138.197.214.10

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.214.200	attackbots	[MK-VM5] Blocked by UFW	2020-09-28 07:37:51
138.197.214.200	attackbotsspam	[MK-VM5] Blocked by UFW	2020-09-28 00:09:42
138.197.214.200	attackspambots	[MK-VM5] Blocked by UFW	2020-09-27 16:11:15
138.197.214.200	attack	Hits on port : 9306(x2)	2020-05-28 05:15:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.214.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.214.10.			IN	A

;; AUTHORITY SECTION:
.			129	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:53:58 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 10.214.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 10.214.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.153.196.226	attack	200602 2:54:04 [Warning] Access denied for user 'root'@'185.153.196.226' (using password: YES) 200602 2:56:00 [Warning] Access denied for user 'root'@'185.153.196.226' (using password: YES) 200602 3:01:33 [Warning] Access denied for user 'root'@'185.153.196.226' (using password: YES) ...	2020-06-02 15:45:53
128.14.134.134	attack	nginx/IPasHostname/a4a6f	2020-06-02 15:32:40
116.105.227.65	attack	Unauthorized connection attempt from IP address 116.105.227.65 on Port 445(SMB)	2020-06-02 15:59:40
187.60.214.234	attackbots	Jun 2 05:58:33 hcbbdb sshd\[14987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.60.214.234 user=root Jun 2 05:58:35 hcbbdb sshd\[14987\]: Failed password for root from 187.60.214.234 port 41128 ssh2 Jun 2 06:03:15 hcbbdb sshd\[15411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.60.214.234 user=root Jun 2 06:03:16 hcbbdb sshd\[15411\]: Failed password for root from 187.60.214.234 port 45820 ssh2 Jun 2 06:07:49 hcbbdb sshd\[15809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.60.214.234 user=root	2020-06-02 15:49:25
41.40.13.204	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-02 15:29:43
197.156.66.178	attackspambots	May 11 22:08:02 localhost sshd[998865]: Invalid user tibero from 197.156.66.178 port 44232 May 11 22:08:02 localhost sshd[998865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.66.178 May 11 22:08:02 localhost sshd[998865]: Invalid user tibero from 197.156.66.178 port 44232 May 11 22:08:03 localhost sshd[998865]: Failed password for invalid user tibero from 197.156.66.178 port 44232 ssh2 May 11 22:16:28 localhost sshd[1001266]: Invalid user bhostnamecoin from 197.156.66.178 port 36184 May 11 22:16:28 localhost sshd[1001266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.66.178 May 11 22:16:28 localhost sshd[1001266]: Invalid user bhostnamecoin from 197.156.66.178 port 36184 May 11 22:16:30 localhost sshd[1001266]: Failed password for invalid user bhostnamecoin from 197.156.66.178 port 36184 ssh2 May 11 22:19:49 localhost sshd[1001442]: Invalid user daw from 197.156.66.17........ ------------------------------	2020-06-02 16:08:21
51.77.151.147	attack	Jun 2 12:43:31 gw1 sshd[17913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.151.147 Jun 2 12:43:33 gw1 sshd[17913]: Failed password for invalid user minecraft from 51.77.151.147 port 54760 ssh2 ...	2020-06-02 15:54:03
125.214.60.142	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-02 16:03:13
185.209.0.18	attackbotsspam	firewall-block, port(s): 3324/tcp, 3345/tcp, 3378/tcp	2020-06-02 16:10:20
78.140.7.9	attackbotsspam	(imapd) Failed IMAP login from 78.140.7.9 (RU/Russia/n7-c9.client.tomica.ru): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 2 11:22:58 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=78.140.7.9, lip=5.63.12.44, session=	2020-06-02 15:41:37
59.36.83.249	attack	Jun 2 06:17:34 ajax sshd[30188]: Failed password for root from 59.36.83.249 port 50735 ssh2	2020-06-02 15:37:29
58.87.67.226	attack	Jun 2 08:45:08 serwer sshd\[13081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.67.226 user=root Jun 2 08:45:10 serwer sshd\[13081\]: Failed password for root from 58.87.67.226 port 38474 ssh2 Jun 2 08:49:20 serwer sshd\[13452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.67.226 user=root ...	2020-06-02 15:37:49
112.85.42.180	attack	Jun 2 09:10:33 vpn01 sshd[32110]: Failed password for root from 112.85.42.180 port 50375 ssh2 Jun 2 09:10:37 vpn01 sshd[32110]: Failed password for root from 112.85.42.180 port 50375 ssh2 ...	2020-06-02 15:29:14
195.231.3.155	attack	Jun 2 08:47:20 ncomp postfix/smtpd[13338]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 2 09:08:08 ncomp postfix/smtpd[13975]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 2 09:28:56 ncomp postfix/smtpd[14547]: warning: unknown[195.231.3.155]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-02 15:45:22
166.170.220.240	attackbotsspam	Brute forcing email accounts	2020-06-02 15:52:29

Recently Reported IPs

138.197.207.178	138.197.214.8	138.197.214.0	138.197.219.212
138.197.215.143	138.197.221.78	138.197.219.37	138.197.218.138
138.197.214.3	138.197.223.147	138.197.223.7	138.197.220.193
138.197.225.149	138.197.226.235	138.197.225.191	138.197.224.97
138.197.225.200	138.197.226.77	138.197.227.10	138.197.226.38