164.68.105.158

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
164.68.105.199	attack	Bokeh	2024-06-20 15:59:45
164.68.105.199	attack	Xnxx	2024-06-20 15:59:34
164.68.105.199	attack	Xnxx	2024-06-20 15:59:26
164.68.105.199	attack	Xnxx	2024-06-20 15:59:21
164.68.105.165	attack	Found on Block CINS-badguys / proto=6 . srcport=41861 . dstport=5038 . (2483)	2020-09-28 04:30:37
164.68.105.165	attackbotsspam	TCP (SYN) 164.68.105.165:41861 -> port 5038, len 44	2020-09-27 20:47:35
164.68.105.165	attackbotsspam	TCP (SYN) 164.68.105.165:48502 -> port 5038, len 44	2020-09-27 12:25:05
164.68.105.165	attackspam	5038/tcp 5038/tcp [2020-09-15/19]2pkt	2020-09-20 02:59:21
164.68.105.165	attack	" "	2020-09-19 18:59:19
164.68.105.131	attackspambots	Aug 16 15:57:39 srv-ubuntu-dev3 sshd[102030]: Invalid user gmodserver from 164.68.105.131 Aug 16 15:57:39 srv-ubuntu-dev3 sshd[102030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.131 Aug 16 15:57:39 srv-ubuntu-dev3 sshd[102030]: Invalid user gmodserver from 164.68.105.131 Aug 16 15:57:40 srv-ubuntu-dev3 sshd[102030]: Failed password for invalid user gmodserver from 164.68.105.131 port 55996 ssh2 Aug 16 16:01:29 srv-ubuntu-dev3 sshd[102595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.131 user=root Aug 16 16:01:31 srv-ubuntu-dev3 sshd[102595]: Failed password for root from 164.68.105.131 port 37242 ssh2 Aug 16 16:05:10 srv-ubuntu-dev3 sshd[103028]: Invalid user hannes from 164.68.105.131 Aug 16 16:05:10 srv-ubuntu-dev3 sshd[103028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.131 Aug 16 16:05:10 srv-ubuntu-dev3 sshd[103028 ...	2020-08-16 22:14:43
164.68.105.228	attack	Jun 3 12:06:38 nxxxxxxx0 sshd[8981]: Did not receive identification string from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Invalid user soundcode from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.228 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Failed password for invalid user soundcode from 164.68.105.228 port 34484 ssh2 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Received disconnect from 164.68.105.228: 11: Normal Shutdown, Thank you for playing [preauth] Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Invalid user aerospike from 164.68.105.228 Jun 3 12:07:43 nxxxxxxx0 sshd[........ -------------------------------	2020-06-06 07:13:55
164.68.105.78	attack	Mar 19 17:00:51 saengerschafter sshd[29883]: Failed password for jira from 164.68.105.78 port 37546 ssh2 Mar 19 17:00:51 saengerschafter sshd[29883]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:06:22 saengerschafter sshd[30288]: Failed password for r.r from 164.68.105.78 port 40498 ssh2 Mar 19 17:06:22 saengerschafter sshd[30288]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:09:26 saengerschafter sshd[30746]: Failed password for r.r from 164.68.105.78 port 47708 ssh2 Mar 19 17:09:26 saengerschafter sshd[30746]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:12:35 saengerschafter sshd[30860]: Failed password for r.r from 164.68.105.78 port 54914 ssh2 Mar 19 17:12:35 saengerschafter sshd[30860]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:15:38 saengerschafter sshd[31263]: Failed password for r.r from 164.68.105.78 port 33898 ssh2 Mar 19 17:15:38 saengerschafter ssh........ -------------------------------	2020-03-22 19:53:29
164.68.105.78	attackspam	...	2020-03-21 20:00:24
164.68.105.70	attackspambots	Port 22 Scan, PTR: None	2019-12-29 03:22:00
164.68.105.103	attackbots	Oct 6 20:51:31 new sshd[24599]: Failed password for r.r from 164.68.105.103 port 58796 ssh2 Oct 6 20:51:31 new sshd[24599]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 20:56:35 new sshd[25903]: Failed password for r.r from 164.68.105.103 port 49432 ssh2 Oct 6 20:56:35 new sshd[25903]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:01:04 new sshd[27198]: Failed password for r.r from 164.68.105.103 port 36792 ssh2 Oct 6 21:01:04 new sshd[27198]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:05:29 new sshd[28328]: Failed password for r.r from 164.68.105.103 port 52780 ssh2 Oct 6 21:05:29 new sshd[28328]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:09:49 new sshd[29739]: Failed password for r.r from 164.68.105.103 port 40212 ssh2 Oct 6 21:09:49 new sshd[29739]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:14:09 new sshd[30482]: Failed........ -------------------------------	2019-10-08 16:49:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.68.105.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62464
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.68.105.158.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 14:46:10 CST 2022
;; MSG SIZE  rcvd: 107

Host info

158.105.68.164.in-addr.arpa domain name pointer vps.dznetwork.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.105.68.164.in-addr.arpa	name = vps.dznetwork.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
2.191.27.114	attackbotsspam	Port scan on 1 port(s): 9527	2019-06-24 02:25:33
59.45.222.24	attackbots	failed_logins	2019-06-24 02:05:35
27.194.92.133	attack	5500/tcp [2019-06-23]1pkt	2019-06-24 02:33:45
46.229.168.129	attack	NAME : ADVANCEDHOSTERS-NET CIDR : 46.229.168.0/23 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack United States - block certain countries :) IP: 46.229.168.129 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 02:30:35
139.59.17.173	attack	SSH Bruteforce Attack	2019-06-24 02:01:56
23.94.158.185	attackspambots	NAME : CC-16 CIDR : 23.94.0.0/15 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - New York - block certain countries :) IP: 23.94.158.185 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 02:28:17
103.120.112.41	attackspam	Unauthorised access (Jun 23) SRC=103.120.112.41 LEN=52 TTL=53 ID=1524 DF TCP DPT=445 WINDOW=8192 SYN	2019-06-24 02:41:09
58.242.82.4	attackspambots	2019-06-23T23:52:24.935010enmeeting.mahidol.ac.th sshd\[13089\]: User root from 58.242.82.4 not allowed because not listed in AllowUsers 2019-06-23T23:52:25.140522enmeeting.mahidol.ac.th sshd\[13089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.242.82.4 user=root 2019-06-23T23:52:27.699330enmeeting.mahidol.ac.th sshd\[13089\]: Failed password for invalid user root from 58.242.82.4 port 63737 ssh2 ...	2019-06-24 02:08:37
79.26.184.64	attack	$f2bV_matches	2019-06-24 02:07:57
222.84.72.84	attack	8080/tcp [2019-06-23]1pkt	2019-06-24 02:10:42
168.91.42.63	attack	NAME : BLAZINGSEO-US-143 CIDR : 168.91.41.0/24 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - Nebraska - block certain countries :) IP: 168.91.42.63 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-24 02:19:50
137.74.174.138	attack	Brute force attack on QNAP NAS	2019-06-24 02:36:43
112.226.0.39	attackbotsspam	23/tcp [2019-06-23]1pkt	2019-06-24 02:16:08
185.253.250.168	attackbots	Jun 23 03:38:08 localhost kernel: [12519681.345443] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=185.253.250.168 DST=[mungedIP2] LEN=220 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=UDP SPT=50817 DPT=123 LEN=200 Jun 23 10:38:20 localhost kernel: [12544893.554429] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=185.253.250.168 DST=[mungedIP2] LEN=220 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=UDP SPT=43025 DPT=123 LEN=200 Jun 23 10:38:20 localhost kernel: [12544893.554455] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=185.253.250.168 DST=[mungedIP2] LEN=220 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=UDP SPT=43025 DPT=123 LEN=200	2019-06-24 02:35:52
157.230.28.16	attackbots	Jun 23 18:25:03 localhost sshd\[29471\]: Invalid user airadmin from 157.230.28.16 port 42486 Jun 23 18:25:03 localhost sshd\[29471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.28.16 Jun 23 18:25:05 localhost sshd\[29471\]: Failed password for invalid user airadmin from 157.230.28.16 port 42486 ssh2	2019-06-24 02:27:00

Recently Reported IPs

164.68.104.198	164.68.106.145	164.68.107.186	164.68.110.196
164.68.108.67	164.68.106.97	164.68.110.142	164.68.112.155
164.68.112.182	164.68.115.40	164.68.113.198	164.68.114.70
164.68.117.163	164.68.119.178	164.68.119.120	164.68.117.243
164.68.117.249	164.68.118.67	164.68.118.98	164.68.119.225