75.138.145.227

Basic Info

City: Marion

Region: North Carolina

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 75.138.145.227
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36313
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;75.138.145.227.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 08:58:31 CST 2025
;; MSG SIZE  rcvd: 107

Host info

227.145.138.75.in-addr.arpa domain name pointer syn-075-138-145-227.res.spectrum.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
227.145.138.75.in-addr.arpa	name = syn-075-138-145-227.res.spectrum.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
163.172.127.251	attackbotsspam	Apr 16 14:02:04 ovpn sshd\[11279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251 user=root Apr 16 14:02:06 ovpn sshd\[11279\]: Failed password for root from 163.172.127.251 port 57512 ssh2 Apr 16 14:13:22 ovpn sshd\[13887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251 user=root Apr 16 14:13:24 ovpn sshd\[13887\]: Failed password for root from 163.172.127.251 port 40044 ssh2 Apr 16 14:16:48 ovpn sshd\[14731\]: Invalid user rn from 163.172.127.251 Apr 16 14:16:48 ovpn sshd\[14731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251	2020-04-16 20:34:53
206.189.159.186	attackspam	Apr 16 13:20:03 v22018086721571380 sshd[11154]: Failed password for invalid user admin from 206.189.159.186 port 58614 ssh2	2020-04-16 20:08:07
206.201.3.13	attackbotsspam	Unauthorized connection attempt from IP address 206.201.3.13 on Port 3389(RDP)	2020-04-16 20:37:20
112.206.166.143	attackspam	Unauthorized connection attempt from IP address 112.206.166.143 on Port 445(SMB)	2020-04-16 20:22:39
14.227.255.8	attackspambots	Unauthorized connection attempt from IP address 14.227.255.8 on Port 445(SMB)	2020-04-16 19:56:54
188.128.39.113	attackbotsspam	Apr 16 14:19:02 hell sshd[4583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.113 Apr 16 14:19:04 hell sshd[4583]: Failed password for invalid user admin from 188.128.39.113 port 39146 ssh2 ...	2020-04-16 20:32:28
178.154.200.6	attack	[Thu Apr 16 12:53:42.339223 2020] [:error] [pid 1438:tid 140331672659712] [client 178.154.200.6:46874] [client 178.154.200.6] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xpfy5nmg8WH53TAJLeEvCwAAALY"] ...	2020-04-16 20:11:15
116.105.216.179	attackspam	2020-04-16T08:17:39.570300xentho-1 sshd[351207]: Invalid user ubnt from 116.105.216.179 port 38196 2020-04-16T08:17:42.564363xentho-1 sshd[351207]: Failed password for invalid user ubnt from 116.105.216.179 port 38196 ssh2 2020-04-16T08:18:15.375924xentho-1 sshd[351231]: Invalid user nagios from 116.105.216.179 port 56232 2020-04-16T08:18:17.152462xentho-1 sshd[351231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.105.216.179 2020-04-16T08:18:15.375924xentho-1 sshd[351231]: Invalid user nagios from 116.105.216.179 port 56232 2020-04-16T08:18:18.482734xentho-1 sshd[351231]: Failed password for invalid user nagios from 116.105.216.179 port 56232 ssh2 2020-04-16T08:21:03.010232xentho-1 sshd[351269]: Invalid user tomcat from 116.105.216.179 port 46802 2020-04-16T08:21:05.906011xentho-1 sshd[351269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.105.216.179 2020-04-16T08:21:03.010232xentho-1 sshd[35 ...	2020-04-16 20:24:05
64.225.8.170	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 53 - port: 32412 proto: TCP cat: Misc Attack	2020-04-16 20:04:44
203.113.25.21	attack	Unauthorized connection attempt from IP address 203.113.25.21 on Port 445(SMB)	2020-04-16 19:57:52
92.118.38.83	attackbotsspam	2020-04-16T12:44:15.998669l03.customhost.org.uk postfix/smtps/smtpd[982]: warning: unknown[92.118.38.83]: SASL LOGIN authentication failed: authentication failure 2020-04-16T12:47:18.496571l03.customhost.org.uk postfix/smtps/smtpd[2552]: warning: unknown[92.118.38.83]: SASL LOGIN authentication failed: authentication failure 2020-04-16T12:50:24.616180l03.customhost.org.uk postfix/smtps/smtpd[3052]: warning: unknown[92.118.38.83]: SASL LOGIN authentication failed: authentication failure 2020-04-16T12:53:45.493897l03.customhost.org.uk postfix/smtps/smtpd[3052]: warning: unknown[92.118.38.83]: SASL LOGIN authentication failed: authentication failure ...	2020-04-16 20:09:28
113.190.156.151	attack	Unauthorized connection attempt from IP address 113.190.156.151 on Port 445(SMB)	2020-04-16 20:21:38
122.114.87.17	attackbots	Lines containing failures of 122.114.87.17 Apr 16 10:24:52 UTC__SANYALnet-Labs__cac1 sshd[1600]: Connection from 122.114.87.17 port 2570 on 104.167.106.93 port 22 Apr 16 10:25:26 UTC__SANYALnet-Labs__cac1 sshd[1600]: User r.r from 122.114.87.17 not allowed because not listed in AllowUsers Apr 16 10:25:26 UTC__SANYALnet-Labs__cac1 sshd[1600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.87.17 user=r.r Apr 16 10:25:27 UTC__SANYALnet-Labs__cac1 sshd[1600]: Failed password for invalid user r.r from 122.114.87.17 port 2570 ssh2 Apr 16 10:25:27 UTC__SANYALnet-Labs__cac1 sshd[1600]: Connection closed by 122.114.87.17 port 2570 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.114.87.17	2020-04-16 20:03:11
64.227.54.28	attack	Apr 16 06:56:53 Tower sshd[41582]: Connection from 64.227.54.28 port 55154 on 192.168.10.220 port 22 rdomain "" Apr 16 06:56:54 Tower sshd[41582]: Invalid user ubuntu from 64.227.54.28 port 55154 Apr 16 06:56:54 Tower sshd[41582]: error: Could not get shadow information for NOUSER Apr 16 06:56:54 Tower sshd[41582]: Failed password for invalid user ubuntu from 64.227.54.28 port 55154 ssh2 Apr 16 06:56:54 Tower sshd[41582]: Received disconnect from 64.227.54.28 port 55154:11: Bye Bye [preauth] Apr 16 06:56:54 Tower sshd[41582]: Disconnected from invalid user ubuntu 64.227.54.28 port 55154 [preauth]	2020-04-16 20:05:37
129.204.119.35	attackspam	CN bad_bot	2020-04-16 20:16:14

Recently Reported IPs

30.146.111.206	26.69.181.91	223.32.109.157	151.11.156.27
188.255.22.20	195.23.113.10	254.130.198.168	131.31.54.118
143.78.0.25	195.71.109.43	228.199.84.165	218.123.171.8
200.220.182.74	52.0.183.103	213.43.81.29	50.174.126.10
54.68.211.39	203.31.5.151	193.116.2.124	47.64.116.204