138.68.254.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Aug 21 06:47:46 mail sshd\[27754\]: Failed password for invalid user vinnie from 138.68.254.12 port 51682 ssh2 Aug 21 07:05:51 mail sshd\[28154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.12 user=root ...	2019-08-21 14:22:37
attackspam	Aug 20 07:26:24 lnxweb61 sshd[4269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.12	2019-08-20 18:53:54
attack	Aug 1 06:36:07 marvibiene sshd[40576]: Invalid user oracle from 138.68.254.12 port 41248 Aug 1 06:36:07 marvibiene sshd[40576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.12 Aug 1 06:36:07 marvibiene sshd[40576]: Invalid user oracle from 138.68.254.12 port 41248 Aug 1 06:36:09 marvibiene sshd[40576]: Failed password for invalid user oracle from 138.68.254.12 port 41248 ssh2 ...	2019-08-01 17:43:00
attack	Jun 22 14:12:52 jupiter sshd\[3082\]: Invalid user node from 138.68.254.12 Jun 22 14:12:52 jupiter sshd\[3082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.12 Jun 22 14:12:54 jupiter sshd\[3082\]: Failed password for invalid user node from 138.68.254.12 port 44192 ssh2 ...	2019-06-22 22:37:37

Comments on same subnet:

IP	Type	Details	Datetime
138.68.254.64	attackbotsspam	Oct 12 17:27:32 *** sshd[28279]: Invalid user user from 138.68.254.64	2020-10-13 03:13:05
138.68.254.64	attackbots	SSH login attempts.	2020-10-12 18:40:22
138.68.254.244	attack	Oct 8 20:33:00 ns381471 sshd[5693]: Failed password for root from 138.68.254.244 port 60588 ssh2	2020-10-09 02:47:23
138.68.254.244	attack	Oct 8 10:29:52 vps639187 sshd\[8125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.244 user=root Oct 8 10:29:54 vps639187 sshd\[8125\]: Failed password for root from 138.68.254.244 port 43284 ssh2 Oct 8 10:33:40 vps639187 sshd\[8215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.244 user=root ...	2020-10-08 18:48:25
138.68.254.244	attackbots	Invalid user marcus from 138.68.254.244 port 54064	2020-09-23 02:35:14
138.68.254.244	attackspam	Sep 22 12:34:06 vpn01 sshd[11743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.244 Sep 22 12:34:08 vpn01 sshd[11743]: Failed password for invalid user ftpuser from 138.68.254.244 port 47284 ssh2 ...	2020-09-22 18:40:35
138.68.254.112	attackspam	Hits on port : 6040	2020-06-06 13:27:32
138.68.254.131	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-11-02 21:30:17
138.68.254.131	attackspam	138.68.254.131 - - [30/Oct/2019:17:32:09 +0100] "GET /wp-login.php HTTP/1.1" 404 462 ...	2019-10-31 02:02:39

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.254.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63031
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.254.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061302 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 14 11:20:37 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 12.254.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 12.254.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.156.218.80	attackbotsspam	Dec 22 20:58:29 hanapaa sshd\[22438\]: Invalid user bubar from 124.156.218.80 Dec 22 20:58:29 hanapaa sshd\[22438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.218.80 Dec 22 20:58:31 hanapaa sshd\[22438\]: Failed password for invalid user bubar from 124.156.218.80 port 47640 ssh2 Dec 22 21:05:32 hanapaa sshd\[23049\]: Invalid user sa from 124.156.218.80 Dec 22 21:05:32 hanapaa sshd\[23049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.218.80	2019-12-23 15:08:16
106.13.119.163	attack	Dec 23 08:01:38 eventyay sshd[23405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.119.163 Dec 23 08:01:40 eventyay sshd[23405]: Failed password for invalid user gabrio from 106.13.119.163 port 46340 ssh2 Dec 23 08:07:32 eventyay sshd[23551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.119.163 ...	2019-12-23 15:21:02
159.89.169.109	attackspam	Dec 23 06:30:23 sshgateway sshd\[24488\]: Invalid user papke from 159.89.169.109 Dec 23 06:30:23 sshgateway sshd\[24488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.109 Dec 23 06:30:25 sshgateway sshd\[24488\]: Failed password for invalid user papke from 159.89.169.109 port 44452 ssh2	2019-12-23 15:07:16
103.35.64.7	attackbotsspam	Dec 23 08:30:02 pkdns2 sshd\[59346\]: Failed password for root from 103.35.64.7 port 63907 ssh2Dec 23 08:30:04 pkdns2 sshd\[59346\]: Failed password for root from 103.35.64.7 port 63907 ssh2Dec 23 08:30:06 pkdns2 sshd\[59346\]: Failed password for root from 103.35.64.7 port 63907 ssh2Dec 23 08:30:09 pkdns2 sshd\[59346\]: Failed password for root from 103.35.64.7 port 63907 ssh2Dec 23 08:30:11 pkdns2 sshd\[59346\]: Failed password for root from 103.35.64.7 port 63907 ssh2Dec 23 08:30:16 pkdns2 sshd\[59419\]: Failed password for root from 103.35.64.7 port 49398 ssh2 ...	2019-12-23 15:00:24
106.12.178.62	attackbots	Dec 23 08:03:29 lnxweb62 sshd[18177]: Failed password for backup from 106.12.178.62 port 46000 ssh2 Dec 23 08:03:29 lnxweb62 sshd[18177]: Failed password for backup from 106.12.178.62 port 46000 ssh2	2019-12-23 15:09:27
51.68.44.13	attackspambots	Dec 23 07:38:33 rotator sshd\[2206\]: Invalid user home from 51.68.44.13Dec 23 07:38:35 rotator sshd\[2206\]: Failed password for invalid user home from 51.68.44.13 port 42734 ssh2Dec 23 07:43:07 rotator sshd\[3032\]: Invalid user user0 from 51.68.44.13Dec 23 07:43:10 rotator sshd\[3032\]: Failed password for invalid user user0 from 51.68.44.13 port 46740 ssh2Dec 23 07:47:36 rotator sshd\[3839\]: Invalid user bunny from 51.68.44.13Dec 23 07:47:37 rotator sshd\[3839\]: Failed password for invalid user bunny from 51.68.44.13 port 50742 ssh2 ...	2019-12-23 14:52:22
138.197.162.32	attackspam	Dec 23 07:26:02 sip sshd[14737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.32 Dec 23 07:26:04 sip sshd[14737]: Failed password for invalid user temp from 138.197.162.32 port 34460 ssh2 Dec 23 07:31:32 sip sshd[14789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.162.32	2019-12-23 15:27:29
103.46.241.222	attackbots	Time: Mon Dec 23 01:24:07 2019 -0500 IP: 103.46.241.222 (IN/India/-) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2019-12-23 15:18:30
173.82.106.14	attack	Dec 23 07:23:19 sd-53420 sshd\[19018\]: Invalid user com from 173.82.106.14 Dec 23 07:23:19 sd-53420 sshd\[19018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.82.106.14 Dec 23 07:23:21 sd-53420 sshd\[19018\]: Failed password for invalid user com from 173.82.106.14 port 38900 ssh2 Dec 23 07:30:25 sd-53420 sshd\[21764\]: Invalid user nyembwe from 173.82.106.14 Dec 23 07:30:25 sd-53420 sshd\[21764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.82.106.14 ...	2019-12-23 14:56:23
41.210.128.37	attackbotsspam	Dec 23 07:23:17 markkoudstaal sshd[5409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.210.128.37 Dec 23 07:23:20 markkoudstaal sshd[5409]: Failed password for invalid user my-idc from 41.210.128.37 port 43294 ssh2 Dec 23 07:30:53 markkoudstaal sshd[6038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.210.128.37	2019-12-23 14:52:55
60.255.230.202	attackbots	Dec 23 07:30:19 lnxmail61 sshd[2605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.255.230.202 Dec 23 07:30:19 lnxmail61 sshd[2605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.255.230.202	2019-12-23 15:10:19
125.86.189.157	attackbotsspam	Brute force attempt	2019-12-23 14:47:08
49.88.112.112	attackbotsspam	Dec 23 07:29:15 * sshd[16650]: Failed password for root from 49.88.112.112 port 44516 ssh2	2019-12-23 15:02:28
1.55.109.111	attackspam	Unauthorised access (Dec 23) SRC=1.55.109.111 LEN=52 TTL=108 ID=26531 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-23 15:16:23
129.49.63.160	attack	Dec 23 06:12:54 XXXXXX sshd[54752]: Invalid user backup from 129.49.63.160 port 33804	2019-12-23 15:19:53

Recently Reported IPs

73.213.82.68	36.68.7.120	169.154.195.75	161.189.63.160
83.138.222.91	160.153.146.80	195.176.3.229	160.153.153.30
77.247.110.141	217.72.168.173	103.216.156.130	196.2.99.128
45.124.85.61	118.163.120.67	182.254.130.16	66.249.79.159
177.137.195.18	40.77.167.4	104.131.247.13	174.108.209.195