164.68.105.199

Basic Info

City: Nuremberg

Region: Bavaria

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Bokeh	2024-06-20 15:59:45
attack	Xnxx	2024-06-20 15:59:34
attack	Xnxx	2024-06-20 15:59:26
attack	Xnxx	2024-06-20 15:59:21

Comments on same subnet:

IP	Type	Details	Datetime
164.68.105.165	attack	Found on Block CINS-badguys / proto=6 . srcport=41861 . dstport=5038 . (2483)	2020-09-28 04:30:37
164.68.105.165	attackbotsspam	TCP (SYN) 164.68.105.165:41861 -> port 5038, len 44	2020-09-27 20:47:35
164.68.105.165	attackbotsspam	TCP (SYN) 164.68.105.165:48502 -> port 5038, len 44	2020-09-27 12:25:05
164.68.105.165	attackspam	5038/tcp 5038/tcp [2020-09-15/19]2pkt	2020-09-20 02:59:21
164.68.105.165	attack	" "	2020-09-19 18:59:19
164.68.105.131	attackspambots	Aug 16 15:57:39 srv-ubuntu-dev3 sshd[102030]: Invalid user gmodserver from 164.68.105.131 Aug 16 15:57:39 srv-ubuntu-dev3 sshd[102030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.131 Aug 16 15:57:39 srv-ubuntu-dev3 sshd[102030]: Invalid user gmodserver from 164.68.105.131 Aug 16 15:57:40 srv-ubuntu-dev3 sshd[102030]: Failed password for invalid user gmodserver from 164.68.105.131 port 55996 ssh2 Aug 16 16:01:29 srv-ubuntu-dev3 sshd[102595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.131 user=root Aug 16 16:01:31 srv-ubuntu-dev3 sshd[102595]: Failed password for root from 164.68.105.131 port 37242 ssh2 Aug 16 16:05:10 srv-ubuntu-dev3 sshd[103028]: Invalid user hannes from 164.68.105.131 Aug 16 16:05:10 srv-ubuntu-dev3 sshd[103028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.131 Aug 16 16:05:10 srv-ubuntu-dev3 sshd[103028 ...	2020-08-16 22:14:43
164.68.105.228	attack	Jun 3 12:06:38 nxxxxxxx0 sshd[8981]: Did not receive identification string from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Invalid user soundcode from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.228 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Failed password for invalid user soundcode from 164.68.105.228 port 34484 ssh2 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Received disconnect from 164.68.105.228: 11: Normal Shutdown, Thank you for playing [preauth] Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Invalid user aerospike from 164.68.105.228 Jun 3 12:07:43 nxxxxxxx0 sshd[........ -------------------------------	2020-06-06 07:13:55
164.68.105.78	attack	Mar 19 17:00:51 saengerschafter sshd[29883]: Failed password for jira from 164.68.105.78 port 37546 ssh2 Mar 19 17:00:51 saengerschafter sshd[29883]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:06:22 saengerschafter sshd[30288]: Failed password for r.r from 164.68.105.78 port 40498 ssh2 Mar 19 17:06:22 saengerschafter sshd[30288]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:09:26 saengerschafter sshd[30746]: Failed password for r.r from 164.68.105.78 port 47708 ssh2 Mar 19 17:09:26 saengerschafter sshd[30746]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:12:35 saengerschafter sshd[30860]: Failed password for r.r from 164.68.105.78 port 54914 ssh2 Mar 19 17:12:35 saengerschafter sshd[30860]: Received disconnect from 164.68.105.78: 11: Bye Bye [preauth] Mar 19 17:15:38 saengerschafter sshd[31263]: Failed password for r.r from 164.68.105.78 port 33898 ssh2 Mar 19 17:15:38 saengerschafter ssh........ -------------------------------	2020-03-22 19:53:29
164.68.105.78	attackspam	...	2020-03-21 20:00:24
164.68.105.70	attackspambots	Port 22 Scan, PTR: None	2019-12-29 03:22:00
164.68.105.103	attackbots	Oct 6 20:51:31 new sshd[24599]: Failed password for r.r from 164.68.105.103 port 58796 ssh2 Oct 6 20:51:31 new sshd[24599]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 20:56:35 new sshd[25903]: Failed password for r.r from 164.68.105.103 port 49432 ssh2 Oct 6 20:56:35 new sshd[25903]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:01:04 new sshd[27198]: Failed password for r.r from 164.68.105.103 port 36792 ssh2 Oct 6 21:01:04 new sshd[27198]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:05:29 new sshd[28328]: Failed password for r.r from 164.68.105.103 port 52780 ssh2 Oct 6 21:05:29 new sshd[28328]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:09:49 new sshd[29739]: Failed password for r.r from 164.68.105.103 port 40212 ssh2 Oct 6 21:09:49 new sshd[29739]: Received disconnect from 164.68.105.103: 11: Bye Bye [preauth] Oct 6 21:14:09 new sshd[30482]: Failed........ -------------------------------	2019-10-08 16:49:21
164.68.105.103	attackbotsspam	Oct 6 05:16:20 vtv3 sshd\[30297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.103 user=root Oct 6 05:16:22 vtv3 sshd\[30297\]: Failed password for root from 164.68.105.103 port 36952 ssh2 Oct 6 05:21:43 vtv3 sshd\[419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.103 user=root Oct 6 05:21:46 vtv3 sshd\[419\]: Failed password for root from 164.68.105.103 port 58766 ssh2 Oct 6 05:26:15 vtv3 sshd\[2834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.103 user=root Oct 6 05:39:36 vtv3 sshd\[9168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.103 user=root Oct 6 05:39:39 vtv3 sshd\[9168\]: Failed password for root from 164.68.105.103 port 35840 ssh2 Oct 6 05:44:06 vtv3 sshd\[11428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1	2019-10-06 13:43:49
164.68.105.216	attackspam	Sep 4 05:51:53 web sshd[13709]: Invalid user ftphome from 164.68.105.216 port 57544 Sep 4 05:52:01 web sshd[13712]: Invalid user ftphome from 164.68.105.216 port 39716 Sep 4 05:52:01 web sshd[13712]: Invalid user ftphome from 164.68.105.216 port 39716 ...	2019-09-04 14:10:25

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 164.68.105.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54374
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;164.68.105.199.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:55:35 CST 2021
;; MSG SIZE  rcvd: 43

'

Host info

199.105.68.164.in-addr.arpa domain name pointer vmi409200.contaboserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
199.105.68.164.in-addr.arpa	name = vmi409200.contaboserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.208.236.102	attackbotsspam	Unauthorized connection attempt detected from IP address 189.208.236.102 to port 23	2019-12-30 03:24:47
198.50.179.115	attackbotsspam	Dec 29 16:55:26 *** sshd[7806]: Invalid user dan from 198.50.179.115	2019-12-30 03:21:02
123.127.45.152	attackspambots	2019-12-29T18:54:56.928127shield sshd\[9850\]: Invalid user corey from 123.127.45.152 port 56445 2019-12-29T18:54:56.932550shield sshd\[9850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.45.152 2019-12-29T18:54:58.324782shield sshd\[9850\]: Failed password for invalid user corey from 123.127.45.152 port 56445 ssh2 2019-12-29T19:02:17.652487shield sshd\[11579\]: Invalid user kjoele from 123.127.45.152 port 46820 2019-12-29T19:02:17.656730shield sshd\[11579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.45.152	2019-12-30 03:05:15
172.103.231.183	attack	Unauthorized connection attempt detected from IP address 172.103.231.183 to port 23	2019-12-30 03:29:54
187.178.146.58	attackbots	Unauthorized connection attempt detected from IP address 187.178.146.58 to port 23	2019-12-30 03:25:53
37.44.215.45	attack	Unauthorized connection attempt detected from IP address 37.44.215.45 to port 23	2019-12-30 03:43:38
121.146.19.166	attack	Unauthorized connection attempt detected from IP address 121.146.19.166 to port 80	2019-12-30 03:32:17
107.213.184.201	attackspam	Unauthorized connection attempt detected from IP address 107.213.184.201 to port 81	2019-12-30 03:07:52
88.0.188.7	attackbots	Unauthorized connection attempt detected from IP address 88.0.188.7 to port 4567	2019-12-30 03:09:25
2.176.210.5	attack	Unauthorized connection attempt detected from IP address 2.176.210.5 to port 23	2019-12-30 03:18:27
58.225.75.147	attackspambots	Unauthorized connection attempt detected from IP address 58.225.75.147 to port 8545	2019-12-30 03:12:39
49.51.12.205	attackspambots	Unauthorized connection attempt detected from IP address 49.51.12.205 to port 7777	2019-12-30 03:15:27
187.75.196.58	attackspam	Unauthorized connection attempt detected from IP address 187.75.196.58 to port 23	2019-12-30 03:26:42
141.98.80.173	attackspam	Dec 27 20:22:27 saengerschafter sshd[10691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.80.173 user=r.r Dec 27 20:22:29 saengerschafter sshd[10691]: Failed password for r.r from 141.98.80.173 port 51255 ssh2 Dec 27 20:22:29 saengerschafter sshd[10691]: Received disconnect from 141.98.80.173: 11: Client disconnecting normally [preauth] Dec 27 20:22:29 saengerschafter sshd[10693]: Invalid user admin from 141.98.80.173 Dec 27 20:22:29 saengerschafter sshd[10693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.80.173 Dec 27 20:22:31 saengerschafter sshd[10693]: Failed password for invalid user admin from 141.98.80.173 port 51762 ssh2 Dec 27 20:22:31 saengerschafter sshd[10693]: Received disconnect from 141.98.80.173: 11: Client disconnecting normally [preauth] Dec 27 20:22:31 saengerschafter sshd[10709]: Invalid user adminixxxr from 141.98.80.173 Dec 27 20:22:31 saengerscha........ -------------------------------	2019-12-30 03:32:04
103.52.217.123	attack	firewall-block, port(s): 3128/tcp	2019-12-30 03:08:23

Recently Reported IPs

148.72.173.167	148.72.173.97	209.205.125.210	185.50.107.125
114.79.37.190	114.79.38.13	151.84.252.211	37.185.155.35
45.186.128.253	188.163.59.255	185.221.192.116	223.205.244.128
66.115.177.13	223.205.244.228	223.205.244.182	223.205.236.149
223.205.236.182	45.13.59.98	190.230.227.83	51.15.124.84