138.197.199.158

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.199.249	attack	Nov 22 09:22:28 dallas01 sshd[22802]: Failed password for backup from 138.197.199.249 port 37951 ssh2 Nov 22 09:28:31 dallas01 sshd[23802]: Failed password for root from 138.197.199.249 port 55944 ssh2	2020-01-28 09:10:32
138.197.199.249	attack	Nov 25 07:39:41 ny01 sshd[25197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 Nov 25 07:39:43 ny01 sshd[25197]: Failed password for invalid user simon from 138.197.199.249 port 44820 ssh2 Nov 25 07:42:52 ny01 sshd[25490]: Failed password for root from 138.197.199.249 port 34081 ssh2	2019-11-25 20:46:22
138.197.199.249	attack	Nov 16 08:27:23 ncomp sshd[1976]: Invalid user home from 138.197.199.249 Nov 16 08:27:23 ncomp sshd[1976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 Nov 16 08:27:23 ncomp sshd[1976]: Invalid user home from 138.197.199.249 Nov 16 08:27:25 ncomp sshd[1976]: Failed password for invalid user home from 138.197.199.249 port 59156 ssh2	2019-11-16 16:17:14
138.197.199.249	attack	Nov 15 15:42:42 meumeu sshd[10060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 Nov 15 15:42:45 meumeu sshd[10060]: Failed password for invalid user thorsteinsen from 138.197.199.249 port 48292 ssh2 Nov 15 15:45:58 meumeu sshd[10479]: Failed password for root from 138.197.199.249 port 37908 ssh2 ...	2019-11-15 22:49:04
138.197.199.249	attackbots	Nov 14 13:39:02 sachi sshd\[14303\]: Invalid user abcdefghijklmno from 138.197.199.249 Nov 14 13:39:02 sachi sshd\[14303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 Nov 14 13:39:04 sachi sshd\[14303\]: Failed password for invalid user abcdefghijklmno from 138.197.199.249 port 58829 ssh2 Nov 14 13:42:27 sachi sshd\[14661\]: Invalid user hege from 138.197.199.249 Nov 14 13:42:27 sachi sshd\[14661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249	2019-11-15 07:50:50
138.197.199.249	attackbots	Nov 14 00:20:41 wbs sshd\[17952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 user=backup Nov 14 00:20:43 wbs sshd\[17952\]: Failed password for backup from 138.197.199.249 port 33559 ssh2 Nov 14 00:23:50 wbs sshd\[18210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 user=root Nov 14 00:23:53 wbs sshd\[18210\]: Failed password for root from 138.197.199.249 port 51354 ssh2 Nov 14 00:27:05 wbs sshd\[18482\]: Invalid user michalsen from 138.197.199.249 Nov 14 00:27:05 wbs sshd\[18482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249	2019-11-14 18:34:08
138.197.199.249	attack	k+ssh-bruteforce	2019-11-09 16:59:30
138.197.199.249	attackspambots	Nov 7 14:49:17 mail sshd\[10002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 user=root ...	2019-11-08 06:35:12
138.197.199.249	attackbotsspam	Nov 5 13:36:53 ws19vmsma01 sshd[77290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 Nov 5 13:36:54 ws19vmsma01 sshd[77290]: Failed password for invalid user mainastcheck from 138.197.199.249 port 53497 ssh2 ...	2019-11-06 02:59:29
138.197.199.249	attack	Nov 4 06:38:41 ip-172-31-1-72 sshd\[16809\]: Invalid user prasobsub from 138.197.199.249 Nov 4 06:38:41 ip-172-31-1-72 sshd\[16809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 Nov 4 06:38:43 ip-172-31-1-72 sshd\[16809\]: Failed password for invalid user prasobsub from 138.197.199.249 port 54096 ssh2 Nov 4 06:42:02 ip-172-31-1-72 sshd\[16956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 user=root Nov 4 06:42:04 ip-172-31-1-72 sshd\[16956\]: Failed password for root from 138.197.199.249 port 44557 ssh2	2019-11-04 15:05:57
138.197.199.249	attackbots	2019-11-02T14:46:59.565135abusebot-3.cloudsearch.cf sshd\[14004\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.199.249 user=root	2019-11-03 01:56:50
138.197.199.249	attackbots	Automatic report - Banned IP Access	2019-10-25 21:22:18
138.197.199.249	attackbots	$f2bV_matches	2019-10-14 12:43:06
138.197.199.249	attackbotsspam	Sep 27 00:14:42 plusreed sshd[20679]: Invalid user nscd from 138.197.199.249 ...	2019-09-27 12:28:13
138.197.199.249	attackspam	Sep 26 21:08:20 plusreed sshd[11049]: Invalid user simulation from 138.197.199.249 ...	2019-09-27 09:26:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.199.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24567
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.199.158.		IN	A

;; AUTHORITY SECTION:
.			366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101101 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 12 07:42:56 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 158.199.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.199.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.252.164.246	attackbotsspam	Sep 28 07:16:03 rocket sshd[2945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.164.246 Sep 28 07:16:06 rocket sshd[2945]: Failed password for invalid user ralph from 106.252.164.246 port 58161 ssh2 ...	2020-09-28 18:27:14
197.53.245.138	attack	23/tcp [2020-09-27]1pkt	2020-09-28 18:01:15
137.74.171.160	attack	Sep 28 00:29:28 web1 sshd\[3658\]: Invalid user vendas from 137.74.171.160 Sep 28 00:29:28 web1 sshd\[3658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.171.160 Sep 28 00:29:29 web1 sshd\[3658\]: Failed password for invalid user vendas from 137.74.171.160 port 39828 ssh2 Sep 28 00:33:51 web1 sshd\[3988\]: Invalid user admin from 137.74.171.160 Sep 28 00:33:51 web1 sshd\[3988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.171.160	2020-09-28 18:34:03
222.186.173.215	attack	Sep 28 08:32:03 ip106 sshd[32033]: Failed password for root from 222.186.173.215 port 4430 ssh2 Sep 28 08:32:07 ip106 sshd[32033]: Failed password for root from 222.186.173.215 port 4430 ssh2 ...	2020-09-28 18:21:59
194.118.192.27	attack	Sep 28 05:41:41 xeon sshd[15152]: Failed password for invalid user magento from 194.118.192.27 port 53574 ssh2	2020-09-28 18:00:47
193.70.0.42	attack	Sep 28 10:48:30 santamaria sshd\[7514\]: Invalid user ali from 193.70.0.42 Sep 28 10:48:30 santamaria sshd\[7514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.42 Sep 28 10:48:31 santamaria sshd\[7514\]: Failed password for invalid user ali from 193.70.0.42 port 35792 ssh2 ...	2020-09-28 18:17:46
106.12.208.211	attackspam	sshd: Failed password for invalid user .... from 106.12.208.211 port 42528 ssh2 (5 attempts)	2020-09-28 18:11:36
74.120.14.31	attackspam	Found on CINS badguys / proto=6 . srcport=56583 . dstport=2 . (114)	2020-09-28 18:24:45
91.184.87.105	attackspam	37215/tcp [2020-09-27]1pkt	2020-09-28 18:22:40
37.247.209.178	attackbotsspam	Sep 28 11:42:16 vpn01 sshd[3570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.247.209.178 Sep 28 11:42:17 vpn01 sshd[3570]: Failed password for invalid user ts from 37.247.209.178 port 56770 ssh2 ...	2020-09-28 18:03:36
106.55.195.243	attackspam	Sep 28 09:25:21 nextcloud sshd\[8611\]: Invalid user pdv from 106.55.195.243 Sep 28 09:25:21 nextcloud sshd\[8611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.195.243 Sep 28 09:25:23 nextcloud sshd\[8611\]: Failed password for invalid user pdv from 106.55.195.243 port 46198 ssh2	2020-09-28 18:24:26
202.83.45.72	attackspambots	[MK-Root1] Blocked by UFW	2020-09-28 18:08:23
209.97.183.120	attack	Sep 28 05:51:05 ws24vmsma01 sshd[116895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.183.120 Sep 28 05:51:07 ws24vmsma01 sshd[116895]: Failed password for invalid user ubuntu from 209.97.183.120 port 54736 ssh2 ...	2020-09-28 18:17:33
100.24.255.182	attackbots	100.24.255.182 - - [28/Sep/2020:01:30:15 +0100] "POST /wp-login.php HTTP/1.1" 200 8183 "-" "Mozilla/5.0" 100.24.255.182 - - [28/Sep/2020:01:30:15 +0100] "POST /wp-login.php HTTP/1.1" 200 8346 "-" "Mozilla/5.0" 100.24.255.182 - - [28/Sep/2020:01:30:15 +0100] "POST /wp-login.php HTTP/1.1" 200 8334 "-" "Mozilla/5.0" ...	2020-09-28 18:02:39
45.125.222.120	attack	Sep 28 05:33:52 ip106 sshd[26049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.222.120 Sep 28 05:33:54 ip106 sshd[26049]: Failed password for invalid user ubuntu from 45.125.222.120 port 39236 ssh2 ...	2020-09-28 18:10:42

Recently Reported IPs

2.178.118.108	177.47.248.69	153.230.126.120	86.94.40.93
124.207.36.194	77.236.248.8	76.222.149.153	85.105.86.49
84.193.204.37	177.37.166.80	176.31.253.102	111.255.143.49
103.238.185.23	190.121.146.178	200.194.60.96	178.176.165.59
77.42.119.212	202.86.133.66	213.135.68.74	164.177.54.185