138.68.71.92 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.71.18	attackspambots	Sep 28 01:37:21 pl2server sshd[26678]: Invalid user alex from 138.68.71.18 port 38504 Sep 28 01:37:21 pl2server sshd[26678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 Sep 28 01:37:22 pl2server sshd[26678]: Failed password for invalid user alex from 138.68.71.18 port 38504 ssh2 Sep 28 01:37:22 pl2server sshd[26678]: Received disconnect from 138.68.71.18 port 38504:11: Bye Bye [preauth] Sep 28 01:37:22 pl2server sshd[26678]: Disconnected from 138.68.71.18 port 38504 [preauth] Sep 28 01:51:34 pl2server sshd[30416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 user=www-data Sep 28 01:51:36 pl2server sshd[30416]: Failed password for www-data from 138.68.71.18 port 44968 ssh2 Sep 28 01:51:36 pl2server sshd[30416]: Received disconnect from 138.68.71.18 port 44968:11: Bye Bye [preauth] Sep 28 01:51:36 pl2server sshd[30416]: Disconnected from 138.68.71.18 port 4496........ -------------------------------	2020-09-30 09:26:07
138.68.71.18	attackbots	Sep 28 01:37:21 pl2server sshd[26678]: Invalid user alex from 138.68.71.18 port 38504 Sep 28 01:37:21 pl2server sshd[26678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 Sep 28 01:37:22 pl2server sshd[26678]: Failed password for invalid user alex from 138.68.71.18 port 38504 ssh2 Sep 28 01:37:22 pl2server sshd[26678]: Received disconnect from 138.68.71.18 port 38504:11: Bye Bye [preauth] Sep 28 01:37:22 pl2server sshd[26678]: Disconnected from 138.68.71.18 port 38504 [preauth] Sep 28 01:51:34 pl2server sshd[30416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 user=www-data Sep 28 01:51:36 pl2server sshd[30416]: Failed password for www-data from 138.68.71.18 port 44968 ssh2 Sep 28 01:51:36 pl2server sshd[30416]: Received disconnect from 138.68.71.18 port 44968:11: Bye Bye [preauth] Sep 28 01:51:36 pl2server sshd[30416]: Disconnected from 138.68.71.18 port 4496........ -------------------------------	2020-09-30 02:17:00
138.68.71.18	attack	Sep 29 11:15:01 l03 sshd[19472]: Invalid user dave from 138.68.71.18 port 37666 ...	2020-09-29 18:19:16
138.68.71.18	attackbots	5x Failed Password	2020-09-26 03:09:10
138.68.71.18	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-25 18:57:01
138.68.71.188	attackspambots	Exploited Host.	2020-07-26 02:40:16
138.68.71.174	attack	[Thu Jun 04 08:31:15.929570 2020] [php7:error] [pid 12674] [client 138.68.71.174:49980] script /Library/Server/Web/Data/Sites/omfocused.com/wp-login.php not found or unable to stat	2020-06-05 01:02:28
138.68.71.174	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-06-02 00:17:57
138.68.71.188	attack	May 7 07:09:10 h2829583 sshd[15812]: Failed password for root from 138.68.71.188 port 46358 ssh2	2020-05-07 13:09:36
138.68.71.174	attackspam	2020-04-29T10:25:46.993070+00:00 [f2b-wordpress-hard-ddos] : Authentication attempt user [munged] from 138.68.71.174 2020-04-29T10:25:45.652329+00:00 [f2b-wordpress-hard-ddos] : Authentication attempt user [munged] from 138.68.71.174 2020-04-29T10:25:45.650309+00:00 [f2b-wordpress-hard-ddos] : Authentication attempt user [munged] from 138.68.71.174	2020-04-29 18:30:04
138.68.71.174	attack	138.68.71.174 - - [24/Apr/2020:14:03:32 +0200] "GET /wp-login.php HTTP/1.1" 200 5982 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.71.174 - - [24/Apr/2020:14:03:35 +0200] "POST /wp-login.php HTTP/1.1" 200 6174 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.71.174 - - [24/Apr/2020:14:03:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-25 01:23:52
138.68.71.174	attackspam	Automatic report - XMLRPC Attack	2020-03-12 14:42:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.71.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16624
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.71.92.			IN	A

;; AUTHORITY SECTION:
.			345	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:15:54 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 92.71.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.71.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.12.101.95	attackbots	DE bad_bot	2020-06-21 15:23:15
122.51.195.104	attackbotsspam	Brute force attempt	2020-06-21 15:21:38
64.227.19.127	attackbots	Jun 21 07:43:10 PorscheCustomer sshd[14934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.19.127 Jun 21 07:43:12 PorscheCustomer sshd[14934]: Failed password for invalid user smy from 64.227.19.127 port 55712 ssh2 Jun 21 07:46:23 PorscheCustomer sshd[15083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.19.127 ...	2020-06-21 15:18:39
212.95.137.19	attackspam	Jun 21 07:58:13 vpn01 sshd[6142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.19 Jun 21 07:58:15 vpn01 sshd[6142]: Failed password for invalid user jb from 212.95.137.19 port 33336 ssh2 ...	2020-06-21 14:55:09
185.244.0.165	attack	Excessive Port-Scanning	2020-06-21 15:12:07
77.170.41.29	attackspambots	Jun 21 07:59:33 l03 sshd[6886]: Invalid user pi from 77.170.41.29 port 36190 Jun 21 07:59:33 l03 sshd[6887]: Invalid user pi from 77.170.41.29 port 36192 ...	2020-06-21 15:22:30
187.188.83.115	attackbots	Jun 21 03:12:42 firewall sshd[17852]: Failed password for invalid user testaccount from 187.188.83.115 port 10531 ssh2 Jun 21 03:15:07 firewall sshd[17923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.83.115 user=root Jun 21 03:15:10 firewall sshd[17923]: Failed password for root from 187.188.83.115 port 9090 ssh2 ...	2020-06-21 15:23:43
124.158.14.39	attackbots	Hit honeypot r.	2020-06-21 15:05:02
157.230.61.132	attackspam	(sshd) Failed SSH login from 157.230.61.132 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 21 05:56:55 amsweb01 sshd[18793]: Invalid user yizhi from 157.230.61.132 port 38250 Jun 21 05:56:57 amsweb01 sshd[18793]: Failed password for invalid user yizhi from 157.230.61.132 port 38250 ssh2 Jun 21 06:05:48 amsweb01 sshd[19921]: Invalid user rr from 157.230.61.132 port 42802 Jun 21 06:05:50 amsweb01 sshd[19921]: Failed password for invalid user rr from 157.230.61.132 port 42802 ssh2 Jun 21 06:08:46 amsweb01 sshd[20306]: Invalid user test from 157.230.61.132 port 42714	2020-06-21 14:51:54
52.188.2.76	attack	Port Scan detected from 52.188.2.76 (US/United States/Virginia/Ashburn/-). 4 hits in the last 236 seconds	2020-06-21 15:32:11
222.186.175.23	attackspam	Jun 21 07:05:54 scw-6657dc sshd[5764]: Failed password for root from 222.186.175.23 port 47010 ssh2 Jun 21 07:05:54 scw-6657dc sshd[5764]: Failed password for root from 222.186.175.23 port 47010 ssh2 Jun 21 07:05:56 scw-6657dc sshd[5764]: Failed password for root from 222.186.175.23 port 47010 ssh2 ...	2020-06-21 15:06:56
139.199.119.76	attackbotsspam	2020-06-21T06:57:05+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-21 15:28:25
128.199.227.96	attackspambots	Invalid user anderson from 128.199.227.96 port 43508	2020-06-21 15:02:00
120.132.14.42	attackspam	invalid login attempt (postmaster)	2020-06-21 15:16:32
61.177.172.61	attack	2020-06-21T09:04:07.450789ns386461 sshd\[28512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.61 user=root 2020-06-21T09:04:09.535753ns386461 sshd\[28512\]: Failed password for root from 61.177.172.61 port 59722 ssh2 2020-06-21T09:04:12.593588ns386461 sshd\[28512\]: Failed password for root from 61.177.172.61 port 59722 ssh2 2020-06-21T09:04:15.731545ns386461 sshd\[28512\]: Failed password for root from 61.177.172.61 port 59722 ssh2 2020-06-21T09:04:18.900725ns386461 sshd\[28512\]: Failed password for root from 61.177.172.61 port 59722 ssh2 ...	2020-06-21 15:15:23

Recently Reported IPs

128.199.239.134	112.12.204.26	185.162.192.32	14.240.196.65
167.172.148.145	180.215.192.131	83.48.68.3	58.27.233.82
218.29.167.122	124.217.248.153	114.67.111.123	112.193.216.150
79.110.17.43	37.205.122.242	206.189.51.160	106.53.239.180
180.76.247.65	178.176.78.227	162.142.125.162	64.62.197.180