36.68.134.103 - IPInfo

Basic Info

City: Medan

Region: North Sumatra

Country: Indonesia

Internet Service Provider: Esia

Hostname: unknown

Organization: PT Telekomunikasi Indonesia

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
36.68.134.68	attack	Invalid user service from 36.68.134.68 port 46969	2020-06-06 01:54:26

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.68.134.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28193
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;36.68.134.103.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat May 11 01:25:12 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 103.134.68.36.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 103.134.68.36.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.63.162.11	attackspam	Sep 4 04:54:00 haigwepa sshd[31296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.63.162.11 Sep 4 04:54:01 haigwepa sshd[31296]: Failed password for invalid user wangy from 5.63.162.11 port 38722 ssh2 ...	2020-09-04 18:48:17
49.233.162.198	attack	Sep 4 05:49:29 sip sshd[1505026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.162.198 Sep 4 05:49:29 sip sshd[1505026]: Invalid user tom from 49.233.162.198 port 50532 Sep 4 05:49:31 sip sshd[1505026]: Failed password for invalid user tom from 49.233.162.198 port 50532 ssh2 ...	2020-09-04 19:15:00
45.160.180.241	attackbots	Sep 3 18:43:27 mellenthin postfix/smtpd[20267]: NOQUEUE: reject: RCPT from unknown[45.160.180.241]: 554 5.7.1 Service unavailable; Client host [45.160.180.241] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/45.160.180.241; from= to= proto=ESMTP helo=<241-180-160-45.conectnet.inf.br>	2020-09-04 19:12:11
39.153.252.94	attack	Sep 2 19:43:54 www3-7 sshd[25235]: Did not receive identification string from 39.153.252.94 port 40327 Sep 3 11:50:01 www3-7 sshd[13399]: Did not receive identification string from 39.153.252.94 port 48125 Sep 3 11:50:08 www3-7 sshd[13482]: Invalid user user from 39.153.252.94 port 54153 Sep 3 11:50:09 www3-7 sshd[13482]: Connection closed by 39.153.252.94 port 54153 [preauth] Sep 3 11:51:03 www3-7 sshd[13486]: Invalid user oracle from 39.153.252.94 port 38673 Sep 3 11:51:07 www3-7 sshd[13486]: Connection closed by 39.153.252.94 port 38673 [preauth] Sep 3 11:51:09 www3-7 sshd[13545]: Invalid user admin from 39.153.252.94 port 49882 Sep 3 11:51:10 www3-7 sshd[13545]: Connection closed by 39.153.252.94 port 49882 [preauth] Sep 3 11:51:19 www3-7 sshd[13547]: Invalid user test from 39.153.252.94 port 53810 Sep 3 11:51:27 www3-7 sshd[13547]: Connection closed by 39.153.252.94 port 53810 [preauth] Sep 3 11:51:50 www3-7 sshd[13554]: Invalid user hadoop from 39.153.2........ -------------------------------	2020-09-04 19:02:47
124.156.166.253	attack	Sep 4 12:17:47 xeon sshd[56264]: Failed password for root from 124.156.166.253 port 55736 ssh2	2020-09-04 19:22:08
51.75.144.43	attackspambots	Sep 4 12:57:45 kh-dev-server sshd[19768]: Failed password for root from 51.75.144.43 port 34950 ssh2 ...	2020-09-04 19:03:05
112.85.42.176	attack	Triggered by Fail2Ban at Ares web server	2020-09-04 18:58:16
114.172.166.134	attackspam	Sep 3 18:47:50 pixelmemory sshd[3481509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.172.166.134 Sep 3 18:47:50 pixelmemory sshd[3481509]: Invalid user le from 114.172.166.134 port 60131 Sep 3 18:47:52 pixelmemory sshd[3481509]: Failed password for invalid user le from 114.172.166.134 port 60131 ssh2 Sep 3 18:50:50 pixelmemory sshd[3481873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.172.166.134 user=root Sep 3 18:50:51 pixelmemory sshd[3481873]: Failed password for root from 114.172.166.134 port 54326 ssh2 ...	2020-09-04 19:18:39
36.89.18.217	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-04 19:13:42
190.139.67.171	attackbots	Honeypot attack, port: 445, PTR: host171.190-139-67.telecom.net.ar.	2020-09-04 19:04:41
50.115.168.10	attackspambots	Sep 4 06:05:35 ns382633 sshd\[6085\]: Invalid user tom from 50.115.168.10 port 53139 Sep 4 06:05:35 ns382633 sshd\[6085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.115.168.10 Sep 4 06:05:37 ns382633 sshd\[6085\]: Failed password for invalid user tom from 50.115.168.10 port 53139 ssh2 Sep 4 06:08:22 ns382633 sshd\[6354\]: Invalid user azure from 50.115.168.10 port 45193 Sep 4 06:08:22 ns382633 sshd\[6354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.115.168.10	2020-09-04 18:44:17
106.13.232.197	attack	$f2bV_matches	2020-09-04 19:16:17
121.23.141.26	attackspambots	Unauthorised access (Sep 3) SRC=121.23.141.26 LEN=40 TTL=46 ID=54147 TCP DPT=8080 WINDOW=48601 SYN Unauthorised access (Sep 3) SRC=121.23.141.26 LEN=40 TTL=46 ID=30471 TCP DPT=8080 WINDOW=44008 SYN	2020-09-04 19:11:23
118.116.8.215	attackspam	Invalid user server from 118.116.8.215 port 57289	2020-09-04 19:09:59
165.90.239.203	attackbotsspam	Automatic report - Port Scan Attack	2020-09-04 18:55:03

Recently Reported IPs

100.120.128.226	122.194.225.106	123.129.251.62	114.125.108.234
108.253.134.223	69.38.223.255	41.44.239.252	180.204.73.220
162.158.122.211	187.55.237.43	162.158.123.68	131.161.137.200
75.34.160.126	186.92.112.153	191.63.195.23	218.74.84.136
100.11.69.35	119.29.145.72	221.226.48.126	213.150.170.158