116.68.175.50 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Sumber Data Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 116.68.175.50 on Port 445(SMB)	2019-07-30 09:47:52

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.68.175.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59982
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.68.175.50.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 30 09:47:46 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 50.175.68.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 50.175.68.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.152.10.128	attack	Automatic report - Port Scan Attack	2019-08-26 01:49:20
80.211.235.234	attack	SSH bruteforce (Triggered fail2ban)	2019-08-26 01:43:26
45.82.153.34	attack	firewall-block, port(s): 16800/tcp	2019-08-26 01:50:28
148.72.40.185	attackbotsspam	www.goldgier.de 148.72.40.185 \[25/Aug/2019:19:28:46 +0200\] "POST /wp-login.php HTTP/1.1" 200 8726 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.goldgier.de 148.72.40.185 \[25/Aug/2019:19:28:50 +0200\] "POST /wp-login.php HTTP/1.1" 200 8726 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-08-26 01:38:19
45.73.12.218	attack	Aug 25 17:12:54 lnxweb61 sshd[7023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.73.12.218	2019-08-26 01:21:49
62.74.242.250	attackbotsspam	Aug 25 02:29:57 hanapaa sshd\[31450\]: Invalid user owncloud from 62.74.242.250 Aug 25 02:29:57 hanapaa sshd\[31450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.74.242.250 Aug 25 02:30:00 hanapaa sshd\[31450\]: Failed password for invalid user owncloud from 62.74.242.250 port 37556 ssh2 Aug 25 02:34:46 hanapaa sshd\[31872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.74.242.250 user=root Aug 25 02:34:48 hanapaa sshd\[31872\]: Failed password for root from 62.74.242.250 port 57670 ssh2	2019-08-26 01:22:48
120.132.31.165	attackbots	Aug 25 06:35:36 eddieflores sshd\[24024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.31.165 user=root Aug 25 06:35:38 eddieflores sshd\[24024\]: Failed password for root from 120.132.31.165 port 46444 ssh2 Aug 25 06:39:54 eddieflores sshd\[24475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.31.165 user=root Aug 25 06:39:56 eddieflores sshd\[24475\]: Failed password for root from 120.132.31.165 port 44956 ssh2 Aug 25 06:45:23 eddieflores sshd\[24941\]: Invalid user dark from 120.132.31.165	2019-08-26 01:57:15
209.90.97.10	attackspam	209.90.97.10 - - [25/Aug/2019:14:38:24 +0200] "POST /wp-login.php HTTP/1.1" 403 1595 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 806ca6128226afe4edec02804120d9e4 United States US Utah Orem 209.90.97.10 - - [25/Aug/2019:16:39:20 +0200] "POST /wp-login.php HTTP/1.1" 403 1595 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 8cf8e568f8de7633fbc89d65e534c824 United States US Utah Orem	2019-08-26 01:46:22
121.134.159.21	attack	Aug 25 16:31:50 mail sshd\[26722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.134.159.21 user=sshd Aug 25 16:31:52 mail sshd\[26722\]: Failed password for sshd from 121.134.159.21 port 47268 ssh2 ...	2019-08-26 01:20:20
114.216.206.39	attack	Aug 24 23:50:21 lcprod sshd\[24984\]: Invalid user starbound from 114.216.206.39 Aug 24 23:50:21 lcprod sshd\[24984\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.216.206.39 Aug 24 23:50:22 lcprod sshd\[24984\]: Failed password for invalid user starbound from 114.216.206.39 port 37692 ssh2 Aug 24 23:53:18 lcprod sshd\[25295\]: Invalid user mou from 114.216.206.39 Aug 24 23:53:18 lcprod sshd\[25295\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.216.206.39	2019-08-26 01:21:33
109.70.100.26	attackbots	Automatic report - Banned IP Access	2019-08-26 01:23:43
95.167.39.12	attack	$f2bV_matches	2019-08-26 01:19:05
37.187.122.195	attack	Aug 25 10:56:50 srv-4 sshd\[17536\]: Invalid user sn from 37.187.122.195 Aug 25 10:56:50 srv-4 sshd\[17536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.122.195 Aug 25 10:56:52 srv-4 sshd\[17536\]: Failed password for invalid user sn from 37.187.122.195 port 42208 ssh2 ...	2019-08-26 01:51:39
46.219.3.139	attackspam	Aug 25 08:04:32 vps200512 sshd\[29800\]: Invalid user liane from 46.219.3.139 Aug 25 08:04:32 vps200512 sshd\[29800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.219.3.139 Aug 25 08:04:33 vps200512 sshd\[29800\]: Failed password for invalid user liane from 46.219.3.139 port 52434 ssh2 Aug 25 08:08:50 vps200512 sshd\[29892\]: Invalid user 12 from 46.219.3.139 Aug 25 08:08:50 vps200512 sshd\[29892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.219.3.139	2019-08-26 01:58:46
45.55.184.78	attack	Aug 25 18:56:16 eventyay sshd[7529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.184.78 Aug 25 18:56:18 eventyay sshd[7529]: Failed password for invalid user user from 45.55.184.78 port 55196 ssh2 Aug 25 19:01:34 eventyay sshd[7658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.184.78 ...	2019-08-26 01:16:26

Recently Reported IPs

129.146.95.49	199.124.93.173	72.11.168.29	90.45.254.108
191.53.252.152	106.13.5.170	195.158.24.137	35.246.229.175
201.46.59.235	114.237.109.77	72.11.141.54	211.103.183.5
164.132.81.106	43.225.65.25	61.146.115.78	104.161.23.130
36.110.94.50	218.6.145.32	184.154.47.6	45.177.200.5