138.68.85.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.68.85.208	attackspambots	Sep 20 18:31:32 localhost sshd\[25615\]: Invalid user postgres from 138.68.85.208 Sep 20 18:31:32 localhost sshd\[25615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 Sep 20 18:31:33 localhost sshd\[25615\]: Failed password for invalid user postgres from 138.68.85.208 port 43364 ssh2 Sep 20 18:37:14 localhost sshd\[25845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 user=root Sep 20 18:37:15 localhost sshd\[25845\]: Failed password for root from 138.68.85.208 port 55630 ssh2 ...	2020-09-21 01:43:19
138.68.85.208	attack	fail2ban	2020-09-20 17:42:46
138.68.85.208	attack	2020-09-19T08:08:58.9179131495-001 sshd[10541]: Invalid user ts from 138.68.85.208 port 59530 2020-09-19T08:08:58.9210561495-001 sshd[10541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 2020-09-19T08:08:58.9179131495-001 sshd[10541]: Invalid user ts from 138.68.85.208 port 59530 2020-09-19T08:09:01.0799141495-001 sshd[10541]: Failed password for invalid user ts from 138.68.85.208 port 59530 ssh2 2020-09-19T08:15:13.6276231495-001 sshd[10840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 user=root 2020-09-19T08:15:15.9323111495-001 sshd[10840]: Failed password for root from 138.68.85.208 port 43974 ssh2 ...	2020-09-19 21:01:17
138.68.85.208	attack	Sep 19 00:21:18 ny01 sshd[11981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208 Sep 19 00:21:20 ny01 sshd[11981]: Failed password for invalid user system from 138.68.85.208 port 45364 ssh2 Sep 19 00:27:37 ny01 sshd[13055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.208	2020-09-19 12:56:21
138.68.85.35	attackbotsspam	May 15 08:34:40 sigma sshd\[16841\]: Invalid user ops from 138.68.85.35May 15 08:34:42 sigma sshd\[16841\]: Failed password for invalid user ops from 138.68.85.35 port 34482 ssh2 ...	2020-05-15 18:41:44
138.68.85.35	attackbots	2020-04-24T22:10:18.154784shield sshd\[20315\]: Invalid user etfile from 138.68.85.35 port 45200 2020-04-24T22:10:18.158482shield sshd\[20315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.35 2020-04-24T22:10:19.953525shield sshd\[20315\]: Failed password for invalid user etfile from 138.68.85.35 port 45200 ssh2 2020-04-24T22:16:57.815410shield sshd\[21898\]: Invalid user informix from 138.68.85.35 port 48464 2020-04-24T22:16:57.819620shield sshd\[21898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.85.35	2020-04-25 06:22:18
138.68.85.35	attack	Port probing on unauthorized port 22520	2020-04-22 18:22:22
138.68.85.35	attackbotsspam	DATE:2020-04-21 05:55:24, IP:138.68.85.35, PORT:ssh SSH brute force auth (docker-dc)	2020-04-21 14:07:07
138.68.85.35	attack	SSH Brute-Force Attack	2020-04-19 15:18:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.85.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6989
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.85.5.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:53:22 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 5.85.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.85.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.227.2.130	attackbotsspam	Jul 15 22:59:02 v22018076622670303 sshd\[452\]: Invalid user administrator from 58.227.2.130 port 46105 Jul 15 22:59:02 v22018076622670303 sshd\[452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.227.2.130 Jul 15 22:59:04 v22018076622670303 sshd\[452\]: Failed password for invalid user administrator from 58.227.2.130 port 46105 ssh2 ...	2019-07-16 06:18:04
163.172.160.182	attackbots	Jul 15 16:51:28 ip-172-31-1-72 sshd\[26570\]: Invalid user mother from 163.172.160.182 Jul 15 16:51:28 ip-172-31-1-72 sshd\[26570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.160.182 Jul 15 16:51:30 ip-172-31-1-72 sshd\[26570\]: Failed password for invalid user mother from 163.172.160.182 port 43168 ssh2 Jul 15 16:51:35 ip-172-31-1-72 sshd\[26572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.160.182 user=root Jul 15 16:51:37 ip-172-31-1-72 sshd\[26572\]: Failed password for root from 163.172.160.182 port 45142 ssh2	2019-07-16 05:55:05
52.172.195.61	attack	2019-07-15T23:52:17.947872 sshd[19991]: Invalid user matt from 52.172.195.61 port 50544 2019-07-15T23:52:17.965057 sshd[19991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.195.61 2019-07-15T23:52:17.947872 sshd[19991]: Invalid user matt from 52.172.195.61 port 50544 2019-07-15T23:52:19.907611 sshd[19991]: Failed password for invalid user matt from 52.172.195.61 port 50544 ssh2 2019-07-15T23:57:54.646828 sshd[20038]: Invalid user shaker from 52.172.195.61 port 50692 ...	2019-07-16 06:22:33
153.36.242.114	attackbotsspam	2019-07-15T21:49:05.057226abusebot-3.cloudsearch.cf sshd\[1521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=root	2019-07-16 05:56:59
113.71.154.60	attackspam	Automatic report - Port Scan Attack	2019-07-16 06:13:20
185.38.44.194	attackspambots	WordPress brute force	2019-07-16 06:16:56
167.114.153.77	attackspambots	Jul 15 21:58:21 SilenceServices sshd[18368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.153.77 Jul 15 21:58:22 SilenceServices sshd[18368]: Failed password for invalid user np from 167.114.153.77 port 56739 ssh2 Jul 15 22:02:52 SilenceServices sshd[20675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.153.77	2019-07-16 06:38:03
67.69.134.66	attackspam	Jul 16 04:54:34 webhost01 sshd[19189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.69.134.66 Jul 16 04:54:36 webhost01 sshd[19189]: Failed password for invalid user administrador from 67.69.134.66 port 47330 ssh2 ...	2019-07-16 06:15:08
185.176.27.246	attack	15.07.2019 22:01:24 Connection to port 43901 blocked by firewall	2019-07-16 06:02:16
68.183.190.34	attackbots	Jul 16 00:21:23 core01 sshd\[9923\]: Invalid user broker from 68.183.190.34 port 47516 Jul 16 00:21:23 core01 sshd\[9923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.190.34 ...	2019-07-16 06:28:30
47.104.226.128	attackspambots	Looking for resource vulnerabilities	2019-07-16 06:31:36
60.30.92.74	attackbots	Jul 15 22:33:18 localhost sshd\[15846\]: Invalid user john from 60.30.92.74 port 6794 Jul 15 22:33:18 localhost sshd\[15846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.30.92.74 ...	2019-07-16 06:07:36
71.10.74.238	attack	Jul 15 23:28:36 localhost sshd\[21348\]: Invalid user minecraft from 71.10.74.238 port 57268 Jul 15 23:28:36 localhost sshd\[21348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.10.74.238 ...	2019-07-16 06:36:52
181.229.35.23	attackbots	Jul 15 13:45:04 vtv3 sshd\[17691\]: Invalid user warehouse from 181.229.35.23 port 44263 Jul 15 13:45:04 vtv3 sshd\[17691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.229.35.23 Jul 15 13:45:05 vtv3 sshd\[17691\]: Failed password for invalid user warehouse from 181.229.35.23 port 44263 ssh2 Jul 15 13:51:21 vtv3 sshd\[21129\]: Invalid user tarcisio from 181.229.35.23 port 37283 Jul 15 13:51:21 vtv3 sshd\[21129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.229.35.23 Jul 15 14:27:47 vtv3 sshd\[7067\]: Invalid user temp from 181.229.35.23 port 44016 Jul 15 14:27:47 vtv3 sshd\[7067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.229.35.23 Jul 15 14:27:48 vtv3 sshd\[7067\]: Failed password for invalid user temp from 181.229.35.23 port 44016 ssh2 Jul 15 14:32:18 vtv3 sshd\[9303\]: Invalid user edmond from 181.229.35.23 port 58976 Jul 15 14:32:18 vtv3 sshd\[9303\]:	2019-07-16 06:25:51
51.68.70.175	attackbotsspam	Jul 16 00:19:27 SilenceServices sshd[10327]: Failed password for nobody from 51.68.70.175 port 42154 ssh2 Jul 16 00:23:43 SilenceServices sshd[12997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.70.175 Jul 16 00:23:45 SilenceServices sshd[12997]: Failed password for invalid user deploy from 51.68.70.175 port 39022 ssh2	2019-07-16 06:33:12

Recently Reported IPs

174.130.107.129	196.201.78.140	183.90.253.19	160.238.241.69
188.166.123.129	186.192.99.1	218.26.119.92	110.53.89.170
187.178.167.82	201.150.180.169	178.237.217.76	156.214.193.197
43.224.169.28	58.209.234.81	61.3.147.96	210.89.58.45
125.45.149.246	49.234.134.104	197.49.196.32	182.135.122.42