138.68.212.211

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-31 17:32:53

Comments on same subnet:

IP	Type	Details	Datetime
138.68.212.139	attackbots	" "	2019-11-29 08:49:47
138.68.212.45	attackspam	Mozilla/5.0 zgrab/0.x	2019-11-22 22:48:08
138.68.212.139	attackbots	port scan and connect, tcp 443 (https)	2019-11-10 21:03:29
138.68.212.113	attackspambots	Honeypot hit.	2019-11-10 01:07:35
138.68.212.139	attackspam	138.68.212.139 was recorded 5 times by 5 hosts attempting to connect to the following ports: 1028. Incident counter (4h, 24h, all-time): 5, 16, 23	2019-11-09 22:03:05
138.68.212.45	attackspam	Connection by 138.68.212.45 on port: 10009 got caught by honeypot at 11/8/2019 10:05:03 AM	2019-11-08 21:20:49
138.68.212.113	attackbotsspam	179/tcp 1433/tcp 5060/udp... [2019-09-02/10-31]51pkt,43pt.(tcp),4pt.(udp)	2019-11-02 19:20:16
138.68.212.45	attackbotsspam	53169/tcp 49738/tcp 8118/tcp... [2019-08-31/10-30]49pkt,37pt.(tcp),3pt.(udp)	2019-10-31 01:38:00
138.68.212.139	attack	firewall-block, port(s): 990/tcp	2019-10-14 16:56:22
138.68.212.113	attack	firewall-block, port(s): 465/tcp	2019-10-03 02:45:27
138.68.212.45	attackspam	port scan and connect, tcp 22 (ssh)	2019-09-27 14:35:48
138.68.212.45	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-13 12:22:35
138.68.212.185	attackbotsspam	" "	2019-09-06 04:29:10
138.68.212.207	attackbotsspam	2525/tcp 8443/tcp 5902/tcp... [2019-08-29/09-05]7pkt,7pt.(tcp)	2019-09-05 22:31:56
138.68.212.210	attackbotsspam	Honeypot hit, critical abuseConfidenceScore, incoming Traffic from this IP	2019-09-04 02:34:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.212.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18219
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.212.211.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 17:32:31 CST 2019
;; MSG SIZE  rcvd: 118

Host info

211.212.68.138.in-addr.arpa domain name pointer zg-0829b-69.stretchoid.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
211.212.68.138.in-addr.arpa	name = zg-0829b-69.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.150	attackbots	Dec 29 16:29:06 v22018076622670303 sshd\[10869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Dec 29 16:29:09 v22018076622670303 sshd\[10869\]: Failed password for root from 222.186.175.150 port 24510 ssh2 Dec 29 16:29:12 v22018076622670303 sshd\[10869\]: Failed password for root from 222.186.175.150 port 24510 ssh2 ...	2019-12-29 23:32:13
209.99.129.55	attackbots	ET DROP Spamhaus DROP Listed Traffic Inbound group 33	2019-12-29 23:29:53
95.213.235.58	attackbots	abuse hacking	2019-12-29 23:29:06
49.88.112.62	attackspambots	$f2bV_matches	2019-12-30 00:06:49
151.80.237.223	attackbots	Dec 29 16:10:20 relay postfix/smtpd\[15838\]: warning: unknown\[151.80.237.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 29 16:11:11 relay postfix/smtpd\[15838\]: warning: unknown\[151.80.237.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 29 16:15:46 relay postfix/smtpd\[17115\]: warning: unknown\[151.80.237.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 29 16:16:38 relay postfix/smtpd\[17116\]: warning: unknown\[151.80.237.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 29 16:21:16 relay postfix/smtpd\[17116\]: warning: unknown\[151.80.237.223\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-29 23:42:57
222.186.180.6	attack	Dec 29 12:40:11 firewall sshd[21750]: Failed password for root from 222.186.180.6 port 11914 ssh2 Dec 29 12:40:27 firewall sshd[21750]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 11914 ssh2 [preauth] Dec 29 12:40:27 firewall sshd[21750]: Disconnecting: Too many authentication failures [preauth] ...	2019-12-29 23:42:30
185.250.44.176	attackbots	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (mp$ContentZone$TxtMessage="	2019-12-29 23:34:08
149.202.198.71	attack	Wordpress login scanning	2019-12-30 00:01:21
110.37.226.66	attack	Unauthorized connection attempt detected from IP address 110.37.226.66 to port 445	2019-12-29 23:48:17
74.208.94.213	attackspambots	Repeated failed SSH attempt	2019-12-29 23:34:37
59.9.48.26	attackbotsspam	Dec 29 14:54:05 thevastnessof sshd[9104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.9.48.26 ...	2019-12-29 23:41:08
46.182.218.164	attackspam	REQUESTED PAGE: /wp-login.php	2019-12-29 23:31:31
49.51.198.91	attack	Automatic report - XMLRPC Attack	2019-12-29 23:46:26
159.89.115.126	attack	2019-12-29T15:06:35.343686abusebot-2.cloudsearch.cf sshd[28913]: Invalid user claudine from 159.89.115.126 port 41170 2019-12-29T15:06:35.349617abusebot-2.cloudsearch.cf sshd[28913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 2019-12-29T15:06:35.343686abusebot-2.cloudsearch.cf sshd[28913]: Invalid user claudine from 159.89.115.126 port 41170 2019-12-29T15:06:37.167109abusebot-2.cloudsearch.cf sshd[28913]: Failed password for invalid user claudine from 159.89.115.126 port 41170 ssh2 2019-12-29T15:12:01.928033abusebot-2.cloudsearch.cf sshd[28923]: Invalid user ataylor from 159.89.115.126 port 43576 2019-12-29T15:12:01.934269abusebot-2.cloudsearch.cf sshd[28923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 2019-12-29T15:12:01.928033abusebot-2.cloudsearch.cf sshd[28923]: Invalid user ataylor from 159.89.115.126 port 43576 2019-12-29T15:12:03.837188abusebot-2.cloudsearch.cf ...	2019-12-29 23:24:53
27.78.14.83	attack	SSH Server BruteForce Attack	2019-12-29 23:53:00

Recently Reported IPs

58.219.142.138	179.6.206.28	110.88.247.17	36.75.142.138
159.203.179.100	123.19.119.45	201.242.45.105	161.18.57.13
37.105.194.178	1.53.182.2	185.50.39.42	185.40.4.93
194.88.204.163	81.236.7.119	209.97.163.53	181.80.2.77
121.135.222.77	211.193.51.14	221.175.16.85	207.110.92.59