138.68.85.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.85.208	attackspambots	Sep 20 18:31:32 localhost sshd\[25615\]: Invalid user postgres from 138.68.85.208 Sep 20 18:31:32 localhost sshd\[25615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 Sep 20 18:31:33 localhost sshd\[25615\]: Failed password for invalid user postgres from 138.68.85.208 port 43364 ssh2 Sep 20 18:37:14 localhost sshd\[25845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 user=root Sep 20 18:37:15 localhost sshd\[25845\]: Failed password for root from 138.68.85.208 port 55630 ssh2 ...	2020-09-21 01:43:19
138.68.85.208	attack	fail2ban	2020-09-20 17:42:46
138.68.85.208	attack	2020-09-19T08:08:58.9179131495-001 sshd[10541]: Invalid user ts from 138.68.85.208 port 59530 2020-09-19T08:08:58.9210561495-001 sshd[10541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 2020-09-19T08:08:58.9179131495-001 sshd[10541]: Invalid user ts from 138.68.85.208 port 59530 2020-09-19T08:09:01.0799141495-001 sshd[10541]: Failed password for invalid user ts from 138.68.85.208 port 59530 ssh2 2020-09-19T08:15:13.6276231495-001 sshd[10840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 user=root 2020-09-19T08:15:15.9323111495-001 sshd[10840]: Failed password for root from 138.68.85.208 port 43974 ssh2 ...	2020-09-19 21:01:17
138.68.85.208	attack	Sep 19 00:21:18 ny01 sshd[11981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 Sep 19 00:21:20 ny01 sshd[11981]: Failed password for invalid user system from 138.68.85.208 port 45364 ssh2 Sep 19 00:27:37 ny01 sshd[13055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208	2020-09-19 12:56:21
138.68.85.35	attackbotsspam	May 15 08:34:40 sigma sshd\[16841\]: Invalid user ops from 138.68.85.35May 15 08:34:42 sigma sshd\[16841\]: Failed password for invalid user ops from 138.68.85.35 port 34482 ssh2 ...	2020-05-15 18:41:44
138.68.85.35	attackbots	2020-04-24T22:10:18.154784shield sshd\[20315\]: Invalid user etfile from 138.68.85.35 port 45200 2020-04-24T22:10:18.158482shield sshd\[20315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.35 2020-04-24T22:10:19.953525shield sshd\[20315\]: Failed password for invalid user etfile from 138.68.85.35 port 45200 ssh2 2020-04-24T22:16:57.815410shield sshd\[21898\]: Invalid user informix from 138.68.85.35 port 48464 2020-04-24T22:16:57.819620shield sshd\[21898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.35	2020-04-25 06:22:18
138.68.85.35	attack	Port probing on unauthorized port 22520	2020-04-22 18:22:22
138.68.85.35	attackbotsspam	DATE:2020-04-21 05:55:24, IP:138.68.85.35, PORT:ssh SSH brute force auth (docker-dc)	2020-04-21 14:07:07
138.68.85.35	attack	SSH Brute-Force Attack	2020-04-19 15:18:16

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.85.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50276
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.85.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat May 11 08:46:42 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 142.85.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 142.85.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.116.70.25	attack	Automatic report - Port Scan Attack	2019-09-22 14:19:50
120.88.46.226	attackbots	Automatic report - Banned IP Access	2019-09-22 14:32:37
217.61.5.122	attack	$f2bV_matches	2019-09-22 14:45:42
176.63.151.209	attackspam	10 attempts against mh-misc-ban on heat.magehost.pro	2019-09-22 14:25:03
148.70.17.61	attack	Sep 21 20:38:30 auw2 sshd\[6810\]: Invalid user admin from 148.70.17.61 Sep 21 20:38:30 auw2 sshd\[6810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.17.61 Sep 21 20:38:32 auw2 sshd\[6810\]: Failed password for invalid user admin from 148.70.17.61 port 55932 ssh2 Sep 21 20:44:27 auw2 sshd\[7696\]: Invalid user ku from 148.70.17.61 Sep 21 20:44:27 auw2 sshd\[7696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.17.61	2019-09-22 14:50:21
152.136.84.139	attack	Sep 22 02:04:33 xtremcommunity sshd\[349980\]: Invalid user sabin from 152.136.84.139 port 56602 Sep 22 02:04:33 xtremcommunity sshd\[349980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.84.139 Sep 22 02:04:35 xtremcommunity sshd\[349980\]: Failed password for invalid user sabin from 152.136.84.139 port 56602 ssh2 Sep 22 02:10:10 xtremcommunity sshd\[350175\]: Invalid user km from 152.136.84.139 port 39526 Sep 22 02:10:10 xtremcommunity sshd\[350175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.84.139 ...	2019-09-22 14:25:24
103.192.78.226	attack	Chat Spam	2019-09-22 14:41:44
106.12.183.6	attackspambots	Sep 21 19:37:25 hpm sshd\[16377\]: Invalid user installer from 106.12.183.6 Sep 21 19:37:25 hpm sshd\[16377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.183.6 Sep 21 19:37:27 hpm sshd\[16377\]: Failed password for invalid user installer from 106.12.183.6 port 50144 ssh2 Sep 21 19:41:05 hpm sshd\[16825\]: Invalid user ewald from 106.12.183.6 Sep 21 19:41:05 hpm sshd\[16825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.183.6	2019-09-22 14:34:11
172.105.78.192	attackspambots	Automatic report - Port Scan Attack	2019-09-22 14:48:54
185.13.112.93	attackbots	22.09.2019 05:54:31 - Wordpress fail Detected by ELinOX-ALM	2019-09-22 14:48:01
49.232.46.135	attackbots	Repeated brute force against a port	2019-09-22 14:17:48
110.77.227.112	attackbotsspam	Chat Spam	2019-09-22 14:53:32
112.85.42.175	attackspam	detected by Fail2Ban	2019-09-22 14:19:20
217.133.99.111	attackspam	Sep 22 07:07:21 site3 sshd\[222217\]: Invalid user postgres from 217.133.99.111 Sep 22 07:07:21 site3 sshd\[222217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.133.99.111 Sep 22 07:07:23 site3 sshd\[222217\]: Failed password for invalid user postgres from 217.133.99.111 port 61817 ssh2 Sep 22 07:13:56 site3 sshd\[222362\]: Invalid user apc from 217.133.99.111 Sep 22 07:13:56 site3 sshd\[222362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.133.99.111 ...	2019-09-22 14:45:15
118.126.105.120	attackbots	Sep 22 08:26:26 rpi sshd[19092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.105.120 Sep 22 08:26:28 rpi sshd[19092]: Failed password for invalid user sen from 118.126.105.120 port 45766 ssh2	2019-09-22 14:41:26

Recently Reported IPs

157.230.89.161	151.61.35.219	152.221.11.182	232.35.250.219
123.149.135.20	175.191.244.255	102.10.29.248	54.38.33.186
112.163.83.110	99.157.180.88	136.243.178.117	102.66.109.158
42.123.99.65	6.47.159.241	232.121.46.153	37.106.158.91
136.99.116.243	169.247.55.12	193.37.172.114	87.20.234.67