138.197.149.253

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.149.97	attack	Sep 10 20:00:19 ns308116 sshd[31485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root Sep 10 20:00:21 ns308116 sshd[31485]: Failed password for root from 138.197.149.97 port 34136 ssh2 Sep 10 20:06:07 ns308116 sshd[4933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root Sep 10 20:06:09 ns308116 sshd[4933]: Failed password for root from 138.197.149.97 port 40806 ssh2 Sep 10 20:09:31 ns308116 sshd[8395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root ...	2020-09-11 03:27:57
138.197.149.97	attack	$f2bV_matches	2020-09-10 18:58:20
138.197.149.97	attack	Aug 29 22:40:54 buvik sshd[28099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 Aug 29 22:40:56 buvik sshd[28099]: Failed password for invalid user lever from 138.197.149.97 port 56310 ssh2 Aug 29 22:44:24 buvik sshd[28435]: Invalid user ts3bot from 138.197.149.97 ...	2020-08-30 05:25:55
138.197.149.97	attackbots	2020-08-15T06:21:38.660080abusebot-3.cloudsearch.cf sshd[23392]: Invalid user 666idc from 138.197.149.97 port 34918 2020-08-15T06:21:38.666634abusebot-3.cloudsearch.cf sshd[23392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 2020-08-15T06:21:38.660080abusebot-3.cloudsearch.cf sshd[23392]: Invalid user 666idc from 138.197.149.97 port 34918 2020-08-15T06:21:39.989623abusebot-3.cloudsearch.cf sshd[23392]: Failed password for invalid user 666idc from 138.197.149.97 port 34918 ssh2 2020-08-15T06:25:22.481309abusebot-3.cloudsearch.cf sshd[23409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root 2020-08-15T06:25:24.220978abusebot-3.cloudsearch.cf sshd[23409]: Failed password for root from 138.197.149.97 port 45416 ssh2 2020-08-15T06:29:02.446994abusebot-3.cloudsearch.cf sshd[23475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1 ...	2020-08-15 18:54:31
138.197.149.97	attackbotsspam	Aug 11 06:57:37 rocket sshd[29833]: Failed password for root from 138.197.149.97 port 53760 ssh2 Aug 11 07:01:38 rocket sshd[30439]: Failed password for root from 138.197.149.97 port 36838 ssh2 ...	2020-08-11 14:03:06
138.197.149.97	attackspam	Invalid user ehd from 138.197.149.97 port 52060	2020-07-21 08:34:01
138.197.149.97	attackbots	Jul 19 06:12:20 gospond sshd[5065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 Jul 19 06:12:20 gospond sshd[5065]: Invalid user 123 from 138.197.149.97 port 49428 Jul 19 06:12:22 gospond sshd[5065]: Failed password for invalid user 123 from 138.197.149.97 port 49428 ssh2 ...	2020-07-19 13:18:25
138.197.149.97	attack	$f2bV_matches	2020-07-04 05:20:53
138.197.149.97	attackspambots	Jun 20 10:27:54 melroy-server sshd[3983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 Jun 20 10:27:56 melroy-server sshd[3983]: Failed password for invalid user agr from 138.197.149.97 port 60798 ssh2 ...	2020-06-20 18:21:46
138.197.149.97	attackspambots	sshd	2020-06-18 14:02:12
138.197.149.97	attackbots	SSH invalid-user multiple login try	2020-06-15 01:00:28
138.197.149.97	attackbots	Jun 14 08:30:13 piServer sshd[16959]: Failed password for root from 138.197.149.97 port 34584 ssh2 Jun 14 08:33:32 piServer sshd[17232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 Jun 14 08:33:34 piServer sshd[17232]: Failed password for invalid user ylx from 138.197.149.97 port 36018 ssh2 ...	2020-06-14 14:42:44
138.197.149.97	attackbotsspam	Jun 13 04:03:02 ws12vmsma01 sshd[65080]: Failed password for invalid user kdk from 138.197.149.97 port 45896 ssh2 Jun 13 04:08:06 ws12vmsma01 sshd[586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root Jun 13 04:08:08 ws12vmsma01 sshd[586]: Failed password for root from 138.197.149.97 port 38528 ssh2 ...	2020-06-13 16:58:35
138.197.149.97	attack	Jun 10 20:49:10 abendstille sshd\[16001\]: Invalid user antivirus from 138.197.149.97 Jun 10 20:49:10 abendstille sshd\[16001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 Jun 10 20:49:13 abendstille sshd\[16001\]: Failed password for invalid user antivirus from 138.197.149.97 port 45000 ssh2 Jun 10 20:52:29 abendstille sshd\[19198\]: Invalid user Waschlappen from 138.197.149.97 Jun 10 20:52:29 abendstille sshd\[19198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 ...	2020-06-11 03:03:47
138.197.149.97	attackbots	2020-05-28T03:25:57.137292morrigan.ad5gb.com sshd[709]: Invalid user shoroku from 138.197.149.97 port 39292 2020-05-28T03:25:59.455204morrigan.ad5gb.com sshd[709]: Failed password for invalid user shoroku from 138.197.149.97 port 39292 ssh2 2020-05-28T03:26:00.069595morrigan.ad5gb.com sshd[709]: Disconnected from invalid user shoroku 138.197.149.97 port 39292 [preauth]	2020-05-28 16:37:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.149.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53071
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.149.253.		IN	A

;; AUTHORITY SECTION:
.			261	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:26:37 CST 2022
;; MSG SIZE  rcvd: 108

Host info

253.149.197.138.in-addr.arpa domain name pointer 409503.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
253.149.197.138.in-addr.arpa	name = 409503.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.243.129.130	attack	Port Scan detected! ...	2020-08-26 05:59:22
95.188.95.214	attackspam	Unauthorized connection attempt from IP address 95.188.95.214 on Port 445(SMB)	2020-08-26 06:10:17
164.132.110.238	attack	SSH Invalid Login	2020-08-26 06:05:47
5.64.139.250	attackbotsspam	" "	2020-08-26 05:53:06
90.176.150.123	attack	Invalid user user3 from 90.176.150.123 port 44000	2020-08-26 05:55:19
144.34.172.241	attackspam	Aug 25 20:46:46 scw-focused-cartwright sshd[32608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.172.241 Aug 25 20:46:48 scw-focused-cartwright sshd[32608]: Failed password for invalid user albatros from 144.34.172.241 port 47906 ssh2	2020-08-26 06:07:16
54.38.180.93	attackspam	Aug 25 22:00:31 prox sshd[30139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.180.93 Aug 25 22:00:34 prox sshd[30139]: Failed password for invalid user wfx from 54.38.180.93 port 39964 ssh2	2020-08-26 06:03:24
23.225.206.138	attackspambots	Unauthorized connection attempt from IP address 23.225.206.138 on Port 445(SMB)	2020-08-26 05:58:29
114.35.207.129	attack	" "	2020-08-26 06:02:38
187.20.142.243	attack	Aug 25 20:05:42 marvibiene sshd[10348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.20.142.243 user=root Aug 25 20:05:43 marvibiene sshd[10348]: Failed password for root from 187.20.142.243 port 62945 ssh2 Aug 25 20:19:36 marvibiene sshd[10558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.20.142.243 user=root Aug 25 20:19:38 marvibiene sshd[10558]: Failed password for root from 187.20.142.243 port 19745 ssh2	2020-08-26 05:55:54
186.251.247.58	attack	Dovecot Invalid User Login Attempt.	2020-08-26 05:45:24
222.186.175.163	attack	Aug 25 23:44:15 vps1 sshd[18111]: Failed none for invalid user root from 222.186.175.163 port 26932 ssh2 Aug 25 23:44:16 vps1 sshd[18111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Aug 25 23:44:18 vps1 sshd[18111]: Failed password for invalid user root from 222.186.175.163 port 26932 ssh2 Aug 25 23:44:23 vps1 sshd[18111]: Failed password for invalid user root from 222.186.175.163 port 26932 ssh2 Aug 25 23:44:26 vps1 sshd[18111]: Failed password for invalid user root from 222.186.175.163 port 26932 ssh2 Aug 25 23:44:30 vps1 sshd[18111]: Failed password for invalid user root from 222.186.175.163 port 26932 ssh2 Aug 25 23:44:33 vps1 sshd[18111]: Failed password for invalid user root from 222.186.175.163 port 26932 ssh2 Aug 25 23:44:33 vps1 sshd[18111]: error: maximum authentication attempts exceeded for invalid user root from 222.186.175.163 port 26932 ssh2 [preauth] ...	2020-08-26 05:46:27
187.112.249.90	attack	Unauthorized connection attempt from IP address 187.112.249.90 on Port 445(SMB)	2020-08-26 05:58:53
111.229.147.229	attackspambots	SSH Brute-Force attacks	2020-08-26 05:42:48
159.65.184.79	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-26 05:57:24

Recently Reported IPs

138.197.151.240	138.197.152.62	138.197.153.182	138.197.145.73
138.197.150.179	138.197.146.93	138.197.154.115	138.197.154.117
138.197.154.120	138.197.153.86	138.197.156.137	138.197.158.226
138.197.157.82	138.197.160.150	138.197.16.235	138.197.161.180
138.197.154.47	138.197.161.71	138.197.160.99	138.197.161.86