164.68.106.103

Basic Info

City: Nuremberg

Region: Bavaria

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
164.68.106.33	attack	TCP (SYN) 164.68.106.33:52605 -> port 5038, len 44	2020-10-12 23:47:32
164.68.106.33	attack	ET SCAN NMAP -sS window 1024	2020-10-12 15:12:10
164.68.106.33	attackbots	TCP (SYN) 164.68.106.33:54435 -> port 5038, len 44	2020-10-05 02:01:28
164.68.106.33	attackspambots	Found on CINS badguys / proto=6 . srcport=46016 . dstport=5038 . (367)	2020-10-04 17:44:16
164.68.106.33	attack	TCP (SYN) 164.68.106.33:48518 -> port 5038, len 44	2020-09-16 21:58:14
164.68.106.33	attackbots	Port scanning [2 denied]	2020-09-16 14:28:36
164.68.106.33	attackspambots	SP-Scan 44785:5038 detected 2020.09.15 19:30:21 blocked until 2020.11.04 11:33:08	2020-09-16 06:17:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.68.106.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.68.106.103.			IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022060200 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 02 21:13:43 CST 2022
;; MSG SIZE  rcvd: 107

Host info

103.106.68.164.in-addr.arpa domain name pointer mail.proflan.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.106.68.164.in-addr.arpa	name = mail.proflan.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.66.158	attackbots	Apr 9 22:55:23 ws22vmsma01 sshd[421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.158 Apr 9 22:55:25 ws22vmsma01 sshd[421]: Failed password for invalid user dev from 167.99.66.158 port 59556 ssh2 ...	2020-04-10 10:05:58
66.70.130.155	attack	2020-04-10T03:55:23.995349shield sshd\[31360\]: Invalid user guest from 66.70.130.155 port 60608 2020-04-10T03:55:23.998080shield sshd\[31360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip155.ip-66-70-130.net 2020-04-10T03:55:25.674866shield sshd\[31360\]: Failed password for invalid user guest from 66.70.130.155 port 60608 ssh2 2020-04-10T03:59:10.812886shield sshd\[32044\]: Invalid user bdos from 66.70.130.155 port 58286 2020-04-10T03:59:10.816655shield sshd\[32044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip155.ip-66-70-130.net	2020-04-10 12:05:37
86.245.25.253	attack	Apr 10 00:53:23 vps339862 kernel: \[5691719.481145\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=71 TOS=0x00 PREC=0x00 TTL=51 ID=13695 DF PROTO=UDP SPT=62858 DPT=53 LEN=51 Apr 10 00:53:25 vps339862 kernel: \[5691721.021041\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=66 TOS=0x00 PREC=0x00 TTL=51 ID=13665 DF PROTO=UDP SPT=37335 DPT=53 LEN=46 Apr 10 00:53:28 vps339862 kernel: \[5691723.611091\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=66 TOS=0x00 PREC=0x00 TTL=51 ID=9892 DF PROTO=UDP SPT=53063 DPT=53 LEN=46 Apr 10 00:53:33 vps339862 kernel: \[5691728.701103\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=66 TOS=0x00 PREC=0x00 TTL=51 ID=17244 DF PROTO=UDP SPT=53004 ...	2020-04-10 09:57:42
27.79.160.185	attack	SMB Server BruteForce Attack	2020-04-10 12:04:38
138.197.129.38	attack	Apr 10 03:49:07 srv-ubuntu-dev3 sshd[130954]: Invalid user postgres from 138.197.129.38 Apr 10 03:49:07 srv-ubuntu-dev3 sshd[130954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Apr 10 03:49:07 srv-ubuntu-dev3 sshd[130954]: Invalid user postgres from 138.197.129.38 Apr 10 03:49:09 srv-ubuntu-dev3 sshd[130954]: Failed password for invalid user postgres from 138.197.129.38 port 37524 ssh2 Apr 10 03:53:47 srv-ubuntu-dev3 sshd[1043]: Invalid user ubuntu from 138.197.129.38 Apr 10 03:53:47 srv-ubuntu-dev3 sshd[1043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.129.38 Apr 10 03:53:47 srv-ubuntu-dev3 sshd[1043]: Invalid user ubuntu from 138.197.129.38 Apr 10 03:53:49 srv-ubuntu-dev3 sshd[1043]: Failed password for invalid user ubuntu from 138.197.129.38 port 46968 ssh2 Apr 10 03:58:21 srv-ubuntu-dev3 sshd[1883]: Invalid user test from 138.197.129.38 ...	2020-04-10 10:02:18
62.110.66.66	attackspam	Apr 10 03:59:17 work-partkepr sshd\[24404\]: Invalid user azure from 62.110.66.66 port 36300 Apr 10 03:59:17 work-partkepr sshd\[24404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.110.66.66 ...	2020-04-10 12:01:32
153.35.203.79	attackbotsspam	Email rejected due to spam filtering	2020-04-10 10:15:09
114.67.110.88	attack	2020-04-09T23:37:20.680725shield sshd\[12755\]: Invalid user deploy from 114.67.110.88 port 41646 2020-04-09T23:37:20.684955shield sshd\[12755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.88 2020-04-09T23:37:23.144606shield sshd\[12755\]: Failed password for invalid user deploy from 114.67.110.88 port 41646 ssh2 2020-04-09T23:38:43.807590shield sshd\[12934\]: Invalid user samuel from 114.67.110.88 port 32824 2020-04-09T23:38:43.811354shield sshd\[12934\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.110.88	2020-04-10 10:16:44
79.124.62.74	attackbotsspam	Port 58574	2020-04-10 10:06:17
95.86.32.4	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-04-10 10:08:08
203.158.100.140	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-04-10 10:18:52
122.14.228.229	attackbotsspam	SSH Brute-Forcing (server1)	2020-04-10 10:16:27
222.186.173.154	attackbotsspam	[MK-VM2] SSH login failed	2020-04-10 12:07:10
2a00:1098:84::4	attackbots	Apr 10 03:12:19 l03 sshd[3141]: Invalid user student from 2a00:1098:84::4 port 57932 ...	2020-04-10 10:21:14
182.48.230.18	attackspam	(sshd) Failed SSH login from 182.48.230.18 (IN/India/182.48.230.18.dvois.com): 5 in the last 3600 secs	2020-04-10 10:01:38

Recently Reported IPs

26.38.107.81	16.184.198.234	104.241.7.138	126.24.8.191
254.222.36.99	5.78.156.211	194.213.45.118	139.59.230.124
79.124.62.205	249.176.247.99	237.40.79.70	103.177.175.248
103.110.48.107	103.59.154.156	190.96.8.76	190.200.222.155
253.44.107.37	2001:19f0:7002:708:5400:4ff:fe03:d910	49.51.83.211	223.191.35.147