138.68.54.2 - IPInfo

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Apr 8 01:20:56 www sshd\[62925\]: Invalid user andy from 138.68.54.2Apr 8 01:20:58 www sshd\[62925\]: Failed password for invalid user andy from 138.68.54.2 port 42076 ssh2Apr 8 01:24:55 www sshd\[63048\]: Invalid user anon from 138.68.54.2 ...	2020-04-08 06:44:11

Type

Details

Datetime

attack

Apr  8 01:20:56 www sshd\[62925\]: Invalid user andy from 138.68.54.2Apr  8 01:20:58 www sshd\[62925\]: Failed password for invalid user andy from 138.68.54.2 port 42076 ssh2Apr  8 01:24:55 www sshd\[63048\]: Invalid user anon from 138.68.54.2
...

2020-04-08 06:44:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.54.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44924
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.54.2.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040702 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 08 06:44:08 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 2.54.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.54.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.121.134.201	attack	Jul 15 13:06:54 sso sshd[8768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.134.201 Jul 15 13:06:56 sso sshd[8768]: Failed password for invalid user yali from 91.121.134.201 port 35178 ssh2 ...	2020-07-15 19:22:31
51.75.140.153	attack	Jul 15 13:10:06 rancher-0 sshd[335728]: Invalid user lo from 51.75.140.153 port 48002 ...	2020-07-15 19:20:19
189.251.140.113	attackspambots	Unauthorized connection attempt from IP address 189.251.140.113 on Port 445(SMB)	2020-07-15 19:24:22
139.59.58.155	attackbotsspam	Jul 15 03:59:32 dignus sshd[26607]: Failed password for invalid user sandy from 139.59.58.155 port 37802 ssh2 Jul 15 04:03:13 dignus sshd[27028]: Invalid user eveline from 139.59.58.155 port 48430 Jul 15 04:03:13 dignus sshd[27028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.58.155 Jul 15 04:03:15 dignus sshd[27028]: Failed password for invalid user eveline from 139.59.58.155 port 48430 ssh2 Jul 15 04:06:39 dignus sshd[27773]: Invalid user alban from 139.59.58.155 port 51902 ...	2020-07-15 19:12:07
64.139.14.54	attackspam	Unauthorized connection attempt from IP address 64.139.14.54 on Port 445(SMB)	2020-07-15 19:14:58
123.30.149.76	attack	$f2bV_matches	2020-07-15 19:05:13
103.7.129.210	attackbotsspam	Unauthorized connection attempt from IP address 103.7.129.210 on Port 445(SMB)	2020-07-15 19:05:31
139.255.244.34	attackbotsspam	Unauthorized connection attempt from IP address 139.255.244.34 on Port 445(SMB)	2020-07-15 19:17:28
117.6.94.132	attackbots	Unauthorized connection attempt from IP address 117.6.94.132 on Port 445(SMB)	2020-07-15 19:11:02
188.163.35.5	attackspam	Unauthorized connection attempt from IP address 188.163.35.5 on Port 445(SMB)	2020-07-15 19:27:50
177.220.177.108	attack	2020-07-15T12:11:03.276772vps751288.ovh.net sshd\[8429\]: Invalid user mgt from 177.220.177.108 port 60455 2020-07-15T12:11:03.285449vps751288.ovh.net sshd\[8429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.177.108 2020-07-15T12:11:04.965098vps751288.ovh.net sshd\[8429\]: Failed password for invalid user mgt from 177.220.177.108 port 60455 ssh2 2020-07-15T12:16:02.393534vps751288.ovh.net sshd\[8455\]: Invalid user ambilogger from 177.220.177.108 port 30230 2020-07-15T12:16:02.403014vps751288.ovh.net sshd\[8455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.177.108	2020-07-15 19:30:08
37.57.189.201	attackbots	TCP (SYN) 37.57.189.201:49362 -> port 139, len 40	2020-07-15 19:23:16
223.207.247.225	attack	Unauthorized connection attempt from IP address 223.207.247.225 on Port 445(SMB)	2020-07-15 19:13:19
52.233.184.83	attackspam	Jul 15 17:50:35 webhost01 sshd[5895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.233.184.83 Jul 15 17:50:37 webhost01 sshd[5895]: Failed password for invalid user admin from 52.233.184.83 port 33070 ssh2 ...	2020-07-15 19:06:37
159.65.189.115	attack	2020-07-15T06:58:03.7589261495-001 sshd[31598]: Invalid user cisco from 159.65.189.115 port 40040 2020-07-15T06:58:06.2491091495-001 sshd[31598]: Failed password for invalid user cisco from 159.65.189.115 port 40040 ssh2 2020-07-15T06:59:42.2474451495-001 sshd[31655]: Invalid user luan from 159.65.189.115 port 33756 2020-07-15T06:59:42.2573501495-001 sshd[31655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.189.115 2020-07-15T06:59:42.2474451495-001 sshd[31655]: Invalid user luan from 159.65.189.115 port 33756 2020-07-15T06:59:45.0007171495-001 sshd[31655]: Failed password for invalid user luan from 159.65.189.115 port 33756 ssh2 ...	2020-07-15 19:24:45

Recently Reported IPs

36.80.120.111	183.253.29.111	73.150.91.60	36.156.163.64
93.26.194.231	183.72.189.36	136.176.170.23	115.192.185.125
213.132.252.190	62.197.168.186	90.76.77.142	67.240.184.66
94.244.42.125	69.114.181.4	62.149.99.113	101.9.58.54
70.232.199.176	209.232.8.11	2.47.150.85	133.49.8.79