1.64.208.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Telecommunications (HKT) Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 5555	2020-04-06 04:21:59

Comments on same subnet:

IP	Type	Details	Datetime
1.64.208.171	attackspam	Unauthorized connection attempt detected from IP address 1.64.208.171 to port 5555 [J]	2020-03-03 09:55:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.64.208.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47070
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.64.208.72.			IN	A

;; AUTHORITY SECTION:
.			472	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040501 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 04:21:56 CST 2020
;; MSG SIZE  rcvd: 115

Host info

72.208.64.1.in-addr.arpa domain name pointer 1-64-208-072.static.netvigator.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.208.64.1.in-addr.arpa	name = 1-64-208-072.static.netvigator.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
109.194.54.126	attackspambots	Aug 16 20:51:31 Tower sshd[41330]: Connection from 109.194.54.126 port 56126 on 192.168.10.220 port 22 Aug 16 20:51:32 Tower sshd[41330]: Invalid user gs from 109.194.54.126 port 56126 Aug 16 20:51:32 Tower sshd[41330]: error: Could not get shadow information for NOUSER Aug 16 20:51:32 Tower sshd[41330]: Failed password for invalid user gs from 109.194.54.126 port 56126 ssh2 Aug 16 20:51:33 Tower sshd[41330]: Received disconnect from 109.194.54.126 port 56126:11: Bye Bye [preauth] Aug 16 20:51:33 Tower sshd[41330]: Disconnected from invalid user gs 109.194.54.126 port 56126 [preauth]	2019-08-17 09:41:03
183.146.209.68	attackspam	Invalid user desktop from 183.146.209.68 port 46490	2019-08-17 10:10:45
129.144.180.112	attackbots	Aug 17 03:42:23 lnxmail61 sshd[12817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.180.112 Aug 17 03:42:25 lnxmail61 sshd[12817]: Failed password for invalid user test from 129.144.180.112 port 12693 ssh2 Aug 17 03:47:31 lnxmail61 sshd[13890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.180.112	2019-08-17 10:16:05
207.154.194.145	attack	Aug 16 15:48:34 wbs sshd\[11637\]: Invalid user nexus from 207.154.194.145 Aug 16 15:48:34 wbs sshd\[11637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.145 Aug 16 15:48:37 wbs sshd\[11637\]: Failed password for invalid user nexus from 207.154.194.145 port 49896 ssh2 Aug 16 15:53:44 wbs sshd\[12065\]: Invalid user life from 207.154.194.145 Aug 16 15:53:44 wbs sshd\[12065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.145	2019-08-17 09:54:29
122.195.200.148	attack	Aug 17 01:57:10 marvibiene sshd[38264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Aug 17 01:57:12 marvibiene sshd[38264]: Failed password for root from 122.195.200.148 port 11576 ssh2 Aug 17 01:57:15 marvibiene sshd[38264]: Failed password for root from 122.195.200.148 port 11576 ssh2 Aug 17 01:57:10 marvibiene sshd[38264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Aug 17 01:57:12 marvibiene sshd[38264]: Failed password for root from 122.195.200.148 port 11576 ssh2 Aug 17 01:57:15 marvibiene sshd[38264]: Failed password for root from 122.195.200.148 port 11576 ssh2 ...	2019-08-17 10:11:20
216.211.250.8	attack	Triggered by Fail2Ban at Vostok web server	2019-08-17 09:35:57
106.12.100.179	attack	Aug 17 03:32:42 icinga sshd[22326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.100.179 Aug 17 03:32:45 icinga sshd[22326]: Failed password for invalid user teamspeak from 106.12.100.179 port 52796 ssh2 ...	2019-08-17 09:58:25
185.176.27.98	attack	firewall-block, port(s): 26380/tcp, 26483/tcp	2019-08-17 10:15:09
36.81.235.34	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-16 19:31:14,490 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.81.235.34)	2019-08-17 09:37:40
185.234.218.16	attackspam	3389BruteforceIDS	2019-08-17 09:55:41
61.57.88.55	attack	Telnet Server BruteForce Attack	2019-08-17 10:16:36
93.55.209.46	attack	2019-08-16 UTC: 2x - henri(2x)	2019-08-17 09:35:16
95.80.74.110	attack	Unauthorized connection attempt from IP address 95.80.74.110 on Port 445(SMB)	2019-08-17 09:42:56
38.106.20.145	attackspambots	$f2bV_matches	2019-08-17 10:03:50
120.28.163.39	attack	Aug 17 03:34:32 www5 sshd\[60597\]: Invalid user alfresco from 120.28.163.39 Aug 17 03:34:32 www5 sshd\[60597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.28.163.39 Aug 17 03:34:33 www5 sshd\[60597\]: Failed password for invalid user alfresco from 120.28.163.39 port 42380 ssh2 ...	2019-08-17 10:05:20

Recently Reported IPs

225.8.119.44	66.148.157.196	66.81.17.247	42.190.20.65
74.227.19.225	78.157.203.226	33.178.161.51	78.168.109.54
165.248.128.4	208.90.126.108	129.161.63.191	12.218.151.59
46.122.68.16	251.51.40.99	80.1.231.39	242.252.141.14
49.167.54.202	218.3.122.15	120.92.114.71	34.87.13.196