138.197.188.142

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.188.208	attack	Lines containing failures of 138.197.188.208 Oct 18 23:57:51 kvm05 sshd[29315]: Did not receive identification string from 138.197.188.208 port 60826 Oct 18 23:57:51 kvm05 sshd[29317]: Did not receive identification string from 138.197.188.208 port 44214 Oct 19 00:01:27 kvm05 sshd[29572]: Invalid user postgres from 138.197.188.208 port 54130 Oct 19 00:01:27 kvm05 sshd[29573]: Invalid user postgres from 138.197.188.208 port 42510 Oct 19 00:01:27 kvm05 sshd[29572]: Received disconnect from 138.197.188.208 port 54130:11: Normal Shutdown, Thank you for playing [preauth] Oct 19 00:01:27 kvm05 sshd[29572]: Disconnected from invalid user postgres 138.197.188.208 port 54130 [preauth] Oct 19 00:01:27 kvm05 sshd[29573]: Received disconnect from 138.197.188.208 port 42510:11: Normal Shutdown, Thank you for playing [preauth] Oct 19 00:01:27 kvm05 sshd[29573]: Disconnected from invalid user postgres 138.197.188.208 port 42510 [preauth] Oct 19 00:01:54 kvm05 sshd[29592]: Invalid user ........ ------------------------------	2019-10-21 03:26:15
138.197.188.208	attackbots	Lines containing failures of 138.197.188.208 Oct 18 23:57:51 kvm05 sshd[29315]: Did not receive identification string from 138.197.188.208 port 60826 Oct 18 23:57:51 kvm05 sshd[29317]: Did not receive identification string from 138.197.188.208 port 44214 Oct 19 00:01:27 kvm05 sshd[29572]: Invalid user postgres from 138.197.188.208 port 54130 Oct 19 00:01:27 kvm05 sshd[29573]: Invalid user postgres from 138.197.188.208 port 42510 Oct 19 00:01:27 kvm05 sshd[29572]: Received disconnect from 138.197.188.208 port 54130:11: Normal Shutdown, Thank you for playing [preauth] Oct 19 00:01:27 kvm05 sshd[29572]: Disconnected from invalid user postgres 138.197.188.208 port 54130 [preauth] Oct 19 00:01:27 kvm05 sshd[29573]: Received disconnect from 138.197.188.208 port 42510:11: Normal Shutdown, Thank you for playing [preauth] Oct 19 00:01:27 kvm05 sshd[29573]: Disconnected from invalid user postgres 138.197.188.208 port 42510 [preauth] Oct 19 00:01:54 kvm05 sshd[29592]: Invalid user ........ ------------------------------	2019-10-19 14:53:29
138.197.188.101	attackspambots	$f2bV_matches	2019-10-05 18:56:56
138.197.188.101	attackspam	Sep 28 11:22:51 ws12vmsma01 sshd[4332]: Failed password for invalid user suporte from 138.197.188.101 port 38133 ssh2 Sep 28 11:26:32 ws12vmsma01 sshd[4828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 user=root Sep 28 11:26:34 ws12vmsma01 sshd[4828]: Failed password for root from 138.197.188.101 port 58951 ssh2 ...	2019-09-29 02:39:52
138.197.188.101	attack	Sep 28 02:08:29 php1 sshd\[11153\]: Invalid user sim from 138.197.188.101 Sep 28 02:08:29 php1 sshd\[11153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 Sep 28 02:08:30 php1 sshd\[11153\]: Failed password for invalid user sim from 138.197.188.101 port 44248 ssh2 Sep 28 02:12:40 php1 sshd\[11600\]: Invalid user qe from 138.197.188.101 Sep 28 02:12:40 php1 sshd\[11600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101	2019-09-28 20:28:05
138.197.188.101	attackbotsspam	Sep 25 06:51:56 www5 sshd\[47352\]: Invalid user trib from 138.197.188.101 Sep 25 06:51:56 www5 sshd\[47352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 Sep 25 06:51:58 www5 sshd\[47352\]: Failed password for invalid user trib from 138.197.188.101 port 36939 ssh2 ...	2019-09-25 15:33:45
138.197.188.101	attack	Reported by AbuseIPDB proxy server.	2019-09-24 09:11:41
138.197.188.101	attack	2019-09-21T08:00:58.096749centos sshd\[11209\]: Invalid user dimas from 138.197.188.101 port 55260 2019-09-21T08:00:58.102184centos sshd\[11209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 2019-09-21T08:01:00.395136centos sshd\[11209\]: Failed password for invalid user dimas from 138.197.188.101 port 55260 ssh2	2019-09-21 16:38:15
138.197.188.101	attackspam	2019-09-20T14:46:57.8212211495-001 sshd\[34495\]: Failed password for invalid user ecgap from 138.197.188.101 port 51640 ssh2 2019-09-20T14:59:35.4487511495-001 sshd\[35409\]: Invalid user moamede from 138.197.188.101 port 57921 2019-09-20T14:59:35.4519411495-001 sshd\[35409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 2019-09-20T14:59:37.2928711495-001 sshd\[35409\]: Failed password for invalid user moamede from 138.197.188.101 port 57921 ssh2 2019-09-20T15:03:52.0949431495-001 sshd\[35808\]: Invalid user chiency from 138.197.188.101 port 50557 2019-09-20T15:03:52.0982021495-001 sshd\[35808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 ...	2019-09-21 03:23:12
138.197.188.101	attack	Sep 16 23:49:47 mail sshd\[15961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 Sep 16 23:49:48 mail sshd\[15961\]: Failed password for invalid user nm-openconnect from 138.197.188.101 port 45027 ssh2 Sep 16 23:53:53 mail sshd\[16516\]: Invalid user spier from 138.197.188.101 port 40050 Sep 16 23:53:53 mail sshd\[16516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 Sep 16 23:53:55 mail sshd\[16516\]: Failed password for invalid user spier from 138.197.188.101 port 40050 ssh2	2019-09-17 07:30:52
138.197.188.101	attackbots	Sep 7 01:39:03 lcdev sshd\[11124\]: Invalid user abc123 from 138.197.188.101 Sep 7 01:39:03 lcdev sshd\[11124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 Sep 7 01:39:05 lcdev sshd\[11124\]: Failed password for invalid user abc123 from 138.197.188.101 port 56937 ssh2 Sep 7 01:43:27 lcdev sshd\[11504\]: Invalid user 123 from 138.197.188.101 Sep 7 01:43:27 lcdev sshd\[11504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101	2019-09-07 19:56:06
138.197.188.101	attackspam	Sep 6 17:22:32 lcdev sshd\[31422\]: Invalid user test7 from 138.197.188.101 Sep 6 17:22:32 lcdev sshd\[31422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101 Sep 6 17:22:35 lcdev sshd\[31422\]: Failed password for invalid user test7 from 138.197.188.101 port 38647 ssh2 Sep 6 17:26:52 lcdev sshd\[31781\]: Invalid user uftp from 138.197.188.101 Sep 6 17:26:52 lcdev sshd\[31781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.188.101	2019-09-07 11:33:00
138.197.188.101	attackbotsspam	Port Scan detected from 138.197.188.101 (DE/Germany/245567.cloudwaysapps.com). 4 hits in the last 255 seconds	2019-08-19 07:17:11
138.197.188.101	attackbots	Brute force SMTP login attempted. ...	2019-08-10 03:13:35
138.197.188.101	attackbotsspam	Invalid user pfdracin from 138.197.188.101 port 43033	2019-07-31 06:16:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.188.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47332
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.188.142.		IN	A

;; AUTHORITY SECTION:
.			485	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:26:49 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 142.188.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.188.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.156.164.41	attackspambots	Jul 12 04:12:24 tux-35-217 sshd\[30519\]: Invalid user user from 124.156.164.41 port 36694 Jul 12 04:12:24 tux-35-217 sshd\[30519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.164.41 Jul 12 04:12:27 tux-35-217 sshd\[30519\]: Failed password for invalid user user from 124.156.164.41 port 36694 ssh2 Jul 12 04:18:31 tux-35-217 sshd\[30572\]: Invalid user testuser from 124.156.164.41 port 39202 Jul 12 04:18:31 tux-35-217 sshd\[30572\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.164.41 ...	2019-07-12 10:22:41
191.240.38.107	attackbotsspam	failed_logins	2019-07-12 09:57:33
92.118.160.5	attackbotsspam	Port scan: Attack repeated for 24 hours	2019-07-12 10:09:38
151.80.144.39	attack	detected by Fail2Ban	2019-07-12 10:24:10
128.106.164.106	attack	Unauthorized connection attempt from IP address 128.106.164.106 on Port 445(SMB)	2019-07-12 09:51:55
190.104.245.82	attackbots	Jul 12 04:06:35 MK-Soft-Root1 sshd\[10768\]: Invalid user rafael from 190.104.245.82 port 38938 Jul 12 04:06:35 MK-Soft-Root1 sshd\[10768\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.104.245.82 Jul 12 04:06:38 MK-Soft-Root1 sshd\[10768\]: Failed password for invalid user rafael from 190.104.245.82 port 38938 ssh2 ...	2019-07-12 10:11:15
218.202.228.152	attack	Jul 12 03:39:10 rpi sshd[28562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.202.228.152 Jul 12 03:39:13 rpi sshd[28562]: Failed password for invalid user albatros from 218.202.228.152 port 62437 ssh2	2019-07-12 09:45:49
185.220.100.252	attack	Jul 12 02:03:37 lnxweb62 sshd[29903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.100.252 Jul 12 02:03:37 lnxweb62 sshd[29903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.100.252 Jul 12 02:03:38 lnxweb62 sshd[29903]: Failed password for invalid user admin from 185.220.100.252 port 1960 ssh2	2019-07-12 10:25:18
36.237.161.238	attackbotsspam	Unauthorized connection attempt from IP address 36.237.161.238 on Port 445(SMB)	2019-07-12 10:23:28
191.96.133.88	attackspam	Jul 12 03:11:20 rpi sshd[28255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.96.133.88 Jul 12 03:11:21 rpi sshd[28255]: Failed password for invalid user jdoe from 191.96.133.88 port 34950 ssh2	2019-07-12 10:10:28
167.99.46.145	attack	Jul 12 02:04:18 core01 sshd\[18519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.46.145 user=root Jul 12 02:04:20 core01 sshd\[18519\]: Failed password for root from 167.99.46.145 port 42576 ssh2 ...	2019-07-12 09:58:10
222.124.200.19	attack	Unauthorized connection attempt from IP address 222.124.200.19 on Port 445(SMB)	2019-07-12 09:57:08
37.29.88.203	attackspam	Unauthorized connection attempt from IP address 37.29.88.203 on Port 445(SMB)	2019-07-12 10:02:57
80.215.140.79	attackbots	Unauthorized connection attempt from IP address 80.215.140.79 on Port 445(SMB)	2019-07-12 09:58:30
185.174.165.13	attackspam	Unauthorized connection attempt from IP address 185.174.165.13 on Port 445(SMB)	2019-07-12 10:33:27

Recently Reported IPs

138.197.192.78	138.197.195.76	138.197.194.38	138.197.193.8
138.197.197.16	138.197.196.172	138.197.197.65	138.197.197.222
138.197.198.149	138.197.198.58	138.197.203.11	138.197.207.13
138.197.2.155	138.197.208.109	138.197.208.80	138.197.200.216
138.197.208.96	138.197.203.41	138.197.208.186	138.197.211.200