138.68.241.232

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.241.223	attackspambots	Mailserver and mailaccount attacks	2020-09-08 02:50:59
138.68.241.223	attack	TCP ports : 1 / 3 / 4 / 6 / 7 / 13 / 17 / 19 / 21 / 22 / 23	2020-09-07 18:18:46
138.68.241.88	attackspambots	Jun 7 01:37:21 ny01 sshd[13896]: Failed password for root from 138.68.241.88 port 33800 ssh2 Jun 7 01:41:04 ny01 sshd[14368]: Failed password for root from 138.68.241.88 port 38378 ssh2	2020-06-07 16:26:55
138.68.241.88	attackbots	May 21 20:28:30 localhost sshd\[28879\]: Invalid user ipn from 138.68.241.88 port 36220 May 21 20:28:30 localhost sshd\[28879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 May 21 20:28:32 localhost sshd\[28879\]: Failed password for invalid user ipn from 138.68.241.88 port 36220 ssh2 ...	2020-05-22 04:51:04
138.68.241.88	attack	May 21 09:35:56 pornomens sshd\[2382\]: Invalid user xaq from 138.68.241.88 port 56332 May 21 09:35:56 pornomens sshd\[2382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 May 21 09:35:58 pornomens sshd\[2382\]: Failed password for invalid user xaq from 138.68.241.88 port 56332 ssh2 ...	2020-05-21 16:39:43
138.68.241.88	attack	May 11 23:09:51 ns381471 sshd[18985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 May 11 23:09:53 ns381471 sshd[18985]: Failed password for invalid user stefan from 138.68.241.88 port 40520 ssh2	2020-05-12 05:19:04
138.68.241.88	attackspambots	2020-05-08T04:06:30.974948abusebot-8.cloudsearch.cf sshd[29297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 user=root 2020-05-08T04:06:33.573012abusebot-8.cloudsearch.cf sshd[29297]: Failed password for root from 138.68.241.88 port 53414 ssh2 2020-05-08T04:10:29.991843abusebot-8.cloudsearch.cf sshd[29628]: Invalid user simple from 138.68.241.88 port 35060 2020-05-08T04:10:30.004226abusebot-8.cloudsearch.cf sshd[29628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 2020-05-08T04:10:29.991843abusebot-8.cloudsearch.cf sshd[29628]: Invalid user simple from 138.68.241.88 port 35060 2020-05-08T04:10:31.884453abusebot-8.cloudsearch.cf sshd[29628]: Failed password for invalid user simple from 138.68.241.88 port 35060 ssh2 2020-05-08T04:14:28.270616abusebot-8.cloudsearch.cf sshd[29832]: Invalid user jordan from 138.68.241.88 port 44936 ...	2020-05-08 15:13:06
138.68.241.88	attack	2020-03-19T12:53:26.640998abusebot.cloudsearch.cf sshd[14772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 user=root 2020-03-19T12:53:29.138060abusebot.cloudsearch.cf sshd[14772]: Failed password for root from 138.68.241.88 port 35216 ssh2 2020-03-19T12:59:59.145235abusebot.cloudsearch.cf sshd[15258]: Invalid user Administrator from 138.68.241.88 port 50426 2020-03-19T12:59:59.152265abusebot.cloudsearch.cf sshd[15258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.88 2020-03-19T12:59:59.145235abusebot.cloudsearch.cf sshd[15258]: Invalid user Administrator from 138.68.241.88 port 50426 2020-03-19T13:00:01.267367abusebot.cloudsearch.cf sshd[15258]: Failed password for invalid user Administrator from 138.68.241.88 port 50426 ssh2 2020-03-19T13:02:45.413857abusebot.cloudsearch.cf sshd[15437]: Invalid user nisuser3 from 138.68.241.88 port 51578 ...	2020-03-19 22:30:37
138.68.241.237	attack	Lines containing failures of 138.68.241.237 Mar 2 11:36:33 neweola sshd[28976]: Invalid user system from 138.68.241.237 port 49552 Mar 2 11:36:33 neweola sshd[28976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.237 Mar 2 11:36:35 neweola sshd[28976]: Failed password for invalid user system from 138.68.241.237 port 49552 ssh2 Mar 2 11:36:37 neweola sshd[28976]: Received disconnect from 138.68.241.237 port 49552:11: Bye Bye [preauth] Mar 2 11:36:37 neweola sshd[28976]: Disconnected from invalid user system 138.68.241.237 port 49552 [preauth] Mar 2 11:55:31 neweola sshd[29909]: Invalid user admin from 138.68.241.237 port 36382 Mar 2 11:55:31 neweola sshd[29909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.237 Mar 2 11:55:33 neweola sshd[29909]: Failed password for invalid user admin from 138.68.241.237 port 36382 ssh2 Mar 2 11:55:34 neweola sshd[29909]: R........ ------------------------------	2020-03-03 18:33:14

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.241.232
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37541
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.241.232.			IN	A

;; AUTHORITY SECTION:
.			3475	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 10:21:18 +08 2019
;; MSG SIZE  rcvd: 118

Host info

232.241.68.138.in-addr.arpa domain name pointer staging.alwka.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
232.241.68.138.in-addr.arpa	name = staging.alwka.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.224.105.67	attackbots	2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 22:54:32 SMTP call from (default.lv) [45.224.105.67]:44214 dropped: too many nonmail commands (last was "AUTH") 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x 2019-06-23 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.224.105.67	2019-06-24 06:37:26
100.1.200.75	attackspambots	IMAP/SMTP Authentication Failure	2019-06-24 06:19:50
103.15.254.59	attackspam	Unauthorized connection attempt from IP address 103.15.254.59 on Port 445(SMB)	2019-06-24 06:06:12
187.181.239.83	attackspam	Jun 22 22:40:34 xxxxxxx0 sshd[18874]: Invalid user cooper from 187.181.239.83 port 48696 Jun 22 22:40:34 xxxxxxx0 sshd[18874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.181.239.83 Jun 22 22:40:36 xxxxxxx0 sshd[18874]: Failed password for invalid user cooper from 187.181.239.83 port 48696 ssh2 Jun 22 22:45:13 xxxxxxx0 sshd[19444]: Invalid user test2 from 187.181.239.83 port 46582 Jun 22 22:45:13 xxxxxxx0 sshd[19444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.181.239.83 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=187.181.239.83	2019-06-24 06:24:28
92.119.160.125	attack	23.06.2019 21:35:34 Connection to port 2697 blocked by firewall	2019-06-24 06:13:16
27.78.158.126	attackbots	Unauthorized connection attempt from IP address 27.78.158.126 on Port 445(SMB)	2019-06-24 06:48:07
174.138.9.132	attackspambots	23.06.2019 20:07:44 Connection to port 626 blocked by firewall	2019-06-24 06:06:38
35.187.224.76	attackspam	Automatic report generated by Wazuh	2019-06-24 06:07:43
180.167.14.126	attackbots	2019-06-23 21:42:54 H=(83.169.44.148) [180.167.14.126] F=: X-DNSBL-Warning: 180.167.14.126 is listed at cbl.abuseat.org (127.0.0.2) (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=180.167.14.126) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=180.167.14.126	2019-06-24 06:19:25
206.214.9.182	attack	IMAP/SMTP Authentication Failure	2019-06-24 06:35:31
177.154.234.48	attack	failed_logins	2019-06-24 06:29:18
31.177.78.210	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-06-24 06:38:53
121.190.197.205	attackspambots	Jun 23 23:02:53 debian sshd\[32745\]: Invalid user audreym from 121.190.197.205 port 57497 Jun 23 23:02:53 debian sshd\[32745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.190.197.205 ...	2019-06-24 06:15:33
197.210.114.102	attackspam	IMAP/SMTP Authentication Failure	2019-06-24 06:29:45
27.34.74.37	attackbotsspam	Lines containing failures of 27.34.74.37 Jun 23 12:44:17 server-name sshd[8405]: Invalid user admin from 27.34.74.37 port 59006 Jun 23 12:44:17 server-name sshd[8405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.74.37 Jun 23 12:44:19 server-name sshd[8405]: Failed password for invalid user admin from 27.34.74.37 port 59006 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.34.74.37	2019-06-24 06:22:38

Recently Reported IPs

138.68.89.62	134.209.124.147	129.28.20.224	115.186.147.235
104.144.155.25	102.129.98.62	68.183.231.62	1.47.237.77
222.186.160.100	188.165.219.27	182.61.33.47	123.207.90.186
92.222.92.114	222.186.30.71	222.153.49.164	193.70.85.206
183.90.124.196	163.44.174.68	142.44.216.180	140.143.236.53