138.68.128.140

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.128.185	attackbotsspam	Automatic report generated by Wazuh	2020-09-19 20:38:31
138.68.128.185	attack	138.68.128.185 - - [19/Sep/2020:04:55:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2265 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.128.185 - - [19/Sep/2020:04:56:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.128.185 - - [19/Sep/2020:04:56:11 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-19 12:35:07
138.68.128.185	attack	SSH 2020-09-19 00:41:12 138.68.128.185 139.99.53.101 > GET www.materialhandling.web.id /wp-login.php HTTP/1.1 - - 2020-09-19 00:41:18 138.68.128.185 139.99.53.101 > POST www.materialhandling.web.id /wp-login.php HTTP/1.1 - - 2020-09-19 02:33:05 138.68.128.185 139.99.53.101 > POST karsagroup.co.id /wp-login.php HTTP/1.1 - -	2020-09-19 04:12:14
138.68.128.164	attackbots	Wordpress malicious attack:[octablocked]	2020-04-20 12:18:59
138.68.128.80	attackspambots	2019-09-23T17:02:39.893960abusebot-7.cloudsearch.cf sshd\[31323\]: Invalid user 123456 from 138.68.128.80 port 49924	2019-09-24 01:03:07
138.68.128.80	attack	Sep 22 04:52:22 hpm sshd\[2647\]: Invalid user nt from 138.68.128.80 Sep 22 04:52:22 hpm sshd\[2647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80 Sep 22 04:52:24 hpm sshd\[2647\]: Failed password for invalid user nt from 138.68.128.80 port 48258 ssh2 Sep 22 04:56:33 hpm sshd\[2975\]: Invalid user test from 138.68.128.80 Sep 22 04:56:33 hpm sshd\[2975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80	2019-09-23 01:03:56
138.68.128.80	attack	Sep 17 13:52:08 webhost01 sshd[22153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80 Sep 17 13:52:10 webhost01 sshd[22153]: Failed password for invalid user anon from 138.68.128.80 port 52078 ssh2 ...	2019-09-17 15:08:48
138.68.128.80	attack	Sep 12 23:13:03 eventyay sshd[14993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80 Sep 12 23:13:05 eventyay sshd[14993]: Failed password for invalid user 123321 from 138.68.128.80 port 56800 ssh2 Sep 12 23:18:30 eventyay sshd[15139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.128.80 ...	2019-09-13 05:22:46
138.68.128.80	attack	" "	2019-09-04 01:56:50
138.68.128.80	attackbots	Aug 31 15:16:59 plex sshd[16973]: Invalid user dattesh from 138.68.128.80 port 34686	2019-08-31 21:20:11
138.68.128.80	attackbots	Aug 31 13:40:58 plex sshd[14114]: Invalid user ankesh from 138.68.128.80 port 58948	2019-08-31 19:41:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.128.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.128.140.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:58:01 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 140.128.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.128.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.148.161.41	attackbots	Unauthorized connection attempt detected from IP address 188.148.161.41 to port 5555 [J]	2020-03-03 00:29:15
182.254.220.40	attackspam	Unauthorized connection attempt detected from IP address 182.254.220.40 to port 1433 [J]	2020-03-03 00:00:46
84.200.110.124	spam	MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord, en TOTALE INFRACTION avec les Législations Européennes comme Française sur la RGPD, donc à condamner à 750 € par pourriel émis, et tout ça pour du CUL, du SEXE... info@gurdet.co.cr => 190.0.224.183 qui renvoie sur : http://www.superpuperr.blogspot.com/9itfhgbkjn9ijnrfhgbkjngvgv http://www.superpuperr.blogspot.com/56rjkn09igvhjbkjnjnkjn9irsvhjbhjbkjngv https://en.asytech.cn/check-ip/190.0.224.183 190.0.224.183 => cyberfuel.com gurdet.co.cr => 190.0.230.72 https://www.mywot.com/scorecard/gurdet.co.cr https://en.asytech.cn/check-ip/190.0.230.72 gurdet.co.cr resend to zonaempresarial.org zonaempresarial.org => 1&1 IONOS SE - 1&1 Internet Inc zonaempresarial.org => 23.236.62.147 https://www.mywot.com/scorecard/zonaempresarial.org https://en.asytech.cn/check-ip/23.236.62.147 In fact the union of the big German and American shits, what else ? https://www.mywot.com/scorecard/1api.net https://www.mywot.com/scorecard/cyberfuel.com	2020-03-03 00:08:39
177.11.121.11	attack	Unauthorized connection attempt detected from IP address 177.11.121.11 to port 8080 [J]	2020-03-03 00:04:35
218.244.151.120	attackspam	Unauthorized connection attempt detected from IP address 218.244.151.120 to port 1433 [J]	2020-03-03 00:25:38
123.30.188.213	attack	Unauthorized connection attempt detected from IP address 123.30.188.213 to port 1433 [J]	2020-03-03 00:09:22
122.180.145.225	attackbots	Unauthorized connection attempt detected from IP address 122.180.145.225 to port 1433 [J]	2020-03-03 00:09:45
170.106.38.182	attack	Unauthorized connection attempt detected from IP address 170.106.38.182 to port 8088 [J]	2020-03-03 00:07:19
202.91.82.164	attackbotsspam	Unauthorized connection attempt detected from IP address 202.91.82.164 to port 80 [J]	2020-03-02 23:54:33
185.234.219.114	attackbots	Mar 2 16:10:00 mail postfix/smtpd\[13162\]: warning: unknown\[185.234.219.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 2 16:10:08 mail postfix/smtpd\[13162\]: warning: unknown\[185.234.219.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 2 16:10:19 mail postfix/smtpd\[13162\]: warning: unknown\[185.234.219.114\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 2 16:10:29 mail postfix/smtpd\[13162\]: warning: unknown\[185.234.219.114\]: SASL LOGIN authentication failed: Connection lost to authentication server\	2020-03-02 23:59:30
117.251.21.23	attack	Unauthorized connection attempt detected from IP address 117.251.21.23 to port 1433 [J]	2020-03-03 00:11:07
45.249.77.22	attack	Unauthorized connection attempt detected from IP address 45.249.77.22 to port 5555 [J]	2020-03-03 00:19:58
103.127.60.202	attack	Unauthorized connection attempt detected from IP address 103.127.60.202 to port 1433 [J]	2020-03-03 00:12:50
124.156.241.168	attackbotsspam	Unauthorized connection attempt detected from IP address 124.156.241.168 to port 8529 [J]	2020-03-03 00:09:04
96.255.250.230	attack	Unauthorized connection attempt detected from IP address 96.255.250.230 to port 1433 [J]	2020-03-03 00:13:36

Recently Reported IPs

138.68.123.4	138.68.128.227	138.68.132.134	138.68.129.233
138.68.133.8	138.68.135.181	138.68.140.125	138.68.143.183
138.68.144.45	138.68.145.202	138.68.146.187	138.68.14.32
138.68.147.13	138.68.148.104	138.68.148.15	138.68.133.150
138.68.157.127	138.68.152.190	138.68.154.224	138.68.154.180