138.197.150.137

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.150.154	attackbots	138.197.150.154 - - [24/Jun/2020:09:02:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 14371 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [24/Jun/2020:09:02:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 11248 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-24 18:13:02
138.197.150.154	attackbots	138.197.150.154 - - [11/Jun/2020:14:14:57 +0200] "GET /wp-login.php HTTP/1.1" 200 6183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [11/Jun/2020:14:15:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [11/Jun/2020:14:15:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-11 20:21:33
138.197.150.154	attackspam	138.197.150.154 - - [10/Jun/2020:05:46:44 +0200] "GET /wp-login.php HTTP/1.1" 200 5861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [10/Jun/2020:05:46:48 +0200] "POST /wp-login.php HTTP/1.1" 200 6112 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.150.154 - - [10/Jun/2020:05:46:51 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-10 18:59:47
138.197.150.154	attackbots	xmlrpc attack	2020-05-16 18:09:48
138.197.150.154	attackspambots	Automatic report - XMLRPC Attack	2020-05-11 20:11:51
138.197.150.87	attack	invalid login attempt (unbound)	2020-05-04 18:13:01
138.197.150.87	attack	Apr 28 14:49:31 host sshd[22264]: Invalid user colin from 138.197.150.87 port 35902 ...	2020-04-28 23:14:53
138.197.150.87	attack	Apr 28 09:59:57 sshd\[13445\]: Invalid user strong from 138.197.150.87Apr 28 09:59:59 sshd\[13445\]: Failed password for invalid user strong from 138.197.150.87 port 34274 ssh2 ...	2020-04-28 16:50:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.150.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24880
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.150.137.		IN	A

;; AUTHORITY SECTION:
.			244	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 155 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:53:43 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 137.150.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.150.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.247.16.29	attack	SPF Fail sender not permitted to send mail for @1888sunroom.com / Sent mail to target address hacked/leaked from abandonia in 2016	2019-12-31 05:42:17
86.21.205.149	attackbots	Dec 30 21:37:50 localhost sshd\[99528\]: Invalid user kbjin from 86.21.205.149 port 49374 Dec 30 21:37:50 localhost sshd\[99528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.21.205.149 Dec 30 21:37:52 localhost sshd\[99528\]: Failed password for invalid user kbjin from 86.21.205.149 port 49374 ssh2 Dec 30 21:40:41 localhost sshd\[99659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.21.205.149 user=root Dec 30 21:40:43 localhost sshd\[99659\]: Failed password for root from 86.21.205.149 port 47730 ssh2 ...	2019-12-31 05:44:27
106.13.72.95	attackbots	Dec 30 21:36:13 haigwepa sshd[22294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.95 Dec 30 21:36:15 haigwepa sshd[22294]: Failed password for invalid user sanjavier from 106.13.72.95 port 51366 ssh2 ...	2019-12-31 05:31:37
27.128.226.176	attack	Dec 30 15:12:49 TORMINT sshd\[2076\]: Invalid user wall from 27.128.226.176 Dec 30 15:12:49 TORMINT sshd\[2076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.226.176 Dec 30 15:12:51 TORMINT sshd\[2076\]: Failed password for invalid user wall from 27.128.226.176 port 45994 ssh2 ...	2019-12-31 05:32:11
51.37.130.84	attackbots	SSH bruteforce (Triggered fail2ban)	2019-12-31 05:34:40
93.103.80.179	attackspam	no	2019-12-31 05:31:59
92.241.49.210	attackspambots	Dec 30 21:12:44 ns381471 sshd[5460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.241.49.210 Dec 30 21:12:46 ns381471 sshd[5460]: Failed password for invalid user admin from 92.241.49.210 port 61592 ssh2	2019-12-31 05:35:22
222.186.175.217	attack	SSH Brute-Force reported by Fail2Ban	2019-12-31 05:45:50
95.110.159.28	attackbotsspam	2019-12-30T20:08:56.188084abusebot-7.cloudsearch.cf sshd[20671]: Invalid user myftp from 95.110.159.28 port 42024 2019-12-30T20:08:56.192516abusebot-7.cloudsearch.cf sshd[20671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.159.28 2019-12-30T20:08:56.188084abusebot-7.cloudsearch.cf sshd[20671]: Invalid user myftp from 95.110.159.28 port 42024 2019-12-30T20:08:57.666156abusebot-7.cloudsearch.cf sshd[20671]: Failed password for invalid user myftp from 95.110.159.28 port 42024 ssh2 2019-12-30T20:12:20.704348abusebot-7.cloudsearch.cf sshd[20892]: Invalid user talgoe from 95.110.159.28 port 41278 2019-12-30T20:12:20.708717abusebot-7.cloudsearch.cf sshd[20892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.159.28 2019-12-30T20:12:20.704348abusebot-7.cloudsearch.cf sshd[20892]: Invalid user talgoe from 95.110.159.28 port 41278 2019-12-30T20:12:22.523220abusebot-7.cloudsearch.cf sshd[20892]: Fail ...	2019-12-31 05:53:49
137.116.229.134	attackspambots	137.116.229.134 - - \[30/Dec/2019:21:12:35 +0100\] "POST /wp-login.php HTTP/1.0" 200 7672 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 137.116.229.134 - - \[30/Dec/2019:21:12:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 7502 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 137.116.229.134 - - \[30/Dec/2019:21:12:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 7496 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-31 05:37:55
167.172.30.231	attack	Automatic report - Banned IP Access	2019-12-31 05:52:08
222.186.175.183	attackspam	SSH Brute Force, server-1 sshd[16362]: Failed password for root from 222.186.175.183 port 25906 ssh2	2019-12-31 05:33:03
45.79.110.218	attackspam	Fail2Ban Ban Triggered	2019-12-31 05:35:38
95.177.167.189	attackbots	$f2bV_matches	2019-12-31 05:38:27
186.4.184.218	attackbots	Dec 30 21:07:06 dev0-dcde-rnet sshd[3636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.184.218 Dec 30 21:07:08 dev0-dcde-rnet sshd[3636]: Failed password for invalid user volt from 186.4.184.218 port 58316 ssh2 Dec 30 21:12:11 dev0-dcde-rnet sshd[3715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.184.218	2019-12-31 05:59:31

Recently Reported IPs

138.197.150.244	138.197.152.183	138.197.151.8	138.197.158.178
138.197.150.21	138.197.149.119	138.197.159.251	138.197.159.143
138.197.159.8	138.197.161.160	138.197.160.175	138.197.162.157
138.197.163.209	138.197.165.192	138.197.164.93	138.197.165.186
138.197.161.18	138.197.169.52	138.197.169.210	138.197.16.166