157.254.38.118

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       157.254.0.0 - 157.254.255.255
CIDR:           157.254.0.0/16
NetName:        VANTIVA
NetHandle:      NET-157-254-0-0-1
Parent:         NET157 (NET-157-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Vantiva USA Shared Services Inc. (TU-310-Z)
RegDate:        1992-02-08
Updated:        2024-01-03
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0


OrgName:        Vantiva USA Shared Services Inc.
OrgId:          TU-310-Z
Address:        4855 Peachtree Industrial Blvd., Suite 200
City:           Norcross
StateProv:      GA
PostalCode:     30092
Country:        US
RegDate:        2021-07-06
Updated:        2024-01-03
Ref:            https://rdap.arin.net/registry/entity/TU-310-Z


OrgTechHandle: RIRAD2-ARIN
OrgTechName:   RIR Admin
OrgTechPhone:  +1-818-397-8360 
OrgTechEmail:  rradmin@vantiva.com
OrgTechRef:    https://rdap.arin.net/registry/entity/RIRAD2-ARIN

OrgAbuseHandle: ABUSE8923-ARIN
OrgAbuseName:   Abuse Admin
OrgAbusePhone:  +1-818-397-8360 
OrgAbuseEmail:  Abuse@vantiva.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8923-ARIN

OrgRoutingHandle: IST36-ARIN
OrgRoutingName:   IPXO Support Team
OrgRoutingPhone:  +1 (650) 564-3425  
OrgRoutingEmail:  support@ipxo.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

# end


# start

NetRange:       157.254.0.0 - 157.254.127.255
CIDR:           157.254.0.0/17
NetName:        IPXO-157-254-0-0-17
NetHandle:      NET-157-254-0-0-2
Parent:         VANTIVA (NET-157-254-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   IPXO LLC (IL-845)
RegDate:        2022-01-12
Updated:        2024-04-23
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0



OrgName:        IPXO LLC
OrgId:          IL-845
Address:        3132 State Street
City:           Dallas
StateProv:      TX
PostalCode:     75204-3500
Country:        US
RegDate:        2021-03-25
Updated:        2025-09-10
Comment:        Geofeed https://geofeed.ipxo.com/geofeed.txt
Ref:            https://rdap.arin.net/registry/entity/IL-845


OrgAbuseHandle: IAMT1-ARIN
OrgAbuseName:   IPXO Abuse Management Team
OrgAbusePhone:  +1 (650) 934-1667 
OrgAbuseEmail:  abuse@ipxo.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IAMT1-ARIN

OrgDNSHandle: IST36-ARIN
OrgDNSName:   IPXO Support Team
OrgDNSPhone:  +1 (650) 564-3425  
OrgDNSEmail:  support@ipxo.com
OrgDNSRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

OrgTechHandle: IST36-ARIN
OrgTechName:   IPXO Support Team
OrgTechPhone:  +1 (650) 564-3425  
OrgTechEmail:  support@ipxo.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

# end


# start

NetRange:       157.254.0.0 - 157.254.127.255
CIDR:           157.254.0.0/17
NetName:        NETUTILS
NetHandle:      NET-157-254-0-0-3
Parent:         IPXO-157-254-0-0-17 (NET-157-254-0-0-2)
NetType:        Reallocated
OriginAS:       
Organization:   Internet Utilities NA LLC (DCL-577)
RegDate:        2025-01-07
Updated:        2025-01-07
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0



OrgName:        Internet Utilities NA LLC
OrgId:          DCL-577
Address:        2711 Centerville Road
City:           Wilmington
StateProv:      DE
PostalCode:     19808
Country:        US
RegDate:        2015-11-18
Updated:        2024-08-23
Ref:            https://rdap.arin.net/registry/entity/DCL-577


OrgTechHandle: IUS-ARIN
OrgTechName:   Internet Utilities Support
OrgTechPhone:  +1-650-564-3425 
OrgTechEmail:  support@netutils.io
OrgTechRef:    https://rdap.arin.net/registry/entity/IUS-ARIN

OrgAbuseHandle: IUA-ARIN
OrgAbuseName:   Internet Utilities Abuse
OrgAbusePhone:  +1-650-934-1667 
OrgAbuseEmail:  report@abuseradar.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IUA-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.254.38.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32561
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.254.38.118.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026052203 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 23 09:02:24 CST 2026
;; MSG SIZE  rcvd: 107

Host info

Host 118.38.254.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 118.38.254.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
211.181.237.103	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 06:22:25,721 INFO [amun_request_handler] PortScan Detected on Port: 445 (211.181.237.103)	2019-07-06 00:29:01
185.158.254.237	attackspam	NAME : Eunet CIDR : 185.158.254.0/24 DDoS attack Spain - block certain countries :) IP: 185.158.254.237 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-06 00:39:30
125.123.138.130	attackspam	SASL broute force	2019-07-06 00:54:13
149.202.148.185	attack	Jul 5 17:18:25 srv03 sshd\[7109\]: Invalid user sandeep from 149.202.148.185 port 41938 Jul 5 17:18:25 srv03 sshd\[7109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.148.185 Jul 5 17:18:27 srv03 sshd\[7109\]: Failed password for invalid user sandeep from 149.202.148.185 port 41938 ssh2	2019-07-06 00:44:44
200.29.248.26	attackbots	2019-07-05 02:52:03 H=(lusettitours.it) [200.29.248.26]:41123 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/200.29.248.26) 2019-07-05 02:52:03 H=(lusettitours.it) [200.29.248.26]:41123 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/200.29.248.26) 2019-07-05 02:52:04 H=(lusettitours.it) [200.29.248.26]:41123 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/200.29.248.26) ...	2019-07-06 00:48:28
92.222.77.175	attack	Jul 5 18:34:11 meumeu sshd[8047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.77.175 Jul 5 18:34:13 meumeu sshd[8047]: Failed password for invalid user mailer from 92.222.77.175 port 35464 ssh2 Jul 5 18:41:03 meumeu sshd[9245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.77.175 ...	2019-07-06 00:46:38
187.122.248.165	attack	Scanning and Vuln Attempts	2019-07-06 00:31:39
190.115.121.205	attack	Scanning and Vuln Attempts	2019-07-06 00:05:45
212.248.72.131	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 09:01:16,318 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.248.72.131)	2019-07-06 00:22:31
114.6.88.238	attackspambots	Automatic report - Web App Attack	2019-07-06 00:54:51
94.176.76.74	attackbotsspam	(Jul 5) LEN=40 TTL=244 ID=8205 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=23257 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=1290 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=15557 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=28249 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=21252 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=356 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=36595 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=65090 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=13021 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=56803 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=31130 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=14710 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=60629 DF TCP DPT=23 WINDOW=14600 SYN (Jul 4) LEN=40 TTL=244 ID=8457 DF TCP DPT=23 WINDOW=14600 SYN ...	2019-07-06 00:21:17
182.61.49.179	attackbotsspam	Jul 5 09:12:24 localhost sshd\[13509\]: Invalid user pul from 182.61.49.179 port 44178 Jul 5 09:12:24 localhost sshd\[13509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.49.179 Jul 5 09:12:26 localhost sshd\[13509\]: Failed password for invalid user pul from 182.61.49.179 port 44178 ssh2 ...	2019-07-06 00:28:37
119.29.11.214	attack	Jul 5 14:54:45 host sshd\[7888\]: Invalid user dpi from 119.29.11.214 port 54664 Jul 5 14:54:45 host sshd\[7888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.11.214 ...	2019-07-06 00:40:31
209.97.147.208	attackspam	Jul 5 13:40:02 vpn01 sshd\[21083\]: Invalid user buggalo from 209.97.147.208 Jul 5 13:40:02 vpn01 sshd\[21083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.147.208 Jul 5 13:40:04 vpn01 sshd\[21083\]: Failed password for invalid user buggalo from 209.97.147.208 port 52704 ssh2	2019-07-06 00:29:31
162.209.226.68	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 18:47:48,777 INFO [shellcode_manager] (162.209.226.68) no match, writing hexdump (afae5327112af537c003e223f6716cde :2321815) - MS17010 (EternalBlue)	2019-07-06 00:20:33

Recently Reported IPs

121.234.219.86	2606:4700:10::6814:9322	23.94.204.22	206.189.42.12
110.78.138.173	2606:4700:10::6816:510	2606:4700:10::6816:4688	185.93.89.154
183.153.102.240	2606:4700:10::6816:2151	2606:4700:10::6814:7197	2606:4700:10::6814:6667
221.207.34.16	180.95.238.114	139.212.69.208	101.71.221.1
2606:4700:10::ac43:666	94.231.206.201	94.231.206.158	2606:4700:10::6814:6450