138.197.129.35

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user postgres from 138.197.129.35 port 52872	2020-05-01 16:15:59
attackspam	odoo8 ...	2020-04-29 03:22:22
attack	Apr 27 16:54:52 rs-7 sshd[18019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.35 user=r.r Apr 27 16:54:54 rs-7 sshd[18019]: Failed password for r.r from 138.197.129.35 port 33320 ssh2 Apr 27 16:54:54 rs-7 sshd[18019]: Received disconnect from 138.197.129.35 port 33320:11: Bye Bye [preauth] Apr 27 16:54:54 rs-7 sshd[18019]: Disconnected from 138.197.129.35 port 33320 [preauth] Apr 27 17:07:02 rs-7 sshd[22732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.35 user=r.r Apr 27 17:07:04 rs-7 sshd[22732]: Failed password for r.r from 138.197.129.35 port 42976 ssh2 Apr 27 17:07:04 rs-7 sshd[22732]: Received disconnect from 138.197.129.35 port 42976:11: Bye Bye [preauth] Apr 27 17:07:04 rs-7 sshd[22732]: Disconnected from 138.197.129.35 port 42976 [preauth] Apr 27 17:10:56 rs-7 sshd[24147]: Invalid user financeiro from 138.197.129.35 port 56428 Apr 27 17:10:56 rs-7 ss........ -------------------------------	2020-04-28 19:03:17

Type

Details

Datetime

attackbotsspam

Invalid user postgres from 138.197.129.35 port 52872

2020-05-01 16:15:59

attackspam

odoo8
...

2020-04-29 03:22:22

attack

Apr 27 16:54:52 rs-7 sshd[18019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.35  user=r.r
Apr 27 16:54:54 rs-7 sshd[18019]: Failed password for r.r from 138.197.129.35 port 33320 ssh2
Apr 27 16:54:54 rs-7 sshd[18019]: Received disconnect from 138.197.129.35 port 33320:11: Bye Bye [preauth]
Apr 27 16:54:54 rs-7 sshd[18019]: Disconnected from 138.197.129.35 port 33320 [preauth]
Apr 27 17:07:02 rs-7 sshd[22732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.35  user=r.r
Apr 27 17:07:04 rs-7 sshd[22732]: Failed password for r.r from 138.197.129.35 port 42976 ssh2
Apr 27 17:07:04 rs-7 sshd[22732]: Received disconnect from 138.197.129.35 port 42976:11: Bye Bye [preauth]
Apr 27 17:07:04 rs-7 sshd[22732]: Disconnected from 138.197.129.35 port 42976 [preauth]
Apr 27 17:10:56 rs-7 sshd[24147]: Invalid user financeiro from 138.197.129.35 port 56428
Apr 27 17:10:56 rs-7 ss........
-------------------------------

2020-04-28 19:03:17

Comments on same subnet:

IP	Type	Details	Datetime
138.197.129.38	attackbots	Aug 20 21:01:51 vps-51d81928 sshd[779374]: Invalid user tom from 138.197.129.38 port 36380 Aug 20 21:01:51 vps-51d81928 sshd[779374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Aug 20 21:01:51 vps-51d81928 sshd[779374]: Invalid user tom from 138.197.129.38 port 36380 Aug 20 21:01:53 vps-51d81928 sshd[779374]: Failed password for invalid user tom from 138.197.129.38 port 36380 ssh2 Aug 20 21:05:30 vps-51d81928 sshd[779440]: Invalid user neide from 138.197.129.38 port 37212 ...	2020-08-21 05:09:20
138.197.129.38	attack	Aug 17 07:01:30 124388 sshd[30315]: Invalid user sam from 138.197.129.38 port 58294 Aug 17 07:01:30 124388 sshd[30315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Aug 17 07:01:30 124388 sshd[30315]: Invalid user sam from 138.197.129.38 port 58294 Aug 17 07:01:32 124388 sshd[30315]: Failed password for invalid user sam from 138.197.129.38 port 58294 ssh2 Aug 17 07:05:23 124388 sshd[30468]: Invalid user teste2 from 138.197.129.38 port 38354	2020-08-17 19:38:03
138.197.129.38	attack	Aug 7 19:04:42 webhost01 sshd[30099]: Failed password for root from 138.197.129.38 port 37666 ssh2 ...	2020-08-07 20:34:35
138.197.129.38	attackbots	Aug 5 23:26:35 django-0 sshd[28429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 user=root Aug 5 23:26:38 django-0 sshd[28429]: Failed password for root from 138.197.129.38 port 57798 ssh2 ...	2020-08-06 08:47:21
138.197.129.38	attack	2020-08-05T10:43:02.098652hostname sshd[5906]: Failed password for root from 138.197.129.38 port 39908 ssh2 2020-08-05T10:47:15.066770hostname sshd[6675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 user=root 2020-08-05T10:47:16.929557hostname sshd[6675]: Failed password for root from 138.197.129.38 port 51910 ssh2 ...	2020-08-05 19:56:30
138.197.129.38	attackbots	$f2bV_matches	2020-08-03 14:35:14
138.197.129.38	attackbots	Brute-force attempt banned	2020-07-26 07:59:55
138.197.129.38	attack	2020-07-20T05:02:59.493634shield sshd\[618\]: Invalid user rti from 138.197.129.38 port 47320 2020-07-20T05:02:59.502707shield sshd\[618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 2020-07-20T05:03:01.728810shield sshd\[618\]: Failed password for invalid user rti from 138.197.129.38 port 47320 ssh2 2020-07-20T05:07:42.733487shield sshd\[2179\]: Invalid user theforest from 138.197.129.38 port 35436 2020-07-20T05:07:42.742999shield sshd\[2179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38	2020-07-20 15:13:23
138.197.129.38	attack	<6 unauthorized SSH connections	2020-07-15 17:16:06
138.197.129.38	attackbots	Jul 14 01:27:38 meumeu sshd[574410]: Invalid user xzw from 138.197.129.38 port 46394 Jul 14 01:27:38 meumeu sshd[574410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Jul 14 01:27:38 meumeu sshd[574410]: Invalid user xzw from 138.197.129.38 port 46394 Jul 14 01:27:40 meumeu sshd[574410]: Failed password for invalid user xzw from 138.197.129.38 port 46394 ssh2 Jul 14 01:30:12 meumeu sshd[574558]: Invalid user dir1 from 138.197.129.38 port 58778 Jul 14 01:30:12 meumeu sshd[574558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Jul 14 01:30:12 meumeu sshd[574558]: Invalid user dir1 from 138.197.129.38 port 58778 Jul 14 01:30:14 meumeu sshd[574558]: Failed password for invalid user dir1 from 138.197.129.38 port 58778 ssh2 Jul 14 01:32:45 meumeu sshd[574729]: Invalid user public from 138.197.129.38 port 42928 ...	2020-07-14 07:50:19
138.197.129.38	attack	Jul 9 15:07:47 vpn01 sshd[26036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Jul 9 15:07:50 vpn01 sshd[26036]: Failed password for invalid user gx from 138.197.129.38 port 35550 ssh2 ...	2020-07-09 23:37:41
138.197.129.38	attackbots	leo_www	2020-07-09 03:57:17
138.197.129.38	attackspambots	Automatic Fail2ban report - Trying login SSH	2020-07-08 14:39:23
138.197.129.253	attack	$f2bV_matches	2020-07-06 12:57:30
138.197.129.38	attackbotsspam	Jul 4 12:48:36 abendstille sshd\[27218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 user=root Jul 4 12:48:38 abendstille sshd\[27218\]: Failed password for root from 138.197.129.38 port 46970 ssh2 Jul 4 12:52:15 abendstille sshd\[30852\]: Invalid user buildbot from 138.197.129.38 Jul 4 12:52:15 abendstille sshd\[30852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Jul 4 12:52:17 abendstille sshd\[30852\]: Failed password for invalid user buildbot from 138.197.129.38 port 44620 ssh2 ...	2020-07-04 19:04:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.129.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47635
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.129.35.			IN	A

;; AUTHORITY SECTION:
.			509	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 19:03:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 35.129.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 35.129.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.130.242	attackspam	2020-04-02T09:34:10.241712linuxbox-skyline sshd[45077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.242 user=root 2020-04-02T09:34:12.372667linuxbox-skyline sshd[45077]: Failed password for root from 51.38.130.242 port 35874 ssh2 ...	2020-04-03 00:14:35
148.251.9.145	attackbotsspam	20 attempts against mh-misbehave-ban on pluto	2020-04-02 23:50:11
124.123.254.133	attackbots	" "	2020-04-03 00:18:03
124.156.105.251	attackspambots	Apr 2 17:26:21 haigwepa sshd[27016]: Failed password for root from 124.156.105.251 port 40324 ssh2 ...	2020-04-02 23:39:28
179.113.122.237	attackspam	Apr 2 16:46:33 pornomens sshd\[20529\]: Invalid user aq from 179.113.122.237 port 43588 Apr 2 16:46:33 pornomens sshd\[20529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.113.122.237 Apr 2 16:46:35 pornomens sshd\[20529\]: Failed password for invalid user aq from 179.113.122.237 port 43588 ssh2 ...	2020-04-02 23:41:22
222.186.190.14	attackbotsspam	DATE:2020-04-02 18:06:15, IP:222.186.190.14, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-03 00:15:12
142.4.214.151	attack	SSH brute force attempt	2020-04-02 23:54:59
223.181.207.232	attack	Unauthorized connection attempt from IP address 223.181.207.232 on Port 445(SMB)	2020-04-03 00:06:35
222.186.173.154	attack	Apr 2 17:18:47 eventyay sshd[6977]: Failed password for root from 222.186.173.154 port 29062 ssh2 Apr 2 17:19:00 eventyay sshd[6977]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 29062 ssh2 [preauth] Apr 2 17:19:07 eventyay sshd[6984]: Failed password for root from 222.186.173.154 port 24176 ssh2 ...	2020-04-02 23:27:30
24.41.166.50	attackbotsspam	Unauthorized connection attempt detected from IP address 24.41.166.50 to port 8089	2020-04-03 00:19:17
51.91.8.222	attackspambots	Apr 2 10:53:50 lanister sshd[30986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.8.222 user=root Apr 2 10:53:52 lanister sshd[30986]: Failed password for root from 51.91.8.222 port 51610 ssh2 Apr 2 10:57:53 lanister sshd[31038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.8.222 user=root Apr 2 10:57:55 lanister sshd[31038]: Failed password for root from 51.91.8.222 port 60072 ssh2	2020-04-02 23:20:03
34.92.111.163	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-04-02 23:16:25
180.166.141.58	attack	[MK-VM4] Blocked by UFW	2020-04-02 23:28:50
222.186.42.155	attackspam	[MK-VM6] SSH login failed	2020-04-02 23:49:46
157.245.202.159	attackspambots	Apr 2 15:31:54 OPSO sshd\[1224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.202.159 user=root Apr 2 15:31:56 OPSO sshd\[1224\]: Failed password for root from 157.245.202.159 port 53564 ssh2 Apr 2 15:35:45 OPSO sshd\[1930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.202.159 user=root Apr 2 15:35:47 OPSO sshd\[1930\]: Failed password for root from 157.245.202.159 port 55442 ssh2 Apr 2 15:39:32 OPSO sshd\[2503\]: Invalid user gh from 157.245.202.159 port 57348 Apr 2 15:39:32 OPSO sshd\[2503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.202.159	2020-04-02 23:23:06

Recently Reported IPs

110.78.186.240	213.216.48.13	180.251.107.62	117.83.163.82
152.136.208.70	41.217.234.146	101.108.139.91	170.254.34.66
1.4.226.132	190.153.114.139	183.80.67.235	180.249.41.108
52.0.143.176	114.48.111.242	46.24.251.34	159.197.230.48
110.139.253.201	187.140.177.222	198.173.178.30	113.200.121.186