5.16.20.74 - IPInfo

Basic Info

City: St Petersburg

Region: St.-Petersburg

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.16.20.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18943
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.16.20.74.			IN	A

;; AUTHORITY SECTION:
.			262	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031402 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 15 08:43:42 CST 2022
;; MSG SIZE  rcvd: 103

Host info

74.20.16.5.in-addr.arpa domain name pointer 5x16x20x74.static-business.spb.ertelecom.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.20.16.5.in-addr.arpa	name = 5x16x20x74.static-business.spb.ertelecom.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.188.101	attackspambots	Mar 3 22:48:46 hanapaa sshd\[17081\]: Invalid user hadoop from 51.38.188.101 Mar 3 22:48:46 hanapaa sshd\[17081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.ip-51-38-188.eu Mar 3 22:48:48 hanapaa sshd\[17081\]: Failed password for invalid user hadoop from 51.38.188.101 port 41170 ssh2 Mar 3 22:57:03 hanapaa sshd\[18009\]: Invalid user live from 51.38.188.101 Mar 3 22:57:03 hanapaa sshd\[18009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.ip-51-38-188.eu	2020-03-04 17:15:09
203.21.192.1	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/203.21.192.1/ AU - 1H : (11) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AU NAME ASN : ASN9942 IP : 203.21.192.1 CIDR : 203.21.192.0/23 PREFIX COUNT : 72 UNIQUE IP COUNT : 28160 ATTACKS DETECTED ASN9942 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2020-03-04 05:56:00 INFO : DNS DENIED Scan Detected and Blocked by ADMIN - data recovery	2020-03-04 16:53:46
117.1.249.91	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 17:16:13
180.76.189.102	attack	Mar 4 05:30:06 firewall sshd[2941]: Invalid user beach from 180.76.189.102 Mar 4 05:30:09 firewall sshd[2941]: Failed password for invalid user beach from 180.76.189.102 port 55058 ssh2 Mar 4 05:39:30 firewall sshd[3235]: Invalid user xyp from 180.76.189.102 ...	2020-03-04 17:03:36
47.92.73.109	attack	2020-03-04T05:54:22.094661vps751288.ovh.net sshd\[17585\]: Invalid user user0 from 47.92.73.109 port 55720 2020-03-04T05:54:22.106011vps751288.ovh.net sshd\[17585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.92.73.109 2020-03-04T05:54:23.991851vps751288.ovh.net sshd\[17585\]: Failed password for invalid user user0 from 47.92.73.109 port 55720 ssh2 2020-03-04T05:55:49.378123vps751288.ovh.net sshd\[17597\]: Invalid user cpaneleximfilter from 47.92.73.109 port 36198 2020-03-04T05:55:49.387067vps751288.ovh.net sshd\[17597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.92.73.109	2020-03-04 17:06:30
45.143.220.202	attackbotsspam	\[2020-03-04 05:48:14\] SECURITY\[2093\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-04T05:48:14.278+0100",Severity="Error",Service="SIP",EventVersion="2",AccountID="011199.126.0.204",SessionID="0x7f23bd7caf58",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/45.143.220.202/5076",Challenge="44f4e455",ReceivedChallenge="44f4e455",ReceivedHash="94b4049d111c8c83fc84d00c94ca9137" \[2020-03-04 05:57:17\] SECURITY\[2093\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-04T05:57:17.146+0100",Severity="Error",Service="SIP",EventVersion="2",AccountID="9011199.126.0.204",SessionID="0x7f23bd8aa6f8",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/45.143.220.202/5109",Challenge="503b7593",ReceivedChallenge="503b7593",ReceivedHash="541da5e955bcc0ba5c152614920831dc" \[2020-03-04 06:07:26\] SECURITY\[2093\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-04T06:07:26.893+0100",Severity="Error",Service= ...	2020-03-04 16:43:55
180.168.141.246	attackbots	Mar 4 09:31:37 silence02 sshd[21360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.141.246 Mar 4 09:31:39 silence02 sshd[21360]: Failed password for invalid user robert from 180.168.141.246 port 32838 ssh2 Mar 4 09:38:43 silence02 sshd[21762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.141.246	2020-03-04 16:45:03
208.80.202.2	spam	MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord, en TOTALE INFRACTION avec les Législations Européennes comme Française sur la RGPD, donc à condamner à 750 € par pourriel émis, tout ça pour du PHISHING par une FAUSSE COPIE de Mondial Relay... From: URGENTE To: contact@esperdesign.com Message-ID: <807245048.108949416.1583266090716.JavaMail.zimbra@fairpoint.net> In-Reply-To: <319320569.108937872.1583265344009.JavaMail.zimbra@fairpoint.net> fairpoint.net => tucows gosecure.net => tucows esperdesign.com => gandi https://www.mywot.com/scorecard/fairpoint.net https://www.mywot.com/scorecard/gosecure.net https://www.mywot.com/scorecard/esperdesign.com https://en.asytech.cn/check-ip/208.80.202.2 https://en.asytech.cn/check-ip/137.118.40.128	2020-03-04 17:02:22
180.167.233.252	attackspambots	Mar 4 11:12:37 gw1 sshd[28268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.233.252 Mar 4 11:12:39 gw1 sshd[28268]: Failed password for invalid user jstorm from 180.167.233.252 port 36852 ssh2 ...	2020-03-04 16:36:23
51.83.106.0	attackbots	"SSH brute force auth login attempt."	2020-03-04 17:14:34
150.109.52.25	attackspam	Mar 4 10:11:03 ns381471 sshd[4962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.52.25 Mar 4 10:11:04 ns381471 sshd[4962]: Failed password for invalid user ibpliups from 150.109.52.25 port 43084 ssh2	2020-03-04 17:11:17
222.186.30.187	attack	Mar 4 10:07:41 MK-Soft-Root2 sshd[25815]: Failed password for root from 222.186.30.187 port 47373 ssh2 Mar 4 10:07:45 MK-Soft-Root2 sshd[25815]: Failed password for root from 222.186.30.187 port 47373 ssh2 ...	2020-03-04 17:13:28
162.243.59.16	attackbotsspam	SSH Brute-Forcing (server2)	2020-03-04 17:00:30
68.183.60.156	attackbotsspam	68.183.60.156 - - [04/Mar/2020:07:52:28 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.60.156 - - [04/Mar/2020:07:52:28 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-04 16:34:54
186.207.180.25	attack	Mar 4 09:43:51 ift sshd\[21420\]: Failed password for mysql from 186.207.180.25 port 52662 ssh2Mar 4 09:47:58 ift sshd\[22038\]: Invalid user user from 186.207.180.25Mar 4 09:48:00 ift sshd\[22038\]: Failed password for invalid user user from 186.207.180.25 port 36342 ssh2Mar 4 09:52:15 ift sshd\[22641\]: Invalid user oracle from 186.207.180.25Mar 4 09:52:18 ift sshd\[22641\]: Failed password for invalid user oracle from 186.207.180.25 port 48768 ssh2 ...	2020-03-04 16:49:00

Recently Reported IPs

95.83.98.201	42.182.0.25	216.169.52.9	142.84.29.81
88.243.207.121	111.90.120.126	3.226.234.251	56.59.181.63
2603:10b6:207:17::33	10.12.160.50	76.213.28.52	100.116.65.61
147.32.80.7	147.32.0.0	147.32.0.198	177.243.241.64
146.102.240.228	243.89.85.227	165.64.3.121	2.199.33.0