185.80.68.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Serbia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.80.68.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53377
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;185.80.68.52.			IN	A

;; AUTHORITY SECTION:
.			422	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 20:24:17 CST 2022
;; MSG SIZE  rcvd: 105

Host info

52.68.80.185.in-addr.arpa domain name pointer srv68-52.itplatforma.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.68.80.185.in-addr.arpa	name = srv68-52.itplatforma.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.211.245.198	attackspam	Brute-Force attack detected (95) and blocked by Fail2Ban.	2019-06-24 15:56:11
183.171.101.33	attackbotsspam	SS5,WP GET /wp-login.php	2019-06-24 16:20:53
87.17.102.230	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-06-24 16:12:01
184.164.134.146	attackbotsspam	Port Scan detected from 184.164.134.146 (US/United States/-). 4 hits in the last 245 seconds	2019-06-24 15:35:47
14.116.222.170	attackspam	Jun 24 06:39:11 xb3 sshd[10470]: Failed password for invalid user minigames from 14.116.222.170 port 58919 ssh2 Jun 24 06:39:11 xb3 sshd[10470]: Received disconnect from 14.116.222.170: 11: Bye Bye [preauth] Jun 24 06:41:18 xb3 sshd[3095]: Failed password for invalid user ares from 14.116.222.170 port 39776 ssh2 Jun 24 06:41:18 xb3 sshd[3095]: Received disconnect from 14.116.222.170: 11: Bye Bye [preauth] Jun 24 06:42:47 xb3 sshd[6674]: Failed password for invalid user remoto from 14.116.222.170 port 46344 ssh2 Jun 24 06:42:47 xb3 sshd[6674]: Received disconnect from 14.116.222.170: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.116.222.170	2019-06-24 16:20:21
191.232.183.73	attack	Jun 23 18:35:10 warning: unknown[191.232.183.73]: SASL LOGIN authentication failed: authentication failure Jun 23 18:35:11 warning: unknown[191.232.183.73]: SASL LOGIN authentication failed: authentication failure Jun 23 18:35:12 warning: unknown[191.232.183.73]: SASL LOGIN authentication failed: authentication failure	2019-06-24 16:03:24
37.49.231.106	attackspambots	Jun 24 09:19:05 mail sshd\[29859\]: Invalid user admin from 37.49.231.106 Jun 24 09:19:05 mail sshd\[29859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.231.106 Jun 24 09:19:08 mail sshd\[29859\]: Failed password for invalid user admin from 37.49.231.106 port 64242 ssh2 Jun 24 09:19:10 mail sshd\[29861\]: Invalid user support from 37.49.231.106 Jun 24 09:19:10 mail sshd\[29861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.231.106	2019-06-24 15:41:54
183.163.235.23	attack	Jun 24 06:42:53 mxgate1 postfix/postscreen[18846]: CONNECT from [183.163.235.23]:50736 to [176.31.12.44]:25 Jun 24 06:42:53 mxgate1 postfix/dnsblog[18968]: addr 183.163.235.23 listed by domain zen.spamhaus.org as 127.0.0.11 Jun 24 06:42:59 mxgate1 postfix/postscreen[18846]: DNSBL rank 2 for [183.163.235.23]:50736 Jun x@x Jun 24 06:43:00 mxgate1 postfix/postscreen[18846]: HANGUP after 1.3 from [183.163.235.23]:50736 in tests after SMTP handshake Jun 24 06:43:00 mxgate1 postfix/postscreen[18846]: DISCONNECT [183.163.235.23]:50736 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=183.163.235.23	2019-06-24 16:16:22
91.134.140.84	attackspam	[munged]::80 91.134.140.84 - - [24/Jun/2019:08:30:04 +0200] "POST /[munged]: HTTP/1.1" 200 1774 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-06-24 15:50:17
85.195.212.6	attack	Jun 24 08:50:22 host sshd\[31051\]: Invalid user planet from 85.195.212.6 port 57512 Jun 24 08:50:22 host sshd\[31051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.195.212.6 ...	2019-06-24 15:55:15
221.151.188.200	attack	Jun 24 07:33:53 ns341937 sshd[25260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.151.188.200 Jun 24 07:33:54 ns341937 sshd[25260]: Failed password for invalid user support from 221.151.188.200 port 34188 ssh2 Jun 24 07:33:56 ns341937 sshd[25262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.151.188.200 ...	2019-06-24 15:59:50
180.101.221.152	attackbotsspam	Jun 24 02:20:50 lamijardin sshd[4256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.101.221.152 user=r.r Jun 24 02:20:52 lamijardin sshd[4256]: Failed password for r.r from 180.101.221.152 port 43726 ssh2 Jun 24 02:20:52 lamijardin sshd[4256]: Received disconnect from 180.101.221.152 port 43726:11: Bye Bye [preauth] Jun 24 02:20:52 lamijardin sshd[4256]: Disconnected from 180.101.221.152 port 43726 [preauth] Jun 24 02:25:43 lamijardin sshd[4282]: Bad protocol version identification '-HSS2.0-libssh-0.6.3' from 180.101.221.152 port 53454 Jun 24 02:26:45 lamijardin sshd[4283]: Bad protocol version identification '-HSS2.0-libssh-0.6.3' from 180.101.221.152 port 60268 Jun 24 02:27:46 lamijardin sshd[4284]: Bad protocol version identification '-HSS2.0-libssh-0.6.3' from 180.101.221.152 port 38850 Jun 24 02:28:48 lamijardin sshd[4285]: Bad protocol version identification '-HSS2.0-libssh-0.6.3' from 180.101.221.152 port 45664 Jun ........ -------------------------------	2019-06-24 16:17:57
124.16.139.243	attackbots	20 attempts against mh-ssh on flow.magehost.pro	2019-06-24 15:54:42
103.99.13.26	attackbotsspam	Jun 24 04:43:11 admin sshd[6482]: Invalid user webuser from 103.99.13.26 port 42086 Jun 24 04:43:11 admin sshd[6482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.99.13.26 Jun 24 04:43:13 admin sshd[6482]: Failed password for invalid user webuser from 103.99.13.26 port 42086 ssh2 Jun 24 04:43:13 admin sshd[6482]: Received disconnect from 103.99.13.26 port 42086:11: Bye Bye [preauth] Jun 24 04:43:13 admin sshd[6482]: Disconnected from 103.99.13.26 port 42086 [preauth] Jun 24 04:44:58 admin sshd[6507]: Connection closed by 103.99.13.26 port 50854 [preauth] Jun 24 04:46:28 admin sshd[6595]: Did not receive identification string from 103.99.13.26 port 58404 Jun 24 04:47:51 admin sshd[6623]: Invalid user oracle from 103.99.13.26 port 37716 Jun 24 04:47:51 admin sshd[6623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.99.13.26 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?	2019-06-24 16:05:57
61.180.184.214	attack	Multiple failed FTP logins	2019-06-24 15:45:40

Recently Reported IPs

185.80.48.221	185.80.92.211	185.81.1.164	185.80.57.37
185.81.0.99	185.81.1.17	185.81.128.80	185.81.1.129
185.81.128.25	185.81.129.230	185.81.129.207	185.81.129.94
185.81.144.152	185.8.33.13	185.81.145.178	185.81.145.35
185.81.129.96	185.81.152.164	185.81.194.117	185.81.2.197