138.197.175.150

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.175.236	attack	Oct 3 23:50:59 s1 sshd\[5869\]: Invalid user terminal from 138.197.175.236 port 56552 Oct 3 23:50:59 s1 sshd\[5869\]: Failed password for invalid user terminal from 138.197.175.236 port 56552 ssh2 Oct 3 23:54:16 s1 sshd\[9221\]: Invalid user Test from 138.197.175.236 port 35254 Oct 3 23:54:16 s1 sshd\[9221\]: Failed password for invalid user Test from 138.197.175.236 port 35254 ssh2 Oct 3 23:57:39 s1 sshd\[13466\]: Invalid user test from 138.197.175.236 port 42184 Oct 3 23:57:39 s1 sshd\[13466\]: Failed password for invalid user test from 138.197.175.236 port 42184 ssh2 ...	2020-10-04 06:05:08
138.197.175.236	attack	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-03 22:06:06
138.197.175.236	attackspambots	SSH login attempts.	2020-10-03 13:50:38
138.197.175.236	attack	(sshd) Failed SSH login from 138.197.175.236 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 17 09:21:01 optimus sshd[26578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 user=root Sep 17 09:21:02 optimus sshd[26578]: Failed password for root from 138.197.175.236 port 50258 ssh2 Sep 17 09:24:55 optimus sshd[27723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 user=root Sep 17 09:24:58 optimus sshd[27723]: Failed password for root from 138.197.175.236 port 59460 ssh2 Sep 17 09:28:45 optimus sshd[28869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 user=root	2020-09-17 21:44:01
138.197.175.236	attackbotsspam	TCP (SYN) 138.197.175.236:59902 -> port 6830, len 44	2020-09-17 13:54:04
138.197.175.236	attackspambots	2020-09-16T22:41:15.535501mail.standpoint.com.ua sshd[14561]: Failed password for root from 138.197.175.236 port 51788 ssh2 2020-09-16T22:44:47.998970mail.standpoint.com.ua sshd[15493]: Invalid user toor from 138.197.175.236 port 33732 2020-09-16T22:44:48.001494mail.standpoint.com.ua sshd[15493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 2020-09-16T22:44:47.998970mail.standpoint.com.ua sshd[15493]: Invalid user toor from 138.197.175.236 port 33732 2020-09-16T22:44:50.525423mail.standpoint.com.ua sshd[15493]: Failed password for invalid user toor from 138.197.175.236 port 33732 ssh2 ...	2020-09-17 05:00:50
138.197.175.236	attackspambots	DATE:2020-09-15 13:46:25, IP:138.197.175.236, PORT:ssh SSH brute force auth (docker-dc)	2020-09-15 20:16:05
138.197.175.236	attackbots	Brute%20Force%20SSH	2020-09-15 12:19:00
138.197.175.236	attackspambots	Unauthorised connection attempts on TCP3474	2020-09-15 04:26:28
138.197.175.236	attackbots	Sep 13 17:18:45 sshd\[16680\]: User root from 138.197.175.236 not allowed because not listed in AllowUsersSep 13 17:18:47 sshd\[16680\]: Failed password for invalid user root from 138.197.175.236 port 38112 ssh2 ...	2020-09-14 00:54:30
138.197.175.236	attackspam	TCP (SYN) 138.197.175.236:45407 -> port 2365, len 44	2020-09-13 16:44:06
138.197.175.236	attackbotsspam	" "	2020-09-11 01:44:15
138.197.175.236	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-10 17:05:00
138.197.175.236	attackspam	TCP (SYN) 138.197.175.236:57274 -> port 17450, len 44	2020-09-10 07:38:42
138.197.175.236	attackspam	firewall-block, port(s): 27855/tcp	2020-09-09 03:16:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.175.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40727
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.175.150.		IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:34:37 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 150.175.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 150.175.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.184.24.80	attack	IP: 185.184.24.80 ASN: AS43260 Dgn Teknoloji A.s. Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 21/10/2019 11:40:00 AM UTC	2019-10-22 01:07:17
178.63.89.68	attack	RDP_Brute_Force	2019-10-22 01:19:55
104.238.81.58	attackspambots	Oct 21 11:53:08 askasleikir sshd[907160]: Failed password for invalid user user from 104.238.81.58 port 55178 ssh2	2019-10-22 01:24:15
52.172.44.97	attack	Oct 21 03:48:57 kapalua sshd\[3072\]: Invalid user xfs from 52.172.44.97 Oct 21 03:48:57 kapalua sshd\[3072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.44.97 Oct 21 03:49:00 kapalua sshd\[3072\]: Failed password for invalid user xfs from 52.172.44.97 port 56170 ssh2 Oct 21 03:53:21 kapalua sshd\[3382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.44.97 user=root Oct 21 03:53:23 kapalua sshd\[3382\]: Failed password for root from 52.172.44.97 port 40586 ssh2	2019-10-22 01:07:54
116.111.126.69	attack	" "	2019-10-22 01:00:44
220.202.15.66	attack	2019-10-21T17:08:15.366787abusebot-5.cloudsearch.cf sshd\[7222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.202.15.66 user=root	2019-10-22 01:09:16
110.88.25.180	attackspam	Fail2Ban - FTP Abuse Attempt	2019-10-22 01:10:22
185.211.245.170	attackbotsspam	Oct 21 19:14:30 andromeda postfix/smtpd\[5845\]: warning: unknown\[185.211.245.170\]: SASL PLAIN authentication failed: authentication failure Oct 21 19:14:31 andromeda postfix/smtpd\[5960\]: warning: unknown\[185.211.245.170\]: SASL PLAIN authentication failed: authentication failure Oct 21 19:14:33 andromeda postfix/smtpd\[1711\]: warning: unknown\[185.211.245.170\]: SASL PLAIN authentication failed: authentication failure Oct 21 19:14:34 andromeda postfix/smtpd\[5845\]: warning: unknown\[185.211.245.170\]: SASL PLAIN authentication failed: authentication failure Oct 21 19:14:34 andromeda postfix/smtpd\[1711\]: warning: unknown\[185.211.245.170\]: SASL PLAIN authentication failed: authentication failure	2019-10-22 01:19:24
212.129.24.77	attackbots	firewall-block, port(s): 5060/udp	2019-10-22 00:50:54
94.64.78.3	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.64.78.3/ GR - 1H : (53) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GR NAME ASN : ASN6799 IP : 94.64.78.3 CIDR : 94.64.0.0/16 PREFIX COUNT : 159 UNIQUE IP COUNT : 1819904 ATTACKS DETECTED ASN6799 : 1H - 2 3H - 2 6H - 3 12H - 4 24H - 7 DateTime : 2019-10-21 13:39:38 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-22 01:22:15
90.48.103.198	attackbots	SSH Scan	2019-10-22 01:22:49
92.222.90.130	attackspam	(sshd) Failed SSH login from 92.222.90.130 (FR/France/130.ip-92-222-90.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 21 13:24:37 server2 sshd[3746]: Failed password for root from 92.222.90.130 port 46674 ssh2 Oct 21 13:32:33 server2 sshd[3993]: Invalid user lucas from 92.222.90.130 port 52690 Oct 21 13:32:35 server2 sshd[3993]: Failed password for invalid user lucas from 92.222.90.130 port 52690 ssh2 Oct 21 13:36:14 server2 sshd[4072]: Failed password for root from 92.222.90.130 port 35612 ssh2 Oct 21 13:39:49 server2 sshd[4137]: Failed password for root from 92.222.90.130 port 46752 ssh2	2019-10-22 01:15:24
88.218.16.240	attackspam	Oct 21 13:35:53 mc1 kernel: \[2944107.348982\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=88.218.16.240 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=58429 PROTO=TCP SPT=56880 DPT=3480 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 21 13:38:06 mc1 kernel: \[2944240.423870\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=88.218.16.240 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=18333 PROTO=TCP SPT=56880 DPT=3706 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 21 13:39:47 mc1 kernel: \[2944341.108665\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=88.218.16.240 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=41007 PROTO=TCP SPT=56880 DPT=4964 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-22 01:18:08
42.236.220.141	attack	Time: Mon Oct 21 08:58:14 2019 -0300 IP: 42.236.220.141 (CN/China/hn.kd.ny.adsl) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-10-22 01:03:22
111.205.6.222	attack	Oct 21 19:24:07 server sshd\[6887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 user=root Oct 21 19:24:08 server sshd\[6887\]: Failed password for root from 111.205.6.222 port 37109 ssh2 Oct 21 19:37:32 server sshd\[11788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 user=root Oct 21 19:37:34 server sshd\[11788\]: Failed password for root from 111.205.6.222 port 47371 ssh2 Oct 21 19:42:43 server sshd\[13060\]: Invalid user bb from 111.205.6.222 Oct 21 19:42:43 server sshd\[13060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 ...	2019-10-22 01:17:36

Recently Reported IPs

138.197.174.54	138.197.173.98	138.197.174.62	138.197.175.111
138.197.175.2	138.197.176.12	118.175.175.10	138.197.176.120
138.197.175.49	138.197.176.158	138.197.173.109	138.197.176.187
138.197.176.228	138.197.176.25	138.197.176.43	138.197.177.227
118.175.175.105	138.197.178.229	138.197.178.231	138.197.177.129