City: Los Angeles
Region: California
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 138.198.0.0 - 138.199.95.255
CIDR: 138.199.0.0/18, 138.199.64.0/19, 138.198.0.0/16
NetName: RIPE-ERX-138-198-0-0
NetHandle: NET-138-198-0-0-1
Parent: NET138 (NET-138-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2003-12-11
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/138.198.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.199.35.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2966
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.199.35.5. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101001 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 11 03:30:03 CST 2025
;; MSG SIZE rcvd: 1055.35.199.138.in-addr.arpa domain name pointer unn-138-199-35-5.datapacket.com.
b'5.35.199.138.in-addr.arpa name = unn-138-199-35-5.datapacket.com.
Authoritative answers can be found from:
'| IP | Type | Details | Datetime |
|---|---|---|---|
| 37.49.229.169 | attack | \[2019-12-01 18:37:05\] SECURITY\[15511\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-01T18:37:05.059+0100",Severity="Error",Service="SIP",EventVersion="2",AccountID="100",SessionID="0x7fcd8cae9d18",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/37.49.229.169/5687",Challenge="458002e1",ReceivedChallenge="458002e1",ReceivedHash="0ca5799b26287de1c3d4e4b9605b8204" \[2019-12-01 18:37:05\] SECURITY\[15511\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-01T18:37:05.707+0100",Severity="Error",Service="SIP",EventVersion="2",AccountID="100",SessionID="0x7fcd8c97fb58",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/37.49.229.169/5687",Challenge="66faae06",ReceivedChallenge="66faae06",ReceivedHash="4bcb14a7d9ffe3e2861b0a2f03f7154b" \[2019-12-01 18:37:05\] SECURITY\[15511\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-01T18:37:05.803+0100",Severity="Error",Service="SIP",EventVersion="2",Acc ... |
2019-12-02 03:16:10 |
| 146.4.22.190 | attack | Login trials |
2019-12-02 03:07:40 |
| 222.188.109.227 | attack | Dec 1 09:51:19 ny01 sshd[28527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.188.109.227 Dec 1 09:51:21 ny01 sshd[28527]: Failed password for invalid user capotira from 222.188.109.227 port 38536 ssh2 Dec 1 09:55:24 ny01 sshd[29300]: Failed password for root from 222.188.109.227 port 42424 ssh2 |
2019-12-02 03:20:49 |
| 118.25.101.161 | attack | Dec 1 18:55:17 vmd17057 sshd\[20128\]: Invalid user kc from 118.25.101.161 port 58164 Dec 1 18:55:17 vmd17057 sshd\[20128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.101.161 Dec 1 18:55:20 vmd17057 sshd\[20128\]: Failed password for invalid user kc from 118.25.101.161 port 58164 ssh2 ... |
2019-12-02 03:23:01 |
| 162.144.217.210 | attack | Automatic report - XMLRPC Attack |
2019-12-02 03:18:39 |
| 112.215.141.101 | attackspambots | Dec 1 08:09:17 sshd: Connection from 112.215.141.101 port 33662 Dec 1 08:09:18 sshd: Invalid user odroid from 112.215.141.101 Dec 1 08:09:18 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.141.101 Dec 1 08:09:20 sshd: Failed password for invalid user odroid from 112.215.141.101 port 33662 ssh2 Dec 1 08:09:21 sshd: Received disconnect from 112.215.141.101: 11: Bye Bye [preauth] |
2019-12-02 03:22:06 |
| 195.24.207.199 | attack | Dec 1 12:31:40 TORMINT sshd\[26426\]: Invalid user alumni from 195.24.207.199 Dec 1 12:31:40 TORMINT sshd\[26426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.24.207.199 Dec 1 12:31:41 TORMINT sshd\[26426\]: Failed password for invalid user alumni from 195.24.207.199 port 58156 ssh2 ... |
2019-12-02 03:19:02 |
| 159.203.169.16 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-02 03:13:50 |
| 46.229.168.130 | attackspam | 12/01/2019-15:39:32.414026 46.229.168.130 Protocol: 6 GPL WEB_SERVER .htaccess access |
2019-12-02 03:15:48 |
| 104.236.224.69 | attackspambots | Dec 1 15:37:59 firewall sshd[10014]: Invalid user haliegh from 104.236.224.69 Dec 1 15:38:02 firewall sshd[10014]: Failed password for invalid user haliegh from 104.236.224.69 port 35775 ssh2 Dec 1 15:40:51 firewall sshd[10064]: Invalid user sale from 104.236.224.69 ... |
2019-12-02 03:26:49 |
| 222.186.175.181 | attackspambots | $f2bV_matches |
2019-12-02 03:09:07 |
| 140.143.241.251 | attackbots | 5x Failed Password |
2019-12-02 02:58:01 |
| 45.235.162.183 | attackspam | Dec 1 14:35:33 venus sshd\[31756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.162.183 user=root Dec 1 14:35:35 venus sshd\[31756\]: Failed password for root from 45.235.162.183 port 39622 ssh2 Dec 1 14:39:17 venus sshd\[31880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.162.183 user=root ... |
2019-12-02 03:27:43 |
| 220.86.166.7 | attack | Dec 1 19:01:49 cvbnet sshd[18986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.86.166.7 Dec 1 19:01:51 cvbnet sshd[18986]: Failed password for invalid user vs from 220.86.166.7 port 38368 ssh2 ... |
2019-12-02 02:46:14 |
| 17.133.234.33 | attack | Dec 1 05:06:23 17.133.234.33 PROTO=UDP SPT=16387 DPT=16403 Dec 1 05:06:23 17.133.234.33 PROTO=UDP SPT=16387 DPT=16403 Dec 1 05:06:23 17.133.234.33 PROTO=UDP SPT=16387 DPT=16403 Dec 1 05:06:25 17.133.234.33 PROTO=UDP SPT=16387 DPT=16403 Dec 1 05:06:25 17.133.234.33 PROTO=UDP SPT=16387 DPT=16403 |
2019-12-02 03:14:55 |