138.68.212.254

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.212.139	attackbots	" "	2019-11-29 08:49:47
138.68.212.45	attackspam	Mozilla/5.0 zgrab/0.x	2019-11-22 22:48:08
138.68.212.139	attackbots	port scan and connect, tcp 443 (https)	2019-11-10 21:03:29
138.68.212.113	attackspambots	Honeypot hit.	2019-11-10 01:07:35
138.68.212.139	attackspam	138.68.212.139 was recorded 5 times by 5 hosts attempting to connect to the following ports: 1028. Incident counter (4h, 24h, all-time): 5, 16, 23	2019-11-09 22:03:05
138.68.212.45	attackspam	Connection by 138.68.212.45 on port: 10009 got caught by honeypot at 11/8/2019 10:05:03 AM	2019-11-08 21:20:49
138.68.212.113	attackbotsspam	179/tcp 1433/tcp 5060/udp... [2019-09-02/10-31]51pkt,43pt.(tcp),4pt.(udp)	2019-11-02 19:20:16
138.68.212.45	attackbotsspam	53169/tcp 49738/tcp 8118/tcp... [2019-08-31/10-30]49pkt,37pt.(tcp),3pt.(udp)	2019-10-31 01:38:00
138.68.212.139	attack	firewall-block, port(s): 990/tcp	2019-10-14 16:56:22
138.68.212.113	attack	firewall-block, port(s): 465/tcp	2019-10-03 02:45:27
138.68.212.45	attackspam	port scan and connect, tcp 22 (ssh)	2019-09-27 14:35:48
138.68.212.45	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-13 12:22:35
138.68.212.185	attackbotsspam	" "	2019-09-06 04:29:10
138.68.212.207	attackbotsspam	2525/tcp 8443/tcp 5902/tcp... [2019-08-29/09-05]7pkt,7pt.(tcp)	2019-09-05 22:31:56
138.68.212.210	attackbotsspam	Honeypot hit, critical abuseConfidenceScore, incoming Traffic from this IP	2019-09-04 02:34:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.212.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8136
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.212.254.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 06:31:22 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 254.212.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 254.212.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.25.197.154	attackspambots	2019-10-13T03:57:05.877849abusebot-5.cloudsearch.cf sshd\[809\]: Invalid user robert from 59.25.197.154 port 55590	2019-10-13 12:44:16
46.38.144.146	attack	Oct 13 06:42:44 webserver postfix/smtpd\[3384\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 06:43:58 webserver postfix/smtpd\[3384\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 06:45:19 webserver postfix/smtpd\[3384\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 06:46:40 webserver postfix/smtpd\[3384\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 06:47:58 webserver postfix/smtpd\[3871\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-13 12:51:37
154.117.154.34	attackbots	firewall-block, port(s): 23/tcp	2019-10-13 12:56:34
218.92.0.200	attackbots	Oct 13 06:42:04 legacy sshd[6768]: Failed password for root from 218.92.0.200 port 17884 ssh2 Oct 13 06:42:08 legacy sshd[6768]: Failed password for root from 218.92.0.200 port 17884 ssh2 Oct 13 06:42:10 legacy sshd[6768]: Failed password for root from 218.92.0.200 port 17884 ssh2 ...	2019-10-13 12:42:58
185.232.67.5	attack	Oct 13 05:57:40 dedicated sshd[8965]: Invalid user admin from 185.232.67.5 port 60417	2019-10-13 12:17:59
222.186.175.169	attack	2019-10-13T11:48:15.046075enmeeting.mahidol.ac.th sshd\[24846\]: User root from 222.186.175.169 not allowed because not listed in AllowUsers 2019-10-13T11:48:16.363815enmeeting.mahidol.ac.th sshd\[24846\]: Failed none for invalid user root from 222.186.175.169 port 64992 ssh2 2019-10-13T11:48:17.789602enmeeting.mahidol.ac.th sshd\[24846\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root ...	2019-10-13 12:50:46
94.231.136.154	attackspambots	$f2bV_matches	2019-10-13 12:48:50
208.115.237.94	attack	\[2019-10-13 00:21:35\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-13T00:21:35.804-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="46462607541",SessionID="0x7fc3ad578188",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/208.115.237.94/54729",ACLName="no_extension_match" \[2019-10-13 00:22:19\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-13T00:22:19.112-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="601146462607541",SessionID="0x7fc3ac5c7038",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/208.115.237.94/58890",ACLName="no_extension_match" \[2019-10-13 00:23:02\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-13T00:23:02.335-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="101146462607541",SessionID="0x7fc3ac1ffcf8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/208.115.237.94/55058",ACLName="no_exte	2019-10-13 12:39:36
52.188.198.52	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 52.188.198.52 (US/United States/-): 5 in the last 3600 secs	2019-10-13 12:15:38
118.244.206.126	attackspam	Oct 13 03:47:06 sshgateway sshd\[6692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.244.206.126 user=root Oct 13 03:47:07 sshgateway sshd\[6692\]: Failed password for root from 118.244.206.126 port 44782 ssh2 Oct 13 03:56:39 sshgateway sshd\[6712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.244.206.126 user=root	2019-10-13 12:58:04
222.186.15.110	attackbots	Oct 13 06:35:16 h2177944 sshd\[18102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.110 user=root Oct 13 06:35:18 h2177944 sshd\[18102\]: Failed password for root from 222.186.15.110 port 35775 ssh2 Oct 13 06:35:21 h2177944 sshd\[18102\]: Failed password for root from 222.186.15.110 port 35775 ssh2 Oct 13 06:35:23 h2177944 sshd\[18102\]: Failed password for root from 222.186.15.110 port 35775 ssh2 ...	2019-10-13 12:36:15
220.94.205.218	attackbots	2019-10-13T04:27:37.413330abusebot-5.cloudsearch.cf sshd\[1107\]: Invalid user hp from 220.94.205.218 port 39760 2019-10-13T04:27:37.418179abusebot-5.cloudsearch.cf sshd\[1107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.94.205.218	2019-10-13 12:54:17
52.128.227.251	attack	10/13/2019-00:29:01.298234 52.128.227.251 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-13 12:30:24
78.94.119.186	attack	Oct 13 04:10:18 game-panel sshd[8006]: Failed password for root from 78.94.119.186 port 52366 ssh2 Oct 13 04:14:43 game-panel sshd[8134]: Failed password for root from 78.94.119.186 port 36934 ssh2	2019-10-13 12:38:27
222.186.173.142	attack	Oct 13 06:00:38 MK-Soft-Root1 sshd[11092]: Failed password for root from 222.186.173.142 port 33130 ssh2 Oct 13 06:00:44 MK-Soft-Root1 sshd[11092]: Failed password for root from 222.186.173.142 port 33130 ssh2 ...	2019-10-13 12:24:57

Recently Reported IPs

53.15.201.27	52.50.176.199	188.159.238.100	68.76.18.1
179.167.157.31	131.80.212.30	21.48.100.217	237.132.155.144
57.21.9.117	41.39.29.162	153.211.135.48	209.25.173.153
62.211.150.90	61.200.212.162	24.19.216.231	66.10.203.226
73.241.132.55	255.226.22.68	91.227.170.149	62.72.162.51