138.204.133.121

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.204.133.57	attackspam	Unauthorized connection attempt detected from IP address 138.204.133.57 to port 80	2020-06-01 00:01:19
138.204.133.93	attackbotsspam	Unauthorized connection attempt detected from IP address 138.204.133.93 to port 8080	2020-05-30 02:10:32
138.204.133.110	attack	Unauthorized connection attempt detected from IP address 138.204.133.110 to port 80	2020-05-30 02:09:53
138.204.133.119	attackspam	Unauthorized connection attempt detected from IP address 138.204.133.119 to port 8080	2020-05-13 04:39:15
138.204.133.124	attackspam	scan z	2020-03-12 18:05:53
138.204.133.95	attackbotsspam	Unauthorized connection attempt detected from IP address 138.204.133.95 to port 80 [J]	2020-02-05 19:32:41
138.204.133.57	attack	8080/tcp [2019-06-22]1pkt	2019-06-23 13:21:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.204.133.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31587
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.204.133.121.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:45:01 CST 2022
;; MSG SIZE  rcvd: 108

Host info

121.133.204.138.in-addr.arpa domain name pointer 121.133.204.138.venonconnect.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
121.133.204.138.in-addr.arpa	name = 121.133.204.138.venonconnect.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.178.109	attackbots	$f2bV_matches	2019-09-04 10:11:51
36.156.83.98	attackbots	Sep 3 15:45:35 debian sshd[15066]: Unable to negotiate with 36.156.83.98 port 46420: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Sep 3 15:45:36 debian sshd[15068]: Unable to negotiate with 36.156.83.98 port 48694: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-09-04 10:35:36
162.247.74.27	attack	v+ssh-bruteforce	2019-09-04 10:27:42
95.58.194.148	attackspambots	Sep 3 20:27:47 markkoudstaal sshd[24614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.58.194.148 Sep 3 20:27:49 markkoudstaal sshd[24614]: Failed password for invalid user steamcmd from 95.58.194.148 port 45780 ssh2 Sep 3 20:32:07 markkoudstaal sshd[25102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.58.194.148	2019-09-04 10:44:25
186.235.87.80	attackbotsspam	Unauthorized connection attempt from IP address 186.235.87.80 on Port 445(SMB)	2019-09-04 10:42:06
217.182.78.87	attack	"Fail2Ban detected SSH brute force attempt"	2019-09-04 10:36:20
35.202.17.165	attack	Sep 3 22:14:26 ny01 sshd[11992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.17.165 Sep 3 22:14:27 ny01 sshd[11992]: Failed password for invalid user ghost from 35.202.17.165 port 58644 ssh2 Sep 3 22:18:38 ny01 sshd[12675]: Failed password for games from 35.202.17.165 port 49410 ssh2	2019-09-04 10:20:23
218.98.40.135	attackspambots	Sep 1 21:51:45 Server10 sshd[20455]: User root from 218.98.40.135 not allowed because not listed in AllowUsers Sep 1 21:51:47 Server10 sshd[20455]: Failed password for invalid user root from 218.98.40.135 port 27719 ssh2 Sep 1 21:51:50 Server10 sshd[20455]: Failed password for invalid user root from 218.98.40.135 port 27719 ssh2 Sep 1 21:51:52 Server10 sshd[20455]: Failed password for invalid user root from 218.98.40.135 port 27719 ssh2 Sep 1 21:51:55 Server10 sshd[25268]: User root from 218.98.40.135 not allowed because not listed in AllowUsers Sep 1 21:51:58 Server10 sshd[25268]: Failed password for invalid user root from 218.98.40.135 port 43825 ssh2 Sep 1 21:52:01 Server10 sshd[25268]: Failed password for invalid user root from 218.98.40.135 port 43825 ssh2 Sep 1 21:52:03 Server10 sshd[25268]: Failed password for invalid user root from 218.98.40.135 port 43825 ssh2 Sep 1 21:52:06 Server10 sshd[25391]: User root from 218.98.40.135 not allowed because not listed in AllowUsers Sep 1 21:52:08 Server	2019-09-04 10:17:31
124.227.196.119	attackspam	Sep 3 11:20:07 hiderm sshd\[25553\]: Invalid user es from 124.227.196.119 Sep 3 11:20:07 hiderm sshd\[25553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.227.196.119 Sep 3 11:20:10 hiderm sshd\[25553\]: Failed password for invalid user es from 124.227.196.119 port 38115 ssh2 Sep 3 11:22:49 hiderm sshd\[25757\]: Invalid user zabbix from 124.227.196.119 Sep 3 11:22:49 hiderm sshd\[25757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.227.196.119	2019-09-04 10:49:03
165.22.114.33	attack	165.22.114.33 - - [03/Sep/2019:23:45:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.114.33 - - [03/Sep/2019:23:45:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.114.33 - - [03/Sep/2019:23:45:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.114.33 - - [03/Sep/2019:23:45:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.114.33 - - [03/Sep/2019:23:45:29 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.114.33 - - [03/Sep/2019:23:45:29 +0200] "POST /wp-login.php HTTP/1.1" 200 1688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-04 10:33:43
157.245.103.64	attack	Sep 3 20:49:50 ks10 sshd[32412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.103.64 Sep 3 20:49:52 ks10 sshd[32412]: Failed password for invalid user postgres from 157.245.103.64 port 54612 ssh2 ...	2019-09-04 10:11:28
52.198.9.66	attack	Sep 4 03:50:24 SilenceServices sshd[25377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.198.9.66 Sep 4 03:50:27 SilenceServices sshd[25377]: Failed password for invalid user hadoop from 52.198.9.66 port 54988 ssh2 Sep 4 03:57:54 SilenceServices sshd[30968]: Failed password for root from 52.198.9.66 port 44466 ssh2	2019-09-04 10:06:34
191.53.249.177	attackbotsspam	$f2bV_matches	2019-09-04 10:22:18
179.53.167.209	attack	Unauthorised access (Sep 3) SRC=179.53.167.209 LEN=44 TTL=243 ID=38091 TCP DPT=445 WINDOW=1024 SYN	2019-09-04 10:37:28
79.8.245.19	attackbotsspam	Automatic report - Banned IP Access	2019-09-04 10:38:55

Recently Reported IPs

159.223.59.81	110.93.227.204	20.195.197.11	116.75.198.225
3.153.4.63	115.50.7.90	185.120.37.7	170.106.51.72
146.185.205.216	223.111.216.123	121.226.118.228	179.189.193.101
121.19.82.189	175.107.6.101	31.15.89.51	39.154.135.147
183.89.161.42	202.153.37.142	81.22.46.154	103.127.21.113