138.68.12.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.128.185	attackbotsspam	Automatic report generated by Wazuh	2020-09-19 20:38:31
138.68.128.185	attack	138.68.128.185 - - [19/Sep/2020:04:55:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2265 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.128.185 - - [19/Sep/2020:04:56:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.128.185 - - [19/Sep/2020:04:56:11 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-19 12:35:07
138.68.128.185	attack	SSH 2020-09-19 00:41:12 138.68.128.185 139.99.53.101 > GET www.materialhandling.web.id /wp-login.php HTTP/1.1 - - 2020-09-19 00:41:18 138.68.128.185 139.99.53.101 > POST www.materialhandling.web.id /wp-login.php HTTP/1.1 - - 2020-09-19 02:33:05 138.68.128.185 139.99.53.101 > POST karsagroup.co.id /wp-login.php HTTP/1.1 - -	2020-09-19 04:12:14
138.68.128.164	attackbots	Wordpress malicious attack:[octablocked]	2020-04-20 12:18:59
138.68.12.43	attackspambots	Sep 10 10:38:12 dallas01 sshd[1673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Sep 10 10:38:14 dallas01 sshd[1673]: Failed password for invalid user postgres from 138.68.12.43 port 42268 ssh2 Sep 10 10:45:55 dallas01 sshd[2877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43	2020-01-28 05:14:39
138.68.12.43	attackbots	Dec 7 11:55:12 gw1 sshd[4915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Dec 7 11:55:14 gw1 sshd[4915]: Failed password for invalid user test from 138.68.12.43 port 53310 ssh2 ...	2019-12-07 15:05:55
138.68.12.43	attackbotsspam	Dec 3 21:46:39 gw1 sshd[1297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Dec 3 21:46:41 gw1 sshd[1297]: Failed password for invalid user zahn from 138.68.12.43 port 52128 ssh2 ...	2019-12-04 00:53:22
138.68.12.43	attackspambots	$f2bV_matches	2019-11-24 16:11:47
138.68.12.43	attack	2019-11-20T16:54:48.916052centos sshd\[23348\]: Invalid user waja from 138.68.12.43 port 40666 2019-11-20T16:54:48.927245centos sshd\[23348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 2019-11-20T16:54:50.510138centos sshd\[23348\]: Failed password for invalid user waja from 138.68.12.43 port 40666 ssh2	2019-11-21 01:11:15
138.68.12.43	attack	Nov 15 05:45:44 web9 sshd\[25102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 user=root Nov 15 05:45:46 web9 sshd\[25102\]: Failed password for root from 138.68.12.43 port 33178 ssh2 Nov 15 05:50:28 web9 sshd\[25779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 user=root Nov 15 05:50:30 web9 sshd\[25779\]: Failed password for root from 138.68.12.43 port 42522 ssh2 Nov 15 05:55:12 web9 sshd\[26356\]: Invalid user admin from 138.68.12.43 Nov 15 05:55:12 web9 sshd\[26356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43	2019-11-16 05:54:56
138.68.12.43	attackspambots	Nov 2 22:03:21 tdfoods sshd\[16572\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 user=root Nov 2 22:03:23 tdfoods sshd\[16572\]: Failed password for root from 138.68.12.43 port 35576 ssh2 Nov 2 22:08:22 tdfoods sshd\[17093\]: Invalid user spence from 138.68.12.43 Nov 2 22:08:22 tdfoods sshd\[17093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Nov 2 22:08:24 tdfoods sshd\[17093\]: Failed password for invalid user spence from 138.68.12.43 port 44896 ssh2	2019-11-03 18:54:24
138.68.12.43	attack	Nov 2 19:44:46 tdfoods sshd\[4233\]: Invalid user sir from 138.68.12.43 Nov 2 19:44:46 tdfoods sshd\[4233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Nov 2 19:44:47 tdfoods sshd\[4233\]: Failed password for invalid user sir from 138.68.12.43 port 57090 ssh2 Nov 2 19:49:51 tdfoods sshd\[4648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 user=root Nov 2 19:49:53 tdfoods sshd\[4648\]: Failed password for root from 138.68.12.43 port 38168 ssh2	2019-11-03 13:50:41
138.68.12.43	attackbots	Oct 27 00:07:11 sauna sshd[10408]: Failed password for root from 138.68.12.43 port 52226 ssh2 ...	2019-10-27 05:12:24
138.68.12.43	attackbotsspam	Oct 23 03:31:54 plusreed sshd[14996]: Invalid user Aa123456789 from 138.68.12.43 ...	2019-10-23 15:47:57
138.68.12.43	attackspambots	Oct 20 07:05:34 vps647732 sshd[1960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 Oct 20 07:05:36 vps647732 sshd[1960]: Failed password for invalid user polarbear from 138.68.12.43 port 59442 ssh2 ...	2019-10-20 13:07:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.12.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63033
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.12.20.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:57:59 CST 2022
;; MSG SIZE  rcvd: 105

Host info

20.12.68.138.in-addr.arpa domain name pointer 573993.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.12.68.138.in-addr.arpa	name = 573993.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.237.248.230	attackbots	Automatic report - Port Scan Attack	2019-09-07 09:42:27
110.37.200.207	attack	BURG,WP GET /wp-login.php	2019-09-07 09:49:55
51.38.186.207	attackbots	Sep 7 04:21:51 www sshd\[26822\]: Invalid user mc from 51.38.186.207Sep 7 04:21:54 www sshd\[26822\]: Failed password for invalid user mc from 51.38.186.207 port 45602 ssh2Sep 7 04:25:49 www sshd\[26835\]: Invalid user mcserver from 51.38.186.207Sep 7 04:25:51 www sshd\[26835\]: Failed password for invalid user mcserver from 51.38.186.207 port 60906 ssh2 ...	2019-09-07 09:26:54
62.98.144.49	attackbotsspam	Automatic report - Port Scan Attack	2019-09-07 09:34:19
77.204.76.91	attack	Sep 7 04:23:29 site2 sshd\[4672\]: Invalid user admin from 77.204.76.91Sep 7 04:23:30 site2 sshd\[4672\]: Failed password for invalid user admin from 77.204.76.91 port 41173 ssh2Sep 7 04:27:22 site2 sshd\[4849\]: Invalid user user from 77.204.76.91Sep 7 04:27:24 site2 sshd\[4849\]: Failed password for invalid user user from 77.204.76.91 port 34628 ssh2Sep 7 04:31:12 site2 sshd\[5058\]: Invalid user ftpuser from 77.204.76.91 ...	2019-09-07 09:45:51
123.207.145.66	attack	Sep 7 02:39:52 tux-35-217 sshd\[12887\]: Invalid user test3 from 123.207.145.66 port 55810 Sep 7 02:39:52 tux-35-217 sshd\[12887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Sep 7 02:39:54 tux-35-217 sshd\[12887\]: Failed password for invalid user test3 from 123.207.145.66 port 55810 ssh2 Sep 7 02:45:18 tux-35-217 sshd\[12914\]: Invalid user oracle from 123.207.145.66 port 42756 Sep 7 02:45:18 tux-35-217 sshd\[12914\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 ...	2019-09-07 09:30:34
134.209.237.152	attack	Sep 6 21:44:15 vps200512 sshd\[12237\]: Invalid user zabbix from 134.209.237.152 Sep 6 21:44:15 vps200512 sshd\[12237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.237.152 Sep 6 21:44:16 vps200512 sshd\[12237\]: Failed password for invalid user zabbix from 134.209.237.152 port 38348 ssh2 Sep 6 21:48:25 vps200512 sshd\[12316\]: Invalid user ftpadmin from 134.209.237.152 Sep 6 21:48:25 vps200512 sshd\[12316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.237.152	2019-09-07 09:55:34
77.68.72.182	attackbots	Sep 7 04:07:57 intra sshd\[52380\]: Invalid user owncloud from 77.68.72.182Sep 7 04:07:59 intra sshd\[52380\]: Failed password for invalid user owncloud from 77.68.72.182 port 48948 ssh2Sep 7 04:11:50 intra sshd\[52452\]: Invalid user student from 77.68.72.182Sep 7 04:11:52 intra sshd\[52452\]: Failed password for invalid user student from 77.68.72.182 port 34732 ssh2Sep 7 04:15:52 intra sshd\[52548\]: Invalid user git from 77.68.72.182Sep 7 04:15:53 intra sshd\[52548\]: Failed password for invalid user git from 77.68.72.182 port 48760 ssh2 ...	2019-09-07 09:21:52
35.202.35.224	attackbotsspam	Sep 6 21:30:24 vps200512 sshd\[11906\]: Invalid user sftptest from 35.202.35.224 Sep 6 21:30:24 vps200512 sshd\[11906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.35.224 Sep 6 21:30:26 vps200512 sshd\[11906\]: Failed password for invalid user sftptest from 35.202.35.224 port 57698 ssh2 Sep 6 21:34:40 vps200512 sshd\[12001\]: Invalid user znc-admin from 35.202.35.224 Sep 6 21:34:40 vps200512 sshd\[12001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.35.224	2019-09-07 09:36:51
188.93.234.85	attackspambots	Sep 6 15:17:45 tdfoods sshd\[11132\]: Invalid user teamspeak3 from 188.93.234.85 Sep 6 15:17:45 tdfoods sshd\[11132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85 Sep 6 15:17:46 tdfoods sshd\[11132\]: Failed password for invalid user teamspeak3 from 188.93.234.85 port 38306 ssh2 Sep 6 15:22:23 tdfoods sshd\[11547\]: Invalid user uftp from 188.93.234.85 Sep 6 15:22:23 tdfoods sshd\[11547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85	2019-09-07 09:35:05
35.232.92.131	attackspambots	Sep 6 15:31:06 lcprod sshd\[21357\]: Invalid user cactiuser from 35.232.92.131 Sep 6 15:31:06 lcprod sshd\[21357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.92.232.35.bc.googleusercontent.com Sep 6 15:31:08 lcprod sshd\[21357\]: Failed password for invalid user cactiuser from 35.232.92.131 port 42250 ssh2 Sep 6 15:35:28 lcprod sshd\[21823\]: Invalid user ts from 35.232.92.131 Sep 6 15:35:28 lcprod sshd\[21823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.92.232.35.bc.googleusercontent.com	2019-09-07 09:48:21
180.167.233.254	attackspambots	Sep 7 03:07:12 dedicated sshd[31607]: Invalid user 1q2w3e4r from 180.167.233.254 port 55816	2019-09-07 09:24:36
14.232.160.213	attackbots	F2B jail: sshd. Time: 2019-09-07 03:39:17, Reported by: VKReport	2019-09-07 09:50:33
203.160.91.226	attack	Sep 6 21:13:56 TORMINT sshd\[7742\]: Invalid user ye from 203.160.91.226 Sep 6 21:13:56 TORMINT sshd\[7742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.160.91.226 Sep 6 21:13:58 TORMINT sshd\[7742\]: Failed password for invalid user ye from 203.160.91.226 port 59706 ssh2 ...	2019-09-07 09:14:08
180.100.207.235	attackspambots	2019-09-07T01:19:02.727714abusebot-5.cloudsearch.cf sshd\[11334\]: Invalid user csr1dev from 180.100.207.235 port 51523	2019-09-07 09:32:25

Recently Reported IPs

138.68.124.111	138.68.123.4	138.68.128.140	138.68.128.227
138.68.132.134	138.68.129.233	138.68.133.8	138.68.135.181
138.68.140.125	138.68.143.183	138.68.144.45	138.68.145.202
138.68.146.187	138.68.14.32	138.68.147.13	138.68.148.104
138.68.148.15	138.68.133.150	138.68.157.127	138.68.152.190