138.68.140.0 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.140.76	attack	2019-08-18 20:18:37,508 fail2ban.actions [878]: NOTICE [sshd] Ban 138.68.140.76 2019-08-18 23:26:22,206 fail2ban.actions [878]: NOTICE [sshd] Ban 138.68.140.76 2019-08-19 02:30:50,934 fail2ban.actions [878]: NOTICE [sshd] Ban 138.68.140.76 ...	2019-10-03 17:24:28
138.68.140.76	attackspambots	Sep 27 18:58:53 php1 sshd\[20071\]: Invalid user test from 138.68.140.76 Sep 27 18:58:53 php1 sshd\[20071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=evilcorp.ga Sep 27 18:58:55 php1 sshd\[20071\]: Failed password for invalid user test from 138.68.140.76 port 51152 ssh2 Sep 27 19:03:15 php1 sshd\[20964\]: Invalid user long from 138.68.140.76 Sep 27 19:03:15 php1 sshd\[20964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=evilcorp.ga	2019-09-28 13:18:29
138.68.140.76	attackbotsspam	Sep 24 12:42:50 server sshd\[6645\]: User root from 138.68.140.76 not allowed because listed in DenyUsers Sep 24 12:42:50 server sshd\[6645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76 user=root Sep 24 12:42:52 server sshd\[6645\]: Failed password for invalid user root from 138.68.140.76 port 55546 ssh2 Sep 24 12:46:41 server sshd\[32127\]: Invalid user admin1 from 138.68.140.76 port 39274 Sep 24 12:46:41 server sshd\[32127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76	2019-09-24 18:10:04
138.68.140.76	attackspambots	Repeated brute force against a port	2019-09-22 19:54:34
138.68.140.76	attackspam	Aug 27 23:42:34 MK-Soft-VM3 sshd\[31642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76 user=root Aug 27 23:42:36 MK-Soft-VM3 sshd\[31642\]: Failed password for root from 138.68.140.76 port 58848 ssh2 Aug 27 23:46:25 MK-Soft-VM3 sshd\[31820\]: Invalid user zimbra from 138.68.140.76 port 47844 Aug 27 23:46:25 MK-Soft-VM3 sshd\[31820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76 ...	2019-08-28 07:57:58
138.68.140.76	attackspambots	Aug 25 18:41:29 lcprod sshd\[6255\]: Invalid user jobs from 138.68.140.76 Aug 25 18:41:29 lcprod sshd\[6255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=evilcorp.ga Aug 25 18:41:31 lcprod sshd\[6255\]: Failed password for invalid user jobs from 138.68.140.76 port 60000 ssh2 Aug 25 18:45:18 lcprod sshd\[6617\]: Invalid user auction from 138.68.140.76 Aug 25 18:45:18 lcprod sshd\[6617\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=evilcorp.ga	2019-08-26 13:18:03
138.68.140.76	attackspambots	Invalid user tomcat from 138.68.140.76 port 56504	2019-08-23 20:56:54
138.68.140.76	attackspam	Aug 23 03:59:58 tux-35-217 sshd\[1898\]: Invalid user kathy from 138.68.140.76 port 34200 Aug 23 03:59:58 tux-35-217 sshd\[1898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76 Aug 23 04:00:00 tux-35-217 sshd\[1898\]: Failed password for invalid user kathy from 138.68.140.76 port 34200 ssh2 Aug 23 04:03:53 tux-35-217 sshd\[1922\]: Invalid user jboss from 138.68.140.76 port 51344 Aug 23 04:03:53 tux-35-217 sshd\[1922\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76 ...	2019-08-23 10:50:45
138.68.140.76	attackbots	Aug 22 11:22:07 lnxweb62 sshd[28947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76	2019-08-22 17:24:03
138.68.140.76	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-16 23:10:00
138.68.140.76	attackspam	Brute force SMTP login attempted. ...	2019-08-10 02:51:15
138.68.140.76	attackbots	Jul 13 14:05:35 srv03 sshd\[26475\]: Invalid user teamspeak from 138.68.140.76 port 48060 Jul 13 14:05:35 srv03 sshd\[26475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.140.76 Jul 13 14:05:37 srv03 sshd\[26475\]: Failed password for invalid user teamspeak from 138.68.140.76 port 48060 ssh2	2019-07-13 21:38:13
138.68.140.76	attack	Jul 7 07:50:39 vserver sshd\[10863\]: Invalid user jack from 138.68.140.76Jul 7 07:50:41 vserver sshd\[10863\]: Failed password for invalid user jack from 138.68.140.76 port 35692 ssh2Jul 7 07:54:24 vserver sshd\[10871\]: Invalid user david from 138.68.140.76Jul 7 07:54:26 vserver sshd\[10871\]: Failed password for invalid user david from 138.68.140.76 port 51704 ssh2 ...	2019-07-07 14:36:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.140.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53598
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.140.0.			IN	A

;; AUTHORITY SECTION:
.			215	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:25:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 0.140.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 0.140.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.152.201	attack	Aug 31 05:51:53 sachi sshd\[18389\]: Invalid user esau from 159.65.152.201 Aug 31 05:51:53 sachi sshd\[18389\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.152.201 Aug 31 05:51:55 sachi sshd\[18389\]: Failed password for invalid user esau from 159.65.152.201 port 56074 ssh2 Aug 31 05:56:42 sachi sshd\[18804\]: Invalid user progroomsales from 159.65.152.201 Aug 31 05:56:42 sachi sshd\[18804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.152.201	2019-09-01 00:13:31
129.204.40.157	attackspam	Aug 31 05:43:58 aiointranet sshd\[31652\]: Invalid user test123 from 129.204.40.157 Aug 31 05:43:58 aiointranet sshd\[31652\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.157 Aug 31 05:44:00 aiointranet sshd\[31652\]: Failed password for invalid user test123 from 129.204.40.157 port 34718 ssh2 Aug 31 05:49:56 aiointranet sshd\[32230\]: Invalid user honey from 129.204.40.157 Aug 31 05:49:56 aiointranet sshd\[32230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.157	2019-09-01 00:27:06
76.183.84.74	attackbotsspam	Aug 28 12:17:33 itv-usvr-01 sshd[14290]: Invalid user user from 76.183.84.74 Aug 28 12:17:33 itv-usvr-01 sshd[14290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.183.84.74 Aug 28 12:17:33 itv-usvr-01 sshd[14290]: Invalid user user from 76.183.84.74 Aug 28 12:17:34 itv-usvr-01 sshd[14290]: Failed password for invalid user user from 76.183.84.74 port 33518 ssh2 Aug 28 12:22:59 itv-usvr-01 sshd[14476]: Invalid user flanamacca from 76.183.84.74	2019-09-01 01:05:59
164.132.54.215	attackspam	Aug 31 19:21:39 yabzik sshd[21519]: Failed password for root from 164.132.54.215 port 42548 ssh2 Aug 31 19:25:30 yabzik sshd[23061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.54.215 Aug 31 19:25:32 yabzik sshd[23061]: Failed password for invalid user luan from 164.132.54.215 port 57616 ssh2	2019-09-01 01:12:22
222.186.52.89	attackbotsspam	makerspace.nqdclub.com fail2ban triggered	2019-09-01 00:54:03
177.97.49.5	attack	Honeypot attack, port: 81, PTR: 177.97.49.5.dynamic.adsl.gvt.net.br.	2019-09-01 00:34:18
76.174.154.221	attackspam	SSHScan	2019-09-01 00:44:20
206.189.221.160	attack	Aug 31 13:33:09 minden010 sshd[2763]: Failed password for mysql from 206.189.221.160 port 54030 ssh2 Aug 31 13:37:02 minden010 sshd[4086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160 Aug 31 13:37:04 minden010 sshd[4086]: Failed password for invalid user solaris from 206.189.221.160 port 40766 ssh2 ...	2019-09-01 00:18:56
178.128.241.99	attackspambots	Aug 31 15:50:23 MK-Soft-VM3 sshd\[22020\]: Invalid user dd from 178.128.241.99 port 51240 Aug 31 15:50:23 MK-Soft-VM3 sshd\[22020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.241.99 Aug 31 15:50:24 MK-Soft-VM3 sshd\[22020\]: Failed password for invalid user dd from 178.128.241.99 port 51240 ssh2 ...	2019-09-01 00:13:01
2.239.185.155	attackspambots	Aug 31 18:29:23 dev0-dcfr-rnet sshd[464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.239.185.155 Aug 31 18:29:25 dev0-dcfr-rnet sshd[464]: Failed password for invalid user username from 2.239.185.155 port 43140 ssh2 Aug 31 18:51:17 dev0-dcfr-rnet sshd[553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.239.185.155	2019-09-01 00:59:09
178.33.226.97	attackbotsspam	Aug 31 13:37:34 ncomp sshd[2790]: Invalid user system from 178.33.226.97 Aug 31 13:37:34 ncomp sshd[2790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.226.97 Aug 31 13:37:34 ncomp sshd[2790]: Invalid user system from 178.33.226.97 Aug 31 13:37:36 ncomp sshd[2790]: Failed password for invalid user system from 178.33.226.97 port 44466 ssh2	2019-09-01 00:54:57
140.143.93.31	attackspambots	$f2bV_matches	2019-09-01 00:09:40
75.80.193.222	attackspam	Aug 30 17:02:35 itv-usvr-01 sshd[15577]: Invalid user kenny from 75.80.193.222 Aug 30 17:02:35 itv-usvr-01 sshd[15577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.80.193.222 Aug 30 17:02:35 itv-usvr-01 sshd[15577]: Invalid user kenny from 75.80.193.222 Aug 30 17:02:37 itv-usvr-01 sshd[15577]: Failed password for invalid user kenny from 75.80.193.222 port 56470 ssh2 Aug 30 17:08:26 itv-usvr-01 sshd[15793]: Invalid user iolee from 75.80.193.222	2019-09-01 01:11:39
78.200.189.212	attackspambots	22/tcp [2019-08-31]1pkt	2019-09-01 00:35:32
104.244.72.98	attackspam	Aug 31 04:22:40 XXX sshd[19108]: Invalid user fake from 104.244.72.98 Aug 31 04:22:40 XXX sshd[19108]: Received disconnect from 104.244.72.98: 11: Bye Bye [preauth] Aug 31 04:22:40 XXX sshd[19110]: Invalid user support from 104.244.72.98 Aug 31 04:22:40 XXX sshd[19110]: Received disconnect from 104.244.72.98: 11: Bye Bye [preauth] Aug 31 04:22:40 XXX sshd[19112]: Invalid user user from 104.244.72.98 Aug 31 04:22:40 XXX sshd[19112]: Received disconnect from 104.244.72.98: 11: Bye Bye [preauth] Aug 31 04:22:41 XXX sshd[19114]: Invalid user admin from 104.244.72.98 Aug 31 04:22:41 XXX sshd[19114]: Received disconnect from 104.244.72.98: 11: Bye Bye [preauth] Aug 31 04:22:41 XXX sshd[19116]: User r.r from 104.244.72.98 not allowed because none of user's groups are listed in AllowGroups Aug 31 04:22:41 XXX sshd[19116]: Received disconnect from 104.244.72.98: 11: Bye Bye [preauth] Aug 31 04:22:41 XXX sshd[19118]: Invalid user guest from 104.244.72.98 Aug 31 04:22:41 XXX sshd[........ -------------------------------	2019-09-01 00:51:43

Recently Reported IPs

64.98.21.20	90.230.191.6	113.173.129.85	192.241.210.163
185.79.4.62	95.32.215.193	46.210.126.6	35.159.16.146
109.161.169.2	84.232.48.220	162.245.239.50	45.153.160.131
138.94.54.133	159.203.126.34	2.139.157.203	167.248.133.43
76.216.231.43	194.213.3.60	95.143.185.69	152.32.140.142