138.68.175.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.175.27	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-11-02 07:20:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.175.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.175.74.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:58:13 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 74.175.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.175.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.254.37.192	attackbots	2020-08-23T12:43:28.833741shield sshd\[21953\]: Invalid user manager from 51.254.37.192 port 49428 2020-08-23T12:43:28.861244shield sshd\[21953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.gogoski.fr 2020-08-23T12:43:31.397989shield sshd\[21953\]: Failed password for invalid user manager from 51.254.37.192 port 49428 ssh2 2020-08-23T12:46:00.561312shield sshd\[22728\]: Invalid user lfq from 51.254.37.192 port 38766 2020-08-23T12:46:00.568262shield sshd\[22728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.gogoski.fr	2020-08-23 20:51:55
112.85.42.174	attackbots	2020-08-23T15:04:33.974261galaxy.wi.uni-potsdam.de sshd[4175]: Failed password for root from 112.85.42.174 port 58671 ssh2 2020-08-23T15:04:37.366745galaxy.wi.uni-potsdam.de sshd[4175]: Failed password for root from 112.85.42.174 port 58671 ssh2 2020-08-23T15:04:40.838115galaxy.wi.uni-potsdam.de sshd[4175]: Failed password for root from 112.85.42.174 port 58671 ssh2 2020-08-23T15:04:44.527110galaxy.wi.uni-potsdam.de sshd[4175]: Failed password for root from 112.85.42.174 port 58671 ssh2 2020-08-23T15:04:44.527304galaxy.wi.uni-potsdam.de sshd[4175]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 58671 ssh2 [preauth] 2020-08-23T15:04:44.527340galaxy.wi.uni-potsdam.de sshd[4175]: Disconnecting: Too many authentication failures [preauth] 2020-08-23T15:04:48.428009galaxy.wi.uni-potsdam.de sshd[4215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root 2020-08-23T15:04:50.670374galaxy.wi.uni-potsda ...	2020-08-23 21:05:38
121.48.164.46	attackbots	Lines containing failures of 121.48.164.46 Aug 21 10:11:27 smtp-out sshd[13196]: Did not receive identification string from 121.48.164.46 port 54078 Aug 21 10:11:45 smtp-out sshd[13223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.48.164.46 user=r.r Aug 21 10:11:46 smtp-out sshd[13223]: Failed password for r.r from 121.48.164.46 port 47352 ssh2 Aug 21 10:11:47 smtp-out sshd[13223]: Received disconnect from 121.48.164.46 port 47352:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 10:11:47 smtp-out sshd[13223]: Disconnected from authenticating user r.r 121.48.164.46 port 47352 [preauth] Aug 21 10:12:15 smtp-out sshd[13231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.48.164.46 user=r.r Aug 21 10:12:17 smtp-out sshd[13231]: Failed password for r.r from 121.48.164.46 port 33212 ssh2 Aug 21 10:12:17 smtp-out sshd[13231]: Received disconnect from 121.48.164.46 port 3321........ ------------------------------	2020-08-23 21:10:35
51.68.224.53	attackspam	Port Scan detected from 51.68.224.53 (FR/France/Hauts-de-France/Gravelines/53.ip-51-68-224.eu). 4 hits in the last 120 seconds	2020-08-23 20:47:28
212.70.149.68	attack	Aug 22 07:06:23 web01.agentur-b-2.de postfix/smtps/smtpd[2843074]: lost connection after CONNECT from unknown[212.70.149.68] Aug 22 07:07:42 web01.agentur-b-2.de postfix/smtps/smtpd[2843074]: lost connection after CONNECT from unknown[212.70.149.68] Aug 22 07:10:09 web01.agentur-b-2.de postfix/smtps/smtpd[2844305]: lost connection after CONNECT from unknown[212.70.149.68] Aug 22 07:13:02 web01.agentur-b-2.de postfix/smtps/smtpd[2844829]: lost connection after CONNECT from unknown[212.70.149.68] Aug 22 07:14:30 web01.agentur-b-2.de postfix/smtps/smtpd[2844829]: lost connection after CONNECT from unknown[212.70.149.68]	2020-08-23 20:53:04
202.55.188.85	attackbotsspam	Automatic report - Port Scan Attack	2020-08-23 20:54:14
45.122.223.198	attack	45.122.223.198 - - [23/Aug/2020:13:24:13 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.122.223.198 - - [23/Aug/2020:13:24:52 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.122.223.198 - - [23/Aug/2020:13:25:26 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-23 20:38:41
51.38.48.127	attackspambots	Port Scan detected from 51.38.48.127 (FR/France/Hauts-de-France/Roubaix/127.ip-51-38-48.eu). 4 hits in the last 160 seconds	2020-08-23 20:50:17
186.201.185.122	attackspambots	Icarus honeypot on github	2020-08-23 21:07:40
142.93.195.157	attack	Aug 23 14:25:21 vpn01 sshd[2318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.157 Aug 23 14:25:23 vpn01 sshd[2318]: Failed password for invalid user ug from 142.93.195.157 port 39912 ssh2 ...	2020-08-23 20:41:16
223.197.151.55	attackspam	Aug 23 14:32:21 prox sshd[18463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.151.55 Aug 23 14:32:23 prox sshd[18463]: Failed password for invalid user mysql from 223.197.151.55 port 50290 ssh2	2020-08-23 20:56:19
54.173.162.207	attackbots	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-08-23 20:41:45
41.41.192.150	attackspam	20/8/23@08:25:02: FAIL: Alarm-Network address from=41.41.192.150 20/8/23@08:25:02: FAIL: Alarm-Network address from=41.41.192.150 ...	2020-08-23 21:06:03
45.95.168.96	attack	2020-08-23 14:18:47 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=order@darkrp.com\) 2020-08-23 14:18:47 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=order@german-hoeffner.net\) 2020-08-23 14:18:47 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=order@yt.gl\) 2020-08-23 14:24:23 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=order@german-hoeffner.net\) 2020-08-23 14:24:23 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=order@darkrp.com\) ...	2020-08-23 20:43:25
85.209.0.172	attackspambots	Aug 23 14:25:25 rancher-0 sshd[1232852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.172 user=root Aug 23 14:25:27 rancher-0 sshd[1232852]: Failed password for root from 85.209.0.172 port 54240 ssh2 ...	2020-08-23 20:36:21

Recently Reported IPs

138.68.173.212	138.68.174.107	138.68.177.10	138.68.181.147
138.68.179.171	138.68.183.180	138.68.178.97	138.68.18.55
138.68.184.250	138.68.181.126	138.68.185.102	138.68.181.140
138.68.194.158	138.68.194.14	138.68.19.146	138.68.197.154
138.68.20.180	138.68.200.100	138.68.20.236	138.68.199.37