138.68.247.134

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.247.104	attack	138.68.247.104 - - - [03/Oct/2020:21:29:36 +0200] "GET / HTTP/1.0" 404 162 "-" "masscan/1.0 (https://github.com/robertdavidgraham/masscan)" "-" "-"	2020-10-04 06:55:34
138.68.247.104	attackspam	Unauthorized connection attempt detected, IP banned.	2020-10-03 23:06:40
138.68.247.104	attackspam	Unauthorized connection attempt detected, IP banned.	2020-10-03 14:49:41
138.68.247.248	attack	Invalid user renewed from 138.68.247.248 port 42904	2020-09-08 01:35:24
138.68.247.248	attack	Invalid user renewed from 138.68.247.248 port 42904	2020-09-07 16:59:35
138.68.247.104	attack	Unauthorized connection attempt, Score = 100 , Ban for 1 month	2020-08-02 00:37:35
138.68.247.87	attackbots	May 30 15:14:17 vpn01 sshd[28289]: Failed password for root from 138.68.247.87 port 60094 ssh2 ...	2020-05-30 22:53:30
138.68.247.87	attackbotsspam	Invalid user krr from 138.68.247.87 port 34504	2020-05-22 06:15:11
138.68.247.87	attackspam	Invalid user support from 138.68.247.87 port 43580	2020-05-15 02:22:48
138.68.247.87	attack	(sshd) Failed SSH login from 138.68.247.87 (US/United States/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 11 09:44:48 andromeda sshd[19196]: Invalid user tom from 138.68.247.87 port 36950 May 11 09:44:51 andromeda sshd[19196]: Failed password for invalid user tom from 138.68.247.87 port 36950 ssh2 May 11 09:56:41 andromeda sshd[19802]: Invalid user apache from 138.68.247.87 port 56230	2020-05-11 18:26:40
138.68.247.104	attack	port scan and connect, tcp 80 (http)	2019-11-24 15:31:00
138.68.247.104	attackspambots	[Tue Nov 19 05:52:32.892620 2019] [:error] [pid 64127] [client 138.68.247.104:61000] [client 138.68.247.104] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ws24vmsma01.ufn.edu.br"] [uri "/"] [unique_id "XdOtUJkLc2ov4Xuep0hqgAAAAAY"] ...	2019-11-19 16:57:19
138.68.247.1	attackspambots	Sep 14 21:29:52 localhost sshd\[20719\]: Invalid user ubnt from 138.68.247.1 port 36984 Sep 14 21:29:52 localhost sshd\[20719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.247.1 Sep 14 21:29:54 localhost sshd\[20719\]: Failed password for invalid user ubnt from 138.68.247.1 port 36984 ssh2 Sep 14 21:34:06 localhost sshd\[20831\]: Invalid user send from 138.68.247.1 port 53120 Sep 14 21:34:06 localhost sshd\[20831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.247.1 ...	2019-09-15 05:35:40
138.68.247.1	attackspambots	Sep 13 01:33:03 aiointranet sshd\[19128\]: Invalid user cron from 138.68.247.1 Sep 13 01:33:03 aiointranet sshd\[19128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.247.1 Sep 13 01:33:05 aiointranet sshd\[19128\]: Failed password for invalid user cron from 138.68.247.1 port 34684 ssh2 Sep 13 01:37:32 aiointranet sshd\[19499\]: Invalid user kuaisuweb from 138.68.247.1 Sep 13 01:37:32 aiointranet sshd\[19499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.247.1	2019-09-13 20:45:37
138.68.247.1	attackbotsspam	'Fail2Ban'	2019-09-05 15:31:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.247.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60013
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.247.134.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:52:50 CST 2022
;; MSG SIZE  rcvd: 107

Host info

134.247.68.138.in-addr.arpa domain name pointer teenusernames.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.247.68.138.in-addr.arpa	name = teenusernames.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.209.192.137	attackspambots	Automated reporting of SSH Vulnerability scanning	2019-10-04 04:24:48
180.126.226.168	attackbotsspam	Automated reporting of SSH Vulnerability scanning	2019-10-04 04:18:30
23.251.142.181	attackbots	Oct 3 04:09:44 web1 sshd\[700\]: Invalid user nrpe from 23.251.142.181 Oct 3 04:09:44 web1 sshd\[700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.142.181 Oct 3 04:09:45 web1 sshd\[700\]: Failed password for invalid user nrpe from 23.251.142.181 port 50787 ssh2 Oct 3 04:13:41 web1 sshd\[1118\]: Invalid user user3 from 23.251.142.181 Oct 3 04:13:41 web1 sshd\[1118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.142.181	2019-10-04 04:18:53
89.248.174.214	attackspambots	10/03/2019-15:23:32.080673 89.248.174.214 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 98	2019-10-04 04:34:20
187.222.70.10	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 03-10-2019 13:20:28.	2019-10-04 04:40:59
45.227.156.105	attackbots	Online Dating Fraud Return-Path: Received: from 45.227.156.105.opencorp.com.br (45.227.156.105.opencorp.com.br [45.227.156.105]) Message-ID: Reply-To: "Judith" From: "Judith" To: "Judith" <_____@_____> Subject: I'll ask you Date: Thu, 03 Oct 2019 02:10:18 -0900 X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 http://sweetrebecca.su/corpvip/ 185.254.121.237 JAVASCRIPT redirect to: http://feelingyourdating10.com/?u=rbak605&o=9y4gtum&m=1&t=corpvip 92.63.192.133 01: Permanent redirect to: https://feelingyourdating10.com/?u=rbak605&o=9y4gtum&m=1&t=corpvip 45.82.153.55	2019-10-04 04:51:57
109.116.196.174	attackbots	2019-10-03T16:03:51.219276lon01.zurich-datacenter.net sshd\[6972\]: Invalid user oracle from 109.116.196.174 port 60316 2019-10-03T16:03:51.227769lon01.zurich-datacenter.net sshd\[6972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 2019-10-03T16:03:53.590626lon01.zurich-datacenter.net sshd\[6972\]: Failed password for invalid user oracle from 109.116.196.174 port 60316 ssh2 2019-10-03T16:08:40.386831lon01.zurich-datacenter.net sshd\[7055\]: Invalid user abascal from 109.116.196.174 port 45390 2019-10-03T16:08:40.393009lon01.zurich-datacenter.net sshd\[7055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 ...	2019-10-04 04:28:31
119.29.203.106	attack	Oct 3 16:55:04 debian sshd\[22849\]: Invalid user frederick from 119.29.203.106 port 41750 Oct 3 16:55:04 debian sshd\[22849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.203.106 Oct 3 16:55:06 debian sshd\[22849\]: Failed password for invalid user frederick from 119.29.203.106 port 41750 ssh2 ...	2019-10-04 04:56:03
49.88.112.113	attackspambots	Oct 3 08:36:36 web9 sshd\[3717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 3 08:36:38 web9 sshd\[3717\]: Failed password for root from 49.88.112.113 port 16119 ssh2 Oct 3 08:37:04 web9 sshd\[3781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 3 08:37:06 web9 sshd\[3781\]: Failed password for root from 49.88.112.113 port 41906 ssh2 Oct 3 08:37:08 web9 sshd\[3781\]: Failed password for root from 49.88.112.113 port 41906 ssh2	2019-10-04 04:54:17
67.188.137.57	attackspam	Oct 4 03:49:04 webhost01 sshd[23040]: Failed password for root from 67.188.137.57 port 50106 ssh2 ...	2019-10-04 04:56:26
185.234.219.83	attack	Oct 3 23:09:45 elektron postfix/smtpd\[32109\]: warning: unknown\[185.234.219.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 23:23:29 elektron postfix/smtpd\[2062\]: warning: unknown\[185.234.219.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 23:37:06 elektron postfix/smtpd\[964\]: warning: unknown\[185.234.219.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-04 04:41:44
103.20.3.190	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-10-2019 13:20:22.	2019-10-04 04:48:16
193.31.24.113	attackspambots	10/03/2019-22:54:02.428411 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic	2019-10-04 04:57:04
92.118.160.37	attackspambots	10/03/2019-15:20:11.720045 92.118.160.37 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-04 04:50:11
184.22.79.235	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 03-10-2019 13:20:26.	2019-10-04 04:41:58

Recently Reported IPs

138.68.246.76	138.68.247.167	118.183.109.23	138.68.247.211
138.68.247.195	138.68.248.3	138.68.247.41	138.68.249.22
138.68.248.29	138.68.249.128	138.68.249.58	138.68.25.225
138.68.25.35	118.183.110.250	138.68.250.141	138.68.250.115
197.245.47.236	138.68.250.25	138.68.251.129	138.68.251.217