5.120.20.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran (ISLAMIC Republic Of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
5.120.200.148	attack	2019-10-0114:10:561iFGzY-0006Jp-0K\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\)[5.120.200.148]:52932P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2807id=67BB679A-7FE5-4F9C-B157-7090C238C545@imsuisse-sa.chT=""formsimas@pfnyc.orgnas917@aol.comnsafajoo@hotmail.comnellie_so@yahoo.comrdarche@queensbp.orgrferraro@kpmg.comsrichter1180@yahoo.comsoccahed10@aol.comsbunnie16@aol.comsshea@kpmg.comSiobhan.Anderson@nasdaqomx.comstephanie@palmernj.com2019-10-0114:10:571iFGzY-0006K4-SV\<=info@imsuisse-sa.chH=224-107-124-91.pool.ukrtel.net\(imsuisse-sa.ch\)[91.124.107.224]:28769P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=1605id=1C3CAAB7-00B3-4815-B1B4-58C644E35001@imsuisse-sa.chT=""forstruders@qualcomm.comslkesey@yahoo.comstephen.warr@stagename.comsgdilly@yahoo.comstevie@spleak.comsteve.taylor@mobilemessenger.comsgaynor@mobilesolve.com2019-10-0114:11:011iFGzc-0006Jz-Fg\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\)[49.35.215.38]:33660P=e	2019-10-02 04:28:45
5.120.208.7	attackspambots	Unauthorized connection attempt from IP address 5.120.208.7 on Port 445(SMB)	2019-07-31 18:11:34

Type

Details

Datetime

5.120.200.148

attack

2019-10-0114:10:561iFGzY-0006Jp-0K\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\)[5.120.200.148]:52932P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2807id=67BB679A-7FE5-4F9C-B157-7090C238C545@imsuisse-sa.chT=""formsimas@pfnyc.orgnas917@aol.comnsafajoo@hotmail.comnellie_so@yahoo.comrdarche@queensbp.orgrferraro@kpmg.comsrichter1180@yahoo.comsoccahed10@aol.comsbunnie16@aol.comsshea@kpmg.comSiobhan.Anderson@nasdaqomx.comstephanie@palmernj.com2019-10-0114:10:571iFGzY-0006K4-SV\<=info@imsuisse-sa.chH=224-107-124-91.pool.ukrtel.net\(imsuisse-sa.ch\)[91.124.107.224]:28769P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=1605id=1C3CAAB7-00B3-4815-B1B4-58C644E35001@imsuisse-sa.chT=""forstruders@qualcomm.comslkesey@yahoo.comstephen.warr@stagename.comsgdilly@yahoo.comstevie@spleak.comsteve.taylor@mobilemessenger.comsgaynor@mobilesolve.com2019-10-0114:11:011iFGzc-0006Jz-Fg\<=info@imsuisse-sa.chH=\(imsuisse-sa.ch\)[49.35.215.38]:33660P=e

2019-10-02 04:28:45

5.120.208.7

attackspambots

Unauthorized connection attempt from IP address 5.120.208.7 on Port 445(SMB)

2019-07-31 18:11:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.120.20.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.120.20.12.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:54:02 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 12.20.120.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.20.120.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.62.212	attackspambots	Invalid user cpanelcabcache from 122.51.62.212 port 51870	2020-02-28 09:54:12
195.24.207.199	attackbotsspam	Invalid user zhangzhitong from 195.24.207.199 port 54998	2020-02-28 10:13:41
139.59.7.251	attackbots	Invalid user zenon from 139.59.7.251 port 49676	2020-02-28 09:50:48
5.253.27.142	attackbots	Feb 28 00:46:53 localhost sshd\[14351\]: Invalid user test2 from 5.253.27.142 Feb 28 00:46:53 localhost sshd\[14351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.253.27.142 Feb 28 00:46:55 localhost sshd\[14351\]: Failed password for invalid user test2 from 5.253.27.142 port 57008 ssh2 Feb 28 00:55:38 localhost sshd\[14728\]: Invalid user asterisk from 5.253.27.142 Feb 28 00:55:38 localhost sshd\[14728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.253.27.142 ...	2020-02-28 10:09:59
84.38.181.187	attackspambots	Invalid user minecraft from 84.38.181.187 port 56670	2020-02-28 10:03:32
206.189.146.13	attack	Feb 27 23:54:44 NPSTNNYC01T sshd[30493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.146.13 Feb 27 23:54:45 NPSTNNYC01T sshd[30493]: Failed password for invalid user prueba from 206.189.146.13 port 50459 ssh2 Feb 27 23:57:16 NPSTNNYC01T sshd[30677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.146.13 ...	2020-02-28 13:07:37
175.201.64.30	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-28 13:02:35
128.199.210.105	attack	Invalid user falcon2 from 128.199.210.105 port 56426	2020-02-28 09:51:40
182.74.25.246	attack	Feb 28 02:33:14 localhost sshd\[5540\]: Invalid user db from 182.74.25.246 port 37911 Feb 28 02:33:14 localhost sshd\[5540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.74.25.246 Feb 28 02:33:16 localhost sshd\[5540\]: Failed password for invalid user db from 182.74.25.246 port 37911 ssh2	2020-02-28 10:15:34
106.12.69.90	attack	Invalid user email from 106.12.69.90 port 42474	2020-02-28 09:59:33
13.56.147.73	attack	Automatic report - Port Scan Attack	2020-02-28 13:04:04
181.66.144.232	attack	Unauthorized connection attempt from IP address 181.66.144.232 on Port 445(SMB)	2020-02-28 10:16:12
66.44.209.102	attack	Feb 27 22:57:17 mailman postfix/smtpd[24167]: NOQUEUE: reject: RCPT from unknown[66.44.209.102]: 554 5.7.1 Service unavailable; Client host [66.44.209.102] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/66.44.209.102 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=SMTP helo= Feb 27 22:57:18 mailman postfix/smtpd[24167]: NOQUEUE: reject: RCPT from unknown[66.44.209.102]: 554 5.7.1 Service unavailable; Client host [66.44.209.102] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/66.44.209.102 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=SMTP helo=	2020-02-28 13:05:29
187.141.128.42	attack	Feb 28 02:28:06 silence02 sshd[27803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.128.42 Feb 28 02:28:08 silence02 sshd[27803]: Failed password for invalid user appserver from 187.141.128.42 port 38822 ssh2 Feb 28 02:37:38 silence02 sshd[28334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.128.42	2020-02-28 09:45:33
186.138.56.125	attackspam	Feb 27 17:32:03 home sshd[18813]: Invalid user ec2-user from 186.138.56.125 port 41680 Feb 27 17:32:03 home sshd[18813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.138.56.125 Feb 27 17:32:03 home sshd[18813]: Invalid user ec2-user from 186.138.56.125 port 41680 Feb 27 17:32:05 home sshd[18813]: Failed password for invalid user ec2-user from 186.138.56.125 port 41680 ssh2 Feb 27 17:42:30 home sshd[18965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.138.56.125 user=root Feb 27 17:42:32 home sshd[18965]: Failed password for root from 186.138.56.125 port 33200 ssh2 Feb 27 17:54:11 home sshd[19045]: Invalid user cpanelphppgadmin from 186.138.56.125 port 43282 Feb 27 17:54:11 home sshd[19045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.138.56.125 Feb 27 17:54:11 home sshd[19045]: Invalid user cpanelphppgadmin from 186.138.56.125 port 43282 Feb 27 17:54:14 home sshd[19045	2020-02-28 10:14:15

Recently Reported IPs

5.120.52.71	5.120.195.103	5.120.95.202	5.121.84.79
5.121.91.116	5.122.62.189	5.122.215.191	5.124.96.4
5.124.202.174	5.125.37.6	5.126.219.235	5.126.184.215
5.126.232.100	5.126.177.247	5.124.230.237	5.125.79.215
5.127.12.136	5.127.124.102	5.127.142.66	5.127.46.21