46.109.5.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Latvia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
46.109.52.30	attack	Unauthorized connection attempt from IP address 46.109.52.30 on Port 445(SMB)	2020-09-15 20:25:49
46.109.52.30	attackbotsspam	Unauthorized connection attempt from IP address 46.109.52.30 on Port 445(SMB)	2020-09-15 12:27:56
46.109.52.30	attackbots	Unauthorized connection attempt from IP address 46.109.52.30 on Port 445(SMB)	2020-09-15 04:36:51

Type

Details

Datetime

46.109.52.30

attack

Unauthorized connection attempt from IP address 46.109.52.30 on Port 445(SMB)

2020-09-15 20:25:49

46.109.52.30

attackbotsspam

Unauthorized connection attempt from IP address 46.109.52.30 on Port 445(SMB)

2020-09-15 12:27:56

46.109.52.30

attackbots

Unauthorized connection attempt from IP address 46.109.52.30 on Port 445(SMB)

2020-09-15 04:36:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 46.109.5.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21303
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;46.109.5.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 21:02:42 CST 2025
;; MSG SIZE  rcvd: 103

Host info

Host 2.5.109.46.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.5.109.46.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.119.22	attackbotsspam	Automatic report - Banned IP Access	2019-08-20 19:34:12
200.122.224.200	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08201224)	2019-08-20 19:11:23
171.236.80.72	attack	Unauthorized connection attempt from IP address 171.236.80.72 on Port 445(SMB)	2019-08-20 19:42:39
103.74.111.115	attack	Unauthorized connection attempt from IP address 103.74.111.115 on Port 445(SMB)	2019-08-20 19:20:37
140.143.45.22	attackbotsspam	Aug 20 11:38:47 server sshd\[12516\]: Invalid user xxxxx from 140.143.45.22 port 56724 Aug 20 11:38:47 server sshd\[12516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.45.22 Aug 20 11:38:49 server sshd\[12516\]: Failed password for invalid user xxxxx from 140.143.45.22 port 56724 ssh2 Aug 20 11:44:07 server sshd\[5431\]: Invalid user www from 140.143.45.22 port 43008 Aug 20 11:44:07 server sshd\[5431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.45.22	2019-08-20 19:31:18
116.177.20.50	attack	Aug 19 01:10:02 [snip] sshd[16370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.177.20.50 user=root Aug 19 01:10:05 [snip] sshd[16370]: Failed password for root from 116.177.20.50 port 35501 ssh2 Aug 19 01:18:48 [snip] sshd[17371]: Invalid user lamont from 116.177.20.50 port 39939[...]	2019-08-20 19:31:51
36.228.125.219	attack	" "	2019-08-20 19:33:32
106.13.47.10	attack	Aug 19 18:49:34 web9 sshd\[31580\]: Invalid user vivian from 106.13.47.10 Aug 19 18:49:34 web9 sshd\[31580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.10 Aug 19 18:49:36 web9 sshd\[31580\]: Failed password for invalid user vivian from 106.13.47.10 port 45082 ssh2 Aug 19 18:55:18 web9 sshd\[32707\]: Invalid user kafka from 106.13.47.10 Aug 19 18:55:18 web9 sshd\[32707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.10	2019-08-20 19:01:48
23.129.64.165	attackspambots	Automated report - ssh fail2ban: Aug 20 11:07:55 wrong password, user=root, port=12633, ssh2 Aug 20 11:07:59 wrong password, user=root, port=12633, ssh2 Aug 20 11:08:04 wrong password, user=root, port=12633, ssh2	2019-08-20 19:37:19
125.213.150.7	attackspam	Aug 20 12:31:04 OPSO sshd\[665\]: Invalid user help from 125.213.150.7 port 39172 Aug 20 12:31:04 OPSO sshd\[665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.213.150.7 Aug 20 12:31:06 OPSO sshd\[665\]: Failed password for invalid user help from 125.213.150.7 port 39172 ssh2 Aug 20 12:36:41 OPSO sshd\[1854\]: Invalid user demon from 125.213.150.7 port 56696 Aug 20 12:36:41 OPSO sshd\[1854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.213.150.7	2019-08-20 19:04:36
216.10.245.198	attackspam	WordPress wp-login brute force :: 216.10.245.198 0.148 BYPASS [20/Aug/2019:14:05:19 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-20 19:19:37
219.128.21.29	attackbotsspam	Aug 20 06:05:05 * sshd[18554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.128.21.29 Aug 20 06:05:07 * sshd[18554]: Failed password for invalid user admin from 219.128.21.29 port 57498 ssh2	2019-08-20 19:46:34
193.32.160.145	attack	Aug 20 13:22:37 relay postfix/smtpd\[11660\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.145\]: 554 5.7.1 \: Relay access denied\; from=\<5bnwbgho0ijnwg@magtrade.cz\> to=\ proto=ESMTP helo=\<\[193.32.160.135\]\> Aug 20 13:22:37 relay postfix/smtpd\[11660\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.145\]: 554 5.7.1 \: Relay access denied\; from=\<5bnwbgho0ijnwg@magtrade.cz\> to=\ proto=ESMTP helo=\<\[193.32.160.135\]\> Aug 20 13:22:37 relay postfix/smtpd\[11660\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.145\]: 554 5.7.1 \: Relay access denied\; from=\<5bnwbgho0ijnwg@magtrade.cz\> to=\ proto=ESMTP helo=\<\[193.32.160.135\]\> Aug 20 13:22:37 relay postfix/smtpd\[11660\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.145\]: 554 5.7.1 \: Relay access denied\; from=\<5bnwbgho0ijnwg@magtr ...	2019-08-20 19:25:21
139.155.140.235	attack	Aug 20 04:56:20 hb sshd\[16234\]: Invalid user ozzy from 139.155.140.235 Aug 20 04:56:20 hb sshd\[16234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.140.235 Aug 20 04:56:23 hb sshd\[16234\]: Failed password for invalid user ozzy from 139.155.140.235 port 42614 ssh2 Aug 20 04:59:21 hb sshd\[16452\]: Invalid user andy from 139.155.140.235 Aug 20 04:59:21 hb sshd\[16452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.140.235	2019-08-20 19:12:32
36.79.101.189	attackbotsspam	Unauthorized connection attempt from IP address 36.79.101.189 on Port 445(SMB)	2019-08-20 19:28:28

Recently Reported IPs

171.64.204.60	220.222.105.239	51.221.250.40	177.229.12.21
239.185.241.10	204.161.130.94	70.36.183.166	101.253.245.136
97.67.143.121	127.110.90.20	86.225.77.200	25.110.237.37
136.139.220.8	92.7.150.137	80.85.32.145	38.156.18.195
228.17.179.158	57.207.145.18	143.75.62.154	104.201.252.22