138.117.121.106

Basic Info

City: Assis

Region: Sao Paulo

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.117.121.86	attackbots	unauthorized connection attempt	2020-02-26 21:05:01
138.117.121.115	attackspam	Bruteforce on SSH Honeypot	2019-08-27 13:16:01
138.117.121.39	attackspambots	Invalid user admin from 138.117.121.39 port 33179	2019-07-13 18:20:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.117.121.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.117.121.106.		IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051501 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 16 05:07:20 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 106.121.117.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.121.117.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.17.58.234	attack	Honeypot attack, port: 81, PTR: PTR record not found	2019-08-13 06:17:30
122.114.117.70	attack	Aug 13 01:05:49 www sshd\[8395\]: Invalid user wss from 122.114.117.70Aug 13 01:05:51 www sshd\[8395\]: Failed password for invalid user wss from 122.114.117.70 port 44548 ssh2Aug 13 01:11:43 www sshd\[8473\]: Failed password for man from 122.114.117.70 port 33654 ssh2 ...	2019-08-13 06:30:25
12.10.12.179	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-08-13 06:56:35
108.219.233.43	attackspambots	Aug 12 23:48:31 h1946882 sshd[16252]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D108-= 219-233-43.lightspeed.livnmi.sbcglobal.net=20 Aug 12 23:48:31 h1946882 sshd[16254]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D108-= 219-233-43.lightspeed.livnmi.sbcglobal.net=20 Aug 12 23:48:32 h1946882 sshd[16252]: Failed password for invalid user = pi from 108.219.233.43 port 35504 ssh2 Aug 12 23:48:33 h1946882 sshd[16254]: Failed password for invalid user = pi from 108.219.233.43 port 35514 ssh2 Aug 12 23:48:33 h1946882 sshd[16252]: Connection closed by 108.219.233.= 43 [preauth] Aug 12 23:48:33 h1946882 sshd[16254]: Connection closed by 108.219.233.= 43 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=108.219.233.43	2019-08-13 06:44:28
159.89.165.127	attack	Aug 12 15:11:52 cac1d2 sshd\[26429\]: Invalid user jboss from 159.89.165.127 port 48928 Aug 12 15:11:52 cac1d2 sshd\[26429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.127 Aug 12 15:11:54 cac1d2 sshd\[26429\]: Failed password for invalid user jboss from 159.89.165.127 port 48928 ssh2 ...	2019-08-13 06:16:19
218.53.113.19	attackbots	Aug 12 23:46:35 m1 sshd[29295]: Failed password for r.r from 218.53.113.19 port 58420 ssh2 Aug 12 23:46:37 m1 sshd[29295]: Failed password for r.r from 218.53.113.19 port 58420 ssh2 Aug 12 23:46:39 m1 sshd[29295]: Failed password for r.r from 218.53.113.19 port 58420 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=218.53.113.19	2019-08-13 06:21:15
150.214.136.51	attackbotsspam	Lines containing failures of 150.214.136.51 Aug 12 23:11:47 echo390 sshd[7851]: Invalid user sofia from 150.214.136.51 port 53650 Aug 12 23:11:47 echo390 sshd[7851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.136.51 Aug 12 23:11:49 echo390 sshd[7851]: Failed password for invalid user sofia from 150.214.136.51 port 53650 ssh2 Aug 12 23:11:49 echo390 sshd[7851]: Received disconnect from 150.214.136.51 port 53650:11: Bye Bye [preauth] Aug 12 23:11:49 echo390 sshd[7851]: Disconnected from invalid user sofia 150.214.136.51 port 53650 [preauth] Aug 12 23:40:20 echo390 sshd[13006]: Invalid user devopsuser from 150.214.136.51 port 53130 Aug 12 23:40:20 echo390 sshd[13006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.136.51 Aug 12 23:40:22 echo390 sshd[13006]: Failed password for invalid user devopsuser from 150.214.136.51 port 53130 ssh2 Aug 12 23:40:22 echo390 sshd[13006]: R........ ------------------------------	2019-08-13 06:27:20
165.22.144.147	attackspambots	2019-08-12T22:11:55.133913abusebot-2.cloudsearch.cf sshd\[5672\]: Invalid user ftpuser from 165.22.144.147 port 34810	2019-08-13 06:22:35
148.70.35.109	attack	Aug 12 22:11:53 www_kotimaassa_fi sshd[2288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.35.109 Aug 12 22:11:55 www_kotimaassa_fi sshd[2288]: Failed password for invalid user zq from 148.70.35.109 port 38940 ssh2 ...	2019-08-13 06:23:23
184.105.139.92	attackspambots	21/tcp 5900/tcp 389/tcp... [2019-06-12/08-12]47pkt,20pt.(tcp),2pt.(udp)	2019-08-13 06:41:17
158.69.121.80	attackspam	Aug 13 03:41:22 areeb-Workstation sshd\[7285\]: Invalid user kshalom from 158.69.121.80 Aug 13 03:41:22 areeb-Workstation sshd\[7285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.121.80 Aug 13 03:41:24 areeb-Workstation sshd\[7285\]: Failed password for invalid user kshalom from 158.69.121.80 port 53784 ssh2 ...	2019-08-13 06:43:24
1.180.165.110	attackbotsspam	Aug 12 17:45:38 eola postfix/smtpd[16494]: connect from unknown[1.180.165.110] Aug 12 17:45:39 eola postfix/smtpd[16494]: lost connection after AUTH from unknown[1.180.165.110] Aug 12 17:45:39 eola postfix/smtpd[16494]: disconnect from unknown[1.180.165.110] ehlo=1 auth=0/1 commands=1/2 Aug 12 17:45:39 eola postfix/smtpd[16494]: connect from unknown[1.180.165.110] Aug 12 17:45:40 eola postfix/smtpd[16494]: lost connection after AUTH from unknown[1.180.165.110] Aug 12 17:45:40 eola postfix/smtpd[16494]: disconnect from unknown[1.180.165.110] ehlo=1 auth=0/1 commands=1/2 Aug 12 17:45:40 eola postfix/smtpd[16494]: connect from unknown[1.180.165.110] Aug 12 17:45:41 eola postfix/smtpd[16494]: lost connection after AUTH from unknown[1.180.165.110] Aug 12 17:45:41 eola postfix/smtpd[16494]: disconnect from unknown[1.180.165.110] ehlo=1 auth=0/1 commands=1/2 Aug 12 17:45:42 eola postfix/smtpd[16494]: connect from unknown[1.180.165.110] Aug 12 17:45:43 eola postfix/smtpd[16494]........ -------------------------------	2019-08-13 06:55:33
81.43.238.240	attackbots	Automatic report - Port Scan Attack	2019-08-13 06:48:13
46.30.203.93	attack	[ ?? ] From apache@node20388-wildon.clicketcloud.com Mon Aug 12 19:11:47 2019 Received: from [46.30.203.93] (port=50778 helo=node20388-wildon.clicketcloud.com)	2019-08-13 06:29:38
209.17.96.218	attackbots	8443/tcp 137/udp 4567/tcp... [2019-06-12/08-12]69pkt,13pt.(tcp),1pt.(udp)	2019-08-13 06:44:50

Recently Reported IPs

185.87.115.110	12.118.251.59	242.233.155.57	50.128.81.240
237.191.76.204	52.33.254.69	5.173.165.38	82.148.235.237
178.21.108.244	189.40.73.245	103.5.34.65	15.144.216.22
173.128.204.2	2604:bc80:2:100a:9074:3401:2e6b:e3c0	94.38.236.211	130.25.41.22
248.127.190.27	104.168.110.212	181.92.87.40	28.125.166.229