138.68.75.113 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user ftpuser from 138.68.75.113 port 50048	2020-10-12 23:35:19
attackbots	Oct 12 08:35:40 ns381471 sshd[24966]: Failed password for root from 138.68.75.113 port 49368 ssh2	2020-10-12 14:58:51
attack	Oct 10 13:34:44 srv-ubuntu-dev3 sshd[78777]: Invalid user student from 138.68.75.113 Oct 10 13:34:44 srv-ubuntu-dev3 sshd[78777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Oct 10 13:34:44 srv-ubuntu-dev3 sshd[78777]: Invalid user student from 138.68.75.113 Oct 10 13:34:46 srv-ubuntu-dev3 sshd[78777]: Failed password for invalid user student from 138.68.75.113 port 58714 ssh2 Oct 10 13:39:46 srv-ubuntu-dev3 sshd[79426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=games Oct 10 13:39:48 srv-ubuntu-dev3 sshd[79426]: Failed password for games from 138.68.75.113 port 34726 ssh2 Oct 10 13:44:42 srv-ubuntu-dev3 sshd[79990]: Invalid user victor from 138.68.75.113 Oct 10 13:44:42 srv-ubuntu-dev3 sshd[79990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Oct 10 13:44:42 srv-ubuntu-dev3 sshd[79990]: Invalid user victor f ...	2020-10-11 00:51:19
attackspam	SSH login attempts.	2020-10-10 16:39:39
attackspambots	Sep 30 20:03:14 plex-server sshd[1131462]: Failed password for root from 138.68.75.113 port 59844 ssh2 Sep 30 20:07:52 plex-server sshd[1133365]: Invalid user superuser from 138.68.75.113 port 39930 Sep 30 20:07:52 plex-server sshd[1133365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Sep 30 20:07:52 plex-server sshd[1133365]: Invalid user superuser from 138.68.75.113 port 39930 Sep 30 20:07:54 plex-server sshd[1133365]: Failed password for invalid user superuser from 138.68.75.113 port 39930 ssh2 ...	2020-10-01 04:10:51
attackspambots	Sep 30 12:20:04 vpn01 sshd[13717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Sep 30 12:20:06 vpn01 sshd[13717]: Failed password for invalid user db2fenc1 from 138.68.75.113 port 58626 ssh2 ...	2020-09-30 20:20:41
attack	Ssh brute force	2020-09-30 12:48:33
attackbotsspam	Sep 26 00:01:48 vpn01 sshd[16009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Sep 26 00:01:50 vpn01 sshd[16009]: Failed password for invalid user info from 138.68.75.113 port 52966 ssh2 ...	2020-09-26 07:27:54
attackspam	Sep 25 12:51:17 MainVPS sshd[24845]: Invalid user guest from 138.68.75.113 port 56934 Sep 25 12:51:17 MainVPS sshd[24845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Sep 25 12:51:17 MainVPS sshd[24845]: Invalid user guest from 138.68.75.113 port 56934 Sep 25 12:51:19 MainVPS sshd[24845]: Failed password for invalid user guest from 138.68.75.113 port 56934 ssh2 Sep 25 12:56:40 MainVPS sshd[3780]: Invalid user dockeradmin from 138.68.75.113 port 38978 ...	2020-09-26 00:39:25
attack	Bruteforce detected by fail2ban	2020-09-25 16:15:27
attackbots	$f2bV_matches	2020-09-15 13:50:14
attack	Sep 14 21:25:01 vps647732 sshd[11990]: Failed password for root from 138.68.75.113 port 36970 ssh2 ...	2020-09-15 06:02:09
attack	invalid user wg from 138.68.75.113 port 59138 ssh2	2020-09-01 07:18:52
attack	Aug 15 15:13:29 cosmoit sshd[28783]: Failed password for root from 138.68.75.113 port 55266 ssh2	2020-08-15 21:32:40
attackspam	Aug 11 15:29:41 roki-contabo sshd\[31226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root Aug 11 15:29:42 roki-contabo sshd\[31226\]: Failed password for root from 138.68.75.113 port 47506 ssh2 Aug 11 15:37:42 roki-contabo sshd\[31434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root Aug 11 15:37:44 roki-contabo sshd\[31434\]: Failed password for root from 138.68.75.113 port 38458 ssh2 Aug 11 15:42:45 roki-contabo sshd\[31584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root ...	2020-08-12 04:36:41
attack	Aug 11 07:28:20 OPSO sshd\[9270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root Aug 11 07:28:23 OPSO sshd\[9270\]: Failed password for root from 138.68.75.113 port 51842 ssh2 Aug 11 07:32:22 OPSO sshd\[9967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root Aug 11 07:32:24 OPSO sshd\[9967\]: Failed password for root from 138.68.75.113 port 54716 ssh2 Aug 11 07:36:14 OPSO sshd\[10566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root	2020-08-11 14:31:28
attackbots	2020-08-09T14:02:51.722034centos sshd[25896]: Failed password for root from 138.68.75.113 port 46162 ssh2 2020-08-09T14:07:25.516295centos sshd[26137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 user=root 2020-08-09T14:07:27.748494centos sshd[26137]: Failed password for root from 138.68.75.113 port 54868 ssh2 ...	2020-08-10 02:27:11
attack	Fail2Ban	2020-08-09 05:55:58
attackspam	$f2bV_matches	2020-08-07 16:41:58
attackspambots	Invalid user adidas from 138.68.75.113 port 47944	2020-07-25 19:48:22
attackbots	552. On Jul 20 2020 experienced a Brute Force SSH login attempt -> 48 unique times by 138.68.75.113.	2020-07-21 07:44:08
attack	Tried sshing with brute force.	2020-07-19 05:28:02
attackspambots	k+ssh-bruteforce	2020-07-06 02:10:34
attackspam	Jun 27 06:58:19 minden010 sshd[19628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 Jun 27 06:58:21 minden010 sshd[19628]: Failed password for invalid user odbc from 138.68.75.113 port 46858 ssh2 Jun 27 07:02:20 minden010 sshd[22053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.75.113 ...	2020-06-27 13:39:34
attackbotsspam	Invalid user swords from 138.68.75.113 port 42286	2020-06-20 13:23:06
attackspambots	$f2bV_matches	2020-06-14 08:43:51
attackspambots	SSH login attempts.	2020-06-01 16:30:20
attackbotsspam	SSH Bruteforce Attempt (failed auth)	2020-05-29 12:01:23
attackspambots	Invalid user ramanats from 138.68.75.113 port 46232	2020-05-28 16:22:32
attackspam	Invalid user ramanats from 138.68.75.113 port 46232	2020-05-28 03:36:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.75.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14781
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.75.113.			IN	A

;; AUTHORITY SECTION:
.			506	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 150 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 12:11:49 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 113.75.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 113.75.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.150.112.159	attackspambots	Jul 9 02:47:02 ArkNodeAT sshd\[21511\]: Invalid user oracle from 129.150.112.159 Jul 9 02:47:02 ArkNodeAT sshd\[21511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.150.112.159 Jul 9 02:47:04 ArkNodeAT sshd\[21511\]: Failed password for invalid user oracle from 129.150.112.159 port 16387 ssh2	2019-07-09 09:13:56
109.104.173.46	attack	Jul 9 01:21:01 mail sshd\[27948\]: Invalid user teamspeak from 109.104.173.46 port 60250 Jul 9 01:21:01 mail sshd\[27948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.104.173.46 ...	2019-07-09 08:34:01
162.243.148.116	attackbots	Jul 8 18:34:32 TCP Attack: SRC=162.243.148.116 DST=[Masked] LEN=163 TOS=0x00 PREC=0x00 TTL=56 DF PROTO=TCP SPT=48598 DPT=80 WINDOW=229 RES=0x00 ACK PSH URGP=0	2019-07-09 09:07:25
36.84.80.31	attack	Jul 8 23:17:23 vps647732 sshd[29279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.84.80.31 Jul 8 23:17:24 vps647732 sshd[29279]: Failed password for invalid user user from 36.84.80.31 port 57249 ssh2 ...	2019-07-09 08:55:30
37.139.24.190	attackbotsspam	Tried sshing with brute force.	2019-07-09 08:35:33
77.46.106.131	attack	Jul 9 02:26:40 vtv3 sshd\[1207\]: Invalid user pi from 77.46.106.131 port 60744 Jul 9 02:26:40 vtv3 sshd\[1207\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.46.106.131 Jul 9 02:26:40 vtv3 sshd\[1209\]: Invalid user pi from 77.46.106.131 port 60750 Jul 9 02:26:40 vtv3 sshd\[1209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.46.106.131 Jul 9 02:26:42 vtv3 sshd\[1207\]: Failed password for invalid user pi from 77.46.106.131 port 60744 ssh2	2019-07-09 08:26:29
185.119.82.126	attackspam	pillott.xyz (checking ip) = 51.79.64.101	2019-07-09 08:57:22
36.100.143.52	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-09 09:13:33
79.121.121.4	attack	Jul 9 02:54:19 rpi sshd[22876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.121.121.4 Jul 9 02:54:20 rpi sshd[22876]: Failed password for invalid user sysadmin from 79.121.121.4 port 53818 ssh2	2019-07-09 08:58:27
190.111.239.48	attackspambots	SSH-BruteForce	2019-07-09 08:39:04
36.68.147.161	attack	Web App Attack	2019-07-09 08:52:43
154.118.241.86	attackbots	Caught in portsentry honeypot	2019-07-09 09:10:37
204.48.31.143	attackbotsspam	Jul 9 04:18:27 vibhu-HP-Z238-Microtower-Workstation sshd\[19658\]: Invalid user ob from 204.48.31.143 Jul 9 04:18:27 vibhu-HP-Z238-Microtower-Workstation sshd\[19658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.31.143 Jul 9 04:18:30 vibhu-HP-Z238-Microtower-Workstation sshd\[19658\]: Failed password for invalid user ob from 204.48.31.143 port 35392 ssh2 Jul 9 04:20:50 vibhu-HP-Z238-Microtower-Workstation sshd\[19709\]: Invalid user sinus from 204.48.31.143 Jul 9 04:20:50 vibhu-HP-Z238-Microtower-Workstation sshd\[19709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.31.143 ...	2019-07-09 08:40:14
216.245.210.222	attack	SipVicious Brute Force SIP Tool	2019-07-09 08:48:20
170.81.19.148	attack	SMTP-SASL bruteforce attempt	2019-07-09 08:55:52

Recently Reported IPs

190.145.73.82	52.220.80.188	14.248.84.99	71.205.44.21
67.205.164.131	172.69.54.239	214.202.204.148	123.21.190.102
171.76.189.23	123.206.204.70	167.99.72.73	162.158.38.63
162.158.38.57	59.61.83.118	31.24.145.41	49.81.31.15
191.31.18.84	188.254.110.205	183.89.211.51	162.158.111.27