138.117.179.134

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Turkeynet Ltda.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH invalid-user multiple login try	2020-07-05 20:38:46
attack	Invalid user admin1 from 138.117.179.134 port 54250	2020-07-04 06:25:23
attackspam	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-21 22:17:44
attackbots	Jun 7 18:00:55 php1 sshd\[19826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.117.179.134 user=root Jun 7 18:00:57 php1 sshd\[19826\]: Failed password for root from 138.117.179.134 port 60900 ssh2 Jun 7 18:05:00 php1 sshd\[20354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.117.179.134 user=root Jun 7 18:05:02 php1 sshd\[20354\]: Failed password for root from 138.117.179.134 port 33822 ssh2 Jun 7 18:09:11 php1 sshd\[20924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.117.179.134 user=root	2020-06-08 15:03:21
attack	Invalid user chocolat from 138.117.179.134 port 34987	2020-05-31 15:48:05
attack	May 23 13:08:31 ws25vmsma01 sshd[152097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.117.179.134 May 23 13:08:33 ws25vmsma01 sshd[152097]: Failed password for invalid user rcn from 138.117.179.134 port 38485 ssh2 ...	2020-05-24 00:00:24

Comments on same subnet:

IP	Type	Details	Datetime
138.117.179.41	attackspam	20/7/16@09:45:17: FAIL: Alarm-Network address from=138.117.179.41 20/7/16@09:45:17: FAIL: Alarm-Network address from=138.117.179.41 ...	2020-07-17 03:35:07
138.117.179.41	attack	1582032108 - 02/18/2020 14:21:48 Host: 138.117.179.41/138.117.179.41 Port: 445 TCP Blocked	2020-02-19 02:55:53
138.117.179.47	attackbotsspam	Honeypot attack, port: 445, PTR: dynamic-138-117-179-47.turkey.net.br.	2019-12-28 18:48:31
138.117.179.47	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-12 18:52:36
138.117.179.47	attackbots	Honeypot attack, port: 445, PTR: dynamic-138-117-179-47.turkey.net.br.	2019-10-31 14:59:53
138.117.179.72	attackspam	19/7/29@22:19:07: FAIL: Alarm-Intrusion address from=138.117.179.72 ...	2019-07-30 18:00:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.117.179.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59784
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.117.179.134.		IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052301 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 00:00:20 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 134.179.117.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.179.117.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.119.179.255	attackbotsspam	Jan 17 16:49:35 debian-2gb-nbg1-2 kernel: \[1535468.236501\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.119.179.255 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=31301 PROTO=TCP SPT=56447 DPT=54431 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-17 23:58:06
183.107.62.150	attack	Unauthorized connection attempt detected from IP address 183.107.62.150 to port 2220 [J]	2020-01-17 23:41:16
106.13.183.92	attackbots	Unauthorized connection attempt detected from IP address 106.13.183.92 to port 2220 [J]	2020-01-17 23:39:41
218.92.0.178	attack	Jan 17 16:57:31 mail sshd\[6513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.178 user=root Jan 17 16:57:33 mail sshd\[6513\]: Failed password for root from 218.92.0.178 port 25062 ssh2 Jan 17 16:57:50 mail sshd\[6520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.178 user=root ...	2020-01-18 00:02:20
183.82.10.139	attack	Unauthorized connection attempt from IP address 183.82.10.139 on Port 445(SMB)	2020-01-17 23:43:19
222.186.173.215	attack	Jan 17 16:50:45 * sshd[14328]: Failed password for root from 222.186.173.215 port 46428 ssh2 Jan 17 16:50:48 * sshd[14328]: Failed password for root from 222.186.173.215 port 46428 ssh2	2020-01-17 23:54:07
36.235.0.198	attackbots	Unauthorized connection attempt from IP address 36.235.0.198 on Port 445(SMB)	2020-01-18 00:06:18
222.186.169.194	attackspambots	Jan 17 15:35:52 zeus sshd[22784]: Failed password for root from 222.186.169.194 port 17550 ssh2 Jan 17 15:35:57 zeus sshd[22784]: Failed password for root from 222.186.169.194 port 17550 ssh2 Jan 17 15:36:02 zeus sshd[22784]: Failed password for root from 222.186.169.194 port 17550 ssh2 Jan 17 15:36:06 zeus sshd[22784]: Failed password for root from 222.186.169.194 port 17550 ssh2 Jan 17 15:36:11 zeus sshd[22784]: Failed password for root from 222.186.169.194 port 17550 ssh2	2020-01-17 23:43:00
115.178.202.247	spam	Hallo	2020-01-18 00:20:19
182.61.177.109	attackbotsspam	Jan 17 16:52:26 meumeu sshd[22351]: Failed password for root from 182.61.177.109 port 48974 ssh2 Jan 17 16:55:46 meumeu sshd[23100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.177.109 Jan 17 16:55:48 meumeu sshd[23100]: Failed password for invalid user ma from 182.61.177.109 port 49402 ssh2 ...	2020-01-18 00:13:44
54.37.100.120	attackbots	[munged]::443 54.37.100.120 - - [17/Jan/2020:14:01:31 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 54.37.100.120 - - [17/Jan/2020:14:01:32 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 54.37.100.120 - - [17/Jan/2020:14:01:33 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 54.37.100.120 - - [17/Jan/2020:14:01:33 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 54.37.100.120 - - [17/Jan/2020:14:01:34 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 54.37.100.120 - - [17/Jan/2020:14:01:35 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubun	2020-01-18 00:22:25
113.166.13.160	attackspam	Unauthorized connection attempt from IP address 113.166.13.160 on Port 445(SMB)	2020-01-17 23:48:40
46.38.144.202	attack	Too many connections or unauthorized access detected from Yankee banned ip	2020-01-18 00:16:59
40.73.78.233	attackbots	2020-01-17T14:44:15.975858shield sshd\[8886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.78.233 user=root 2020-01-17T14:44:18.258487shield sshd\[8886\]: Failed password for root from 40.73.78.233 port 6016 ssh2 2020-01-17T14:48:55.799009shield sshd\[10289\]: Invalid user qy from 40.73.78.233 port 6016 2020-01-17T14:48:55.802727shield sshd\[10289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.78.233 2020-01-17T14:48:57.187678shield sshd\[10289\]: Failed password for invalid user qy from 40.73.78.233 port 6016 ssh2	2020-01-18 00:05:31
103.76.188.36	attackspambots	Unauthorized connection attempt from IP address 103.76.188.36 on Port 445(SMB)	2020-01-17 23:52:34

Recently Reported IPs

170.29.76.167	51.138.85.183	91.246.65.26	75.31.61.57
159.100.25.83	12.173.100.7	141.101.69.42	181.162.17.147
88.208.45.119	66.42.102.227	219.136.239.10	219.79.194.145
38.106.22.70	217.175.215.171	213.103.132.207	211.222.101.93
190.8.149.147	183.106.8.211	180.76.103.27	179.67.28.228