138.68.71.92 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.71.18	attackspambots	Sep 28 01:37:21 pl2server sshd[26678]: Invalid user alex from 138.68.71.18 port 38504 Sep 28 01:37:21 pl2server sshd[26678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 Sep 28 01:37:22 pl2server sshd[26678]: Failed password for invalid user alex from 138.68.71.18 port 38504 ssh2 Sep 28 01:37:22 pl2server sshd[26678]: Received disconnect from 138.68.71.18 port 38504:11: Bye Bye [preauth] Sep 28 01:37:22 pl2server sshd[26678]: Disconnected from 138.68.71.18 port 38504 [preauth] Sep 28 01:51:34 pl2server sshd[30416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 user=www-data Sep 28 01:51:36 pl2server sshd[30416]: Failed password for www-data from 138.68.71.18 port 44968 ssh2 Sep 28 01:51:36 pl2server sshd[30416]: Received disconnect from 138.68.71.18 port 44968:11: Bye Bye [preauth] Sep 28 01:51:36 pl2server sshd[30416]: Disconnected from 138.68.71.18 port 4496........ -------------------------------	2020-09-30 09:26:07
138.68.71.18	attackbots	Sep 28 01:37:21 pl2server sshd[26678]: Invalid user alex from 138.68.71.18 port 38504 Sep 28 01:37:21 pl2server sshd[26678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 Sep 28 01:37:22 pl2server sshd[26678]: Failed password for invalid user alex from 138.68.71.18 port 38504 ssh2 Sep 28 01:37:22 pl2server sshd[26678]: Received disconnect from 138.68.71.18 port 38504:11: Bye Bye [preauth] Sep 28 01:37:22 pl2server sshd[26678]: Disconnected from 138.68.71.18 port 38504 [preauth] Sep 28 01:51:34 pl2server sshd[30416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.71.18 user=www-data Sep 28 01:51:36 pl2server sshd[30416]: Failed password for www-data from 138.68.71.18 port 44968 ssh2 Sep 28 01:51:36 pl2server sshd[30416]: Received disconnect from 138.68.71.18 port 44968:11: Bye Bye [preauth] Sep 28 01:51:36 pl2server sshd[30416]: Disconnected from 138.68.71.18 port 4496........ -------------------------------	2020-09-30 02:17:00
138.68.71.18	attack	Sep 29 11:15:01 l03 sshd[19472]: Invalid user dave from 138.68.71.18 port 37666 ...	2020-09-29 18:19:16
138.68.71.18	attackbots	5x Failed Password	2020-09-26 03:09:10
138.68.71.18	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-25 18:57:01
138.68.71.188	attackspambots	Exploited Host.	2020-07-26 02:40:16
138.68.71.174	attack	[Thu Jun 04 08:31:15.929570 2020] [php7:error] [pid 12674] [client 138.68.71.174:49980] script /Library/Server/Web/Data/Sites/omfocused.com/wp-login.php not found or unable to stat	2020-06-05 01:02:28
138.68.71.174	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-06-02 00:17:57
138.68.71.188	attack	May 7 07:09:10 h2829583 sshd[15812]: Failed password for root from 138.68.71.188 port 46358 ssh2	2020-05-07 13:09:36
138.68.71.174	attackspam	2020-04-29T10:25:46.993070+00:00 [f2b-wordpress-hard-ddos] : Authentication attempt user [munged] from 138.68.71.174 2020-04-29T10:25:45.652329+00:00 [f2b-wordpress-hard-ddos] : Authentication attempt user [munged] from 138.68.71.174 2020-04-29T10:25:45.650309+00:00 [f2b-wordpress-hard-ddos] : Authentication attempt user [munged] from 138.68.71.174	2020-04-29 18:30:04
138.68.71.174	attack	138.68.71.174 - - [24/Apr/2020:14:03:32 +0200] "GET /wp-login.php HTTP/1.1" 200 5982 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.71.174 - - [24/Apr/2020:14:03:35 +0200] "POST /wp-login.php HTTP/1.1" 200 6174 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.71.174 - - [24/Apr/2020:14:03:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-25 01:23:52
138.68.71.174	attackspam	Automatic report - XMLRPC Attack	2020-03-12 14:42:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.71.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16624
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.71.92.			IN	A

;; AUTHORITY SECTION:
.			345	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:15:54 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 92.71.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.71.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.243.252.244	attackbots	TCP (SYN) 103.243.252.244:48703 -> port 14405, len 44	2020-08-20 01:39:30
115.133.224.239	attack	2020-08-19T15:23:14.510301afi-git.jinr.ru sshd[1019]: Invalid user teamspeak from 115.133.224.239 port 28488 2020-08-19T15:23:14.513528afi-git.jinr.ru sshd[1019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.133.224.239 2020-08-19T15:23:14.510301afi-git.jinr.ru sshd[1019]: Invalid user teamspeak from 115.133.224.239 port 28488 2020-08-19T15:23:16.178103afi-git.jinr.ru sshd[1019]: Failed password for invalid user teamspeak from 115.133.224.239 port 28488 ssh2 2020-08-19T15:28:10.952179afi-git.jinr.ru sshd[2402]: Invalid user cloudera from 115.133.224.239 port 14192 ...	2020-08-20 01:52:21
111.229.124.215	attack	SSH Brute-Forcing (server2)	2020-08-20 01:58:39
223.171.46.146	attackspam	Aug 19 17:44:19 prod4 sshd\[3386\]: Invalid user postgres from 223.171.46.146 Aug 19 17:44:20 prod4 sshd\[3386\]: Failed password for invalid user postgres from 223.171.46.146 port 20888 ssh2 Aug 19 17:50:12 prod4 sshd\[6347\]: Invalid user ubuntu from 223.171.46.146 ...	2020-08-20 01:28:24
51.15.118.15	attackbots	Aug 19 19:14:37 vps647732 sshd[12107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.118.15 Aug 19 19:14:39 vps647732 sshd[12107]: Failed password for invalid user nexus from 51.15.118.15 port 36096 ssh2 ...	2020-08-20 01:35:40
159.89.49.238	attackbotsspam	Invalid user teamspeak3 from 159.89.49.238 port 33826	2020-08-20 01:34:28
104.211.241.188	attackspam	2020-08-19T12:53:38.655652abusebot-7.cloudsearch.cf sshd[27388]: Invalid user student05 from 104.211.241.188 port 50544 2020-08-19T12:53:38.659515abusebot-7.cloudsearch.cf sshd[27388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.241.188 2020-08-19T12:53:38.655652abusebot-7.cloudsearch.cf sshd[27388]: Invalid user student05 from 104.211.241.188 port 50544 2020-08-19T12:53:40.730179abusebot-7.cloudsearch.cf sshd[27388]: Failed password for invalid user student05 from 104.211.241.188 port 50544 ssh2 2020-08-19T12:58:39.581211abusebot-7.cloudsearch.cf sshd[27620]: Invalid user wilma from 104.211.241.188 port 59892 2020-08-19T12:58:39.587685abusebot-7.cloudsearch.cf sshd[27620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.241.188 2020-08-19T12:58:39.581211abusebot-7.cloudsearch.cf sshd[27620]: Invalid user wilma from 104.211.241.188 port 59892 2020-08-19T12:58:41.311980abusebot-7.cloudsea ...	2020-08-20 01:33:45
188.246.224.140	attackspambots	Aug 19 21:43:49 webhost01 sshd[15604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.246.224.140 Aug 19 21:43:51 webhost01 sshd[15604]: Failed password for invalid user zd from 188.246.224.140 port 39380 ssh2 ...	2020-08-20 01:25:40
47.176.104.74	attackbots	2020-08-19T12:08:06.4564041495-001 sshd[42713]: Invalid user db from 47.176.104.74 port 58907 2020-08-19T12:08:08.3428911495-001 sshd[42713]: Failed password for invalid user db from 47.176.104.74 port 58907 ssh2 2020-08-19T12:11:53.8224791495-001 sshd[42878]: Invalid user juliet from 47.176.104.74 port 10943 2020-08-19T12:11:53.8255311495-001 sshd[42878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.176.104.74 2020-08-19T12:11:53.8224791495-001 sshd[42878]: Invalid user juliet from 47.176.104.74 port 10943 2020-08-19T12:11:55.8741551495-001 sshd[42878]: Failed password for invalid user juliet from 47.176.104.74 port 10943 ssh2 ...	2020-08-20 01:42:22
49.233.87.146	attackspambots	Port Scan detected! ...	2020-08-20 01:54:58
211.108.69.103	attackbotsspam	Brute-force attempt banned	2020-08-20 01:31:58
61.177.172.41	attackspam	Aug 19 13:47:13 ny01 sshd[9864]: Failed password for root from 61.177.172.41 port 22882 ssh2 Aug 19 13:47:27 ny01 sshd[9864]: error: maximum authentication attempts exceeded for root from 61.177.172.41 port 22882 ssh2 [preauth] Aug 19 13:47:33 ny01 sshd[9899]: Failed password for root from 61.177.172.41 port 61369 ssh2	2020-08-20 01:56:28
188.166.58.29	attackbotsspam	Aug 19 20:21:53 dhoomketu sshd[2488368]: Invalid user dwp from 188.166.58.29 port 49682 Aug 19 20:21:53 dhoomketu sshd[2488368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.58.29 Aug 19 20:21:53 dhoomketu sshd[2488368]: Invalid user dwp from 188.166.58.29 port 49682 Aug 19 20:21:55 dhoomketu sshd[2488368]: Failed password for invalid user dwp from 188.166.58.29 port 49682 ssh2 Aug 19 20:25:46 dhoomketu sshd[2488491]: Invalid user crm from 188.166.58.29 port 57492 ...	2020-08-20 01:44:08
111.229.12.69	attackbotsspam	Aug 19 18:46:32 ns382633 sshd\[16500\]: Invalid user admin from 111.229.12.69 port 36890 Aug 19 18:46:32 ns382633 sshd\[16500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.12.69 Aug 19 18:46:34 ns382633 sshd\[16500\]: Failed password for invalid user admin from 111.229.12.69 port 36890 ssh2 Aug 19 19:01:30 ns382633 sshd\[18991\]: Invalid user user from 111.229.12.69 port 48160 Aug 19 19:01:30 ns382633 sshd\[18991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.12.69	2020-08-20 01:52:37
34.87.171.184	attack	Failed password for invalid user admin from 34.87.171.184 port 45802 ssh2	2020-08-20 01:40:36

Recently Reported IPs

128.199.239.134	112.12.204.26	185.162.192.32	14.240.196.65
167.172.148.145	180.215.192.131	83.48.68.3	58.27.233.82
218.29.167.122	124.217.248.153	114.67.111.123	112.193.216.150
79.110.17.43	37.205.122.242	206.189.51.160	106.53.239.180
180.76.247.65	178.176.78.227	162.142.125.162	64.62.197.180