138.197.68.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.68.228	attackbotsspam	May 1 13:44:00 minden010 sshd[15839]: Failed password for root from 138.197.68.228 port 57658 ssh2 May 1 13:48:03 minden010 sshd[17425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.68.228 May 1 13:48:05 minden010 sshd[17425]: Failed password for invalid user stock from 138.197.68.228 port 42594 ssh2 ...	2020-05-02 00:21:27

Type

Details

Datetime

138.197.68.228

attackbotsspam

May  1 13:44:00 minden010 sshd[15839]: Failed password for root from 138.197.68.228 port 57658 ssh2
May  1 13:48:03 minden010 sshd[17425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.68.228
May  1 13:48:05 minden010 sshd[17425]: Failed password for invalid user stock from 138.197.68.228 port 42594 ssh2
...

2020-05-02 00:21:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.68.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.68.48.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 15:05:25 CST 2022
;; MSG SIZE  rcvd: 106

Host info

48.68.197.138.in-addr.arpa domain name pointer arlene.9880008888.vmk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.68.197.138.in-addr.arpa	name = arlene.9880008888.vmk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.239.35.12	attack	$f2bV_matches	2020-06-16 00:02:41
104.211.207.91	attackspam	Jun 16 01:01:42 web1 sshd[10585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.207.91 user=root Jun 16 01:01:43 web1 sshd[10585]: Failed password for root from 104.211.207.91 port 58978 ssh2 Jun 16 01:06:11 web1 sshd[11943]: Invalid user anna from 104.211.207.91 port 56321 Jun 16 01:06:11 web1 sshd[11943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.207.91 Jun 16 01:06:11 web1 sshd[11943]: Invalid user anna from 104.211.207.91 port 56321 Jun 16 01:06:14 web1 sshd[11943]: Failed password for invalid user anna from 104.211.207.91 port 56321 ssh2 Jun 16 01:08:15 web1 sshd[12409]: Invalid user postgres from 104.211.207.91 port 28822 Jun 16 01:08:15 web1 sshd[12409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.207.91 Jun 16 01:08:15 web1 sshd[12409]: Invalid user postgres from 104.211.207.91 port 28822 Jun 16 01:08:17 web1 sshd[12409]: F ...	2020-06-16 00:24:08
85.45.123.234	attackspam	Jun 15 15:21:05 ajax sshd[28255]: Failed password for root from 85.45.123.234 port 17917 ssh2	2020-06-16 00:28:54
121.200.55.37	attackbotsspam	2020-06-15T16:31:50+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-06-16 00:17:08
109.100.110.45	attackbots	TCP (SYN) 109.100.110.45:38286 -> port 23, len 44	2020-06-16 00:30:24
106.13.223.100	attackspambots	Jun 15 17:35:52 lnxmail61 sshd[28009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.223.100 Jun 15 17:35:54 lnxmail61 sshd[28009]: Failed password for invalid user ts3 from 106.13.223.100 port 49368 ssh2 Jun 15 17:38:02 lnxmail61 sshd[28253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.223.100	2020-06-16 00:07:31
175.6.5.233	attackbots	Jun 15 14:43:14 legacy sshd[7287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.6.5.233 Jun 15 14:43:15 legacy sshd[7287]: Failed password for invalid user sq from 175.6.5.233 port 37798 ssh2 Jun 15 14:45:25 legacy sshd[7372]: Failed password for root from 175.6.5.233 port 29802 ssh2 ...	2020-06-16 00:29:37
62.112.11.8	attackbotsspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-15T11:31:08Z and 2020-06-15T13:09:44Z	2020-06-16 00:05:32
31.163.144.55	attackbotsspam	1592223526 - 06/15/2020 14:18:46 Host: 31.163.144.55/31.163.144.55 Port: 23 TCP Blocked	2020-06-15 23:48:14
46.38.145.5	attackspambots	Jun 15 18:26:37 relay postfix/smtpd\[14776\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:26:37 relay postfix/smtpd\[12828\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:28:10 relay postfix/smtpd\[29141\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:28:11 relay postfix/smtpd\[857\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:29:43 relay postfix/smtpd\[29141\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-16 00:31:37
122.152.215.115	attack	Jun 15 17:43:23 vpn01 sshd[5969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.215.115 Jun 15 17:43:26 vpn01 sshd[5969]: Failed password for invalid user ralf from 122.152.215.115 port 52020 ssh2 ...	2020-06-15 23:54:29
181.46.240.101	attack	Automatic report - Banned IP Access	2020-06-15 23:49:59
159.65.91.105	attack	SSH Brute-Force reported by Fail2Ban	2020-06-15 23:59:48
120.92.139.2	attack	Jun 15 23:18:21 itv-usvr-01 sshd[1856]: Invalid user add from 120.92.139.2 Jun 15 23:18:21 itv-usvr-01 sshd[1856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.139.2 Jun 15 23:18:21 itv-usvr-01 sshd[1856]: Invalid user add from 120.92.139.2 Jun 15 23:18:23 itv-usvr-01 sshd[1856]: Failed password for invalid user add from 120.92.139.2 port 9816 ssh2 Jun 15 23:24:40 itv-usvr-01 sshd[2109]: Invalid user zyn from 120.92.139.2	2020-06-16 00:26:35
212.70.149.2	attackspam	Jun 15 18:21:42 srv01 postfix/smtpd\[13271\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:21:52 srv01 postfix/smtpd\[16004\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:22:08 srv01 postfix/smtpd\[13271\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:22:23 srv01 postfix/smtpd\[23854\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 15 18:22:25 srv01 postfix/smtpd\[16004\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-16 00:22:32

Recently Reported IPs

138.197.183.14	138.201.11.122	138.201.202.58	138.197.8.78
138.197.77.15	138.201.88.1	138.204.78.248	138.207.154.32
138.255.240.36	138.68.148.111	138.68.188.19	138.68.10.135
138.68.240.114	138.68.44.149	138.68.143.242	138.68.71.245
138.68.84.230	138.97.200.100	138.97.200.233	138.97.200.177