138.197.145.214

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.145.163	attackbots	Sent packet to closed port: 10394	2020-08-09 12:36:59
138.197.145.163	attackspambots	17087/tcp 14465/tcp 31783/tcp... [2020-06-22/08-04]112pkt,43pt.(tcp)	2020-08-05 06:04:02
138.197.145.163	attackspambots	Fail2Ban Ban Triggered	2020-07-28 23:02:10
138.197.145.26	attackspambots	Jul 27 11:20:58 mout sshd[4165]: Invalid user iwan from 138.197.145.26 port 37396	2020-07-27 17:31:36
138.197.145.26	attackbots	firewall-block, port(s): 8113/tcp	2020-07-26 15:25:19
138.197.145.26	attack	Scanned 3 times in the last 24 hours on port 22	2020-07-25 08:36:15
138.197.145.26	attackbots	Jul 24 10:54:47 vpn01 sshd[2993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 24 10:54:49 vpn01 sshd[2993]: Failed password for invalid user batal from 138.197.145.26 port 53418 ssh2 ...	2020-07-24 17:20:04
138.197.145.26	attackbots	Jul 18 15:58:36 ns382633 sshd\[12725\]: Invalid user sdo from 138.197.145.26 port 41884 Jul 18 15:58:36 ns382633 sshd\[12725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 18 15:58:38 ns382633 sshd\[12725\]: Failed password for invalid user sdo from 138.197.145.26 port 41884 ssh2 Jul 18 16:00:58 ns382633 sshd\[13430\]: Invalid user user from 138.197.145.26 port 45014 Jul 18 16:00:58 ns382633 sshd\[13430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26	2020-07-19 02:24:34
138.197.145.26	attack	srv02 Mass scanning activity detected Target: 25369 ..	2020-07-18 13:38:06
138.197.145.26	attackspam	Exploited Host.	2020-07-16 02:26:50
138.197.145.163	attack	firewall-block, port(s): 135/tcp	2020-07-11 22:47:12
138.197.145.26	attackbotsspam	Jul 9 23:55:58 santamaria sshd\[24973\]: Invalid user newsmagazine from 138.197.145.26 Jul 9 23:55:58 santamaria sshd\[24973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 9 23:56:00 santamaria sshd\[24973\]: Failed password for invalid user newsmagazine from 138.197.145.26 port 39498 ssh2 ...	2020-07-10 06:27:33
138.197.145.26	attackspam	SSH Login Bruteforce	2020-07-09 13:22:45
138.197.145.26	attack	21 attempts against mh-ssh on echoip	2020-07-04 05:12:45
138.197.145.26	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-06-29 00:57:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.145.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28378
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.145.214.		IN	A

;; AUTHORITY SECTION:
.			27	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:34:14 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 214.145.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.145.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.7.253.18	attackbotsspam	Tried sshing with brute force.	2019-07-23 02:29:15
176.65.2.5	attack	This IP address was blacklisted for the following reason: /de/jobs/fahrer-mit-fuehrerschein-ce-m-w-d/&%22%20or%20(1,2)=(select*from(select%20name_const(CHAR(76,76,82,98,78,106,75,67,102),1),name_const(CHAR(76,76,82,98,78,106,75,67,102),1))a)%20--%20%22x%22=%22x @ 2018-10-15T00:47:29+02:00.	2019-07-23 03:18:04
78.30.237.173	attackspam	[portscan] Port scan	2019-07-23 02:24:02
23.237.22.38	attack	Drink this tomorrow morning to flatten your belly! Drink this tomorrow morning to flatten your belly! http://www.archers-addicts.com	2019-07-23 02:42:38
81.136.189.195	attackspambots	Jul 22 17:17:15 srv-4 sshd\[29230\]: Invalid user dw from 81.136.189.195 Jul 22 17:17:15 srv-4 sshd\[29230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.136.189.195 Jul 22 17:17:16 srv-4 sshd\[29230\]: Failed password for invalid user dw from 81.136.189.195 port 46020 ssh2 ...	2019-07-23 03:15:29
14.225.3.37	attackspam	Unauthorised access (Jul 22) SRC=14.225.3.37 LEN=40 TTL=54 ID=50538 TCP DPT=23 WINDOW=29505 SYN Unauthorised access (Jul 22) SRC=14.225.3.37 LEN=40 TTL=54 ID=50538 TCP DPT=23 WINDOW=29505 SYN Unauthorised access (Jul 22) SRC=14.225.3.37 LEN=40 TTL=54 ID=50538 TCP DPT=23 WINDOW=29505 SYN	2019-07-23 02:30:23
51.255.168.30	attackbots	Jul 22 20:27:15 microserver sshd[21969]: Invalid user one from 51.255.168.30 port 58032 Jul 22 20:27:15 microserver sshd[21969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.30 Jul 22 20:27:18 microserver sshd[21969]: Failed password for invalid user one from 51.255.168.30 port 58032 ssh2 Jul 22 20:31:39 microserver sshd[22595]: Invalid user test from 51.255.168.30 port 54334 Jul 22 20:31:39 microserver sshd[22595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.30 Jul 22 20:45:09 microserver sshd[24424]: Invalid user laura from 51.255.168.30 port 43234 Jul 22 20:45:09 microserver sshd[24424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.30 Jul 22 20:45:11 microserver sshd[24424]: Failed password for invalid user laura from 51.255.168.30 port 43234 ssh2 Jul 22 20:49:32 microserver sshd[24760]: Invalid user grant from 51.255.168.30 port 39532 Jul 22 20:	2019-07-23 03:16:20
148.204.130.1	attack	PHP DIESCAN Information Disclosure Vulnerability	2019-07-23 02:38:44
134.209.59.66	attackbots	2019-07-22T15:14:58.093831abusebot-4.cloudsearch.cf sshd\[28875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.59.66 user=root	2019-07-23 03:09:22
92.101.251.36	attackbotsspam	Automatic report - Port Scan Attack	2019-07-23 02:38:11
43.227.64.19	attackspambots	Jul 22 10:44:34 XXX sshd[28480]: User r.r from 43.227.64.19 not allowed because none of user's groups are listed in AllowGroups Jul 22 10:44:34 XXX sshd[28469]: User r.r from 43.227.64.19 not allowed because none of user's groups are listed in AllowGroups Jul 22 10:44:34 XXX sshd[28473]: User r.r from 43.227.64.19 not allowed because none of user's groups are listed in AllowGroups Jul 22 10:44:34 XXX sshd[28471]: User r.r from 43.227.64.19 not allowed because none of user's groups are listed in AllowGroups Jul 22 10:44:34 XXX sshd[28471]: Connection closed by 43.227.64.19 [preauth] Jul 22 10:44:34 XXX sshd[28473]: Connection closed by 43.227.64.19 [preauth] Jul 22 10:44:34 XXX sshd[28481]: User r.r from 43.227.64.19 not allowed because none of user's groups are listed in AllowGroups Jul 22 10:44:34 XXX sshd[28470]: User r.r from 43.227.64.19 not allowed because none of user's groups are listed in AllowGroups Jul 22 10:44:34 XXX sshd[28469]: Connection closed by 43.227.6........ -------------------------------	2019-07-23 02:27:35
190.116.49.2	attackspam	Jul 22 19:52:14 mail sshd\[11099\]: Invalid user pydio from 190.116.49.2 port 46488 Jul 22 19:52:14 mail sshd\[11099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.116.49.2 ...	2019-07-23 02:56:57
94.102.51.78	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-23 02:52:28
206.19.238.177	attack	Jul 22 16:20:29 rpi sshd[32352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.19.238.177 Jul 22 16:20:31 rpi sshd[32352]: Failed password for invalid user alexis from 206.19.238.177 port 52268 ssh2	2019-07-23 02:42:54
37.49.230.232	attack	Splunk® : port scan detected: Jul 22 14:35:17 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=37.49.230.232 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=39437 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0	2019-07-23 03:01:33

Recently Reported IPs

138.197.145.2	138.197.145.222	138.197.145.1	138.197.145.232
138.197.145.66	138.197.146.101	138.197.145.79	138.197.145.77
138.197.146.111	138.197.146.114	118.175.174.88	118.175.174.90
118.175.174.92	138.197.163.79	138.197.163.182	138.197.163.87
138.197.163.225	138.197.163.125	138.197.163.206	138.197.163.253