City: Slough
Region: England
Country: United Kingdom
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.68.134.188 | attack | Invalid user peter from 138.68.134.188 port 52192 |
2020-07-19 02:24:51 |
| 138.68.134.188 | attack | leo_www |
2020-07-13 22:04:41 |
| 138.68.134.188 | attackbots | Jul 13 00:03:37 PorscheCustomer sshd[9091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.134.188 Jul 13 00:03:40 PorscheCustomer sshd[9091]: Failed password for invalid user sergi from 138.68.134.188 port 58318 ssh2 Jul 13 00:06:49 PorscheCustomer sshd[9221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.134.188 ... |
2020-07-13 06:15:48 |
| 138.68.134.188 | attackspambots | DATE:2020-07-11 06:11:54,IP:138.68.134.188,MATCHES:11,PORT:ssh |
2020-07-11 12:32:39 |
| 138.68.134.188 | attackbots | $f2bV_matches |
2020-07-04 04:10:04 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 138.68.0.0 - 138.68.255.255
CIDR: 138.68.0.0/16
NetName: DIGITALOCEAN-138-68-0-0
NetHandle: NET-138-68-0-0-1
Parent: NET138 (NET-138-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: DigitalOcean, LLC (DO-13)
RegDate: 2016-01-26
Updated: 2025-03-01
Comment: Routing and Peering Policy can be found at https://www.as14061.net
Comment:
Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref: https://rdap.arin.net/registry/ip/138.68.0.0
OrgName: DigitalOcean, LLC
OrgId: DO-13
Address: 105 Edgeview Drive, Suite 425
City: Broomfield
StateProv: CO
PostalCode: 80021
Country: US
RegDate: 2012-05-14
Updated: 2025-04-11
Ref: https://rdap.arin.net/registry/entity/DO-13
OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName: DigitalOcean Abuse
OrgAbusePhone: +1-646-827-4366
OrgAbuseEmail: abuse@digitalocean.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN
OrgNOCHandle: NOC32014-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-646-827-4366
OrgNOCEmail: noc@digitalocean.com
OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
OrgTechHandle: NOC32014-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-646-827-4366
OrgTechEmail: noc@digitalocean.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.134.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12175
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.68.134.113. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025100701 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 08 00:12:59 CST 2025
;; MSG SIZE rcvd: 107Host 113.134.68.138.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 113.134.68.138.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 144.91.75.37 | attack | scan z |
2019-11-04 06:05:27 |
| 123.207.140.248 | attack | Nov 3 21:16:35 vps691689 sshd[10357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.140.248 Nov 3 21:16:37 vps691689 sshd[10357]: Failed password for invalid user hellno from 123.207.140.248 port 60382 ssh2 ... |
2019-11-04 05:59:02 |
| 106.13.81.242 | attackspam | Nov 3 17:41:54 zooi sshd[9889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.81.242 Nov 3 17:41:56 zooi sshd[9889]: Failed password for invalid user ghost from 106.13.81.242 port 42358 ssh2 ... |
2019-11-04 06:22:17 |
| 64.188.13.85 | attackspam | Sent mail to former whois address of a deleted domain. |
2019-11-04 06:24:05 |
| 157.230.119.200 | attackspam | Nov 3 21:12:58 vps666546 sshd\[24902\]: Invalid user virginie from 157.230.119.200 port 57394 Nov 3 21:12:58 vps666546 sshd\[24902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.119.200 Nov 3 21:13:01 vps666546 sshd\[24902\]: Failed password for invalid user virginie from 157.230.119.200 port 57394 ssh2 Nov 3 21:16:27 vps666546 sshd\[25038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.119.200 user=root Nov 3 21:16:30 vps666546 sshd\[25038\]: Failed password for root from 157.230.119.200 port 39602 ssh2 ... |
2019-11-04 06:15:04 |
| 69.16.221.87 | attackspam | Nov 3 15:45:00 web1 postfix/smtpd[1013]: warning: unknown[69.16.221.87]: SASL LOGIN authentication failed: authentication failure ... |
2019-11-04 06:26:31 |
| 211.195.19.60 | attackspam | namecheap spam |
2019-11-04 06:07:09 |
| 122.118.0.203 | attackspam | 19/11/3@09:27:47: FAIL: Alarm-Intrusion address from=122.118.0.203 ... |
2019-11-04 06:09:19 |
| 62.210.143.116 | attackspam | \[2019-11-03 16:37:56\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T16:37:56.885-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441522447011",SessionID="0x7fdf2c3f5928",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.143.116/62091",ACLName="no_extension_match" \[2019-11-03 16:39:29\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T16:39:29.694-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="009441522447011",SessionID="0x7fdf2cabda78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.143.116/58528",ACLName="no_extension_match" \[2019-11-03 16:41:02\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T16:41:02.937-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="002441522447011",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.143.116/59307",ACLName="no |
2019-11-04 06:00:26 |
| 106.54.23.83 | attackspam | Fail2Ban Ban Triggered |
2019-11-04 06:13:49 |
| 31.17.26.190 | attack | Nov 3 20:58:14 XXX sshd[13145]: Invalid user ofsaa from 31.17.26.190 port 34760 |
2019-11-04 06:01:34 |
| 103.98.150.141 | attackspam | kp-sea2-01 recorded 2 login violations from 103.98.150.141 and was blocked at 2019-11-03 16:05:23. 103.98.150.141 has been blocked on 0 previous occasions. 103.98.150.141's first attempt was recorded at 2019-11-03 16:05:23 |
2019-11-04 06:28:57 |
| 83.144.105.158 | attackspam | Nov 3 20:20:49 localhost sshd\[58488\]: Invalid user PAssword123 from 83.144.105.158 port 51614 Nov 3 20:20:49 localhost sshd\[58488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.144.105.158 Nov 3 20:20:51 localhost sshd\[58488\]: Failed password for invalid user PAssword123 from 83.144.105.158 port 51614 ssh2 Nov 3 20:24:18 localhost sshd\[58611\]: Invalid user aspen from 83.144.105.158 port 33110 Nov 3 20:24:18 localhost sshd\[58611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.144.105.158 ... |
2019-11-04 06:05:43 |
| 77.42.78.100 | attackbotsspam | Automatic report - Port Scan Attack |
2019-11-04 06:30:10 |
| 190.181.60.26 | attackbots | Nov 3 23:01:26 MK-Soft-VM4 sshd[15785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.181.60.26 Nov 3 23:01:28 MK-Soft-VM4 sshd[15785]: Failed password for invalid user ashish from 190.181.60.26 port 44278 ssh2 ... |
2019-11-04 06:26:43 |