212.164.64.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Sibirtelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	1591531501 - 06/07/2020 14:05:01 Host: 212.164.64.52/212.164.64.52 Port: 445 TCP Blocked	2020-06-08 01:25:57

Comments on same subnet:

IP	Type	Details	Datetime
212.164.64.209	attack	1584016273 - 03/12/2020 13:31:13 Host: 212.164.64.209/212.164.64.209 Port: 445 TCP Blocked	2020-03-12 22:05:03
212.164.64.93	attack	1583501278 - 03/06/2020 14:27:58 Host: 212.164.64.93/212.164.64.93 Port: 445 TCP Blocked	2020-03-07 04:36:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.164.64.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.164.64.52.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060700 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 08 01:25:49 CST 2020
;; MSG SIZE  rcvd: 117

Host info

52.64.164.212.in-addr.arpa domain name pointer b-internet.212.164.64.52.nsk.rt.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.64.164.212.in-addr.arpa	name = b-internet.212.164.64.52.nsk.rt.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.128.30	attackbots	Oct 9 16:04:29 SilenceServices sshd[31002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.128.30 Oct 9 16:04:31 SilenceServices sshd[31002]: Failed password for invalid user FAKEPASS from 51.38.128.30 port 49562 ssh2 Oct 9 16:08:18 SilenceServices sshd[32001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.128.30	2019-10-09 22:09:14
120.29.84.57	attackbots	Oct 9 11:37:50 system,error,critical: login failure for user admin from 120.29.84.57 via telnet Oct 9 11:37:51 system,error,critical: login failure for user root from 120.29.84.57 via telnet Oct 9 11:37:53 system,error,critical: login failure for user root from 120.29.84.57 via telnet Oct 9 11:37:56 system,error,critical: login failure for user guest from 120.29.84.57 via telnet Oct 9 11:37:58 system,error,critical: login failure for user root from 120.29.84.57 via telnet Oct 9 11:37:59 system,error,critical: login failure for user root from 120.29.84.57 via telnet Oct 9 11:38:03 system,error,critical: login failure for user admin from 120.29.84.57 via telnet Oct 9 11:38:05 system,error,critical: login failure for user admin from 120.29.84.57 via telnet Oct 9 11:38:06 system,error,critical: login failure for user root from 120.29.84.57 via telnet Oct 9 11:38:10 system,error,critical: login failure for user admin from 120.29.84.57 via telnet	2019-10-09 22:14:22
112.35.26.43	attackbots	Oct 9 15:05:13 legacy sshd[26672]: Failed password for root from 112.35.26.43 port 56100 ssh2 Oct 9 15:09:00 legacy sshd[26778]: Failed password for root from 112.35.26.43 port 50454 ssh2 ...	2019-10-09 22:21:33
169.255.6.26	attack	SPF Fail sender not permitted to send mail for @123.net / Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-09 22:30:48
59.10.5.156	attackspam	Oct 9 16:29:59 OPSO sshd\[15920\]: Invalid user ts from 59.10.5.156 port 52730 Oct 9 16:29:59 OPSO sshd\[15920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156 Oct 9 16:30:01 OPSO sshd\[15920\]: Failed password for invalid user ts from 59.10.5.156 port 52730 ssh2 Oct 9 16:34:35 OPSO sshd\[16563\]: Invalid user david from 59.10.5.156 port 38036 Oct 9 16:34:35 OPSO sshd\[16563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156	2019-10-09 22:42:53
192.99.169.5	attackspambots	2019-10-09T14:07:39.805793abusebot.cloudsearch.cf sshd\[21486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.ip-192-99-169.net user=root	2019-10-09 22:15:07
46.38.144.202	attack	Oct 9 16:27:43 relay postfix/smtpd\[426\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 16:28:54 relay postfix/smtpd\[12725\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 16:30:13 relay postfix/smtpd\[12072\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 16:31:29 relay postfix/smtpd\[12771\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 16:32:46 relay postfix/smtpd\[9181\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-09 22:38:38
77.39.117.115	attackbots	postfix (unknown user, SPF fail or relay access denied)	2019-10-09 22:49:44
51.68.192.106	attack	Oct 9 15:55:06 core sshd[4745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.192.106 user=root Oct 9 15:55:08 core sshd[4745]: Failed password for root from 51.68.192.106 port 53546 ssh2 ...	2019-10-09 22:19:28
51.77.245.181	attack	Oct 9 16:33:31 SilenceServices sshd[6630]: Failed password for root from 51.77.245.181 port 46892 ssh2 Oct 9 16:37:49 SilenceServices sshd[7755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.245.181 Oct 9 16:37:51 SilenceServices sshd[7755]: Failed password for invalid user 123 from 51.77.245.181 port 58654 ssh2	2019-10-09 22:46:18
51.254.206.149	attackspam	Oct 9 19:29:23 areeb-Workstation sshd[13689]: Failed password for root from 51.254.206.149 port 42190 ssh2 ...	2019-10-09 22:18:31
178.128.238.248	attack	$f2bV_matches	2019-10-09 22:07:52
200.44.50.155	attack	2019-10-09T14:36:55.988967abusebot-8.cloudsearch.cf sshd\[28187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155 user=root	2019-10-09 22:39:00
112.134.5.150	attack	PHI,WP GET /wp-login.php	2019-10-09 22:47:15
222.186.169.194	attackspambots	Oct 9 16:27:00 herz-der-gamer sshd[12171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Oct 9 16:27:01 herz-der-gamer sshd[12171]: Failed password for root from 222.186.169.194 port 14400 ssh2 ...	2019-10-09 22:41:30

Recently Reported IPs

187.94.7.37	104.131.218.208	191.234.173.69	113.172.132.143
41.216.161.250	194.32.10.156	39.64.164.138	185.67.33.193
60.50.241.16	133.126.16.218	19.182.186.224	46.123.252.34
5.202.151.120	60.172.196.0	27.22.9.51	172.237.33.20
124.119.120.139	233.153.183.104	91.234.62.31	87.246.251.7