116.202.105.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.202.105.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24086
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.202.105.1.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032701 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 28 11:18:31 CST 2022
;; MSG SIZE  rcvd: 106

Host info

1.105.202.116.in-addr.arpa domain name pointer b13o1.myraidbox.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.105.202.116.in-addr.arpa	name = b13o1.myraidbox.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
72.52.158.56	attack	May 11 13:41:55 www3-1 postfix/smtpd[22747]: connect from host.realxsoft.com[72.52.158.56] May x@x May 11 13:41:56 www3-1 postfix/smtpd[22747]: disconnect from host.realxsoft.com[72.52.158.56] May 11 13:42:05 www3-1 postfix/smtpd[22747]: connect from host.realxsoft.com[72.52.158.56] May x@x May 11 13:42:05 www3-1 postfix/smtpd[22747]: disconnect from host.realxsoft.com[72.52.158.56] May 11 13:42:23 www3-1 postfix/smtpd[22747]: connect from host.realxsoft.com[72.52.158.56] May x@x May 11 13:42:24 www3-1 postfix/smtpd[22747]: disconnect from host.realxsoft.com[72.52.158.56] May 11 13:42:30 www3-1 postfix/smtpd[22747]: connect from host.realxsoft.com[72.52.158.56] May x@x May 11 13:42:31 www3-1 postfix/smtpd[22747]: disconnect from host.realxsoft.com[72.52.158.56] May 11 13:42:50 www3-1 postfix/smtpd[22747]: connect from host.realxsoft.com[72.52.158.56] May x@x May 11 13:42:51 www3-1 postfix/smtpd[22747]: disconnect from host.realxsoft.com[72.52.158.56] ........ -----------------------------------------------	2020-05-12 00:55:14
198.108.66.229	attack	May 11 14:04:45 debian-2gb-nbg1-2 kernel: \[11457552.785132\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.108.66.229 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=32 ID=42934 PROTO=TCP SPT=21149 DPT=9180 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-12 01:06:31
213.251.41.225	attack	May 11 18:03:46 vps639187 sshd\[17667\]: Invalid user deploy from 213.251.41.225 port 40862 May 11 18:03:46 vps639187 sshd\[17667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.41.225 May 11 18:03:48 vps639187 sshd\[17667\]: Failed password for invalid user deploy from 213.251.41.225 port 40862 ssh2 ...	2020-05-12 01:09:31
139.59.57.2	attackbots	May 11 18:58:48 vpn01 sshd[10930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.57.2 May 11 18:58:51 vpn01 sshd[10930]: Failed password for invalid user wh from 139.59.57.2 port 41070 ssh2 ...	2020-05-12 01:10:00
89.248.172.123	attackspambots	05/11/2020-18:36:17.864410 89.248.172.123 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2020-05-12 01:00:14
45.165.215.195	attackspambots	May 11 07:46:40 josie sshd[31529]: Did not receive identification string from 45.165.215.195 May 11 07:46:40 josie sshd[31530]: Did not receive identification string from 45.165.215.195 May 11 07:46:40 josie sshd[31531]: Did not receive identification string from 45.165.215.195 May 11 07:46:40 josie sshd[31532]: Did not receive identification string from 45.165.215.195 May 11 07:46:44 josie sshd[31548]: Invalid user admin2 from 45.165.215.195 May 11 07:46:44 josie sshd[31550]: Invalid user admin2 from 45.165.215.195 May 11 07:46:44 josie sshd[31549]: Invalid user admin2 from 45.165.215.195 May 11 07:46:44 josie sshd[31547]: Invalid user admin2 from 45.165.215.195 May 11 07:46:44 josie sshd[31548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.165.215.195 May 11 07:46:44 josie sshd[31550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.165.215.195 May 11 07:46:44 josie sshd[31549]:........ -------------------------------	2020-05-12 01:17:42
49.233.153.154	attack	May 11 15:49:27 piServer sshd[20686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.153.154 May 11 15:49:29 piServer sshd[20686]: Failed password for invalid user maya from 49.233.153.154 port 37038 ssh2 May 11 15:55:05 piServer sshd[21141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.153.154 ...	2020-05-12 01:26:55
140.143.56.61	attack	2020-05-11T12:37:04.432831shield sshd\[30832\]: Invalid user osboxes from 140.143.56.61 port 34488 2020-05-11T12:37:04.436491shield sshd\[30832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 2020-05-11T12:37:05.859939shield sshd\[30832\]: Failed password for invalid user osboxes from 140.143.56.61 port 34488 ssh2 2020-05-11T12:41:34.284471shield sshd\[31899\]: Invalid user myuser from 140.143.56.61 port 55936 2020-05-11T12:41:34.290370shield sshd\[31899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61	2020-05-12 00:54:49
187.37.71.95	attack	May 11 18:14:36 inter-technics sshd[12017]: Invalid user Joey from 187.37.71.95 port 39984 May 11 18:14:36 inter-technics sshd[12017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.37.71.95 May 11 18:14:36 inter-technics sshd[12017]: Invalid user Joey from 187.37.71.95 port 39984 May 11 18:14:38 inter-technics sshd[12017]: Failed password for invalid user Joey from 187.37.71.95 port 39984 ssh2 May 11 18:22:41 inter-technics sshd[12545]: Invalid user ubuntu from 187.37.71.95 port 46022 ...	2020-05-12 01:22:45
114.33.83.207	attack	Telnet Server BruteForce Attack	2020-05-12 00:41:20
222.186.52.39	attackspam	May 11 18:35:52 vmanager6029 sshd\[25054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.39 user=root May 11 18:35:54 vmanager6029 sshd\[25050\]: error: PAM: Authentication failure for root from 222.186.52.39 May 11 18:36:05 vmanager6029 sshd\[25055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.39 user=root	2020-05-12 00:46:37
81.39.143.180	attackspambots	May 11 13:23:02 zimbra sshd[20639]: Invalid user test from 81.39.143.180 May 11 13:23:02 zimbra sshd[20639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.39.143.180 May 11 13:23:03 zimbra sshd[20639]: Failed password for invalid user test from 81.39.143.180 port 54642 ssh2 May 11 13:23:04 zimbra sshd[20639]: Received disconnect from 81.39.143.180 port 54642:11: Bye Bye [preauth] May 11 13:23:04 zimbra sshd[20639]: Disconnected from 81.39.143.180 port 54642 [preauth] May 11 13:31:44 zimbra sshd[28001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.39.143.180 user=r.r May 11 13:31:47 zimbra sshd[28001]: Failed password for r.r from 81.39.143.180 port 38792 ssh2 May 11 13:31:47 zimbra sshd[28001]: Received disconnect from 81.39.143.180 port 38792:11: Bye Bye [preauth] May 11 13:31:47 zimbra sshd[28001]: Disconnected from 81.39.143.180 port 38792 [preauth] ........ ----------------------------------------------- https://	2020-05-12 00:39:15
51.75.201.137	attackspambots	2020-05-11T07:38:35.0260061495-001 sshd[18175]: Failed password for invalid user admin from 51.75.201.137 port 60874 ssh2 2020-05-11T07:42:37.7723981495-001 sshd[18379]: Invalid user wwwdata from 51.75.201.137 port 43078 2020-05-11T07:42:37.7754811495-001 sshd[18379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.ip-51-75-201.eu 2020-05-11T07:42:37.7723981495-001 sshd[18379]: Invalid user wwwdata from 51.75.201.137 port 43078 2020-05-11T07:42:39.3651091495-001 sshd[18379]: Failed password for invalid user wwwdata from 51.75.201.137 port 43078 ssh2 2020-05-11T07:46:43.6594721495-001 sshd[18591]: Invalid user smartworldmss from 51.75.201.137 port 53526 ...	2020-05-12 01:24:23
77.41.123.213	attack	DATE:2020-05-11 14:05:02, IP:77.41.123.213, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-05-12 00:44:52
165.22.215.129	attack	odoo8 ...	2020-05-12 01:14:31

Recently Reported IPs

116.202.102.88	116.202.105.192	116.202.106.36	116.202.106.55
116.202.108.10	116.202.109.38	116.202.111.181	116.202.112.198
116.202.112.92	116.202.113.41	116.202.114.251	116.202.114.55
116.202.115.30	116.202.116.205	116.202.117.198	116.202.117.245
116.202.118.200	95.82.143.150	116.202.123.164	116.202.123.166