138.197.8.158 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.89.186	attackbots	TCP ports : 5776 / 17668	2020-10-05 02:04:35
138.197.89.186	attackbots	Found on CINS badguys / proto=6 . srcport=40749 . dstport=5776 . (179)	2020-10-04 17:47:49
138.197.89.186	attackspam	firewall-block, port(s): 5776/tcp	2020-10-04 06:19:35
138.197.89.212	attackbots	Oct 3 23:08:44 ns392434 sshd[8150]: Invalid user switch from 138.197.89.212 port 57804 Oct 3 23:08:44 ns392434 sshd[8150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.212 Oct 3 23:08:44 ns392434 sshd[8150]: Invalid user switch from 138.197.89.212 port 57804 Oct 3 23:08:47 ns392434 sshd[8150]: Failed password for invalid user switch from 138.197.89.212 port 57804 ssh2 Oct 3 23:24:02 ns392434 sshd[8570]: Invalid user emma from 138.197.89.212 port 46026 Oct 3 23:24:02 ns392434 sshd[8570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.212 Oct 3 23:24:02 ns392434 sshd[8570]: Invalid user emma from 138.197.89.212 port 46026 Oct 3 23:24:03 ns392434 sshd[8570]: Failed password for invalid user emma from 138.197.89.212 port 46026 ssh2 Oct 3 23:27:18 ns392434 sshd[8607]: Invalid user kk from 138.197.89.212 port 52660	2020-10-04 06:14:03
138.197.89.186	attack	firewall-block, port(s): 17668/tcp	2020-10-03 22:23:46
138.197.89.212	attack	TCP port : 31463	2020-10-03 22:17:54
138.197.89.186	attack	TCP (SYN) 138.197.89.186:46755 -> port 17668, len 44	2020-10-03 14:05:55
138.197.89.212	attack	Port Scan ...	2020-09-27 03:48:10
138.197.89.212	attackbots	Found on Github Combined on 5 lists / proto=6 . srcport=41551 . dstport=15396 . (2093)	2020-09-26 19:48:54
138.197.89.212	attackspambots	Port scan denied	2020-09-07 14:17:53
138.197.89.212	attackspambots	k+ssh-bruteforce	2020-09-07 06:50:31
138.197.89.212	attack	Invalid user csserver from 138.197.89.212 port 37082	2020-08-28 06:04:41
138.197.89.186	attack	TCP (SYN) 138.197.89.186:53280 -> port 7212, len 44	2020-08-27 04:25:20
138.197.89.212	attack	TCP (SYN) 138.197.89.212:48259 -> port 29806, len 44	2020-08-26 23:43:27
138.197.89.212	attackbots	Invalid user csserver from 138.197.89.212 port 37082	2020-08-25 06:51:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.8.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10070
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.8.158.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:35:55 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 158.8.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.8.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.225.126.55	attackbots	2020-05-28T04:54:31.793498shield sshd\[24817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 user=root 2020-05-28T04:54:34.540553shield sshd\[24817\]: Failed password for root from 220.225.126.55 port 51712 ssh2 2020-05-28T04:58:58.117197shield sshd\[25701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 user=root 2020-05-28T04:58:59.519274shield sshd\[25701\]: Failed password for root from 220.225.126.55 port 57432 ssh2 2020-05-28T05:03:23.179014shield sshd\[26497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 user=root	2020-05-28 13:05:10
118.70.67.52	attack	2020-05-28T05:49:23.423918ns386461 sshd\[11034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.67.52 user=root 2020-05-28T05:49:25.669782ns386461 sshd\[11034\]: Failed password for root from 118.70.67.52 port 54426 ssh2 2020-05-28T05:53:54.070083ns386461 sshd\[14929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.67.52 user=root 2020-05-28T05:53:55.849855ns386461 sshd\[14929\]: Failed password for root from 118.70.67.52 port 60722 ssh2 2020-05-28T05:57:55.276908ns386461 sshd\[18500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.67.52 user=root ...	2020-05-28 12:39:03
35.220.162.79	attackspambots	SSH login attempts.	2020-05-28 13:15:02
128.199.69.169	attackspam	Brute force SMTP login attempted. ...	2020-05-28 12:47:12
46.218.7.227	attackbots	SSH Honeypot -> SSH Bruteforce / Login	2020-05-28 12:41:38
212.64.54.49	attack	$f2bV_matches	2020-05-28 13:10:49
18.218.35.7	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-05-28 13:00:52
173.205.13.236	attack	2020-05-28T04:12:55.444423abusebot-8.cloudsearch.cf sshd[24409]: Invalid user test from 173.205.13.236 port 34254 2020-05-28T04:12:55.453421abusebot-8.cloudsearch.cf sshd[24409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.205.13.236 2020-05-28T04:12:55.444423abusebot-8.cloudsearch.cf sshd[24409]: Invalid user test from 173.205.13.236 port 34254 2020-05-28T04:12:57.543865abusebot-8.cloudsearch.cf sshd[24409]: Failed password for invalid user test from 173.205.13.236 port 34254 ssh2 2020-05-28T04:17:01.177532abusebot-8.cloudsearch.cf sshd[24612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.205.13.236 user=root 2020-05-28T04:17:03.037065abusebot-8.cloudsearch.cf sshd[24612]: Failed password for root from 173.205.13.236 port 37806 ssh2 2020-05-28T04:21:02.643190abusebot-8.cloudsearch.cf sshd[24821]: Invalid user support from 173.205.13.236 port 41362 ...	2020-05-28 12:47:55
128.199.79.158	attack	Invalid user harrison from 128.199.79.158 port 50400	2020-05-28 13:04:03
151.80.67.240	attackspambots	SSH login attempts.	2020-05-28 13:03:13
195.54.160.180	attack	SSH login attempts.	2020-05-28 12:50:43
121.165.66.226	attackbots	$f2bV_matches	2020-05-28 12:42:44
177.237.72.162	attackspambots	SSH login attempts.	2020-05-28 13:09:28
54.38.177.98	attackbotsspam	May 28 06:57:34 vps639187 sshd\[14840\]: Invalid user data from 54.38.177.98 port 59156 May 28 06:57:34 vps639187 sshd\[14840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.177.98 May 28 06:57:36 vps639187 sshd\[14840\]: Failed password for invalid user data from 54.38.177.98 port 59156 ssh2 ...	2020-05-28 13:13:38
167.172.128.22	attack	2020-05-28T05:14:22.282853Z 0373404b519f New connection: 167.172.128.22:32798 (172.17.0.3:2222) [session: 0373404b519f] 2020-05-28T05:14:43.016770Z fd90513c21b3 New connection: 167.172.128.22:46716 (172.17.0.3:2222) [session: fd90513c21b3]	2020-05-28 13:20:00

Recently Reported IPs

138.197.78.253	138.197.8.176	138.197.8.180	138.197.8.186
118.175.175.170	138.197.8.23	138.197.8.243	138.197.8.250
138.197.8.253	138.197.8.239	138.197.8.60	138.197.8.76
138.197.8.79	138.197.80.42	118.175.175.174	138.197.82.67
138.197.8.81	138.197.89.66	138.197.82.182	138.197.83.110