164.68.106.7 - IPInfo

Basic Info

City: Nürnberg

Region: Bayern

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
164.68.106.33	attack	TCP (SYN) 164.68.106.33:52605 -> port 5038, len 44	2020-10-12 23:47:32
164.68.106.33	attack	ET SCAN NMAP -sS window 1024	2020-10-12 15:12:10
164.68.106.33	attackbots	TCP (SYN) 164.68.106.33:54435 -> port 5038, len 44	2020-10-05 02:01:28
164.68.106.33	attackspambots	Found on CINS badguys / proto=6 . srcport=46016 . dstport=5038 . (367)	2020-10-04 17:44:16
164.68.106.33	attack	TCP (SYN) 164.68.106.33:48518 -> port 5038, len 44	2020-09-16 21:58:14
164.68.106.33	attackbots	Port scanning [2 denied]	2020-09-16 14:28:36
164.68.106.33	attackspambots	SP-Scan 44785:5038 detected 2020.09.15 19:30:21 blocked until 2020.11.04 11:33:08	2020-09-16 06:17:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.68.106.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.68.106.7.			IN	A

;; AUTHORITY SECTION:
.			170	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100500 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 05 23:51:10 CST 2022
;; MSG SIZE  rcvd: 105

Host info

7.106.68.164.in-addr.arpa domain name pointer vmd41264.contaboserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
7.106.68.164.in-addr.arpa	name = vmd41264.contaboserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.169.218.103	attackbots	NAME : GO-DADDY-COM-LLC CIDR : 192.169.128.0/17 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack USA - Arizona - block certain countries :) IP: 192.169.218.103 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-23 20:30:53
93.170.219.36	attackbotsspam	Fail2Ban Ban Triggered	2019-06-23 20:09:57
191.53.198.33	attackspambots	SMTP-sasl brute force ...	2019-06-23 19:48:55
201.245.172.74	attackbots	Jun 18 16:16:04 www6-3 sshd[14689]: Invalid user plan from 201.245.172.74 port 38433 Jun 18 16:16:04 www6-3 sshd[14689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.245.172.74 Jun 18 16:16:06 www6-3 sshd[14689]: Failed password for invalid user plan from 201.245.172.74 port 38433 ssh2 Jun 18 16:16:07 www6-3 sshd[14689]: Received disconnect from 201.245.172.74 port 38433:11: Bye Bye [preauth] Jun 18 16:16:07 www6-3 sshd[14689]: Disconnected from 201.245.172.74 port 38433 [preauth] Jun 18 16:20:39 www6-3 sshd[14912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.245.172.74 user=r.r Jun 18 16:20:41 www6-3 sshd[14912]: Failed password for r.r from 201.245.172.74 port 1550 ssh2 Jun 18 16:20:41 www6-3 sshd[14912]: Received disconnect from 201.245.172.74 port 1550:11: Bye Bye [preauth] Jun 18 16:20:41 www6-3 sshd[14912]: Disconnected from 201.245.172.74 port 1550 [preauth] ........ ---------------------------------------	2019-06-23 19:57:46
141.98.81.38	attack	Jun 23 14:03:17 vpn01 sshd\[26766\]: Invalid user ubnt from 141.98.81.38 Jun 23 14:03:17 vpn01 sshd\[26766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.38 Jun 23 14:03:19 vpn01 sshd\[26766\]: Failed password for invalid user ubnt from 141.98.81.38 port 65281 ssh2	2019-06-23 20:05:31
103.231.139.130	attackbotsspam	Jun 23 13:42:09 mail postfix/smtpd\[15541\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 13:42:47 mail postfix/smtpd\[15541\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 13:43:25 mail postfix/smtpd\[21428\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-23 19:50:42
178.128.121.242	attackspam	Jun 23 08:27:03 Tower sshd[15401]: Connection from 178.128.121.242 port 46314 on 192.168.10.220 port 22 Jun 23 08:27:10 Tower sshd[15401]: Invalid user dylan from 178.128.121.242 port 46314 Jun 23 08:27:10 Tower sshd[15401]: error: Could not get shadow information for NOUSER Jun 23 08:27:10 Tower sshd[15401]: Failed password for invalid user dylan from 178.128.121.242 port 46314 ssh2 Jun 23 08:27:11 Tower sshd[15401]: Received disconnect from 178.128.121.242 port 46314:11: Bye Bye [preauth] Jun 23 08:27:11 Tower sshd[15401]: Disconnected from invalid user dylan 178.128.121.242 port 46314 [preauth]	2019-06-23 20:35:24
46.229.168.131	attackbots	NAME : ADVANCEDHOSTERS-NET CIDR : 46.229.168.0/23 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack United States - block certain countries :) IP: 46.229.168.131 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-23 20:13:34
185.101.130.145	attack	NAME : PL-IR-TUR-V4 CIDR : 185.101.130.0/24 SYN Flood DDoS Attack Poland - block certain countries :) IP: 185.101.130.145 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-23 20:02:57
81.22.45.37	attackbots	firewall-block, port(s): 3448/tcp, 3490/tcp	2019-06-23 20:10:48
35.199.149.162	attackbotsspam	RDP Brute-Force (Grieskirchen RZ1)	2019-06-23 20:14:50
45.227.253.210	attackspambots	Jun 23 13:43:05 mail postfix/smtpd\[20243\]: warning: unknown\[45.227.253.210\]: SASL PLAIN authentication failed: Jun 23 13:43:17 mail postfix/smtpd\[21428\]: warning: unknown\[45.227.253.210\]: SASL PLAIN authentication failed: Jun 23 13:44:31 mail postfix/smtpd\[21428\]: warning: unknown\[45.227.253.210\]: SASL PLAIN authentication failed:	2019-06-23 19:52:26
206.189.232.45	attack	2019-06-23T12:22:11.253083test01.cajus.name sshd\[25197\]: Invalid user mercure from 206.189.232.45 port 51596 2019-06-23T12:22:11.267868test01.cajus.name sshd\[25197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.artifice.ec 2019-06-23T12:22:13.161295test01.cajus.name sshd\[25197\]: Failed password for invalid user mercure from 206.189.232.45 port 51596 ssh2	2019-06-23 20:22:35
185.137.111.22	attackbots	Jun 23 13:42:58 mail postfix/smtpd\[15528\]: warning: unknown\[185.137.111.22\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 13:43:26 mail postfix/smtpd\[15528\]: warning: unknown\[185.137.111.22\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 13:43:52 mail postfix/smtpd\[15528\]: warning: unknown\[185.137.111.22\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-23 19:50:10
103.94.130.4	attackbots	Jun 23 13:45:57 srv-4 sshd\[30065\]: Invalid user tanis from 103.94.130.4 Jun 23 13:45:57 srv-4 sshd\[30065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.130.4 Jun 23 13:45:58 srv-4 sshd\[30067\]: Invalid user tanis from 103.94.130.4 Jun 23 13:45:58 srv-4 sshd\[30067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.130.4 ...	2019-06-23 19:51:03

Recently Reported IPs

164.68.106.13	185.107.56.225	63.98.192.88	35.130.229.200
79.39.1.188	143.251.104.83	108.12.100.73	71.63.111.189
117.91.39.179	172.246.81.17	34.240.9.5	219.9.128.59
195.201.80.167	30.158.58.161	165.72.83.231	247.233.195.223
194.105.127.186	242.110.81.138	253.96.30.4	225.58.22.218