138.197.164.20

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.164.222	attackspam	Sep 1 20:52:06 haigwepa sshd[6508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 Sep 1 20:52:09 haigwepa sshd[6508]: Failed password for invalid user deploy from 138.197.164.222 port 59404 ssh2 ...	2020-09-02 04:58:41
138.197.164.222	attackspam	Aug 13 07:50:06 rancher-0 sshd[1036529]: Invalid user sa12345! from 138.197.164.222 port 40368 ...	2020-08-13 19:09:25
138.197.164.222	attackbotsspam	Aug 7 11:37:38 hosting sshd[15877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 user=root Aug 7 11:37:40 hosting sshd[15877]: Failed password for root from 138.197.164.222 port 60278 ssh2 Aug 7 11:41:06 hosting sshd[16265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 user=root Aug 7 11:41:08 hosting sshd[16265]: Failed password for root from 138.197.164.222 port 36376 ssh2 Aug 7 11:43:49 hosting sshd[16410]: Invalid user com from 138.197.164.222 port 35670 ...	2020-08-07 17:20:52
138.197.164.222	attackspambots	Brute-force attempt banned	2020-07-23 05:20:48
138.197.164.222	attack	DATE:2020-07-10 18:04:36, IP:138.197.164.222, PORT:ssh SSH brute force auth (docker-dc)	2020-07-11 04:56:23
138.197.164.222	attack	2020-07-09T22:16:03.593957vps751288.ovh.net sshd\[14955\]: Invalid user user from 138.197.164.222 port 43964 2020-07-09T22:16:03.604467vps751288.ovh.net sshd\[14955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 2020-07-09T22:16:05.684388vps751288.ovh.net sshd\[14955\]: Failed password for invalid user user from 138.197.164.222 port 43964 ssh2 2020-07-09T22:19:52.325208vps751288.ovh.net sshd\[14967\]: Invalid user jifeidata from 138.197.164.222 port 54970 2020-07-09T22:19:52.334088vps751288.ovh.net sshd\[14967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222	2020-07-10 06:19:32
138.197.164.222	attackbots	2020-06-13T04:07:24.333931abusebot-5.cloudsearch.cf sshd[12709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 user=root 2020-06-13T04:07:26.425347abusebot-5.cloudsearch.cf sshd[12709]: Failed password for root from 138.197.164.222 port 52894 ssh2 2020-06-13T04:11:02.484349abusebot-5.cloudsearch.cf sshd[12816]: Invalid user sshvpn from 138.197.164.222 port 53948 2020-06-13T04:11:02.489464abusebot-5.cloudsearch.cf sshd[12816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 2020-06-13T04:11:02.484349abusebot-5.cloudsearch.cf sshd[12816]: Invalid user sshvpn from 138.197.164.222 port 53948 2020-06-13T04:11:04.510258abusebot-5.cloudsearch.cf sshd[12816]: Failed password for invalid user sshvpn from 138.197.164.222 port 53948 ssh2 2020-06-13T04:12:41.102425abusebot-5.cloudsearch.cf sshd[12869]: Invalid user test from 138.197.164.222 port 43502 ...	2020-06-13 13:26:45
138.197.164.222	attackspam	k+ssh-bruteforce	2020-06-08 23:51:05
138.197.164.222	attackbots	$f2bV_matches	2020-06-06 16:31:46
138.197.164.222	attack	2020-06-05T14:00:27.802906 sshd[5902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 2020-06-05T14:00:27.788830 sshd[5902]: Invalid user 0\r from 138.197.164.222 port 58198 2020-06-05T14:00:30.000515 sshd[5902]: Failed password for invalid user 0\r from 138.197.164.222 port 58198 ssh2 2020-06-05T16:02:36.043820 sshd[8356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 user=root 2020-06-05T16:02:38.050075 sshd[8356]: Failed password for root from 138.197.164.222 port 55010 ssh2 ...	2020-06-05 23:57:39
138.197.164.222	attackspam	Jun 3 17:26:34 OPSO sshd\[31478\]: Invalid user levko\\r from 138.197.164.222 port 42480 Jun 3 17:26:34 OPSO sshd\[31478\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 Jun 3 17:26:36 OPSO sshd\[31478\]: Failed password for invalid user levko\\r from 138.197.164.222 port 42480 ssh2 Jun 3 17:31:13 OPSO sshd\[32265\]: Invalid user Qwer!@\#\$%\^\\r from 138.197.164.222 port 57500 Jun 3 17:31:13 OPSO sshd\[32265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222	2020-06-04 03:48:00
138.197.164.222	attack	Invalid user imp from 138.197.164.222 port 52354	2020-05-22 04:00:19
138.197.164.222	attackspam	$f2bV_matches	2020-05-04 15:55:12
138.197.164.222	attackspambots	Apr 19 16:47:55 server sshd[2222]: Failed password for invalid user xb from 138.197.164.222 port 34574 ssh2 Apr 19 16:52:26 server sshd[3010]: Failed password for root from 138.197.164.222 port 48658 ssh2 Apr 19 16:54:12 server sshd[3408]: Failed password for root from 138.197.164.222 port 37916 ssh2	2020-04-20 02:25:01
138.197.164.222	attackspam	Apr 11 05:48:29 ourumov-web sshd\[19334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 user=root Apr 11 05:48:31 ourumov-web sshd\[19334\]: Failed password for root from 138.197.164.222 port 45958 ssh2 Apr 11 05:56:28 ourumov-web sshd\[19823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.164.222 user=root ...	2020-04-11 12:08:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.164.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16033
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.164.20.			IN	A

;; AUTHORITY SECTION:
.			354	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 15:05:22 CST 2022
;; MSG SIZE  rcvd: 107

Host info

20.164.197.138.in-addr.arpa domain name pointer govern.488.lla.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.164.197.138.in-addr.arpa	name = govern.488.lla.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.166.151.47	attackspam	\[2019-09-08 04:39:41\] SECURITY\[1849\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-08T04:39:41.777-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="004146812111447",SessionID="0x7fd9a8123cd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/51939",ACLName="no_extension_match" \[2019-09-08 04:39:46\] SECURITY\[1849\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-08T04:39:46.236-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="946462607509",SessionID="0x7fd9a81e57a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/58133",ACLName="no_extension_match" \[2019-09-08 04:39:50\] SECURITY\[1849\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-08T04:39:50.300-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="946406820574",SessionID="0x7fd9a832f3a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/64203",ACLName="no_extension	2019-09-08 17:00:12
49.235.91.152	attackspambots	Sep 8 11:25:28 www4 sshd\[18852\]: Invalid user csgoserver from 49.235.91.152 Sep 8 11:25:28 www4 sshd\[18852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.91.152 Sep 8 11:25:30 www4 sshd\[18852\]: Failed password for invalid user csgoserver from 49.235.91.152 port 38784 ssh2 ...	2019-09-08 16:39:50
14.160.26.178	attack	Sep 8 11:12:31 pkdns2 sshd\[28014\]: Address 14.160.26.178 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 8 11:12:31 pkdns2 sshd\[28014\]: Invalid user newuser from 14.160.26.178Sep 8 11:12:33 pkdns2 sshd\[28014\]: Failed password for invalid user newuser from 14.160.26.178 port 33062 ssh2Sep 8 11:17:50 pkdns2 sshd\[28235\]: Address 14.160.26.178 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 8 11:17:50 pkdns2 sshd\[28235\]: Invalid user radio from 14.160.26.178Sep 8 11:17:51 pkdns2 sshd\[28235\]: Failed password for invalid user radio from 14.160.26.178 port 55033 ssh2 ...	2019-09-08 16:33:34
114.247.177.155	attackspambots	DATE:2019-09-08 10:09:23, IP:114.247.177.155, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-09-08 17:07:46
202.100.182.250	attack	22/tcp 22/tcp 22/tcp... [2019-07-10/09-08]6pkt,1pt.(tcp)	2019-09-08 16:37:02
104.248.176.155	attackspam	proto=tcp . spt=34636 . dpt=25 . (listed on Blocklist de Sep 07) (847)	2019-09-08 16:23:50
131.100.148.65	attackspambots	proto=tcp . spt=52458 . dpt=25 . (listed on Blocklist de Sep 07) (841)	2019-09-08 16:45:40
83.150.214.204	attackspam	445/tcp 445/tcp 445/tcp... [2019-08-06/09-08]7pkt,1pt.(tcp)	2019-09-08 16:48:29
198.211.114.208	attackbotsspam	Automatic report - Banned IP Access	2019-09-08 16:54:32
176.31.181.171	attack	Sep 8 13:47:47 areeb-Workstation sshd[7133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.181.171 Sep 8 13:47:50 areeb-Workstation sshd[7133]: Failed password for invalid user anna from 176.31.181.171 port 55878 ssh2 ...	2019-09-08 16:34:31
180.251.197.211	attackspam	Sep 8 10:17:44 dev sshd\[14362\]: Invalid user admin from 180.251.197.211 port 51747 Sep 8 10:17:44 dev sshd\[14362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.251.197.211 Sep 8 10:17:45 dev sshd\[14362\]: Failed password for invalid user admin from 180.251.197.211 port 51747 ssh2	2019-09-08 16:41:30
106.57.51.233	attackbotsspam	Sep 8 11:17:26 www4 sshd\[17876\]: Invalid user admin from 106.57.51.233 Sep 8 11:17:26 www4 sshd\[17876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.57.51.233 Sep 8 11:17:28 www4 sshd\[17876\]: Failed password for invalid user admin from 106.57.51.233 port 56941 ssh2 ...	2019-09-08 17:02:21
182.176.158.112	attack	445/tcp 445/tcp 445/tcp... [2019-07-08/09-08]6pkt,1pt.(tcp)	2019-09-08 16:43:54
178.128.106.181	attackbots	2019-09-08T08:47:24.021655abusebot-7.cloudsearch.cf sshd\[23633\]: Invalid user password123 from 178.128.106.181 port 44172	2019-09-08 17:20:18
41.211.112.81	attackspam	proto=tcp . spt=15962 . dpt=25 . (listed on Blocklist de Sep 07) (839)	2019-09-08 16:57:35

Recently Reported IPs

138.197.109.206	138.197.100.149	138.186.148.3	138.197.181.30
138.197.13.249	138.197.155.221	138.197.103.140	138.197.186.203
138.197.183.14	138.197.68.48	138.201.11.122	138.201.202.58
138.197.8.78	138.197.77.15	138.201.88.1	138.204.78.248
138.207.154.32	138.255.240.36	138.68.148.111	138.68.188.19