138.197.135.219

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.135.102	attackspambots	138.197.135.102 - - [19/Sep/2020:07:11:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.135.102 - - [19/Sep/2020:07:11:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.135.102 - - [19/Sep/2020:07:11:24 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-20 03:49:48
138.197.135.102	attack	138.197.135.102 - - [19/Sep/2020:07:11:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.135.102 - - [19/Sep/2020:07:11:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.135.102 - - [19/Sep/2020:07:11:24 +0100] "POST /wp-login.php HTTP/1.1" 200 2431 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-19 19:55:09
138.197.135.102	attack	138.197.135.102 - - [10/Sep/2020:21:13:11 +0200] "POST /wp-login.php HTTP/1.0" 200 4794 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-11 03:27:35
138.197.135.102	attackspam	CMS (WordPress or Joomla) login attempt.	2020-09-10 18:58:01
138.197.135.102	attackbots	CMS (WordPress or Joomla) login attempt.	2020-09-08 00:12:36
138.197.135.102	attackbotsspam	Brute forcing Wordpress login	2020-09-07 08:07:25
138.197.135.102	attackbotsspam	xmlrpc attack	2020-08-20 17:21:32
138.197.135.102	attackbotsspam	xmlrpc attack	2020-07-14 17:32:46
138.197.135.199	attack	$f2bV_matches	2020-07-04 05:49:49
138.197.135.199	attackspam	Invalid user netadmin from 138.197.135.199 port 38328	2020-07-01 07:13:34
138.197.135.102	attack	CMS (WordPress or Joomla) login attempt.	2020-06-02 00:26:52
138.197.135.102	attackspambots	138.197.135.102 - - \[25/May/2020:23:09:07 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 138.197.135.102 - - \[25/May/2020:23:09:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 138.197.135.102 - - \[25/May/2020:23:09:11 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-26 05:34:31
138.197.135.102	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-04-28 16:13:50
138.197.135.102	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-04-27 07:22:23
138.197.135.102	attackspambots	xmlrpc attack	2020-04-22 16:52:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.135.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.135.219.		IN	A

;; AUTHORITY SECTION:
.			495	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:33:56 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 219.135.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 219.135.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
86.188.246.2	attackbots	$f2bV_matches	2020-04-04 03:04:35
104.236.142.200	attack	fail2ban	2020-04-04 03:01:25
175.24.107.201	attackspambots	Apr 3 09:07:28 dallas01 sshd[1908]: Failed password for root from 175.24.107.201 port 42670 ssh2 Apr 3 09:10:46 dallas01 sshd[4784]: Failed password for root from 175.24.107.201 port 44594 ssh2	2020-04-04 02:42:06
129.204.181.48	attackspambots	2020-04-03T15:19:42.922103abusebot-3.cloudsearch.cf sshd[5823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.181.48 user=root 2020-04-03T15:19:45.439405abusebot-3.cloudsearch.cf sshd[5823]: Failed password for root from 129.204.181.48 port 39274 ssh2 2020-04-03T15:25:42.699865abusebot-3.cloudsearch.cf sshd[6281]: Invalid user lishuoguo from 129.204.181.48 port 41244 2020-04-03T15:25:42.707838abusebot-3.cloudsearch.cf sshd[6281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.181.48 2020-04-03T15:25:42.699865abusebot-3.cloudsearch.cf sshd[6281]: Invalid user lishuoguo from 129.204.181.48 port 41244 2020-04-03T15:25:44.647666abusebot-3.cloudsearch.cf sshd[6281]: Failed password for invalid user lishuoguo from 129.204.181.48 port 41244 ssh2 2020-04-03T15:28:07.556071abusebot-3.cloudsearch.cf sshd[6467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost ...	2020-04-04 02:48:29
180.76.167.9	attack	Apr 3 20:33:57 OPSO sshd\[30399\]: Invalid user mapp from 180.76.167.9 port 51818 Apr 3 20:33:57 OPSO sshd\[30399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.167.9 Apr 3 20:33:59 OPSO sshd\[30399\]: Failed password for invalid user mapp from 180.76.167.9 port 51818 ssh2 Apr 3 20:39:37 OPSO sshd\[31698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.167.9 user=root Apr 3 20:39:39 OPSO sshd\[31698\]: Failed password for root from 180.76.167.9 port 48656 ssh2	2020-04-04 02:39:57
68.74.118.152	attackspam	Apr 3 20:59:26 host sshd[26932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.74.118.152 user=root Apr 3 20:59:27 host sshd[26932]: Failed password for root from 68.74.118.152 port 46736 ssh2 ...	2020-04-04 03:06:32
80.253.29.58	attack	Apr 3 21:44:33 lukav-desktop sshd\[24293\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.253.29.58 user=root Apr 3 21:44:35 lukav-desktop sshd\[24293\]: Failed password for root from 80.253.29.58 port 40990 ssh2 Apr 3 21:51:53 lukav-desktop sshd\[24590\]: Invalid user meimei from 80.253.29.58 Apr 3 21:51:53 lukav-desktop sshd\[24590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.253.29.58 Apr 3 21:51:55 lukav-desktop sshd\[24590\]: Failed password for invalid user meimei from 80.253.29.58 port 53138 ssh2	2020-04-04 03:04:56
66.70.205.186	attackbotsspam	Apr 3 20:29:10 vpn01 sshd[18492]: Failed password for root from 66.70.205.186 port 40414 ssh2 ...	2020-04-04 03:06:45
180.166.5.220	attackbots	Apr 3 16:58:38 minden010 sshd[5398]: Failed password for root from 180.166.5.220 port 3832 ssh2 Apr 3 17:03:05 minden010 sshd[6854]: Failed password for root from 180.166.5.220 port 29281 ssh2 ...	2020-04-04 02:39:30
182.74.133.117	attack	Apr 3 18:10:45 host sshd[22786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.74.133.117 user=root Apr 3 18:10:46 host sshd[22786]: Failed password for root from 182.74.133.117 port 45526 ssh2 ...	2020-04-04 02:38:43
36.89.251.105	attack	Apr 3 20:37:25 ourumov-web sshd\[32162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.251.105 user=root Apr 3 20:37:27 ourumov-web sshd\[32162\]: Failed password for root from 36.89.251.105 port 53450 ssh2 Apr 3 20:53:20 ourumov-web sshd\[714\]: Invalid user zhengzhou from 36.89.251.105 port 52736 ...	2020-04-04 03:17:19
90.73.7.138	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-04 03:04:01
124.123.105.236	attackspambots	$f2bV_matches	2020-04-04 02:50:22
113.160.234.64	attack	Invalid user tit0nich from 113.160.234.64 port 59962	2020-04-04 02:54:44
31.41.255.34	attack	Apr 3 21:03:09 vps647732 sshd[24257]: Failed password for root from 31.41.255.34 port 52032 ssh2 ...	2020-04-04 03:17:47

Recently Reported IPs

138.197.136.125	118.175.172.36	138.197.136.177	138.197.136.132
138.197.136.135	138.197.136.159	138.197.137.251	138.197.137.242
138.197.137.237	138.197.138.171	138.197.137.41	138.197.137.4
138.197.138.64	138.197.138.37	138.197.139.11	138.197.139.1
138.197.139.187	138.197.139.71	138.197.139.135	138.197.139.243