2.59.21.68 - IPInfo

Basic Info

City: Rome

Region: Regione Lazio

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.59.21.207	attack	[Aegis] @ 2019-10-15 04:50:08 0100 -> A web attack returned code 200 (success).	2019-10-15 15:07:21
2.59.21.203	attack	[Aegis] @ 2019-10-15 04:50:34 0100 -> A web attack returned code 200 (success).	2019-10-15 14:40:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.59.21.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53565
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.59.21.68.			IN	A

;; AUTHORITY SECTION:
.			317	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024040302 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 04 03:40:35 CST 2024
;; MSG SIZE  rcvd: 103

Host info

Host 68.21.59.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.21.59.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.74.49	attack	Apr 30 22:26:23 relay postfix/smtpd\[30459\]: warning: unknown\[185.143.74.49\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 22:26:37 relay postfix/smtpd\[6576\]: warning: unknown\[185.143.74.49\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 22:27:29 relay postfix/smtpd\[1656\]: warning: unknown\[185.143.74.49\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 22:27:44 relay postfix/smtpd\[6576\]: warning: unknown\[185.143.74.49\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 22:28:37 relay postfix/smtpd\[32332\]: warning: unknown\[185.143.74.49\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-01 04:41:11
213.208.139.202	attackbots	Brute forcing email accounts	2020-05-01 04:51:03
153.52.155.208	attackbotsspam	2020-04-30T22:55:11.084407+02:00 lumpi kernel: [13569848.543720] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=153.52.155.208 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=32222 DF PROTO=TCP SPT=56712 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 ...	2020-05-01 05:02:06
189.135.77.202	attack	Invalid user ubuntu from 189.135.77.202 port 53828	2020-05-01 04:55:00
61.177.172.128	attackbots	Apr 30 22:46:58 host sshd[13539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root Apr 30 22:47:01 host sshd[13539]: Failed password for root from 61.177.172.128 port 9232 ssh2 ...	2020-05-01 04:48:28
117.50.110.185	attackspam	(sshd) Failed SSH login from 117.50.110.185 (CN/China/-): 5 in the last 3600 secs	2020-05-01 05:01:09
59.26.31.4	attackbots	1588280106 - 05/01/2020 03:55:06 Host: 59.26.31.4/59.26.31.4 Port: 23 TCP Blocked ...	2020-05-01 05:15:51
180.104.235.29	attackspam	Apr3022:54:27server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[anonymous]Apr3022:54:31server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:54:37server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:54:44server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:54:49server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:54:57server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:55:01server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:55:06server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:55:13server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]Apr3022:55:18server4pure-ftpd:\(\?@180.104.235.29\)[WARNING]Authenticationfailedforuser[www]	2020-05-01 04:57:11
45.238.232.42	attackspam	Apr 30 22:53:04 meumeu sshd[15692]: Failed password for root from 45.238.232.42 port 58796 ssh2 Apr 30 22:55:16 meumeu sshd[16002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.238.232.42 Apr 30 22:55:18 meumeu sshd[16002]: Failed password for invalid user suman from 45.238.232.42 port 49694 ssh2 ...	2020-05-01 04:56:38
171.100.9.174	attackbots	Dovecot Invalid User Login Attempt.	2020-05-01 05:00:56
220.165.15.228	attackbots	Invalid user terri from 220.165.15.228 port 43024	2020-05-01 04:41:31
114.239.64.187	attackbots	Apr 30 22:38:23 web01.agentur-b-2.de pure-ftpd: (?@114.239.64.187) [WARNING] Authentication failed for user [anonymous] Apr 30 22:38:29 web01.agentur-b-2.de pure-ftpd: (?@114.239.64.187) [WARNING] Authentication failed for user [www] Apr 30 22:38:36 web01.agentur-b-2.de pure-ftpd: (?@114.239.64.187) [WARNING] Authentication failed for user [www] Apr 30 22:38:44 web01.agentur-b-2.de pure-ftpd: (?@114.239.64.187) [WARNING] Authentication failed for user [www] Apr 30 22:38:51 web01.agentur-b-2.de pure-ftpd: (?@114.239.64.187) [WARNING] Authentication failed for user [www]	2020-05-01 05:13:15
94.125.187.66	attackspam	Unauthorised access (Apr 30) SRC=94.125.187.66 LEN=52 PREC=0xC0 TTL=118 ID=12658 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-01 04:54:28
95.138.193.128	attackbots	May 1 03:31:40 webhost01 sshd[5458]: Failed password for root from 95.138.193.128 port 34082 ssh2 May 1 03:35:42 webhost01 sshd[5557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.138.193.128 ...	2020-05-01 04:53:24
185.50.149.17	attackspambots	Apr 30 23:03:25 mail.srvfarm.net postfix/smtpd[780208]: warning: unknown[185.50.149.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 23:03:25 mail.srvfarm.net postfix/smtpd[780208]: lost connection after AUTH from unknown[185.50.149.17] Apr 30 23:03:30 mail.srvfarm.net postfix/smtpd[793400]: lost connection after CONNECT from unknown[185.50.149.17] Apr 30 23:03:33 mail.srvfarm.net postfix/smtpd[773791]: lost connection after AUTH from unknown[185.50.149.17] Apr 30 23:03:34 mail.srvfarm.net postfix/smtpd[780211]: lost connection after AUTH from unknown[185.50.149.17]	2020-05-01 05:11:41

Recently Reported IPs

2.59.21.60	2.59.21.202	2.58.201.232	1.116.161.55
1.116.243.147	1.116.235.110	1.117.80.215	1.116.211.156
1.116.245.107	2.58.201.240	1.117.63.65	2.58.218.6
2.59.50.26	2.59.21.192	2.59.21.200	2.59.21.244
2.59.21.134	2.59.21.238	2.59.42.149	2.59.21.254