116.203.68.214

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Possible Phishing	2023-03-21 13:37:38

Comments on same subnet:

IP	Type	Details	Datetime
116.203.68.175	attackbots	20 attempts against mh-ssh on milky.magehost.pro	2019-06-24 00:49:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.203.68.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61577
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.203.68.214.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 06:14:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

214.68.203.116.in-addr.arpa domain name pointer static.214.68.203.116.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.68.203.116.in-addr.arpa	name = static.214.68.203.116.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.117.168	attack	Apr 9 16:17:19 server sshd\[35276\]: Invalid user zabbix from 157.230.117.168 Apr 9 16:17:19 server sshd\[35276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.117.168 Apr 9 16:17:20 server sshd\[35276\]: Failed password for invalid user zabbix from 157.230.117.168 port 53148 ssh2 Apr 9 16:17:19 server sshd\[35276\]: Invalid user zabbix from 157.230.117.168 Apr 9 16:17:19 server sshd\[35276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.117.168 Apr 9 16:17:20 server sshd\[35276\]: Failed password for invalid user zabbix from 157.230.117.168 port 53148 ssh2 ...	2019-10-09 19:12:19
106.52.102.190	attackbotsspam	Oct 7 08:47:28 zimbra sshd[17194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.102.190 user=r.r Oct 7 08:47:30 zimbra sshd[17194]: Failed password for r.r from 106.52.102.190 port 58079 ssh2 Oct 7 08:47:31 zimbra sshd[17194]: Received disconnect from 106.52.102.190 port 58079:11: Bye Bye [preauth] Oct 7 08:47:31 zimbra sshd[17194]: Disconnected from 106.52.102.190 port 58079 [preauth] Oct 7 09:14:26 zimbra sshd[2295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.102.190 user=r.r Oct 7 09:14:28 zimbra sshd[2295]: Failed password for r.r from 106.52.102.190 port 40248 ssh2 Oct 7 09:14:29 zimbra sshd[2295]: Received disconnect from 106.52.102.190 port 40248:11: Bye Bye [preauth] Oct 7 09:14:29 zimbra sshd[2295]: Disconnected from 106.52.102.190 port 40248 [preauth] Oct 7 09:19:15 zimbra sshd[5304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=........ -------------------------------	2019-10-09 19:06:15
156.220.18.207	attack	May 20 11:11:41 server sshd\[7628\]: Invalid user admin from 156.220.18.207 May 20 11:11:41 server sshd\[7628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.220.18.207 May 20 11:11:42 server sshd\[7628\]: Failed password for invalid user admin from 156.220.18.207 port 60932 ssh2 ...	2019-10-09 19:22:58
218.92.0.163	attackbots	Oct 9 05:35:07 123flo sshd[17342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.163 user=root Oct 9 05:35:10 123flo sshd[17342]: Failed password for root from 218.92.0.163 port 11023 ssh2	2019-10-09 19:11:34
171.235.84.8	attackspam	Oct 9 12:56:27 rotator sshd\[18486\]: Address 171.235.84.8 maps to dynamic-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 9 12:56:28 rotator sshd\[18488\]: Address 171.235.84.8 maps to dynamic-ip-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 9 12:56:29 rotator sshd\[18490\]: Address 171.235.84.8 maps to dynamic-ip-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 9 12:56:29 rotator sshd\[18486\]: Failed password for root from 171.235.84.8 port 44612 ssh2Oct 9 12:56:30 rotator sshd\[18488\]: Failed password for sync from 171.235.84.8 port 51710 ssh2Oct 9 12:56:30 rotator sshd\[18490\]: Failed password for uucp from 171.235.84.8 port 53868 ssh2 ...	2019-10-09 19:19:25
111.231.215.244	attack	2019-10-09T10:49:35.989920hub.schaetter.us sshd\[26529\]: Invalid user 123 from 111.231.215.244 port 65086 2019-10-09T10:49:35.999008hub.schaetter.us sshd\[26529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.215.244 2019-10-09T10:49:37.487128hub.schaetter.us sshd\[26529\]: Failed password for invalid user 123 from 111.231.215.244 port 65086 ssh2 2019-10-09T10:57:46.012897hub.schaetter.us sshd\[26607\]: Invalid user 123Root from 111.231.215.244 port 10932 2019-10-09T10:57:46.020811hub.schaetter.us sshd\[26607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.215.244 ...	2019-10-09 19:17:56
132.232.72.110	attack	Oct 9 04:07:55 www_kotimaassa_fi sshd[12110]: Failed password for root from 132.232.72.110 port 50502 ssh2 ...	2019-10-09 19:27:46
77.243.191.26	attackbotsspam	$f2bV_matches	2019-10-09 19:18:56
157.230.157.99	attack	Jul 1 01:06:54 server sshd\[101318\]: Invalid user sales from 157.230.157.99 Jul 1 01:06:54 server sshd\[101318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.157.99 Jul 1 01:06:56 server sshd\[101318\]: Failed password for invalid user sales from 157.230.157.99 port 50014 ssh2 ...	2019-10-09 19:07:35
218.92.0.181	attackspam	SSH Brute-Force attacks	2019-10-09 18:56:40
156.202.45.9	attackbots	Aug 7 14:00:36 server sshd\[76016\]: Invalid user admin from 156.202.45.9 Aug 7 14:00:36 server sshd\[76016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.202.45.9 Aug 7 14:00:38 server sshd\[76016\]: Failed password for invalid user admin from 156.202.45.9 port 59023 ssh2 ...	2019-10-09 19:31:07
54.37.159.12	attackbotsspam	Oct 9 10:26:38 eventyay sshd[25731]: Failed password for root from 54.37.159.12 port 47222 ssh2 Oct 9 10:30:21 eventyay sshd[25811]: Failed password for root from 54.37.159.12 port 58334 ssh2 ...	2019-10-09 18:54:03
51.68.82.218	attack	Oct 9 12:53:08 SilenceServices sshd[11824]: Failed password for root from 51.68.82.218 port 41002 ssh2 Oct 9 12:57:18 SilenceServices sshd[12931]: Failed password for root from 51.68.82.218 port 52100 ssh2	2019-10-09 19:20:26
110.246.61.72	attackbotsspam	Unauthorised access (Oct 9) SRC=110.246.61.72 LEN=40 TTL=49 ID=1330 TCP DPT=8080 WINDOW=49231 SYN Unauthorised access (Oct 9) SRC=110.246.61.72 LEN=40 TTL=49 ID=24174 TCP DPT=8080 WINDOW=49231 SYN Unauthorised access (Oct 8) SRC=110.246.61.72 LEN=40 TTL=49 ID=47337 TCP DPT=8080 WINDOW=49231 SYN Unauthorised access (Oct 6) SRC=110.246.61.72 LEN=40 TTL=49 ID=10824 TCP DPT=8080 WINDOW=49231 SYN Unauthorised access (Oct 6) SRC=110.246.61.72 LEN=40 TTL=49 ID=60854 TCP DPT=8080 WINDOW=52551 SYN Unauthorised access (Oct 6) SRC=110.246.61.72 LEN=40 TTL=49 ID=58335 TCP DPT=8080 WINDOW=49231 SYN	2019-10-09 18:58:27
84.1.150.12	attack	2019-10-09T09:01:16.944554abusebot-5.cloudsearch.cf sshd\[15787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.1.150.12 user=root	2019-10-09 18:58:59

Recently Reported IPs

116.203.68.116	116.203.68.177	116.203.70.123	116.203.74.135
116.203.74.41	116.203.77.254	116.203.8.184	116.203.8.59
116.203.84.207	116.203.81.111	116.203.88.24	116.203.89.48
116.203.90.249	116.203.9.223	116.203.91.182	116.203.91.0
116.203.91.226	116.203.91.91	116.203.95.207	116.203.96.213