JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 197.156.65.138

197.156.65.138 was found in our database!

This IP was reported 4,481 times. Confidence of Abuse is 3%: ?

ISP	Ethiotelecom
Usage Type	Fixed Line ISP
ASN	AS24757
Domain Name	ethiotelecom.et
Country	🇪🇹 Ethiopia
City	Addis Ababa, Addis Ababa

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 197.156.65.138

Whois 197.156.65.138

IP Abuse Reports for 197.156.65.138:

This IP address has been reported a total of 4,481 times from 506 distinct sources. 197.156.65.138 was first reported on November 20th 2020, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-05 19:16:55 (1 week ago)	ICS Labs identified 197.156.65.138 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
Anonymous	2024-10-28 02:48:51 (1 year ago)	lfd: (sshd) Failed SSH login	Brute-Force SSH
🇨🇦 hostseries	2023-04-28 11:46:21 (3 years ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2021-11-08 07:40:08 (4 years ago)	(sshd) Failed SSH login from 197.156.65.138 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: ; Dire ... show more (sshd) Failed SSH login from 197.156.65.138 (ET/Ethiopia/-): 5 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_SSHD; Logs: Nov 8 07:23:19 optimus sshd[3072]: Invalid user ykt from 197.156.65.138 Nov 8 07:23:19 optimus sshd[3072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 Nov 8 07:23:21 optimus sshd[3072]: Failed password for invalid user ykt from 197.156.65.138 port 48576 ssh2 Nov 8 07:40:01 optimus sshd[9856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Nov 8 07:40:03 optimus sshd[9856]: Failed password for root from 197.156.65.138 port 59584 ssh2 show less	Brute-Force
🇵🇹 WebTejo	2021-11-07 17:46:25 (4 years ago)	Nov 7 22:40:18 belem sshd[830653]: Failed password for invalid user nti from 197.156.65.138 port 54 ... show more Nov 7 22:40:18 belem sshd[830653]: Failed password for invalid user nti from 197.156.65.138 port 54218 ssh2 Nov 7 22:46:23 belem sshd[831236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Nov 7 22:46:25 belem sshd[831236]: Failed password for root from 197.156.65.138 port 56004 ssh2 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 17:15:34 (4 years ago)	Nov 7 22:09:24 belem sshd[827446]: Failed password for invalid user admin from 197.156.65.138 port ... show more Nov 7 22:09:24 belem sshd[827446]: Failed password for invalid user admin from 197.156.65.138 port 45274 ssh2 Nov 7 22:15:32 belem sshd[828084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Nov 7 22:15:34 belem sshd[828084]: Failed password for root from 197.156.65.138 port 47060 ssh2 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 16:20:02 (4 years ago)	Nov 7 21:20:00 belem sshd[822405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Nov 7 21:20:00 belem sshd[822405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 Nov 7 21:20:00 belem sshd[822405]: Invalid user hadoop from 197.156.65.138 port 59196 Nov 7 21:20:02 belem sshd[822405]: Failed password for invalid user hadoop from 197.156.65.138 port 59196 ssh2 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 16:01:55 (4 years ago)	Nov 7 20:54:42 belem sshd[820005]: Invalid user kkt from 197.156.65.138 port 52028 Nov 7 20:54:44 ... show more Nov 7 20:54:42 belem sshd[820005]: Invalid user kkt from 197.156.65.138 port 52028 Nov 7 20:54:44 belem sshd[820005]: Failed password for invalid user kkt from 197.156.65.138 port 52028 ssh2 Nov 7 21:01:54 belem sshd[820663]: Invalid user ymz from 197.156.65.138 port 53838 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 15:41:56 (4 years ago)	Nov 7 20:41:53 belem sshd[818794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Nov 7 20:41:53 belem sshd[818794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 Nov 7 20:41:53 belem sshd[818794]: Invalid user yahoo from 197.156.65.138 port 48452 Nov 7 20:41:55 belem sshd[818794]: Failed password for invalid user yahoo from 197.156.65.138 port 48452 ssh2 ... show less	Brute-Force SSH
🇮🇳 Parth Maniar	2021-11-07 15:30:01 (4 years ago)	SSH login attempts (SSH bruteforce attack). For more information, or to report interesting/incorrect ... show more SSH login attempts (SSH bruteforce attack). For more information, or to report interesting/incorrect findings, give me a shoutout on @parthmaniar on Twitter. show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 14:30:07 (4 years ago)	Nov 7 19:23:50 belem sshd[811228]: Failed password for invalid user com from 197.156.65.138 port 55 ... show more Nov 7 19:23:50 belem sshd[811228]: Failed password for invalid user com from 197.156.65.138 port 55156 ssh2 Nov 7 19:30:00 belem sshd[811850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Nov 7 19:30:02 belem sshd[811850]: Failed password for root from 197.156.65.138 port 56944 ssh2 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 13:59:24 (4 years ago)	Nov 7 18:53:17 belem sshd[808205]: Failed password for invalid user tdliu from 197.156.65.138 port ... show more Nov 7 18:53:17 belem sshd[808205]: Failed password for invalid user tdliu from 197.156.65.138 port 46226 ssh2 Nov 7 18:59:22 belem sshd[808801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Nov 7 18:59:24 belem sshd[808801]: Failed password for root from 197.156.65.138 port 48014 ssh2 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 13:28:55 (4 years ago)	Nov 7 18:22:34 belem sshd[805201]: Failed password for invalid user kcn from 197.156.65.138 port 37 ... show more Nov 7 18:22:34 belem sshd[805201]: Failed password for invalid user kcn from 197.156.65.138 port 37292 ssh2 Nov 7 18:28:52 belem sshd[805812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Nov 7 18:28:54 belem sshd[805812]: Failed password for root from 197.156.65.138 port 39084 ssh2 ... show less	Brute-Force SSH
🇵🇹 WebTejo	2021-11-07 13:10:32 (4 years ago)	Nov 7 18:10:29 belem sshd[804080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Nov 7 18:10:29 belem sshd[804080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 Nov 7 18:10:29 belem sshd[804080]: Invalid user hsk from 197.156.65.138 port 33722 Nov 7 18:10:31 belem sshd[804080]: Failed password for invalid user hsk from 197.156.65.138 port 33722 ssh2 ... show less	Brute-Force SSH
🇦🇷 Anonymous	2021-11-07 04:06:39 (4 years ago)	IP reported by fail2ban in blocklist de	Hacking

Showing 1 to 15 of 4481 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 148.113.190.153

🇺🇸 193.122.144.138

🇮🇩 175.184.231.30

🇦🇪 153.75.90.123

🇹🇭 101.108.7.240

🇮🇹 91.80.184.80

🇳🇱 45.198.224.92

🇪🇪 43.228.237.181

🇺🇸 35.243.199.72

🇺🇸 35.190.190.83

🇮🇹 34.154.146.123

🇺🇸 34.138.142.217

🇳🇱 34.13.244.212

🇮🇳 8.231.120.1

🇩🇪 213.209.159.226

🇨🇱 190.114.33.165

🇸🇾 185.225.41.192

🇬🇧 185.127.69.2

🇺🇸 173.239.240.54

🇺🇸 172.236.228.218