36 ns382633 sshd\[12725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 18 15:58:38 ns382633 sshd\[12725\]: Failed password for invalid user sdo from 138.197.145.26 port 41884 ssh2 Jul 18 16:00:58 ns382633 sshd\[13430\]: Invalid user user from 138.197.145.26 port 45014 Jul 18 16:00:58 ns382633 sshd\[13430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26	2020-07-19 02:24:34
138.197.145.26	attack	srv02 Mass scanning activity detected Target: 25369 ..	2020-07-18 13:38:06
138.197.145.26	attackspam	Exploited Host.	2020-07-16 02:26:50
138.197.145.163	attack	firewall-block, port(s): 135/tcp	2020-07-11 22:47:12
138.197.145.26	attackbotsspam	Jul 9 23:55:58 santamaria sshd\[24973\]: Invalid user newsmagazine from 138.197.145.26 Jul 9 23:55:58 santamaria sshd\[24973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 9 23:56:00 santamaria sshd\[24973\]: Failed password for invalid user newsmagazine from 138.197.145.26 port 39498 ssh2 ...	2020-07-10 06:27:33
138.197.145.26	attackspam	SSH Login Bruteforce	2020-07-09 13:22:45
138.197.145.26	attack	21 attempts against mh-ssh on echoip	2020-07-04 05:12:45
138.197.145.26	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-06-29 00:57:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.145.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59852
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.145.195.		IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091400 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 14 20:35:56 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 195.145.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 195.145.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.166.136.141	attack	2019-12-10 00:28:57 H=(ylmf-pc) [183.166.136.141]:60375 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-12-10 00:28:58 H=(ylmf-pc) [183.166.136.141]:55964 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-12-10 00:28:59 H=(ylmf-pc) [183.166.136.141]:59683 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc ...	2019-12-10 17:22:23
188.254.0.182	attackspam	Invalid user t-miyata from 188.254.0.182 port 49986 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 Failed password for invalid user t-miyata from 188.254.0.182 port 49986 ssh2 Invalid user gdm from 188.254.0.182 port 56292 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182	2019-12-10 17:28:32
106.12.68.192	attackbots	Dec 9 23:15:41 web1 sshd\[30958\]: Invalid user rOOt123!@\# from 106.12.68.192 Dec 9 23:15:41 web1 sshd\[30958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.192 Dec 9 23:15:43 web1 sshd\[30958\]: Failed password for invalid user rOOt123!@\# from 106.12.68.192 port 43196 ssh2 Dec 9 23:21:55 web1 sshd\[31651\]: Invalid user staale from 106.12.68.192 Dec 9 23:21:55 web1 sshd\[31651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.192	2019-12-10 17:40:52
121.229.10.174	attackspambots	Dec 10 11:41:43 sauna sshd[117224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.10.174 Dec 10 11:41:45 sauna sshd[117224]: Failed password for invalid user squid from 121.229.10.174 port 57125 ssh2 ...	2019-12-10 17:45:19
217.138.76.66	attack	Dec 10 10:34:09 legacy sshd[28162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66 Dec 10 10:34:12 legacy sshd[28162]: Failed password for invalid user kamanu from 217.138.76.66 port 40460 ssh2 Dec 10 10:39:35 legacy sshd[28353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66 ...	2019-12-10 17:54:23
49.234.67.243	attackbots	Dec 9 22:58:24 php1 sshd\[29402\]: Invalid user heckendorn from 49.234.67.243 Dec 9 22:58:24 php1 sshd\[29402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.67.243 Dec 9 22:58:27 php1 sshd\[29402\]: Failed password for invalid user heckendorn from 49.234.67.243 port 47754 ssh2 Dec 9 23:04:48 php1 sshd\[30281\]: Invalid user abcdefg from 49.234.67.243 Dec 9 23:04:48 php1 sshd\[30281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.67.243	2019-12-10 17:21:51
125.130.110.20	attack	Dec 10 00:10:56 home sshd[9384]: Invalid user helpdesk from 125.130.110.20 port 54658 Dec 10 00:10:56 home sshd[9384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.130.110.20 Dec 10 00:10:56 home sshd[9384]: Invalid user helpdesk from 125.130.110.20 port 54658 Dec 10 00:10:58 home sshd[9384]: Failed password for invalid user helpdesk from 125.130.110.20 port 54658 ssh2 Dec 10 00:19:09 home sshd[9462]: Invalid user console from 125.130.110.20 port 60088 Dec 10 00:19:09 home sshd[9462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.130.110.20 Dec 10 00:19:09 home sshd[9462]: Invalid user console from 125.130.110.20 port 60088 Dec 10 00:19:11 home sshd[9462]: Failed password for invalid user console from 125.130.110.20 port 60088 ssh2 Dec 10 00:25:04 home sshd[9512]: Invalid user oratest from 125.130.110.20 port 41020 Dec 10 00:25:04 home sshd[9512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=	2019-12-10 17:32:14
123.150.103.187	attackspambots	Dec 10 05:33:18 zimbra sshd[10563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.150.103.187 user=sync Dec 10 05:33:20 zimbra sshd[10563]: Failed password for sync from 123.150.103.187 port 52420 ssh2 Dec 10 05:33:20 zimbra sshd[10563]: Received disconnect from 123.150.103.187 port 52420:11: Bye Bye [preauth] Dec 10 05:33:20 zimbra sshd[10563]: Disconnected from 123.150.103.187 port 52420 [preauth] Dec 10 05:51:12 zimbra sshd[27537]: Invalid user fare from 123.150.103.187 Dec 10 05:51:12 zimbra sshd[27537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.150.103.187 Dec 10 05:51:13 zimbra sshd[27537]: Failed password for invalid user fare from 123.150.103.187 port 43958 ssh2 Dec 10 05:51:13 zimbra sshd[27537]: Received disconnect from 123.150.103.187 port 43958:11: Bye Bye [preauth] Dec 10 05:51:13 zimbra sshd[27537]: Disconnected from 123.150.103.187 port 43958 [preauth] Dec 10 ........ -------------------------------	2019-12-10 17:36:37
3.94.79.149	attack	F2B jail: sshd. Time: 2019-12-10 10:52:35, Reported by: VKReport	2019-12-10 17:53:55
200.85.48.30	attackspambots	2019-12-10T01:20:31.740358ns547587 sshd\[12619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.85.48.30 user=root 2019-12-10T01:20:33.612424ns547587 sshd\[12619\]: Failed password for root from 200.85.48.30 port 46751 ssh2 2019-12-10T01:28:46.518749ns547587 sshd\[25969\]: Invalid user cailleteau from 200.85.48.30 port 51104 2019-12-10T01:28:46.520700ns547587 sshd\[25969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.85.48.30 ...	2019-12-10 17:37:50
103.26.43.202	attackspambots	2019-12-10T08:38:54.269300abusebot-8.cloudsearch.cf sshd\[7659\]: Invalid user flengsrud from 103.26.43.202 port 39592	2019-12-10 17:27:12
119.29.152.172	attackspam	Dec 10 08:43:18 sd-53420 sshd\[30931\]: Invalid user pizza from 119.29.152.172 Dec 10 08:43:18 sd-53420 sshd\[30931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.152.172 Dec 10 08:43:20 sd-53420 sshd\[30931\]: Failed password for invalid user pizza from 119.29.152.172 port 37606 ssh2 Dec 10 08:49:52 sd-53420 sshd\[32025\]: Invalid user server from 119.29.152.172 Dec 10 08:49:52 sd-53420 sshd\[32025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.152.172 ...	2019-12-10 17:20:14
165.227.211.13	attackspam	Dec 10 09:41:21 game-panel sshd[27700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.211.13 Dec 10 09:41:23 game-panel sshd[27700]: Failed password for invalid user mmi from 165.227.211.13 port 45508 ssh2 Dec 10 09:47:05 game-panel sshd[27988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.211.13	2019-12-10 17:49:36
149.202.75.205	attackspambots	Dec 10 10:14:48 loxhost sshd\[22702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.75.205 user=root Dec 10 10:14:50 loxhost sshd\[22702\]: Failed password for root from 149.202.75.205 port 36302 ssh2 Dec 10 10:19:36 loxhost sshd\[22872\]: Invalid user quentin from 149.202.75.205 port 45140 Dec 10 10:19:36 loxhost sshd\[22872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.75.205 Dec 10 10:19:38 loxhost sshd\[22872\]: Failed password for invalid user quentin from 149.202.75.205 port 45140 ssh2 ...	2019-12-10 17:23:16
77.42.83.185	attack	Automatic report - Port Scan Attack	2019-12-10 17:41:12

Recently Reported IPs

37.230.117.105	196.202.60.123	138.197.140.241	5.199.143.110
77.235.108.72	5.59.140.154	115.147.41.66	14.97.109.202
183.88.20.83	36.227.166.114	41.215.140.175	37.139.129.43
89.183.78.138	43.129.26.195	149.72.129.214	59.127.163.36
113.173.163.53	93.223.7.37	158.69.246.176	132.226.5.252