157.254.38.189

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       157.254.0.0 - 157.254.255.255
CIDR:           157.254.0.0/16
NetName:        VANTIVA
NetHandle:      NET-157-254-0-0-1
Parent:         NET157 (NET-157-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Vantiva USA Shared Services Inc. (TU-310-Z)
RegDate:        1992-02-08
Updated:        2024-01-03
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0


OrgName:        Vantiva USA Shared Services Inc.
OrgId:          TU-310-Z
Address:        4855 Peachtree Industrial Blvd., Suite 200
City:           Norcross
StateProv:      GA
PostalCode:     30092
Country:        US
RegDate:        2021-07-06
Updated:        2024-01-03
Ref:            https://rdap.arin.net/registry/entity/TU-310-Z


OrgRoutingHandle: IST36-ARIN
OrgRoutingName:   IPXO Support Team
OrgRoutingPhone:  +1 (650) 564-3425  
OrgRoutingEmail:  support@ipxo.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

OrgAbuseHandle: ABUSE8923-ARIN
OrgAbuseName:   Abuse Admin
OrgAbusePhone:  +1-818-397-8360 
OrgAbuseEmail:  Abuse@vantiva.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8923-ARIN

OrgTechHandle: RIRAD2-ARIN
OrgTechName:   RIR Admin
OrgTechPhone:  +1-818-397-8360 
OrgTechEmail:  rradmin@vantiva.com
OrgTechRef:    https://rdap.arin.net/registry/entity/RIRAD2-ARIN

# end


# start

NetRange:       157.254.0.0 - 157.254.127.255
CIDR:           157.254.0.0/17
NetName:        IPXO-157-254-0-0-17
NetHandle:      NET-157-254-0-0-2
Parent:         VANTIVA (NET-157-254-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   IPXO LLC (IL-845)
RegDate:        2022-01-12
Updated:        2024-04-23
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0


OrgName:        IPXO LLC
OrgId:          IL-845
Address:        3132 State Street
City:           Dallas
StateProv:      TX
PostalCode:     75204-3500
Country:        US
RegDate:        2021-03-25
Updated:        2025-09-10
Comment:        Geofeed https://geofeed.ipxo.com/geofeed.txt
Ref:            https://rdap.arin.net/registry/entity/IL-845


OrgAbuseHandle: IAMT1-ARIN
OrgAbuseName:   IPXO Abuse Management Team
OrgAbusePhone:  +1 (650) 934-1667 
OrgAbuseEmail:  abuse@ipxo.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IAMT1-ARIN

OrgTechHandle: IST36-ARIN
OrgTechName:   IPXO Support Team
OrgTechPhone:  +1 (650) 564-3425  
OrgTechEmail:  support@ipxo.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

OrgDNSHandle: IST36-ARIN
OrgDNSName:   IPXO Support Team
OrgDNSPhone:  +1 (650) 564-3425  
OrgDNSEmail:  support@ipxo.com
OrgDNSRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

# end


# start

NetRange:       157.254.0.0 - 157.254.127.255
CIDR:           157.254.0.0/17
NetName:        NETUTILS
NetHandle:      NET-157-254-0-0-3
Parent:         IPXO-157-254-0-0-17 (NET-157-254-0-0-2)
NetType:        Reallocated
OriginAS:       
Organization:   Internet Utilities NA LLC (DCL-577)
RegDate:        2025-01-07
Updated:        2025-01-07
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0



OrgName:        Internet Utilities NA LLC
OrgId:          DCL-577
Address:        2711 Centerville Road
City:           Wilmington
StateProv:      DE
PostalCode:     19808
Country:        US
RegDate:        2015-11-18
Updated:        2024-08-23
Ref:            https://rdap.arin.net/registry/entity/DCL-577


OrgTechHandle: IUS-ARIN
OrgTechName:   Internet Utilities Support
OrgTechPhone:  +1-650-564-3425 
OrgTechEmail:  support@netutils.io
OrgTechRef:    https://rdap.arin.net/registry/entity/IUS-ARIN

OrgAbuseHandle: IUA-ARIN
OrgAbuseName:   Internet Utilities Abuse
OrgAbusePhone:  +1-650-934-1667 
OrgAbuseEmail:  report@abuseradar.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IUA-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.254.38.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43145
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.254.38.189.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025112901 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 29 14:41:08 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 189.38.254.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.38.254.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.206.30.76	attackbots	Dec 12 09:28:39 fr01 sshd[3111]: Invalid user somekawa from 123.206.30.76 Dec 12 09:28:39 fr01 sshd[3111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.30.76 Dec 12 09:28:39 fr01 sshd[3111]: Invalid user somekawa from 123.206.30.76 Dec 12 09:28:40 fr01 sshd[3111]: Failed password for invalid user somekawa from 123.206.30.76 port 35278 ssh2 ...	2019-12-12 17:53:00
222.186.173.180	attackspam	Dec 12 00:03:51 auw2 sshd\[20330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Dec 12 00:03:53 auw2 sshd\[20330\]: Failed password for root from 222.186.173.180 port 33594 ssh2 Dec 12 00:04:02 auw2 sshd\[20330\]: Failed password for root from 222.186.173.180 port 33594 ssh2 Dec 12 00:04:05 auw2 sshd\[20330\]: Failed password for root from 222.186.173.180 port 33594 ssh2 Dec 12 00:04:09 auw2 sshd\[20372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root	2019-12-12 18:09:52
113.161.160.93	attackspam	Helo	2019-12-12 18:21:44
213.154.3.69	attack	Port Scan	2019-12-12 18:00:45
178.128.21.38	attackbots	Dec 12 09:50:17 web8 sshd\[3006\]: Invalid user kernel123 from 178.128.21.38 Dec 12 09:50:17 web8 sshd\[3006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.38 Dec 12 09:50:19 web8 sshd\[3006\]: Failed password for invalid user kernel123 from 178.128.21.38 port 36250 ssh2 Dec 12 09:56:45 web8 sshd\[6293\]: Invalid user headache from 178.128.21.38 Dec 12 09:56:45 web8 sshd\[6293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.38	2019-12-12 18:07:12
106.12.100.73	attackspam	Dec 12 04:46:58 linuxvps sshd\[45665\]: Invalid user rpm from 106.12.100.73 Dec 12 04:46:58 linuxvps sshd\[45665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.100.73 Dec 12 04:46:59 linuxvps sshd\[45665\]: Failed password for invalid user rpm from 106.12.100.73 port 59542 ssh2 Dec 12 04:53:25 linuxvps sshd\[49497\]: Invalid user git from 106.12.100.73 Dec 12 04:53:25 linuxvps sshd\[49497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.100.73	2019-12-12 17:54:56
68.34.15.8	attackbotsspam	SSH bruteforce	2019-12-12 18:01:58
178.88.115.126	attackbotsspam	Dec 12 10:56:31 MK-Soft-VM5 sshd[10101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.88.115.126 Dec 12 10:56:33 MK-Soft-VM5 sshd[10101]: Failed password for invalid user dl from 178.88.115.126 port 36502 ssh2 ...	2019-12-12 18:02:46
92.63.194.1	attackspam	this IP tries since days to connect via VPN	2019-12-12 18:06:07
148.70.77.22	attackbotsspam	Dec 12 10:59:02 dev0-dcde-rnet sshd[9957]: Failed password for root from 148.70.77.22 port 35624 ssh2 Dec 12 11:07:19 dev0-dcde-rnet sshd[10001]: Failed password for root from 148.70.77.22 port 59296 ssh2	2019-12-12 18:14:26
54.36.235.210	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-12 18:28:36
104.129.4.229	attackspam	(From eric@talkwithcustomer.com) Hello knutsonchiropractic.com, People ask, “why does TalkWithCustomer work so well?” It’s simple. TalkWithCustomer enables you to connect with a prospective customer at EXACTLY the Perfect Time. - NOT one week, two weeks, three weeks after they’ve checked out your website knutsonchiropractic.com. - NOT with a form letter style email that looks like it was written by a bot. - NOT with a robocall that could come at any time out of the blue. TalkWithCustomer connects you to that person within seconds of THEM asking to hear from YOU. They kick off the conversation. They take that first step. They ask to hear from you regarding what you have to offer and how it can make their life better. And it happens almost immediately. In real time. While they’re still looking over your website knutsonchiropractic.com, trying to make up their mind whether you are right for them. When you connect with them at that very moment it’s the ultimate in Perfect Timing –	2019-12-12 18:03:23
222.255.129.133	attackbotsspam	Dec 9 14:34:22 sinope sshd[11000]: Address 222.255.129.133 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 9 14:34:22 sinope sshd[11000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.255.129.133 user=r.r Dec 9 14:34:24 sinope sshd[11000]: Failed password for r.r from 222.255.129.133 port 48244 ssh2 Dec 9 14:34:24 sinope sshd[11000]: Received disconnect from 222.255.129.133: 11: Bye Bye [preauth] Dec 9 16:27:19 sinope sshd[11628]: Address 222.255.129.133 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 9 16:27:19 sinope sshd[11628]: Invalid user admin from 222.255.129.133 Dec 9 16:27:19 sinope sshd[11628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.255.129.133 Dec 9 16:27:21 sinope sshd[11628]: Failed password for invalid user admin from 222.255.129.133 port 53136 ssh........ -------------------------------	2019-12-12 18:19:15
118.217.216.100	attackspambots	Dec 12 10:51:06 MK-Soft-VM3 sshd[7276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.217.216.100 Dec 12 10:51:08 MK-Soft-VM3 sshd[7276]: Failed password for invalid user gubaucea from 118.217.216.100 port 29886 ssh2 ...	2019-12-12 18:24:15
106.12.211.247	attackspam	[ssh] SSH attack	2019-12-12 18:24:47

Recently Reported IPs

178.62.222.54	61.0.84.249	156.214.245.235	103.101.50.70
22.225.54.38	122.225.54.38	196.251.100.27	45.192.113.57
14.213.27.192	8.212.115.61	10.115.158.151	54.251.192.137
47.237.64.203	47.237.26.31	92.255.207.132	92.255.207.130
211.101.247.47	54.174.255.31	115.198.21.102	182.61.55.53