138.197.162.136

Basic Info

City: Toronto

Region: Ontario

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.162.28	attackbots	DATE:2020-06-07 08:19:56, IP:138.197.162.28, PORT:ssh SSH brute force auth (docker-dc)	2020-06-07 19:06:08
138.197.162.28	attack	2020-06-02T13:13:49.576491abusebot-3.cloudsearch.cf sshd[7990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 user=root 2020-06-02T13:13:51.444112abusebot-3.cloudsearch.cf sshd[7990]: Failed password for root from 138.197.162.28 port 54972 ssh2 2020-06-02T13:17:06.138952abusebot-3.cloudsearch.cf sshd[8206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 user=root 2020-06-02T13:17:08.719050abusebot-3.cloudsearch.cf sshd[8206]: Failed password for root from 138.197.162.28 port 59184 ssh2 2020-06-02T13:20:29.946051abusebot-3.cloudsearch.cf sshd[8428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 user=root 2020-06-02T13:20:31.392322abusebot-3.cloudsearch.cf sshd[8428]: Failed password for root from 138.197.162.28 port 35162 ssh2 2020-06-02T13:23:49.343692abusebot-3.cloudsearch.cf sshd[8655]: pam_unix(sshd:auth): authen ...	2020-06-02 22:12:35
138.197.162.28	attack	Invalid user jackie from 138.197.162.28 port 37754	2020-05-31 19:18:09
138.197.162.28	attackspam	May 9 21:38:40 plex sshd[11839]: Invalid user nigeria from 138.197.162.28 port 37996 May 9 21:38:42 plex sshd[11839]: Failed password for invalid user nigeria from 138.197.162.28 port 37996 ssh2 May 9 21:38:40 plex sshd[11839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 May 9 21:38:40 plex sshd[11839]: Invalid user nigeria from 138.197.162.28 port 37996 May 9 21:38:42 plex sshd[11839]: Failed password for invalid user nigeria from 138.197.162.28 port 37996 ssh2	2020-05-10 03:49:01
138.197.162.28	attackspam	May 5 19:57:12 163-172-32-151 sshd[20857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 user=root May 5 19:57:14 163-172-32-151 sshd[20857]: Failed password for root from 138.197.162.28 port 58120 ssh2 ...	2020-05-06 03:00:17
138.197.162.28	attackspambots	Invalid user marjorie from 138.197.162.28 port 51812	2020-04-25 07:45:28
138.197.162.28	attackspambots	Invalid user zy from 138.197.162.28 port 48682	2020-04-22 13:12:03
138.197.162.28	attackbots	IP blocked	2020-04-20 18:32:58
138.197.162.28	attackbots	Apr 20 01:06:57 sxvn sshd[368117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28	2020-04-20 07:30:50
138.197.162.28	attackspam	Apr 15 19:14:13 124388 sshd[1218]: Invalid user password123 from 138.197.162.28 port 41384 Apr 15 19:14:13 124388 sshd[1218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 Apr 15 19:14:13 124388 sshd[1218]: Invalid user password123 from 138.197.162.28 port 41384 Apr 15 19:14:16 124388 sshd[1218]: Failed password for invalid user password123 from 138.197.162.28 port 41384 ssh2 Apr 15 19:17:30 124388 sshd[1344]: Invalid user kriss from 138.197.162.28 port 48588	2020-04-16 03:20:24
138.197.162.28	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-04-14 12:38:24
138.197.162.28	attackbots	Apr 10 13:00:51 scw-6657dc sshd[10617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 Apr 10 13:00:51 scw-6657dc sshd[10617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 Apr 10 13:00:54 scw-6657dc sshd[10617]: Failed password for invalid user oracle5 from 138.197.162.28 port 59058 ssh2 ...	2020-04-10 21:10:48
138.197.162.28	attack	Apr 6 05:55:22 mail sshd[6753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.28 user=root Apr 6 05:55:25 mail sshd[6753]: Failed password for root from 138.197.162.28 port 49090 ssh2 ...	2020-04-06 14:09:31
138.197.162.28	attackspambots	Mar 31 12:55:17 haigwepa sshd[27674]: Failed password for root from 138.197.162.28 port 47420 ssh2 ...	2020-03-31 19:00:17
138.197.162.28	attackspambots	Fail2Ban Ban Triggered	2020-03-29 22:11:50

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       138.197.0.0 - 138.197.255.255
CIDR:           138.197.0.0/16
NetName:        DIGITALOCEAN-138-197-0-0
NetHandle:      NET-138-197-0-0-1
Parent:         NET138 (NET-138-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   DigitalOcean, LLC (DO-13)
RegDate:        2016-01-26
Updated:        2020-04-03
Comment:        Routing and Peering Policy can be found at https://www.as14061.net
Comment:        
Comment:        Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref:            https://rdap.arin.net/registry/ip/138.197.0.0



OrgName:        DigitalOcean, LLC
OrgId:          DO-13
Address:        105 Edgeview Drive, Suite 425
City:           Broomfield
StateProv:      CO
PostalCode:     80021
Country:        US
RegDate:        2012-05-14
Updated:        2025-04-11
Ref:            https://rdap.arin.net/registry/entity/DO-13


OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName:   DigitalOcean Abuse
OrgAbusePhone:  +1-646-827-4366 
OrgAbuseEmail:  abuse@digitalocean.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/DIGIT19-ARIN

OrgNOCHandle: NOC32014-ARIN
OrgNOCName:   Network Operations Center
OrgNOCPhone:  +1-646-827-4366 
OrgNOCEmail:  noc@digitalocean.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgTechHandle: NOC32014-ARIN
OrgTechName:   Network Operations Center
OrgTechPhone:  +1-646-827-4366 
OrgTechEmail:  noc@digitalocean.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.162.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65383
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.162.136.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026020504 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 06 10:30:27 CST 2026
;; MSG SIZE  rcvd: 108

Host info

Host 136.162.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 136.162.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.48.172	attack	May 7 00:53:00 NPSTNNYC01T sshd[3996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.48.172 May 7 00:53:02 NPSTNNYC01T sshd[3996]: Failed password for invalid user yvonne from 68.183.48.172 port 59682 ssh2 May 7 00:58:14 NPSTNNYC01T sshd[4567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.48.172 ...	2020-05-07 14:34:40
106.13.96.18	attackspambots	May 7 07:27:35 OPSO sshd\[22911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.96.18 user=root May 7 07:27:38 OPSO sshd\[22911\]: Failed password for root from 106.13.96.18 port 35044 ssh2 May 7 07:28:24 OPSO sshd\[23167\]: Invalid user iredadmin from 106.13.96.18 port 43606 May 7 07:28:24 OPSO sshd\[23167\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.96.18 May 7 07:28:26 OPSO sshd\[23167\]: Failed password for invalid user iredadmin from 106.13.96.18 port 43606 ssh2	2020-05-07 14:27:49
128.199.103.239	attackspambots	May 7 06:31:44 v22018086721571380 sshd[20600]: Failed password for invalid user admin from 128.199.103.239 port 48882 ssh2 May 7 07:38:11 v22018086721571380 sshd[7428]: Failed password for invalid user app from 128.199.103.239 port 34945 ssh2	2020-05-07 14:42:30
80.82.78.104	attack	80.82.78.104 - - [07/May/2020:06:28:20 +0200] "POST /editBlackAndWhiteList HTTP/1.1" 301 474 "-" "ApiTool"	2020-05-07 14:34:20
136.255.144.2	attack	May 7 07:50:37 OPSO sshd\[29797\]: Invalid user odoo from 136.255.144.2 port 52044 May 7 07:50:37 OPSO sshd\[29797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.255.144.2 May 7 07:50:39 OPSO sshd\[29797\]: Failed password for invalid user odoo from 136.255.144.2 port 52044 ssh2 May 7 07:56:11 OPSO sshd\[31424\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.255.144.2 user=root May 7 07:56:13 OPSO sshd\[31424\]: Failed password for root from 136.255.144.2 port 57800 ssh2	2020-05-07 14:42:10
222.186.30.57	attackbotsspam	May 7 08:43:29 plex sshd[25748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root May 7 08:43:31 plex sshd[25748]: Failed password for root from 222.186.30.57 port 34117 ssh2	2020-05-07 14:44:51
45.226.15.6	attackspam	port scan and connect, tcp 23 (telnet)	2020-05-07 14:09:11
190.96.119.14	attackbotsspam	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "admin" at 2020-05-07T05:52:30Z	2020-05-07 14:19:19
180.244.233.227	attackbotsspam	20/5/6@23:54:52: FAIL: Alarm-Network address from=180.244.233.227 ...	2020-05-07 14:49:00
112.85.42.173	attack	May 7 08:12:56 minden010 sshd[18242]: Failed password for root from 112.85.42.173 port 22450 ssh2 May 7 08:12:59 minden010 sshd[18242]: Failed password for root from 112.85.42.173 port 22450 ssh2 May 7 08:13:03 minden010 sshd[18242]: Failed password for root from 112.85.42.173 port 22450 ssh2 May 7 08:13:06 minden010 sshd[18242]: Failed password for root from 112.85.42.173 port 22450 ssh2 ...	2020-05-07 14:44:17
91.121.211.34	attack	Bruteforce detected by fail2ban	2020-05-07 14:27:04
180.76.37.83	attackbots	Bruteforce detected by fail2ban	2020-05-07 14:33:29
171.234.114.143	attackspambots	20/5/6@23:55:38: FAIL: Alarm-Intrusion address from=171.234.114.143 ...	2020-05-07 14:12:57
210.97.40.34	attackbots	2020-05-07T04:50:19.498653abusebot.cloudsearch.cf sshd[13816]: Invalid user kai from 210.97.40.34 port 40618 2020-05-07T04:50:19.504225abusebot.cloudsearch.cf sshd[13816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.97.40.34 2020-05-07T04:50:19.498653abusebot.cloudsearch.cf sshd[13816]: Invalid user kai from 210.97.40.34 port 40618 2020-05-07T04:50:21.805881abusebot.cloudsearch.cf sshd[13816]: Failed password for invalid user kai from 210.97.40.34 port 40618 ssh2 2020-05-07T04:54:12.810679abusebot.cloudsearch.cf sshd[14058]: Invalid user larry from 210.97.40.34 port 45418 2020-05-07T04:54:12.817331abusebot.cloudsearch.cf sshd[14058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.97.40.34 2020-05-07T04:54:12.810679abusebot.cloudsearch.cf sshd[14058]: Invalid user larry from 210.97.40.34 port 45418 2020-05-07T04:54:14.436886abusebot.cloudsearch.cf sshd[14058]: Failed password for invalid user la ...	2020-05-07 14:41:43
51.83.135.1	attackbotsspam	2020-05-07T08:35:51.498985sd-86998 sshd[34695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-07cad4ed.vps.ovh.net user=root 2020-05-07T08:35:53.404488sd-86998 sshd[34695]: Failed password for root from 51.83.135.1 port 47972 ssh2 2020-05-07T08:36:35.082999sd-86998 sshd[34826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-07cad4ed.vps.ovh.net user=root 2020-05-07T08:36:37.028930sd-86998 sshd[34826]: Failed password for root from 51.83.135.1 port 58696 ssh2 2020-05-07T08:37:17.799343sd-86998 sshd[34920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-07cad4ed.vps.ovh.net user=root 2020-05-07T08:37:19.845286sd-86998 sshd[34920]: Failed password for root from 51.83.135.1 port 41194 ssh2 ...	2020-05-07 14:41:28

Recently Reported IPs

216.234.140.59	14.212.55.66	34.22.151.18	104.152.52.220
110.249.201.12	10.1.224.3	41.38.56.232	162.216.150.199
216.58.217.120	173.225.242.244	183.165.66.231	34.60.107.64
59.88.246.152	61.61.53.229	178.128.226.91	167.71.248.1
159.223.71.126	66.90.98.106	162.216.149.65	49.153.165.66