2.59.21.12 - IPInfo

Basic Info

City: Rome

Region: Regione Lazio

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.59.21.207	attack	[Aegis] @ 2019-10-15 04:50:08 0100 -> A web attack returned code 200 (success).	2019-10-15 15:07:21
2.59.21.203	attack	[Aegis] @ 2019-10-15 04:50:34 0100 -> A web attack returned code 200 (success).	2019-10-15 14:40:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.59.21.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35371
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.59.21.12.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101002 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 11 18:05:31 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 12.21.59.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.21.59.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.59.126	attack	May 6 12:05:23 lgrs-web sshd[31618]: Did not receive identification string from 165.22.59.126 port 34892 May 6 12:06:20 lgrs-web sshd[31872]: Did not receive identification string from 165.22.59.126 port 56108 May 6 12:07:05 lgrs-web sshd[32051]: Received disconnect from 165.22.59.126 port 33302:11: Normal Shutdown, Thank you for playing [preauth] May 6 12:07:05 lgrs-web sshd[32051]: Disconnected from 165.22.59.126 port 33302 [preauth] May 6 12:07:45 lgrs-web sshd[32205]: Received disconnect from 165.22.59.126 port 36344:11: Normal Shutdown, Thank you for playing [preauth] May 6 12:07:45 lgrs-web sshd[32205]: Disconnected from 165.22.59.126 port 36344 [preauth] May 6 12:08:22 lgrs-web sshd[32340]: Received disconnect from 165.22.59.126 port 39338:11: Normal Shutdown, Thank you for playing [preauth] May 6 12:08:22 lgrs-web sshd[32 .... truncated .... May 6 12:05:23 lgrs-web sshd[31618]: Did not receive identification string from 165.22.59.126 port 34892 May 6........ -------------------------------	2020-05-07 04:37:06
41.57.65.76	attack	May 6 11:48:10 ip-172-31-62-245 sshd\[12845\]: Failed password for root from 41.57.65.76 port 46358 ssh2\ May 6 11:51:08 ip-172-31-62-245 sshd\[12923\]: Invalid user lzs from 41.57.65.76\ May 6 11:51:10 ip-172-31-62-245 sshd\[12923\]: Failed password for invalid user lzs from 41.57.65.76 port 50214 ssh2\ May 6 11:54:13 ip-172-31-62-245 sshd\[12978\]: Failed password for root from 41.57.65.76 port 54062 ssh2\ May 6 11:57:22 ip-172-31-62-245 sshd\[13016\]: Invalid user valentine from 41.57.65.76\	2020-05-07 04:23:15
89.179.122.7	attack	HTTP/S authentication failure x 8 reported by Fail2Ban ...	2020-05-07 05:00:13
50.54.141.121	attack	May 6 22:10:43 vps687878 sshd\[13032\]: Invalid user carlita from 50.54.141.121 port 45112 May 6 22:10:43 vps687878 sshd\[13032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.54.141.121 May 6 22:10:45 vps687878 sshd\[13032\]: Failed password for invalid user carlita from 50.54.141.121 port 45112 ssh2 May 6 22:11:47 vps687878 sshd\[13082\]: Invalid user naveen from 50.54.141.121 port 55412 May 6 22:11:47 vps687878 sshd\[13082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.54.141.121 ...	2020-05-07 04:25:50
213.37.130.21	attackspambots	May 6 22:20:36 inter-technics sshd[2594]: Invalid user jft from 213.37.130.21 port 57472 May 6 22:20:36 inter-technics sshd[2594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.37.130.21 May 6 22:20:36 inter-technics sshd[2594]: Invalid user jft from 213.37.130.21 port 57472 May 6 22:20:38 inter-technics sshd[2594]: Failed password for invalid user jft from 213.37.130.21 port 57472 ssh2 May 6 22:23:31 inter-technics sshd[3968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.37.130.21 user=root May 6 22:23:33 inter-technics sshd[3968]: Failed password for root from 213.37.130.21 port 36186 ssh2 ...	2020-05-07 04:29:47
189.152.111.58	attackspam	Automatic report - Windows Brute-Force Attack	2020-05-07 04:31:01
89.43.215.211	attackspam	20/5/6@16:23:34: FAIL: Alarm-Telnet address from=89.43.215.211 ...	2020-05-07 04:28:51
188.6.161.77	attackbotsspam	May 6 22:35:33 OPSO sshd\[28669\]: Invalid user clayton from 188.6.161.77 port 57161 May 6 22:35:33 OPSO sshd\[28669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.6.161.77 May 6 22:35:36 OPSO sshd\[28669\]: Failed password for invalid user clayton from 188.6.161.77 port 57161 ssh2 May 6 22:39:51 OPSO sshd\[29352\]: Invalid user vs from 188.6.161.77 port 34343 May 6 22:39:51 OPSO sshd\[29352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.6.161.77	2020-05-07 04:51:58
163.44.150.247	attack	May 6 19:18:14 lukav-desktop sshd\[17815\]: Invalid user zookeeper from 163.44.150.247 May 6 19:18:14 lukav-desktop sshd\[17815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.44.150.247 May 6 19:18:16 lukav-desktop sshd\[17815\]: Failed password for invalid user zookeeper from 163.44.150.247 port 58356 ssh2 May 6 19:20:40 lukav-desktop sshd\[19194\]: Invalid user has from 163.44.150.247 May 6 19:20:40 lukav-desktop sshd\[19194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.44.150.247	2020-05-07 04:21:19
129.211.65.70	attack	srv02 SSH BruteForce Attacks 22 ..	2020-05-07 04:26:20
222.186.15.10	attackspambots	May 6 22:23:31 plex sshd[7607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root May 6 22:23:33 plex sshd[7607]: Failed password for root from 222.186.15.10 port 35822 ssh2	2020-05-07 04:29:16
121.227.102.42	attackbotsspam	SSH brutforce	2020-05-07 04:34:14
122.51.235.220	attackspambots	(mod_security) mod_security (id:210730) triggered by 122.51.235.220 (CN/China/-): 5 in the last 3600 secs	2020-05-07 05:02:18
218.92.0.165	attackspambots	2020-05-06T23:44:13.998966afi-git.jinr.ru sshd[21387]: Failed password for root from 218.92.0.165 port 64721 ssh2 2020-05-06T23:44:16.831106afi-git.jinr.ru sshd[21387]: Failed password for root from 218.92.0.165 port 64721 ssh2 2020-05-06T23:44:19.742866afi-git.jinr.ru sshd[21387]: Failed password for root from 218.92.0.165 port 64721 ssh2 2020-05-06T23:44:19.742999afi-git.jinr.ru sshd[21387]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 64721 ssh2 [preauth] 2020-05-06T23:44:19.743012afi-git.jinr.ru sshd[21387]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-07 05:00:42
54.37.14.3	attackspam	May 6 22:25:14 legacy sshd[11515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.14.3 May 6 22:25:16 legacy sshd[11515]: Failed password for invalid user company from 54.37.14.3 port 52512 ssh2 May 6 22:30:54 legacy sshd[11793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.14.3 ...	2020-05-07 04:37:29

Recently Reported IPs

58.214.65.25	179.144.168.131	179.97.40.118	177.138.54.215
114.221.193.235	179.171.6.223	179.126.141.32	180.175.244.156
181.166.9.16	154.202.100.41	45.145.128.146	84.54.58.232
46.70.163.35	31.191.4.174	95.164.233.69	45.128.24.58
200.54.101.218	193.233.228.46	119.93.169.54	87.118.67.192