138.68.231.214

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.231.231	attackspambots	Jun 5 18:23:39 hosting sshd[13766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=immedia.co user=root Jun 5 18:23:41 hosting sshd[13766]: Failed password for root from 138.68.231.231 port 37917 ssh2 Jun 5 18:23:43 hosting sshd[13766]: Failed password for root from 138.68.231.231 port 37917 ssh2 Jun 5 18:23:39 hosting sshd[13766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=immedia.co user=root Jun 5 18:23:41 hosting sshd[13766]: Failed password for root from 138.68.231.231 port 37917 ssh2 Jun 5 18:23:43 hosting sshd[13766]: Failed password for root from 138.68.231.231 port 37917 ssh2 ...	2020-06-06 01:29:45
138.68.231.231	attackspambots	prod6 ...	2020-06-02 22:56:22
138.68.231.231	attackbotsspam	Apr 3 15:36:40 vpn01 sshd[14417]: Failed password for root from 138.68.231.231 port 36040 ssh2 ...	2020-04-04 04:38:38
138.68.231.143	attackbotsspam	Unauthorized connection attempt detected from IP address 138.68.231.143 to port 3389 [T]	2020-03-27 17:07:10
138.68.231.144	attackspam	Brute force SMTP login attempted. ...	2019-08-10 02:33:14
138.68.231.144	attack	Invalid user test2 from 138.68.231.144 port 42970	2019-07-24 17:37:24
138.68.231.144	attack	Invalid user test2 from 138.68.231.144 port 42970	2019-07-23 06:12:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.231.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62991
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.231.214.			IN	A

;; AUTHORITY SECTION:
.			235	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:04:24 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 214.231.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.231.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.85.148	attackspam	2019-07-29T21:14:53.057542hz01.yumiweb.com sshd\[23676\]: Invalid user fake from 139.59.85.148 port 43602 2019-07-29T21:14:54.372093hz01.yumiweb.com sshd\[23678\]: Invalid user support from 139.59.85.148 port 45360 2019-07-29T21:14:55.719756hz01.yumiweb.com sshd\[23680\]: Invalid user ubnt from 139.59.85.148 port 46994 ...	2019-07-30 06:17:21
59.50.85.74	attackspambots	IP: 59.50.85.74 ASN: AS4134 No.31 Jin-rong Street Port: IMAP over TLS protocol 993 Found in one or more Blacklists Date: 29/07/2019 5:37:22 PM UTC	2019-07-30 06:25:12
2602:ff3c:0:1:216:3eff:fee3:f8db	attackbotsspam	[munged]::80 2602:ff3c:0:1:216:3eff:fee3:f8db - - [29/Jul/2019:19:36:04 +0200] "POST /[munged]: HTTP/1.1" 503 3020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 2602:ff3c:0:1:216:3eff:fee3:f8db - - [29/Jul/2019:19:36:06 +0200] "POST /[munged]: HTTP/1.1" 503 2881 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 2602:ff3c:0:1:216:3eff:fee3:f8db - - [29/Jul/2019:19:36:08 +0200] "POST /[munged]: HTTP/1.1" 503 2881 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 2602:ff3c:0:1:216:3eff:fee3:f8db - - [29/Jul/2019:19:36:09 +0200] "POST /[munged]: HTTP/1.1" 503 2881 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 2602:ff3c:0:1:216:3eff:fee3:f8db - - [29/Jul/2019:19:36:10 +0200] "POST /[munged]: HTTP/1.1" 503 2881 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 2602:ff3c:0:1:216:3ef	2019-07-30 06:54:46
106.13.117.204	attack	Jul 30 00:07:15 localhost sshd\[9468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.117.204 user=root Jul 30 00:07:17 localhost sshd\[9468\]: Failed password for root from 106.13.117.204 port 54130 ssh2 Jul 30 00:11:58 localhost sshd\[10047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.117.204 user=root	2019-07-30 06:37:42
221.232.233.213	attackspambots	Jul 29 19:35:10 localhost postfix/smtpd\[5308\]: warning: unknown\[221.232.233.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 19:35:22 localhost postfix/smtpd\[5308\]: warning: unknown\[221.232.233.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 19:35:36 localhost postfix/smtpd\[5308\]: warning: unknown\[221.232.233.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 19:36:00 localhost postfix/smtpd\[5308\]: warning: unknown\[221.232.233.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 19:36:12 localhost postfix/smtpd\[6230\]: warning: unknown\[221.232.233.213\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-30 06:56:49
51.77.145.154	attack	Jul 29 22:28:02 lnxded63 sshd[20228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.145.154	2019-07-30 07:08:29
24.185.103.176	attackbotsspam	¯\_(ツ)_/¯	2019-07-30 06:36:00
175.11.210.76	attackbots	Automatic report - Port Scan Attack	2019-07-30 06:38:02
146.185.157.31	attackspambots	" "	2019-07-30 06:41:57
188.92.75.248	attack	Jul 29 17:37:11 work-partkepr sshd\[22343\]: Invalid user 0 from 188.92.75.248 port 46991 Jul 29 17:37:14 work-partkepr sshd\[22343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.92.75.248 ...	2019-07-30 06:33:21
41.38.151.227	attackspambots	IP: 41.38.151.227 ASN: AS8452 TE-AS Port: Message Submission 587 Found in one or more Blacklists Date: 29/07/2019 5:37:10 PM UTC	2019-07-30 06:34:36
158.69.120.84	attack	Muieblackcat Scanner Remote Code Injection Vulnerability, PTR: ns520627.ip-158-69-120.net.	2019-07-30 06:24:05
92.222.79.7	attackbotsspam	Jul 30 00:14:32 SilenceServices sshd[14802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.79.7 Jul 30 00:14:34 SilenceServices sshd[14802]: Failed password for invalid user ubuntu from 92.222.79.7 port 43052 ssh2 Jul 30 00:18:45 SilenceServices sshd[17094]: Failed password for pulse from 92.222.79.7 port 37436 ssh2	2019-07-30 06:27:25
148.72.150.63	attackspam	Jul 29 17:36:05 localhost sshd\[22355\]: Invalid user victoria from 148.72.150.63 port 49444 Jul 29 17:36:05 localhost sshd\[22355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.150.63 Jul 29 17:36:07 localhost sshd\[22355\]: Failed password for invalid user victoria from 148.72.150.63 port 49444 ssh2 ...	2019-07-30 06:58:15
50.208.56.156	attackbots	Jul 29 21:41:57 icinga sshd[23231]: Failed password for root from 50.208.56.156 port 50046 ssh2 ...	2019-07-30 06:28:45

Recently Reported IPs

138.68.229.239	138.68.191.236	138.68.233.139	138.68.231.150
138.68.229.102	138.68.235.79	138.68.236.85	138.68.237.43
138.68.248.117	138.68.248.91	138.68.255.239	138.68.253.17
138.68.255.173	138.68.250.53	138.68.31.46	138.68.26.55
138.68.30.74	138.68.37.201	138.68.34.161	138.68.39.77