138.197.134.229

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.134.206	attackspambots	xmlrpc attack	2020-05-02 06:11:17
138.197.134.206	attack	Accessing a honeypot website	2020-04-06 18:18:17
138.197.134.206	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-04 20:59:43
138.197.134.206	attack	Hit on CMS login honeypot	2020-03-20 02:31:01
138.197.134.206	attackbotsspam	138.197.134.206 - - [09/Mar/2020:12:18:25 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.134.206 - - [09/Mar/2020:12:18:25 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-09 20:33:14
138.197.134.111	attackbotsspam	Feb 27 00:17:44 lnxded64 sshd[19986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.134.111	2020-02-27 08:29:00
138.197.134.111	attackspam	Feb 22 06:58:00 sshd\[16201\]: Invalid user temp1 from 138.197.134.111Feb 22 06:58:02 sshd\[16201\]: Failed password for invalid user temp1 from 138.197.134.111 port 40854 ssh2 ...	2020-02-22 20:15:44
138.197.134.111	attackspam	Feb 17 16:34:02 mout sshd[7086]: Invalid user notes from 138.197.134.111 port 52598	2020-02-18 02:38:26
138.197.134.111	attackspam	ssh brute force	2020-02-17 20:35:36
138.197.134.111	attack	Invalid user zabbix from 138.197.134.111 port 48900	2020-02-13 15:59:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.134.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51214
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.134.229.		IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:33:54 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 229.134.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 229.134.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.248.168.220	attackbotsspam	NL_IPV_<177>1581174825 [1:2402000:5448] ET DROP Dshield Block Listed Source group 1 [Classification: Misc Attack] [Priority: 2] {TCP} 89.248.168.220:36823	2020-02-08 23:52:42
86.206.124.132	attackspam	Feb 8 16:11:50 cvbnet sshd[5689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.206.124.132 Feb 8 16:11:52 cvbnet sshd[5689]: Failed password for invalid user cpm from 86.206.124.132 port 33688 ssh2 ...	2020-02-09 00:09:02
222.186.15.158	attack	2020-02-08T10:28:16.367861vostok sshd\[7806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root \| Triggered by Fail2Ban at Vostok web server	2020-02-08 23:40:37
1.71.129.49	attack	Invalid user ddu from 1.71.129.49 port 54107 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.49 Failed password for invalid user ddu from 1.71.129.49 port 54107 ssh2 Invalid user sme from 1.71.129.49 port 38181 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.49	2020-02-09 00:06:17
222.186.19.221	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-08 23:44:02
93.39.230.232	attackbotsspam	Unauthorised access (Feb 8) SRC=93.39.230.232 LEN=40 TTL=244 ID=61916 TCP DPT=1433 WINDOW=1024 SYN	2020-02-08 23:39:54
46.100.134.106	attackspam	8728/tcp [2020-02-08]1pkt	2020-02-08 23:28:38
80.98.249.181	attackbotsspam	Feb 8 15:13:57 ovpn sshd\[29618\]: Invalid user lhp from 80.98.249.181 Feb 8 15:13:57 ovpn sshd\[29618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.98.249.181 Feb 8 15:14:00 ovpn sshd\[29618\]: Failed password for invalid user lhp from 80.98.249.181 port 51218 ssh2 Feb 8 15:30:14 ovpn sshd\[1219\]: Invalid user xue from 80.98.249.181 Feb 8 15:30:14 ovpn sshd\[1219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.98.249.181	2020-02-08 23:33:17
173.254.226.238	attackbotsspam	(imapd) Failed IMAP login from 173.254.226.238 (US/United States/173.254.226.238.static.quadranet.com): 1 in the last 3600 secs	2020-02-08 23:47:52
51.36.1.101	attack	scan r	2020-02-09 00:08:06
49.235.158.251	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-02-08 23:55:26
129.28.177.29	attackbotsspam	Feb 8 21:30:10 webhost01 sshd[22985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.177.29 Feb 8 21:30:11 webhost01 sshd[22985]: Failed password for invalid user hig from 129.28.177.29 port 55622 ssh2 ...	2020-02-08 23:30:05
109.95.158.64	attackspambots	Feb 8 15:29:32 s1 postfix/submission/smtpd\[31151\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15:29:36 s1 postfix/submission/smtpd\[31152\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15:29:38 s1 postfix/submission/smtpd\[31151\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15:29:59 s1 postfix/submission/smtpd\[31151\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15:30:01 s1 postfix/submission/smtpd\[31152\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15:30:03 s1 postfix/submission/smtpd\[31151\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15:30:05 s1 postfix/submission/smtpd\[31152\]: warning: v109095158064.ewh.dhosting.pl\[109.95.158.64\]: SASL PLAIN authentication failed: Feb 8 15	2020-02-08 23:39:24
193.112.191.228	attack	...	2020-02-09 00:02:52
88.202.190.143	attack	389/udp 30443/tcp 5555/tcp... [2019-12-18/2020-02-08]4pkt,3pt.(tcp),1pt.(udp)	2020-02-08 23:56:23

Recently Reported IPs

138.197.135.207	138.197.134.243	138.197.134.2	118.175.172.32
138.197.133.225	138.197.135.221	240.142.179.196	138.197.135.127
138.197.135.237	138.197.135.71	138.197.136.125	138.197.135.219
118.175.172.36	138.197.136.177	138.197.136.132	138.197.136.135
138.197.136.159	138.197.137.251	138.197.137.242	138.197.137.237