5.2.134.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: RCS & RDS S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	RDP Bruteforce	2019-10-28 06:30:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.2.134.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.2.134.64.			IN	A

;; AUTHORITY SECTION:
.			367	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102701 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 06:30:50 CST 2019
;; MSG SIZE  rcvd: 114

Host info

64.134.2.5.in-addr.arpa domain name pointer static-5-2-134-64.rdsnet.ro.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.134.2.5.in-addr.arpa	name = static-5-2-134-64.rdsnet.ro.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.153.183.18	spamattack	PHISHING AND SPAM ATTACK FROM "Mr. google - Admin@liubim.com -" : SUBJECT "RE " : RECEIVED "from [103.153.183.18] (unknown [103.153.183.18]) (Authenticated sender: Admin@liubim.com) by liubim.com (Postfix) with ESMTPSA id 456EA12F6FE " : DATE/TIMESENT "Mon, 1 Mar 2021 05:04:34 " IP ADDRESS "inetnum: 103.153.182.0 - 103.153.183.254 address: 1004/D-Wing, Astonia Royale, Ambegaon Narhe Road, Pune Maharashtra 411046"	2021-03-03 07:12:17
84.17.49.196	attack	QNAP login attempts with admin username	2021-03-08 17:57:16
109.183.242.133	botsnormal	http://truhlarstvid-l.cz/formular.php#	2021-03-04 02:11:08
69.65.62.64	spamattack	PHISHING AND SPAM ATTACK FROM "123Greetings - specials@123g.biz -" : SUBJECT "Diabetics - No More Finger Pricks " : RECEIVED "from mail.silver64.123g.biz ([69.65.62.64]:43032) " : DATE/TIMESENT "Thu, 04 Mar 2021 09:25:27 " NOTE Take care with cards from 123Greetings.com, it uses 69.65.62.0/25 as above"	2021-03-04 07:51:00
211.174.182.56	spamattack	PHISHING AND SPAM ATTACK FROM "- sales@seojinpr.com -" : SUBJECT "Your devices have been hacked! including this account " : RECEIVED "from unknown (HELO seojinpr.com) (sales@seojinpr.com@85.159.218.246) by mail.bestsang.com with ESMTPA; 3 Mar 2021 18:04:54 -0000" IP ADDRESS "inetnum: 211.174.128.0 - 211.174.255.255 Address : Seoul Seodaemun gu Kyonggidae ro" NOTE Sextortion, ignore stupid claims	2021-03-04 03:50:53
23.247.27.21	spamattack	PHISHING AND SPAM ATTACK FROM "Professional Drone - ProfessionalDrone@newfund.buzz -" : SUBJECT "The perfect professional drone on a budget. " : RECEIVED "from [23.247.27.21] (port=37460 helo=data.newfund.buzz) " : DATE/TIMESENT "Sat, 06 Mar 2021 23:04:10 " IP ADDRESS "NetRange: 23.247.0.0 - 23.247.127.255 OrgName: LayerHost "	2021-03-07 08:14:27
195.62.46.38	spamattack	PHISHING AND SPAM ATTACK FROM "Exposed - Exposed@leakygut.buzz -" : SUBJECT "Kamala's backdoor " : RECEIVED "from [195.62.46.38] (port=34127 helo=negat.leakygut.buzz) " : DATE/TIMESENT "Fri, 26 Feb 2021 22:53:43 " IP ADDRESS "inetnum: 195.62.46.0 - 195.62.47.255 org-name: XSServer GmbH	2021-02-27 06:25:11
217.163.30.151	spam	Good	2021-03-11 23:11:10
185.63.253.223	spambotsattackproxynormal	153.63.253.200	2021-03-02 00:00:33
23.247.75.105	spamattack	PHISHING AND SPAM ATTACK FROM "Cavities Disinfected - CavitiesDisinfected@denta.cyou -" : SUBJECT "Chew this before 10pm to rebuild your teeth and gums " : RECEIVED "from flzs.royaguage.com ([23.247.75.105]:50946 helo=aoede.denta.cyou) " : DATE/TIMESENT "Sun, 28 Feb 2021 00:49:09 " IP ADDRESS "NetRange: 23.247.75.0 - 23.247.75.255 Customer: Andrew Horton (C04842071)"	2021-02-28 05:44:08
213.5.195.97	spamattack	Tried to access Google Account and has compromised other accounts.	2021-03-17 02:43:48
77.119.246.149	normal	smigis private ip	2021-03-08 05:14:07
186.151.92.109	attack	From tis ip address Somebody has tried to log into my yahoo account!!! Help!	2021-03-16 03:45:51
103.101.197.18	proxynormal	Leggy ip on pick hour. Games ping too high.	2021-03-01 23:19:57
195.62.46.126	spamattack	PHISHING AND SPAM ATTACK FROM "Jeff Martin - JeffMartin@obamas.guru -" : SUBJECT "Odd Trick Eliminates Heartburn Fast?" : RECEIVED "from oucartoni.xyz ([195.62.46.126]:40059 helo=peer.obamas.guru)" : DATE/TIMESENT "Sun, 21 Mar 2021 23:57:37": IP ADDRESS "inetnum: 195.62.46.0 - 195.62.47.255 org-name: XSServer GmbH":	2021-03-22 04:14:36

Recently Reported IPs

191.32.43.2	188.125.170.48	233.116.168.161	180.172.82.174
180.119.109.62	20.128.149.155	174.198.209.78	201.2.235.54
54.37.67.144	86.110.234.31	128.59.21.215	180.215.120.2
37.99.136.252	150.109.51.105	113.173.117.191	102.177.145.221
177.215.119.136	112.239.135.10	43.240.38.28	27.210.164.138