138.197.134.111

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Feb 27 00:17:44 lnxded64 sshd[19986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.134.111	2020-02-27 08:29:00
attackspam	Feb 22 06:58:00 sshd\[16201\]: Invalid user temp1 from 138.197.134.111Feb 22 06:58:02 sshd\[16201\]: Failed password for invalid user temp1 from 138.197.134.111 port 40854 ssh2 ...	2020-02-22 20:15:44
attackspam	Feb 17 16:34:02 mout sshd[7086]: Invalid user notes from 138.197.134.111 port 52598	2020-02-18 02:38:26
attackspam	ssh brute force	2020-02-17 20:35:36
attack	Invalid user zabbix from 138.197.134.111 port 48900	2020-02-13 15:59:22

Comments on same subnet:

IP	Type	Details	Datetime
138.197.134.206	attackspambots	xmlrpc attack	2020-05-02 06:11:17
138.197.134.206	attack	Accessing a honeypot website	2020-04-06 18:18:17
138.197.134.206	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-04 20:59:43
138.197.134.206	attack	Hit on CMS login honeypot	2020-03-20 02:31:01
138.197.134.206	attackbotsspam	138.197.134.206 - - [09/Mar/2020:12:18:25 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.134.206 - - [09/Mar/2020:12:18:25 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-09 20:33:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.134.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.134.111.		IN	A

;; AUTHORITY SECTION:
.			484	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021300 1800 900 604800 86400

;; Query time: 331 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 15:59:14 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 111.134.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.134.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
173.180.235.242	attackspambots	$f2bV_matches	2020-06-20 08:36:04
144.172.73.39	attackspam	Unauthorized SSH login attempts	2020-06-20 08:40:44
46.146.222.134	attack	Jun 20 01:04:29 ajax sshd[15898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.146.222.134 Jun 20 01:04:31 ajax sshd[15898]: Failed password for invalid user csgoserver from 46.146.222.134 port 47670 ssh2	2020-06-20 08:27:55
121.204.195.194	attackbots	RDP Brute-Force	2020-06-20 08:11:20
178.62.248.61	attack	Jun 20 01:03:43 cdc sshd[30899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.248.61 Jun 20 01:03:46 cdc sshd[30899]: Failed password for invalid user admin from 178.62.248.61 port 43630 ssh2	2020-06-20 08:12:56
220.126.227.74	attack	Jun 20 02:28:08 dev0-dcde-rnet sshd[591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.126.227.74 Jun 20 02:28:10 dev0-dcde-rnet sshd[591]: Failed password for invalid user kafka from 220.126.227.74 port 46890 ssh2 Jun 20 02:31:39 dev0-dcde-rnet sshd[615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.126.227.74	2020-06-20 08:43:48
222.186.190.17	attackspambots	Jun 20 00:06:10 rush sshd[12785]: Failed password for root from 222.186.190.17 port 62591 ssh2 Jun 20 00:06:13 rush sshd[12785]: Failed password for root from 222.186.190.17 port 62591 ssh2 Jun 20 00:06:16 rush sshd[12785]: Failed password for root from 222.186.190.17 port 62591 ssh2 ...	2020-06-20 08:17:17
107.174.44.184	attack	Jun 20 01:55:25 jane sshd[32454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.174.44.184 Jun 20 01:55:27 jane sshd[32454]: Failed password for invalid user csserver from 107.174.44.184 port 40606 ssh2 ...	2020-06-20 08:18:17
101.231.146.34	attack	Jun 20 01:52:14 cp sshd[25923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.34 Jun 20 01:52:14 cp sshd[25923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.34	2020-06-20 08:30:23
72.2.160.84	attackbotsspam	Brute forcing email accounts	2020-06-20 12:00:15
176.31.105.112	attack	176.31.105.112 - - [20/Jun/2020:01:19:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "http://www.google.com.hk" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36" 176.31.105.112 - - [20/Jun/2020:01:20:08 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "http://www.google.com.hk" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36" 176.31.105.112 - - [20/Jun/2020:01:20:53 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "http://www.google.com.hk" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/42.0.2311.90 Safari/537.36" ...	2020-06-20 08:29:42
198.46.233.148	attackspam	Jun 20 00:04:13 ip-172-31-61-156 sshd[27113]: Invalid user tuan from 198.46.233.148 Jun 20 00:04:15 ip-172-31-61-156 sshd[27113]: Failed password for invalid user tuan from 198.46.233.148 port 45922 ssh2 Jun 20 00:04:13 ip-172-31-61-156 sshd[27113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.46.233.148 Jun 20 00:04:13 ip-172-31-61-156 sshd[27113]: Invalid user tuan from 198.46.233.148 Jun 20 00:04:15 ip-172-31-61-156 sshd[27113]: Failed password for invalid user tuan from 198.46.233.148 port 45922 ssh2 ...	2020-06-20 08:17:41
106.12.111.201	attackspambots	Jun 20 02:08:09 vps639187 sshd\[3344\]: Invalid user union from 106.12.111.201 port 37966 Jun 20 02:08:09 vps639187 sshd\[3344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Jun 20 02:08:11 vps639187 sshd\[3344\]: Failed password for invalid user union from 106.12.111.201 port 37966 ssh2 ...	2020-06-20 08:30:00
114.118.24.244	attackspam	2020-06-19T19:45:40.1336581495-001 sshd[58487]: Invalid user patrick from 114.118.24.244 port 35414 2020-06-19T19:45:41.8497691495-001 sshd[58487]: Failed password for invalid user patrick from 114.118.24.244 port 35414 ssh2 2020-06-19T19:47:05.4254811495-001 sshd[58539]: Invalid user tina from 114.118.24.244 port 3156 2020-06-19T19:47:05.4285131495-001 sshd[58539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.118.24.244 2020-06-19T19:47:05.4254811495-001 sshd[58539]: Invalid user tina from 114.118.24.244 port 3156 2020-06-19T19:47:07.4776561495-001 sshd[58539]: Failed password for invalid user tina from 114.118.24.244 port 3156 ssh2 ...	2020-06-20 08:34:53
61.177.172.177	attack	odoo8 ...	2020-06-20 08:38:55

Recently Reported IPs

45.143.222.30	88.67.184.118	129.204.109.154	41.119.7.89
79.167.117.117	5.251.23.255	218.78.166.161	198.23.242.107
54.212.128.50	23.9.68.56	167.99.164.64	37.57.255.137
123.16.175.8	93.76.233.223	70.226.44.175	181.244.48.111
14.186.218.3	216.230.11.51	145.245.111.95	35.198.196.216