217.68.217.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
217.68.217.129	attackbotsspam	slow and persistent scanner	2019-10-28 12:20:58
217.68.217.116	attackbotsspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:54:29
217.68.217.120	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:52:55
217.68.217.121	attackbotsspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:52:21
217.68.217.128	attackbotsspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:52:03
217.68.217.134	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:51:22
217.68.217.139	attackbotsspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:50:58
217.68.217.144	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:50:36
217.68.217.146	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:50:22
217.68.217.162	attackspambots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:49:59
217.68.217.17	attackspambots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:48:12
217.68.217.166	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:47:59
217.68.217.172	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:47:42
217.68.217.186	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:47:23
217.68.217.190	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 02:44:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 217.68.217.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41107
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;217.68.217.20.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 02:00:58 CST 2022
;; MSG SIZE  rcvd: 106

Host info

20.217.68.217.in-addr.arpa domain name pointer www.garantibbvasaklama.net.
20.217.68.217.in-addr.arpa domain name pointer www.garantibbvasaklama.com.
20.217.68.217.in-addr.arpa domain name pointer garantibbvasaklama.com.
20.217.68.217.in-addr.arpa domain name pointer garantibbvasaklama.com.tr.
20.217.68.217.in-addr.arpa domain name pointer www.garantibbvasaklama.com.tr.
20.217.68.217.in-addr.arpa domain name pointer garantibbvasakla.com.
20.217.68.217.in-addr.arpa domain name pointer www.garantibbvasakla.com.
20.217.68.217.in-addr.arpa domain name pointer www.garantibbvasakla.com.tr.
20.217.68.217.in-addr.arpa domain name pointer garantibbvasakla.com.tr.
20.217.68.217.in-addr.arpa domain name pointer garantibbvasakla.net.
20.217.68.217.in-addr.arpa domain name pointer www.garantibbvasakla.net.
20.217.68.217.in-addr.arpa domain name pointer garantibbvasaklama.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.217.68.217.in-addr.arpa	name = garantibbvasaklama.com.tr.
20.217.68.217.in-addr.arpa	name = www.garantibbvasaklama.com.tr.
20.217.68.217.in-addr.arpa	name = garantibbvasakla.com.
20.217.68.217.in-addr.arpa	name = www.garantibbvasakla.com.
20.217.68.217.in-addr.arpa	name = www.garantibbvasakla.com.tr.
20.217.68.217.in-addr.arpa	name = garantibbvasakla.com.tr.
20.217.68.217.in-addr.arpa	name = garantibbvasakla.net.
20.217.68.217.in-addr.arpa	name = www.garantibbvasakla.net.
20.217.68.217.in-addr.arpa	name = garantibbvasaklama.net.
20.217.68.217.in-addr.arpa	name = www.garantibbvasaklama.net.
20.217.68.217.in-addr.arpa	name = www.garantibbvasaklama.com.
20.217.68.217.in-addr.arpa	name = garantibbvasaklama.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.217.38.235	attackspam	IDS admin	2020-04-20 00:38:13
104.248.151.241	attackbotsspam	Apr 19 16:50:25 163-172-32-151 sshd[4798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=candumainan.com user=root Apr 19 16:50:27 163-172-32-151 sshd[4798]: Failed password for root from 104.248.151.241 port 32832 ssh2 ...	2020-04-20 00:20:07
204.48.16.59	attackbots	Apr 19 17:55:35 vpn01 sshd[665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.16.59 Apr 19 17:55:37 vpn01 sshd[665]: Failed password for invalid user test from 204.48.16.59 port 42998 ssh2 ...	2020-04-20 00:05:55
183.89.215.87	attackbots	Dovecot Invalid User Login Attempt.	2020-04-20 00:26:55
140.143.39.177	attackspam	Apr 19 17:49:06 pve1 sshd[24632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.39.177 Apr 19 17:49:08 pve1 sshd[24632]: Failed password for invalid user testftp from 140.143.39.177 port 16823 ssh2 ...	2020-04-20 00:19:28
51.104.246.27	attack	Apr 19 13:51:37 server sshd[3429]: Failed password for invalid user wq from 51.104.246.27 port 60806 ssh2 Apr 19 13:57:43 server sshd[4926]: Failed password for invalid user admin from 51.104.246.27 port 58454 ssh2 Apr 19 14:01:58 server sshd[5824]: Failed password for invalid user hi from 51.104.246.27 port 50258 ssh2	2020-04-19 23:59:26
138.68.28.46	attack	CMS (WordPress or Joomla) login attempt.	2020-04-20 00:23:53
103.242.56.209	attack	(sshd) Failed SSH login from 103.242.56.209 (KH/Cambodia/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 19 14:01:33 ubnt-55d23 sshd[15495]: Invalid user test from 103.242.56.209 port 53298 Apr 19 14:01:35 ubnt-55d23 sshd[15495]: Failed password for invalid user test from 103.242.56.209 port 53298 ssh2	2020-04-20 00:26:12
112.85.42.185	attackspambots	[Block] Port Scanning \| Rate: 10 hits/1hr	2020-04-20 00:28:28
83.169.228.254	attackbots	Unauthorized connection attempt from IP address 83.169.228.254 on Port 445(SMB)	2020-04-20 00:11:11
138.68.94.173	attack	Apr 19 19:17:02 lukav-desktop sshd\[19372\]: Invalid user dm from 138.68.94.173 Apr 19 19:17:02 lukav-desktop sshd\[19372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.173 Apr 19 19:17:03 lukav-desktop sshd\[19372\]: Failed password for invalid user dm from 138.68.94.173 port 38322 ssh2 Apr 19 19:26:37 lukav-desktop sshd\[19719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.173 user=root Apr 19 19:26:38 lukav-desktop sshd\[19719\]: Failed password for root from 138.68.94.173 port 59662 ssh2	2020-04-20 00:29:58
182.61.170.16	attack	SSH Bruteforce attack	2020-04-20 00:29:07
202.67.42.38	attack	Unauthorized connection attempt from IP address 202.67.42.38 on Port 445(SMB)	2020-04-20 00:08:06
182.61.105.189	attack	Apr 19 18:00:14 srv-ubuntu-dev3 sshd[84644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.189 user=root Apr 19 18:00:16 srv-ubuntu-dev3 sshd[84644]: Failed password for root from 182.61.105.189 port 45926 ssh2 Apr 19 18:04:55 srv-ubuntu-dev3 sshd[85343]: Invalid user yr from 182.61.105.189 Apr 19 18:04:55 srv-ubuntu-dev3 sshd[85343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.189 Apr 19 18:04:55 srv-ubuntu-dev3 sshd[85343]: Invalid user yr from 182.61.105.189 Apr 19 18:04:57 srv-ubuntu-dev3 sshd[85343]: Failed password for invalid user yr from 182.61.105.189 port 34842 ssh2 Apr 19 18:09:40 srv-ubuntu-dev3 sshd[86079]: Invalid user sf from 182.61.105.189 Apr 19 18:09:40 srv-ubuntu-dev3 sshd[86079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.189 Apr 19 18:09:40 srv-ubuntu-dev3 sshd[86079]: Invalid user sf from 182.61.105.18 ...	2020-04-20 00:32:08
95.24.21.119	attackbotsspam	Unauthorized connection attempt detected from IP address 95.24.21.119 to port 445	2020-04-20 00:33:33

Recently Reported IPs

217.68.213.109	217.69.10.218	217.69.10.6	217.69.0.137
217.69.13.16	217.68.40.1	217.69.139.3	217.69.138.41
217.69.139.20	217.69.139.200	217.69.139.51	217.69.139.52
217.69.139.202	217.69.254.102	217.69.38.154	217.69.76.60
217.70.121.138	217.7.141.151	217.69.223.214	217.70.131.214