129.213.100.138

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Oracle Public Cloud

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	[f2b] sshd bruteforce, retries: 1	2020-08-07 00:24:31
attackspambots	Port Scan detected from 129.213.100.138 (US/United States/Washington/Seattle (Pike Pine Retail Core)/-). 4 hits in the last 125 seconds	2020-08-01 19:46:14
attackbotsspam	2020-07-29T18:04:29.389374abusebot-8.cloudsearch.cf sshd[7259]: Invalid user test from 129.213.100.138 port 33628 2020-07-29T18:04:29.396437abusebot-8.cloudsearch.cf sshd[7259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.138 2020-07-29T18:04:29.389374abusebot-8.cloudsearch.cf sshd[7259]: Invalid user test from 129.213.100.138 port 33628 2020-07-29T18:04:31.737380abusebot-8.cloudsearch.cf sshd[7259]: Failed password for invalid user test from 129.213.100.138 port 33628 ssh2 2020-07-29T18:12:48.393278abusebot-8.cloudsearch.cf sshd[7281]: Invalid user songzhe from 129.213.100.138 port 36340 2020-07-29T18:12:48.401610abusebot-8.cloudsearch.cf sshd[7281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.138 2020-07-29T18:12:48.393278abusebot-8.cloudsearch.cf sshd[7281]: Invalid user songzhe from 129.213.100.138 port 36340 2020-07-29T18:12:50.581684abusebot-8.cloudsearch.cf sshd[7281]: ...	2020-07-30 03:19:41
attackbotsspam	Jul 22 05:54:14 dhoomketu sshd[1745135]: Invalid user admin from 129.213.100.138 port 50594 Jul 22 05:54:14 dhoomketu sshd[1745135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.138 Jul 22 05:54:14 dhoomketu sshd[1745135]: Invalid user admin from 129.213.100.138 port 50594 Jul 22 05:54:16 dhoomketu sshd[1745135]: Failed password for invalid user admin from 129.213.100.138 port 50594 ssh2 Jul 22 05:56:23 dhoomketu sshd[1745196]: Invalid user pdf from 129.213.100.138 port 49688 ...	2020-07-22 08:32:47
attackspambots	reported through recidive - multiple failed attempts(SSH)	2020-07-17 00:23:30
attack	Multiple SSH authentication failures from 129.213.100.138	2020-07-13 21:46:21

Comments on same subnet:

IP	Type	Details	Datetime
129.213.100.212	attack	Automatic report - Banned IP Access	2020-02-10 07:16:40
129.213.100.212	attackspambots	Feb 8 17:26:50 sd-53420 sshd\[23340\]: Invalid user vup from 129.213.100.212 Feb 8 17:26:50 sd-53420 sshd\[23340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Feb 8 17:26:52 sd-53420 sshd\[23340\]: Failed password for invalid user vup from 129.213.100.212 port 52676 ssh2 Feb 8 17:30:00 sd-53420 sshd\[23609\]: Invalid user czo from 129.213.100.212 Feb 8 17:30:00 sd-53420 sshd\[23609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 ...	2020-02-09 00:36:26
129.213.100.212	attackbots	Feb 4 01:04:46 legacy sshd[16599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Feb 4 01:04:48 legacy sshd[16599]: Failed password for invalid user rabbitmq from 129.213.100.212 port 42600 ssh2 Feb 4 01:07:28 legacy sshd[16716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 ...	2020-02-04 08:26:53
129.213.100.212	attack	Port Scan detected from 129.213.100.212 (US/United States/-). 4 hits in the last 280 seconds	2020-01-16 13:40:48
129.213.100.212	attackbotsspam	Jan 6 08:52:51 server sshd\[28561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 user=root Jan 6 08:52:53 server sshd\[28561\]: Failed password for root from 129.213.100.212 port 41110 ssh2 Jan 6 16:15:46 server sshd\[31918\]: Invalid user aasland from 129.213.100.212 Jan 6 16:15:46 server sshd\[31918\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Jan 6 16:15:48 server sshd\[31918\]: Failed password for invalid user aasland from 129.213.100.212 port 46094 ssh2 ...	2020-01-06 21:38:04
129.213.100.212	attackspam	Jan 5 04:07:49 mockhub sshd[28248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Jan 5 04:07:51 mockhub sshd[28248]: Failed password for invalid user ftp from 129.213.100.212 port 35442 ssh2 ...	2020-01-05 21:22:21
129.213.100.212	attack	Dec 14 13:01:16 php1 sshd\[18294\]: Invalid user llewelly from 129.213.100.212 Dec 14 13:01:16 php1 sshd\[18294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Dec 14 13:01:18 php1 sshd\[18294\]: Failed password for invalid user llewelly from 129.213.100.212 port 57264 ssh2 Dec 14 13:06:32 php1 sshd\[18939\]: Invalid user guest1111 from 129.213.100.212 Dec 14 13:06:32 php1 sshd\[18939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212	2019-12-15 08:48:38
129.213.100.212	attackbotsspam	Dec 8 09:44:53 zeus sshd[5155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Dec 8 09:44:54 zeus sshd[5155]: Failed password for invalid user inger from 129.213.100.212 port 55178 ssh2 Dec 8 09:50:23 zeus sshd[5367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Dec 8 09:50:25 zeus sshd[5367]: Failed password for invalid user fouts from 129.213.100.212 port 35696 ssh2	2019-12-08 18:38:17
129.213.100.212	attackspambots	2019-12-07T07:32:03.056723host3.slimhost.com.ua sshd[2689394]: Invalid user phyllys from 129.213.100.212 port 53292 2019-12-07T07:32:03.061558host3.slimhost.com.ua sshd[2689394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 2019-12-07T07:32:03.056723host3.slimhost.com.ua sshd[2689394]: Invalid user phyllys from 129.213.100.212 port 53292 2019-12-07T07:32:04.956892host3.slimhost.com.ua sshd[2689394]: Failed password for invalid user phyllys from 129.213.100.212 port 53292 ssh2 2019-12-07T07:37:19.508316host3.slimhost.com.ua sshd[2691390]: Invalid user couscous from 129.213.100.212 port 37872 2019-12-07T07:37:19.517719host3.slimhost.com.ua sshd[2691390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 2019-12-07T07:37:19.508316host3.slimhost.com.ua sshd[2691390]: Invalid user couscous from 129.213.100.212 port 37872 2019-12-07T07:37:21.461635host3.slimhost.com.ua sshd[269139 ...	2019-12-07 16:21:57
129.213.100.212	attack	Dec 3 01:43:40 plusreed sshd[6778]: Invalid user raza from 129.213.100.212 ...	2019-12-03 14:58:43
129.213.100.212	attackbotsspam	ssh intrusion attempt	2019-12-02 16:38:49
129.213.100.212	attackspambots	SSH invalid-user multiple login try	2019-11-18 06:00:43
129.213.100.212	attackspambots	Nov 15 16:37:03 vps01 sshd[6345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 Nov 15 16:37:05 vps01 sshd[6345]: Failed password for invalid user westby from 129.213.100.212 port 60510 ssh2	2019-11-15 23:37:37
129.213.100.212	attackbots	[Aegis] @ 2019-11-10 11:45:59 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-11-10 20:49:02
129.213.100.212	attack	Nov 5 21:37:30 php1 sshd\[5698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 user=root Nov 5 21:37:32 php1 sshd\[5698\]: Failed password for root from 129.213.100.212 port 45316 ssh2 Nov 5 21:41:25 php1 sshd\[6288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212 user=root Nov 5 21:41:27 php1 sshd\[6288\]: Failed password for root from 129.213.100.212 port 56270 ssh2 Nov 5 21:45:21 php1 sshd\[7041\]: Invalid user sritidc from 129.213.100.212 Nov 5 21:45:21 php1 sshd\[7041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.100.212	2019-11-06 22:34:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.213.100.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.213.100.138.		IN	A

;; AUTHORITY SECTION:
.			483	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071300 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 13 21:46:13 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 138.100.213.129.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.100.213.129.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.59.35	attackspam	Automatic report - XMLRPC Attack	2020-03-11 07:55:44
138.201.21.124	attackbotsspam	suspicious action Tue, 10 Mar 2020 15:10:37 -0300	2020-03-11 08:23:31
49.232.61.104	attackspambots	Mar 10 19:53:15 vps691689 sshd[25213]: Failed password for root from 49.232.61.104 port 46226 ssh2 Mar 10 19:55:09 vps691689 sshd[25276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.61.104 ...	2020-03-11 07:53:13
51.158.189.0	attack	SASL PLAIN auth failed: ruser=...	2020-03-11 08:15:15
134.209.171.203	attackspambots	Mar 11 01:14:22 jane sshd[30447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.171.203 Mar 11 01:14:23 jane sshd[30447]: Failed password for invalid user dst from 134.209.171.203 port 39399 ssh2 ...	2020-03-11 08:17:40
134.175.48.254	attackspam	Mar 10 03:51:43 XXX sshd[54094]: Invalid user admin1 from 134.175.48.254 port 38830	2020-03-11 08:07:29
87.91.52.246	attack	suspicious action Tue, 10 Mar 2020 15:11:24 -0300	2020-03-11 07:55:58
210.210.175.63	attack	leo_www	2020-03-11 08:28:16
27.72.173.184	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-11 08:14:18
120.224.222.37	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-03-11 08:09:36
167.99.233.205	attack	suspicious action Tue, 10 Mar 2020 15:11:19 -0300	2020-03-11 07:58:59
221.237.208.10	attack	(imapd) Failed IMAP login from 221.237.208.10 (CN/China/10.208.237.221.broad.cd.sc.dynamic.163data.com.cn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 10 21:40:24 ir1 dovecot[4133960]: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=, method=PLAIN, rip=221.237.208.10, lip=5.63.12.44, TLS: Connection closed, session=	2020-03-11 08:27:43
34.64.191.98	attack	Did not receive identification string	2020-03-11 08:16:02
138.197.5.191	attackbotsspam	$f2bV_matches	2020-03-11 08:06:08
123.207.107.242	attackbots	Mar 10 19:05:08 vpn01 sshd[29204]: Failed password for irc from 123.207.107.242 port 52604 ssh2 ...	2020-03-11 08:13:24

Recently Reported IPs

41.83.92.191	84.211.87.169	170.81.65.192	88.149.149.109
88.242.202.199	217.160.14.60	213.59.223.225	87.10.254.137
220.250.25.36	51.222.12.137	194.26.29.142	15.236.124.91
191.235.97.130	144.34.165.26	111.72.194.36	38.64.231.170
101.65.10.27	41.13.176.166	97.130.45.80	97.190.154.135