102.68.130.138

Basic Info

City: Tripoli

Region: Tripoli

Country: Libya

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.68.130.109	attackspambots	Unauthorized connection attempt from IP address 102.68.130.109 on Port 445(SMB)	2020-06-21 22:04:34
102.68.130.162	attack	Feb 11 17:25:18 mercury wordpress(www.learnargentinianspanish.com)[6367]: XML-RPC authentication failure for josh from 102.68.130.162 ...	2020-03-04 02:33:21

Type

Details

Datetime

102.68.130.109

attackspambots

Unauthorized connection attempt from IP address 102.68.130.109 on Port 445(SMB)

2020-06-21 22:04:34

102.68.130.162

attack

Feb 11 17:25:18 mercury wordpress(www.learnargentinianspanish.com)[6367]: XML-RPC authentication failure for josh from 102.68.130.162
...

2020-03-04 02:33:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.68.130.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12648
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.68.130.138.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 08:03:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 138.130.68.102.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.130.68.102.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.154.189.94	attackbotsspam	993/tcp 2222/tcp 26/tcp... [2019-10-02/11-19]7pkt,7pt.(tcp)	2019-11-20 08:48:27
37.59.63.219	attackbotsspam	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-11-20 08:56:58
217.61.15.38	attackspam	Nov 18 19:13:33 liveconfig01 sshd[18794]: Invalid user shrader from 217.61.15.38 Nov 18 19:13:33 liveconfig01 sshd[18794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.15.38 Nov 18 19:13:35 liveconfig01 sshd[18794]: Failed password for invalid user shrader from 217.61.15.38 port 51888 ssh2 Nov 18 19:13:35 liveconfig01 sshd[18794]: Received disconnect from 217.61.15.38 port 51888:11: Bye Bye [preauth] Nov 18 19:13:35 liveconfig01 sshd[18794]: Disconnected from 217.61.15.38 port 51888 [preauth] Nov 18 19:32:15 liveconfig01 sshd[19306]: Invalid user pul from 217.61.15.38 Nov 18 19:32:15 liveconfig01 sshd[19306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.15.38 Nov 18 19:32:17 liveconfig01 sshd[19306]: Failed password for invalid user pul from 217.61.15.38 port 53424 ssh2 Nov 18 19:32:17 liveconfig01 sshd[19306]: Received disconnect from 217.61.15.38 port 53424:11: Bye Bye ........ -------------------------------	2019-11-20 08:44:19
173.249.51.194	attack	abuseConfidenceScore blocked for 12h	2019-11-20 08:58:18
5.189.188.207	attackbotsspam	WEB Masscan Scanner Activity	2019-11-20 08:57:20
60.18.184.1	attackbots	firewall-block, port(s): 1433/tcp	2019-11-20 08:45:39
1.71.129.49	attackbots	ssh failed login	2019-11-20 13:08:39
195.154.56.58	attackbotsspam	11/20/2019-01:24:51.195827 195.154.56.58 Protocol: 6 ET SCAN NETWORK Incoming Masscan detected	2019-11-20 08:57:54
128.199.162.108	attackspambots	2019-11-19T22:44:29.635092abusebot-5.cloudsearch.cf sshd\[1971\]: Invalid user vanilla from 128.199.162.108 port 44932	2019-11-20 08:43:31
85.186.22.16	attack	Automatic report - Port Scan Attack	2019-11-20 08:43:56
27.55.90.70	attackbots	SASL Brute Force	2019-11-20 09:04:23
49.88.112.68	attack	Nov 19 23:55:47 xentho sshd[25069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Nov 19 23:55:49 xentho sshd[25069]: Failed password for root from 49.88.112.68 port 42579 ssh2 Nov 19 23:55:51 xentho sshd[25069]: Failed password for root from 49.88.112.68 port 42579 ssh2 Nov 19 23:55:47 xentho sshd[25069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Nov 19 23:55:49 xentho sshd[25069]: Failed password for root from 49.88.112.68 port 42579 ssh2 Nov 19 23:55:51 xentho sshd[25069]: Failed password for root from 49.88.112.68 port 42579 ssh2 Nov 19 23:55:47 xentho sshd[25069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.68 user=root Nov 19 23:55:49 xentho sshd[25069]: Failed password for root from 49.88.112.68 port 42579 ssh2 Nov 19 23:55:51 xentho sshd[25069]: Failed password for root from 49.88.112.68 po ...	2019-11-20 13:02:49
37.187.18.168	attackspam	WEB Masscan Scanner Activity	2019-11-20 08:56:34
188.166.111.207	attackbotsspam	B: /wp-login.php attack	2019-11-20 09:03:20
65.102.177.195	attackbotsspam	WEB Dasan GPON Routers Command Injection -1.1 (CVE-2018-10561)	2019-11-20 08:53:21

Recently Reported IPs

102.69.243.102	102.69.243.106	102.69.243.84	102.89.2.85
102.89.33.185	102.89.33.36	102.89.34.219	102.89.34.17
102.91.4.118	102.91.4.101	102.89.32.88	102.91.4.149
102.91.5.129	103.1.114.17	103.1.114.187	103.1.114.30
103.1.150.117	103.1.208.214	103.1.208.200	103.1.208.208