JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 115.68.56.56

115.68.56.56 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 85%: ?

85%

ISP	SMILESERV
Usage Type	Data Center/Web Hosting/Transit
ASN	AS38700
Domain Name	smileserv.com
Country	🇰🇷 Korea (the Republic of)
City	Incheon, Incheon

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 115.68.56.56

Whois 115.68.56.56

IP Abuse Reports for 115.68.56.56:

This IP address has been reported a total of 15 times from 15 distinct sources. 115.68.56.56 was first reported on June 2nd 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 iamxorum	2026-06-07 23:29:45 (5 hours ago)	2026-06-07T23:29:45.137373+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74 ... show more 2026-06-07T23:29:45.137373+00:00 XRM-01 kernel: [HONEYPORT] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=115.68.56.56 DST=46.62.222.43 LEN=60 TOS=0x00 PREC=0x20 TTL=40 ID=11016 DF PROTO=TCP SPT=54472 DPT=8080 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 bescared	2026-06-07 17:08:43 (11 hours ago)	F2B - Malicious activity detected. URL Probing. -c0423ad6-	Hacking Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-07 17:02:58 (12 hours ago)	Request Missing a Host Header. Operator EQ matched 0 at REQUEST_HEADERS. (920280-mnz6-1)	Hacking
🇮🇪 RoboSOC	2026-06-07 15:47:21 (13 hours ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	Port Scan
🇩🇪 centurion	2026-06-07 12:50:13 (16 hours ago)	Blocked by UFW on ns02 [80/tcp] Source port: 45574 TTL: 39 Packet length: 60 TOS: 0x00 This report ... show more Blocked by UFW on ns02 [80/tcp] Source port: 45574 TTL: 39 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇸🇰 Schomburg	2026-06-07 11:06:55 (17 hours ago)	Automatic report from SCH firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Report ... show more Automatic report from SCH firewall log. https://github.com/Ragnarocek/Windows_FW_AbuseIPDB_Reporting ID: hHkx6dI5Xn1J7jFM5vZV4mEd1kN2P2bv show less	Port Scan Hacking Brute-Force
🇫🇮 payincog	2026-06-06 22:03:37 (1 day ago)	Date: Jun 07 00:03:00 2026 EAT \| Reported IP: 115.68.56.56 mod_security \| id: 920350 \| KR/pay.my_dom ... show more Date: Jun 07 00:03:00 2026 EAT \| Reported IP: 115.68.56.56 mod_security \| id: 920350 \| KR/pay.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; Host header is a numeric IP address; Host header is a numeric IP address show less	SQL Injection Brute-Force Bad Web Bot
🇧🇷 dominioz	2026-06-06 00:07:34 (2 days ago)	115.68.56.56 - - [05/Jun/2026:21:07:33 -0300] "GET / HTTP/1.0" 400 271 "-" "-" "-" 115.68.56.56 - - ... show more 115.68.56.56 - - [05/Jun/2026:21:07:33 -0300] "GET / HTTP/1.0" 400 271 "-" "-" "-" 115.68.56.56 - - [05/Jun/2026:21:07:33 -0300] "GET / HTTP/1.0" 400 271 "-" "-" "-" ... show less	Web App Attack
🇸🇰 Eurofluid	2026-06-05 18:00:43 (2 days ago)	You shall not pass ! Abusive behavior blocked by EF firewall.	Port Scan Hacking Brute-Force
🇸🇰 KlinikaMD	2026-06-05 18:00:24 (2 days ago)	Automatic report from KMD firewall log.	Port Scan Hacking Brute-Force
🇫🇷 GabrielJST	2026-06-05 14:48:30 (2 days ago)	Port Scan detected from 115.68.56.56 (KR/South Korea/-).	Port Scan
🇺🇸 MPL	2026-06-05 07:30:14 (2 days ago)	tcp port scan (13 or more attempts)	Port Scan
Anonymous	2026-06-04 21:56:14 (3 days ago)	Try to connect to Port_Scan_443_stealth	Port Scan
🇧🇷 marlorodrigues	2026-06-03 18:44:06 (4 days ago)	Brute Force SSH or Port Scan	Port Scan
🇦🇹 begou.dev	2026-06-02 09:09:48 (5 days ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/8080	Port Scan

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 182.95.217.182

🇮🇳 122.187.249.88

🇰🇷 121.136.135.137

🇧🇬 91.148.190.150

🇫🇮 35.228.132.114

🇸🇬 4.194.4.255

🇮🇷 151.232.210.80

🇳🇿 121.73.168.80

🇰🇷 118.36.234.156

🇧🇷 118.26.105.52

🇸🇬 96.9.213.129

🇷🇺 87.250.9.98

🇷🇴 80.94.92.186

🇸🇬 68.183.178.130

🇺🇸 65.49.20.66

🇨🇳 60.16.210.192

🇺🇸 52.200.241.115

🇺🇸 49.51.187.20

🇧🇷 45.205.1.247

🇯🇵 35.194.108.129