2.59.21.120 - IPInfo

Basic Info

City: Rome

Region: Regione Lazio

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.59.21.207	attack	[Aegis] @ 2019-10-15 04:50:08 0100 -> A web attack returned code 200 (success).	2019-10-15 15:07:21
2.59.21.203	attack	[Aegis] @ 2019-10-15 04:50:34 0100 -> A web attack returned code 200 (success).	2019-10-15 14:40:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.59.21.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22034
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.59.21.120.			IN	A

;; AUTHORITY SECTION:
.			125	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024040302 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 04 03:46:29 CST 2024
;; MSG SIZE  rcvd: 104

Host info

Host 120.21.59.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 120.21.59.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
110.49.70.248	attackspam	Bruteforce detected by fail2ban	2020-09-15 00:14:00
106.12.157.10	attackbotsspam	Failed password for invalid user owen from 106.12.157.10 port 49544 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.157.10 user=root Failed password for root from 106.12.157.10 port 45752 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.157.10 user=root Failed password for root from 106.12.157.10 port 41960 ssh2	2020-09-15 00:11:22
114.69.249.194	attackspam	Sep 14 13:09:43 scw-6657dc sshd[11740]: Failed password for root from 114.69.249.194 port 49730 ssh2 Sep 14 13:09:43 scw-6657dc sshd[11740]: Failed password for root from 114.69.249.194 port 49730 ssh2 Sep 14 13:17:09 scw-6657dc sshd[11980]: Invalid user administrador from 114.69.249.194 port 50904 ...	2020-09-15 00:04:39
87.226.165.143	attack	(sshd) Failed SSH login from 87.226.165.143 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 14 15:08:22 amsweb01 sshd[12191]: Invalid user jacob from 87.226.165.143 port 38742 Sep 14 15:08:25 amsweb01 sshd[12191]: Failed password for invalid user jacob from 87.226.165.143 port 38742 ssh2 Sep 14 15:13:16 amsweb01 sshd[12912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.226.165.143 user=root Sep 14 15:13:17 amsweb01 sshd[12912]: Failed password for root from 87.226.165.143 port 48040 ssh2 Sep 14 15:17:25 amsweb01 sshd[13488]: Invalid user sinus from 87.226.165.143 port 50644	2020-09-14 23:45:56
45.141.87.9	attack	RDP brute-forcing	2020-09-14 23:59:12
173.231.59.218	attackspambots	Automatic report - Banned IP Access	2020-09-14 23:51:21
112.215.219.42	attackbotsspam	Automatic report - Port Scan Attack	2020-09-14 23:50:00
118.89.244.217	attackspambots	Sep 14 07:10:45 pixelmemory sshd[3123280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.244.217 user=root Sep 14 07:10:47 pixelmemory sshd[3123280]: Failed password for root from 118.89.244.217 port 39784 ssh2 Sep 14 07:15:01 pixelmemory sshd[3149264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.244.217 user=root Sep 14 07:15:02 pixelmemory sshd[3149264]: Failed password for root from 118.89.244.217 port 58684 ssh2 Sep 14 07:19:18 pixelmemory sshd[3171554]: Invalid user sinusbot from 118.89.244.217 port 49362 ...	2020-09-14 23:57:22
112.85.42.176	attack	[H1] SSH login failed	2020-09-14 23:45:01
118.129.34.166	attack	Sep 14 15:09:08 root sshd[32436]: Failed password for root from 118.129.34.166 port 45058 ssh2 Sep 14 15:19:56 root sshd[1375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.129.34.166 Sep 14 15:19:59 root sshd[1375]: Failed password for invalid user minecraft from 118.129.34.166 port 58976 ssh2 ...	2020-09-15 00:26:30
92.246.76.251	attackbotsspam	Sep 14 17:33:13 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=92.246.76.251 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=908 PROTO=TCP SPT=58339 DPT=1951 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 17:33:50 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=92.246.76.251 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=33478 PROTO=TCP SPT=58339 DPT=8948 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 17:34:20 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=92.246.76.251 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=929 PROTO=TCP SPT=58339 DPT=3947 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 17:35:48 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=92.246.76.251 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=16510 PROTO=TCP SPT=58339 DPT=6953 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 17:35 ...	2020-09-15 00:11:53
185.247.224.12	attackspam	Sep 14 01:15:51 vps46666688 sshd[29978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.247.224.12 Sep 14 01:15:53 vps46666688 sshd[29978]: Failed password for invalid user admin from 185.247.224.12 port 48002 ssh2 ...	2020-09-15 00:15:07
120.52.146.211	attackbots	Sep 14 16:09:42 marvibiene sshd[28964]: Invalid user testftp from 120.52.146.211 port 39198 Sep 14 16:09:42 marvibiene sshd[28964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.146.211 Sep 14 16:09:42 marvibiene sshd[28964]: Invalid user testftp from 120.52.146.211 port 39198 Sep 14 16:09:44 marvibiene sshd[28964]: Failed password for invalid user testftp from 120.52.146.211 port 39198 ssh2	2020-09-15 00:16:00
167.71.162.16	attack	Sep 14 14:44:16 server sshd[16869]: Failed password for root from 167.71.162.16 port 38224 ssh2 Sep 14 14:48:03 server sshd[21433]: Failed password for root from 167.71.162.16 port 44436 ssh2 Sep 14 14:51:59 server sshd[26374]: Failed password for root from 167.71.162.16 port 50634 ssh2	2020-09-14 23:57:00
156.54.102.1	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-14T10:04:22Z and 2020-09-14T10:18:28Z	2020-09-15 00:08:01

Recently Reported IPs

2.59.21.38	2.59.21.63	2.59.21.210	2.59.50.192
2.59.50.213	1.116.184.8	2.56.73.62	2.57.78.11
2.58.201.193	2.59.50.39	1.117.80.205	2.59.50.48
2.59.50.24	2.59.50.34	1.117.77.135	1.117.95.211
1.116.202.121	1.116.237.94	1.117.57.115	1.117.35.43