138.197.145.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.145.163	attackbots	Sent packet to closed port: 10394	2020-08-09 12:36:59
138.197.145.163	attackspambots	17087/tcp 14465/tcp 31783/tcp... [2020-06-22/08-04]112pkt,43pt.(tcp)	2020-08-05 06:04:02
138.197.145.163	attackspambots	Fail2Ban Ban Triggered	2020-07-28 23:02:10
138.197.145.26	attackspambots	Jul 27 11:20:58 mout sshd[4165]: Invalid user iwan from 138.197.145.26 port 37396	2020-07-27 17:31:36
138.197.145.26	attackbots	firewall-block, port(s): 8113/tcp	2020-07-26 15:25:19
138.197.145.26	attack	Scanned 3 times in the last 24 hours on port 22	2020-07-25 08:36:15
138.197.145.26	attackbots	Jul 24 10:54:47 vpn01 sshd[2993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 24 10:54:49 vpn01 sshd[2993]: Failed password for invalid user batal from 138.197.145.26 port 53418 ssh2 ...	2020-07-24 17:20:04
138.197.145.26	attackbots	Jul 18 15:58:36 ns382633 sshd\[12725\]: Invalid user sdo from 138.197.145.26 port 41884 Jul 18 15:58:36 ns382633 sshd\[12725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 18 15:58:38 ns382633 sshd\[12725\]: Failed password for invalid user sdo from 138.197.145.26 port 41884 ssh2 Jul 18 16:00:58 ns382633 sshd\[13430\]: Invalid user user from 138.197.145.26 port 45014 Jul 18 16:00:58 ns382633 sshd\[13430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26	2020-07-19 02:24:34
138.197.145.26	attack	srv02 Mass scanning activity detected Target: 25369 ..	2020-07-18 13:38:06
138.197.145.26	attackspam	Exploited Host.	2020-07-16 02:26:50
138.197.145.163	attack	firewall-block, port(s): 135/tcp	2020-07-11 22:47:12
138.197.145.26	attackbotsspam	Jul 9 23:55:58 santamaria sshd\[24973\]: Invalid user newsmagazine from 138.197.145.26 Jul 9 23:55:58 santamaria sshd\[24973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26 Jul 9 23:56:00 santamaria sshd\[24973\]: Failed password for invalid user newsmagazine from 138.197.145.26 port 39498 ssh2 ...	2020-07-10 06:27:33
138.197.145.26	attackspam	SSH Login Bruteforce	2020-07-09 13:22:45
138.197.145.26	attack	21 attempts against mh-ssh on echoip	2020-07-04 05:12:45
138.197.145.26	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-06-29 00:57:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.145.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19476
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.145.4.			IN	A

;; AUTHORITY SECTION:
.			147	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:26:34 CST 2022
;; MSG SIZE  rcvd: 106

Host info

4.145.197.138.in-addr.arpa domain name pointer 733446.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.145.197.138.in-addr.arpa	name = 733446.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.211.49.211	attackspam	$f2bV_matches	2020-01-12 01:53:45
132.232.4.33	attackbotsspam	Jan 11 17:31:47 MK-Soft-Root2 sshd[31495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33 Jan 11 17:31:50 MK-Soft-Root2 sshd[31495]: Failed password for invalid user PlcmSpIp from 132.232.4.33 port 41070 ssh2 ...	2020-01-12 01:19:05
77.42.125.229	attackspam	Automatic report - Port Scan Attack	2020-01-12 01:31:08
129.211.45.88	attackspambots	2020-01-11T17:29:52.109816abusebot-5.cloudsearch.cf sshd[11690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88 user=root 2020-01-11T17:29:54.275507abusebot-5.cloudsearch.cf sshd[11690]: Failed password for root from 129.211.45.88 port 38560 ssh2 2020-01-11T17:33:34.562563abusebot-5.cloudsearch.cf sshd[11695]: Invalid user com from 129.211.45.88 port 39056 2020-01-11T17:33:34.569901abusebot-5.cloudsearch.cf sshd[11695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88 2020-01-11T17:33:34.562563abusebot-5.cloudsearch.cf sshd[11695]: Invalid user com from 129.211.45.88 port 39056 2020-01-11T17:33:36.213410abusebot-5.cloudsearch.cf sshd[11695]: Failed password for invalid user com from 129.211.45.88 port 39056 ssh2 2020-01-11T17:37:18.085776abusebot-5.cloudsearch.cf sshd[11704]: Invalid user no-r3ply from 129.211.45.88 port 39564 ...	2020-01-12 01:54:12
132.148.129.180	attackbots	$f2bV_matches	2020-01-12 01:26:08
131.255.94.66	attackbotsspam	Jan 11 17:41:37 ncomp sshd[20441]: Invalid user demo from 131.255.94.66 Jan 11 17:41:37 ncomp sshd[20441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.255.94.66 Jan 11 17:41:37 ncomp sshd[20441]: Invalid user demo from 131.255.94.66 Jan 11 17:41:39 ncomp sshd[20441]: Failed password for invalid user demo from 131.255.94.66 port 37244 ssh2	2020-01-12 01:28:26
189.115.105.44	attackspambots	Jan 11 07:01:28 hgb10502 sshd[5006]: Invalid user svadmin from 189.115.105.44 port 32832 Jan 11 07:01:31 hgb10502 sshd[5006]: Failed password for invalid user svadmin from 189.115.105.44 port 32832 ssh2 Jan 11 07:01:31 hgb10502 sshd[5006]: Received disconnect from 189.115.105.44 port 32832:11: Bye Bye [preauth] Jan 11 07:01:31 hgb10502 sshd[5006]: Disconnected from 189.115.105.44 port 32832 [preauth] Jan 11 07:08:32 hgb10502 sshd[5639]: User r.r from 189.115.105.44 not allowed because not listed in AllowUsers Jan 11 07:08:32 hgb10502 sshd[5639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.115.105.44 user=r.r Jan 11 07:08:34 hgb10502 sshd[5639]: Failed password for invalid user r.r from 189.115.105.44 port 51562 ssh2 Jan 11 07:08:34 hgb10502 sshd[5639]: Received disconnect from 189.115.105.44 port 51562:11: Bye Bye [preauth] Jan 11 07:08:34 hgb10502 sshd[5639]: Disconnected from 189.115.105.44 port 51562 [preauth] Jan 11 0........ -------------------------------	2020-01-12 01:52:21
129.226.160.122	attack	Jan 11 18:31:19 master sshd[24557]: Failed password for invalid user hosting3r from 129.226.160.122 port 55634 ssh2 Jan 11 18:39:04 master sshd[24568]: Failed password for root from 129.226.160.122 port 51690 ssh2 Jan 11 18:44:02 master sshd[24610]: Failed password for invalid user apache from 129.226.160.122 port 54844 ssh2	2020-01-12 01:44:39
122.5.46.22	attackspambots	$f2bV_matches	2020-01-12 01:47:40
198.100.146.94	attackbots	Automatic report - XMLRPC Attack	2020-01-12 01:15:17
202.187.146.141	attackspambots	MONDIAL RELAY - COLIS	2020-01-12 01:54:50
129.211.166.249	attackspam	Jan 11 18:52:44 MK-Soft-VM7 sshd[16833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.166.249 Jan 11 18:52:46 MK-Soft-VM7 sshd[16833]: Failed password for invalid user family from 129.211.166.249 port 49352 ssh2 ...	2020-01-12 01:55:06
132.232.132.103	attack	$f2bV_matches	2020-01-12 01:23:26
47.101.130.134	attackspambots	Jan 7 07:40:49 nxxxxxxx0 sshd[31966]: Invalid user admin from 47.101.130.134 Jan 7 07:40:49 nxxxxxxx0 sshd[31966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.101.130.134 Jan 7 07:40:51 nxxxxxxx0 sshd[31966]: Failed password for invalid user admin from 47.101.130.134 port 60500 ssh2 Jan 7 07:40:52 nxxxxxxx0 sshd[31966]: Received disconnect from 47.101.130.134: 11: Normal Shutdown, Thank you for playing [preauth] Jan 7 07:42:09 nxxxxxxx0 sshd[32075]: Invalid user test1 from 47.101.130.134 Jan 7 07:42:09 nxxxxxxx0 sshd[32075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.101.130.134 Jan 7 07:42:11 nxxxxxxx0 sshd[32075]: Failed password for invalid user test1 from 47.101.130.134 port 42278 ssh2 Jan 7 07:42:11 nxxxxxxx0 sshd[32075]: Received disconnect from 47.101.130.134: 11: Normal Shutdown, Thank you for playing [preauth] Jan 7 07:43:32 nxxxxxxx0 sshd[32128]: Invalid u........ -------------------------------	2020-01-12 01:16:38
46.38.144.231	attack	Jan 11 17:16:51 blackbee postfix/smtpd\[4176\]: warning: unknown\[46.38.144.231\]: SASL LOGIN authentication failed: authentication failure Jan 11 17:17:12 blackbee postfix/smtpd\[4176\]: warning: unknown\[46.38.144.231\]: SASL LOGIN authentication failed: authentication failure Jan 11 17:17:33 blackbee postfix/smtpd\[4163\]: warning: unknown\[46.38.144.231\]: SASL LOGIN authentication failed: authentication failure Jan 11 17:17:55 blackbee postfix/smtpd\[4163\]: warning: unknown\[46.38.144.231\]: SASL LOGIN authentication failed: authentication failure Jan 11 17:18:17 blackbee postfix/smtpd\[4176\]: warning: unknown\[46.38.144.231\]: SASL LOGIN authentication failed: authentication failure ...	2020-01-12 01:34:45

Recently Reported IPs

138.197.144.98	138.197.144.167	138.197.143.3	138.197.144.86
138.197.148.56	138.197.15.69	138.197.150.185	138.197.151.240
138.197.149.253	138.197.152.62	138.197.153.182	138.197.145.73
138.197.150.179	138.197.146.93	138.197.154.115	138.197.154.117
138.197.154.120	138.197.153.86	138.197.156.137	138.197.158.226