138.68.53.163 - IPInfo

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 29 13:49:35 kapalua sshd\[4053\]: Invalid user guest from 138.68.53.163 Nov 29 13:49:35 kapalua sshd\[4053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Nov 29 13:49:37 kapalua sshd\[4053\]: Failed password for invalid user guest from 138.68.53.163 port 57754 ssh2 Nov 29 13:52:58 kapalua sshd\[4332\]: Invalid user skef from 138.68.53.163 Nov 29 13:52:58 kapalua sshd\[4332\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163	2019-11-30 07:55:57
attackbotsspam	Nov 19 11:08:12 firewall sshd[22424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 user=bin Nov 19 11:08:14 firewall sshd[22424]: Failed password for bin from 138.68.53.163 port 45642 ssh2 Nov 19 11:11:35 firewall sshd[22499]: Invalid user test from 138.68.53.163 ...	2019-11-19 23:11:49
attack	$f2bV_matches	2019-11-13 15:25:13
attack	Nov 13 00:38:03 MK-Soft-VM6 sshd[22853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Nov 13 00:38:05 MK-Soft-VM6 sshd[22853]: Failed password for invalid user charn from 138.68.53.163 port 44284 ssh2 ...	2019-11-13 08:07:44
attackspambots	SSH Brute-Force reported by Fail2Ban	2019-11-12 20:54:35
attack	SSH Bruteforce attack	2019-11-12 05:21:37
attackbots	Nov 10 18:20:48 dedicated sshd[18172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 user=root Nov 10 18:20:50 dedicated sshd[18172]: Failed password for root from 138.68.53.163 port 34026 ssh2	2019-11-11 03:03:44
attack	2019-11-06T08:26:16.457403tmaserv sshd\[13206\]: Invalid user admin from 138.68.53.163 port 58870 2019-11-06T08:26:16.463772tmaserv sshd\[13206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 2019-11-06T08:26:18.715645tmaserv sshd\[13206\]: Failed password for invalid user admin from 138.68.53.163 port 58870 ssh2 2019-11-06T08:42:28.331216tmaserv sshd\[13887\]: Invalid user backup from 138.68.53.163 port 53436 2019-11-06T08:42:28.337388tmaserv sshd\[13887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 2019-11-06T08:42:30.363268tmaserv sshd\[13887\]: Failed password for invalid user backup from 138.68.53.163 port 53436 ssh2 ...	2019-11-06 15:50:32
attack	Nov 5 18:58:40 localhost sshd\[4322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 user=root Nov 5 18:58:41 localhost sshd\[4322\]: Failed password for root from 138.68.53.163 port 60916 ssh2 Nov 5 19:01:59 localhost sshd\[4605\]: User dev from 138.68.53.163 not allowed because listed in DenyUsers	2019-11-06 05:51:31
attackbots	2019-10-25T00:14:15.994142scmdmz1 sshd\[26420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 user=admin 2019-10-25T00:14:17.277932scmdmz1 sshd\[26420\]: Failed password for admin from 138.68.53.163 port 55034 ssh2 2019-10-25T00:17:40.822839scmdmz1 sshd\[26678\]: Invalid user art from 138.68.53.163 port 37124 ...	2019-10-25 06:35:12
attackbots	5x Failed Password	2019-10-21 16:18:16
attack	Oct 18 09:32:54 sauna sshd[36847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Oct 18 09:32:56 sauna sshd[36847]: Failed password for invalid user zhh1127 from 138.68.53.163 port 54400 ssh2 ...	2019-10-18 15:31:38
attackbotsspam	Automatic report - Banned IP Access	2019-10-16 03:56:19
attackbots	Sep 29 21:21:08 MainVPS sshd[14099]: Invalid user login from 138.68.53.163 port 50806 Sep 29 21:21:08 MainVPS sshd[14099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Sep 29 21:21:08 MainVPS sshd[14099]: Invalid user login from 138.68.53.163 port 50806 Sep 29 21:21:11 MainVPS sshd[14099]: Failed password for invalid user login from 138.68.53.163 port 50806 ssh2 Sep 29 21:24:53 MainVPS sshd[14377]: Invalid user dilna from 138.68.53.163 port 34232 ...	2019-09-30 04:28:04
attackspam	Fail2Ban Ban Triggered	2019-09-25 16:29:50
attackbots	Sep 22 14:36:26 MainVPS sshd[4984]: Invalid user jeanne from 138.68.53.163 port 38564 Sep 22 14:36:26 MainVPS sshd[4984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Sep 22 14:36:26 MainVPS sshd[4984]: Invalid user jeanne from 138.68.53.163 port 38564 Sep 22 14:36:28 MainVPS sshd[4984]: Failed password for invalid user jeanne from 138.68.53.163 port 38564 ssh2 Sep 22 14:40:10 MainVPS sshd[5373]: Invalid user gropher from 138.68.53.163 port 49832 ...	2019-09-23 03:00:01
attackspam	k+ssh-bruteforce	2019-09-18 01:20:04
attackspambots	Sep 16 02:57:19 tuotantolaitos sshd[3930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Sep 16 02:57:21 tuotantolaitos sshd[3930]: Failed password for invalid user ea from 138.68.53.163 port 56214 ssh2 ...	2019-09-16 08:47:55
attackbots	Sep 15 10:17:15 icinga sshd[8310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Sep 15 10:17:17 icinga sshd[8310]: Failed password for invalid user agustry from 138.68.53.163 port 40840 ssh2 Sep 15 10:25:44 icinga sshd[14077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 ...	2019-09-15 17:08:01
attackbotsspam	Sep 11 13:40:18 sachi sshd\[13895\]: Invalid user test from 138.68.53.163 Sep 11 13:40:18 sachi sshd\[13895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Sep 11 13:40:20 sachi sshd\[13895\]: Failed password for invalid user test from 138.68.53.163 port 60268 ssh2 Sep 11 13:46:05 sachi sshd\[14426\]: Invalid user ubuntu from 138.68.53.163 Sep 11 13:46:05 sachi sshd\[14426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163	2019-09-12 07:47:48
attackbotsspam	Sep 9 09:50:21 hanapaa sshd\[2568\]: Invalid user dspace from 138.68.53.163 Sep 9 09:50:21 hanapaa sshd\[2568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Sep 9 09:50:23 hanapaa sshd\[2568\]: Failed password for invalid user dspace from 138.68.53.163 port 38154 ssh2 Sep 9 09:56:08 hanapaa sshd\[3067\]: Invalid user cloudadmin from 138.68.53.163 Sep 9 09:56:08 hanapaa sshd\[3067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163	2019-09-10 06:59:45
attackspam	Aug 27 20:42:53 wbs sshd\[8830\]: Invalid user support from 138.68.53.163 Aug 27 20:42:53 wbs sshd\[8830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Aug 27 20:42:54 wbs sshd\[8830\]: Failed password for invalid user support from 138.68.53.163 port 50236 ssh2 Aug 27 20:46:43 wbs sshd\[9215\]: Invalid user sus from 138.68.53.163 Aug 27 20:46:43 wbs sshd\[9215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163	2019-08-28 19:45:03
attack	2019-08-26T09:11:53.628140 sshd[2318]: Invalid user rabbitmq from 138.68.53.163 port 47368 2019-08-26T09:11:53.640914 sshd[2318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 2019-08-26T09:11:53.628140 sshd[2318]: Invalid user rabbitmq from 138.68.53.163 port 47368 2019-08-26T09:11:56.143344 sshd[2318]: Failed password for invalid user rabbitmq from 138.68.53.163 port 47368 ssh2 2019-08-26T09:16:04.621033 sshd[2395]: Invalid user boot from 138.68.53.163 port 37948 ...	2019-08-26 15:50:19
attackspam	Aug 23 19:39:30 lnxmail61 sshd[29099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163	2019-08-24 04:40:00
attack	Aug 18 08:20:41 server sshd\[20980\]: Invalid user paintball from 138.68.53.163 port 33398 Aug 18 08:20:41 server sshd\[20980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Aug 18 08:20:43 server sshd\[20980\]: Failed password for invalid user paintball from 138.68.53.163 port 33398 ssh2 Aug 18 08:25:00 server sshd\[5912\]: Invalid user freebsd from 138.68.53.163 port 51480 Aug 18 08:25:00 server sshd\[5912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163	2019-08-18 21:00:17
attack	Aug 18 00:58:29 root sshd[12624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 Aug 18 00:58:32 root sshd[12624]: Failed password for invalid user mike from 138.68.53.163 port 33856 ssh2 Aug 18 01:02:52 root sshd[12702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.163 ...	2019-08-18 07:10:22

Comments on same subnet:

IP	Type	Details	Datetime
138.68.53.14	attackspambots	Jan 14 12:21:18 ns41 sshd[7553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.14	2020-01-14 19:34:00
138.68.53.119	attack	Sep 13 22:20:30 xtremcommunity sshd\[56749\]: Invalid user test7 from 138.68.53.119 port 47296 Sep 13 22:20:30 xtremcommunity sshd\[56749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.119 Sep 13 22:20:32 xtremcommunity sshd\[56749\]: Failed password for invalid user test7 from 138.68.53.119 port 47296 ssh2 Sep 13 22:24:29 xtremcommunity sshd\[56848\]: Invalid user server from 138.68.53.119 port 33364 Sep 13 22:24:29 xtremcommunity sshd\[56848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.119 ...	2019-09-14 10:26:13
138.68.53.119	attackspambots	Sep 7 10:53:59 plex sshd[14508]: Invalid user baptiste from 138.68.53.119 port 50886	2019-09-07 17:17:49
138.68.53.119	attackspambots	2019-08-31T14:28:32.627231abusebot-4.cloudsearch.cf sshd\[30199\]: Invalid user admin from 138.68.53.119 port 50394	2019-09-01 01:53:30
138.68.53.119	attackspambots	Aug 30 17:16:01 hb sshd\[17251\]: Invalid user ftp123 from 138.68.53.119 Aug 30 17:16:01 hb sshd\[17251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.119 Aug 30 17:16:03 hb sshd\[17251\]: Failed password for invalid user ftp123 from 138.68.53.119 port 58068 ssh2 Aug 30 17:20:29 hb sshd\[17615\]: Invalid user ileen from 138.68.53.119 Aug 30 17:20:29 hb sshd\[17615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.53.119	2019-08-31 03:11:13
138.68.53.75	attackspambots	fire	2019-08-09 13:52:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.53.163
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50552
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.53.163.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 07:10:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 163.53.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 163.53.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.49.238.4	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-12 22:01:07]	2019-07-13 09:27:29
59.63.199.239	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-12 19:11:12,461 INFO [shellcode_manager] (59.63.199.239) no match, writing hexdump (23707d880d4792032e9f03fb04771b33 :76120) - SMB (Unknown)	2019-07-13 09:13:46
188.166.216.84	attackbotsspam	Automatic report - Web App Attack	2019-07-13 08:52:28
125.63.116.106	attack	2019-07-13T00:36:48.433703abusebot-8.cloudsearch.cf sshd\[30563\]: Invalid user grace from 125.63.116.106 port 10108	2019-07-13 08:53:57
51.75.202.218	attackspambots	Failed password for invalid user emilia from 51.75.202.218 port 41976 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.202.218 user=root Failed password for root from 51.75.202.218 port 40892 ssh2 Invalid user sleeper from 51.75.202.218 port 39810 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.202.218	2019-07-13 09:25:19
59.144.70.2	attack	Unauthorized connection attempt from IP address 59.144.70.2 on Port 445(SMB)	2019-07-13 09:03:15
198.108.67.43	attackspambots	Fri 12 14:41:33 2567/tcp	2019-07-13 09:33:17
106.12.214.21	attack	Jul 13 02:34:09 lnxmail61 sshd[25525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.214.21	2019-07-13 09:35:20
190.8.80.42	attackspam	Jul 13 03:14:39 mail sshd\[2764\]: Invalid user jenkins from 190.8.80.42 port 36560 Jul 13 03:14:39 mail sshd\[2764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42 Jul 13 03:14:41 mail sshd\[2764\]: Failed password for invalid user jenkins from 190.8.80.42 port 36560 ssh2 Jul 13 03:21:02 mail sshd\[3808\]: Invalid user git from 190.8.80.42 port 38834 Jul 13 03:21:02 mail sshd\[3808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42	2019-07-13 09:34:05
121.201.43.233	attackspambots	Jul 13 00:08:06 ubuntu-2gb-nbg1-dc3-1 sshd[7409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.201.43.233 Jul 13 00:08:08 ubuntu-2gb-nbg1-dc3-1 sshd[7409]: Failed password for invalid user ito from 121.201.43.233 port 47928 ssh2 ...	2019-07-13 08:51:44
178.84.109.10	attackspam	Unauthorized SSH connection attempt	2019-07-13 09:12:57
153.127.10.118	attackspam	Jul 13 02:53:36 62-210-73-4 sshd\[12142\]: Invalid user guest from 153.127.10.118 port 45586 Jul 13 02:53:38 62-210-73-4 sshd\[12142\]: Failed password for invalid user guest from 153.127.10.118 port 45586 ssh2 ...	2019-07-13 09:00:01
61.16.136.26	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-12 18:55:06,847 INFO [shellcode_manager] (61.16.136.26) no match, writing hexdump (06cb1cdc794ded1faa9f8ed0bf4f6df0 :10711) - SMB (Unknown)	2019-07-13 09:25:42
178.128.195.6	attackspambots	Jul 13 02:41:01 [host] sshd[30821]: Invalid user mailer from 178.128.195.6 Jul 13 02:41:01 [host] sshd[30821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.195.6 Jul 13 02:41:03 [host] sshd[30821]: Failed password for invalid user mailer from 178.128.195.6 port 36328 ssh2	2019-07-13 09:17:18
178.128.3.152	attackspam	Jul 13 01:02:48 marvibiene sshd[10225]: Invalid user noemi from 178.128.3.152 port 59686 Jul 13 01:02:48 marvibiene sshd[10225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.3.152 Jul 13 01:02:48 marvibiene sshd[10225]: Invalid user noemi from 178.128.3.152 port 59686 Jul 13 01:02:49 marvibiene sshd[10225]: Failed password for invalid user noemi from 178.128.3.152 port 59686 ssh2 ...	2019-07-13 09:14:11

Recently Reported IPs

57.217.198.35	183.168.114.225	128.0.197.237	114.139.57.81
86.89.12.230	17.116.34.86	152.71.174.255	217.182.241.32
184.155.233.0	5.54.195.165	204.160.66.87	52.251.229.90
201.92.229.186	81.209.253.49	166.38.217.141	35.184.73.177
210.155.125.141	18.209.157.19	132.219.212.10	110.107.89.14