5.2.218.248 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.2.218.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55849
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.2.218.248.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012301 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 09:16:45 CST 2025
;; MSG SIZE  rcvd: 104

Host info

248.218.2.5.in-addr.arpa domain name pointer static-5-2-218-248.rdsnet.ro.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
248.218.2.5.in-addr.arpa	name = static-5-2-218-248.rdsnet.ro.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.50.149.2	attackspambots	Apr 25 00:19:42 nlmail01.srvfarm.net postfix/smtpd[997776]: lost connection after CONNECT from unknown[185.50.149.2] Apr 25 00:19:47 nlmail01.srvfarm.net postfix/smtpd[997884]: warning: unknown[185.50.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 25 00:19:47 nlmail01.srvfarm.net postfix/smtpd[997884]: lost connection after AUTH from unknown[185.50.149.2] Apr 25 00:19:52 nlmail01.srvfarm.net postfix/smtpd[997776]: lost connection after CONNECT from unknown[185.50.149.2] Apr 25 00:19:57 nlmail01.srvfarm.net postfix/smtpd[997884]: lost connection after AUTH from unknown[185.50.149.2]	2020-04-25 06:43:51
59.10.5.156	attackspambots	Invalid user postgres from 59.10.5.156 port 49832	2020-04-25 06:46:33
213.16.226.147	attackspam	Repeated attempts against wp-login	2020-04-25 07:00:10
51.38.235.100	attackspambots	SASL PLAIN auth failed: ruser=...	2020-04-25 06:26:24
208.113.162.87	attackspambots	208.113.162.87 - - [24/Apr/2020:22:29:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [24/Apr/2020:22:29:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [24/Apr/2020:22:29:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [24/Apr/2020:22:29:07 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [24/Apr/2020:22:29:07 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 208.113.162.87 - - [24/Apr/2020:22:29:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-04-25 06:34:00
74.213.107.162	attackspambots	74.213.107.162 - - [24/Apr/2020:22:29:16 +0200] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 302 371 "-" "XTC"	2020-04-25 06:28:35
167.86.127.137	attack	bruteforce detected	2020-04-25 06:54:08
217.112.142.206	attackspambots	Apr 24 23:08:58 mail.srvfarm.net postfix/smtpd[573786]: NOQUEUE: reject: RCPT from unknown[217.112.142.206]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 23:09:40 mail.srvfarm.net postfix/smtpd[574083]: NOQUEUE: reject: RCPT from unknown[217.112.142.206]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 23:09:40 mail.srvfarm.net postfix/smtpd[574077]: NOQUEUE: reject: RCPT from unknown[217.112.142.206]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 23:10:24 mail.srvfarm.net postfix/smtpd[573788]: NOQUEUE: reject: RCPT from unknown[217.112.142.	2020-04-25 06:59:31
49.51.141.147	attackbotsspam	Apr 25 00:18:05 ArkNodeAT sshd\[8040\]: Invalid user media from 49.51.141.147 Apr 25 00:18:05 ArkNodeAT sshd\[8040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.141.147 Apr 25 00:18:06 ArkNodeAT sshd\[8040\]: Failed password for invalid user media from 49.51.141.147 port 48206 ssh2	2020-04-25 06:36:04
103.39.215.6	attackspam	Apr 24 22:34:44 ip-172-31-62-245 sshd\[4466\]: Invalid user ahccadmin from 103.39.215.6\ Apr 24 22:34:45 ip-172-31-62-245 sshd\[4466\]: Failed password for invalid user ahccadmin from 103.39.215.6 port 47982 ssh2\ Apr 24 22:36:39 ip-172-31-62-245 sshd\[4520\]: Failed password for root from 103.39.215.6 port 49166 ssh2\ Apr 24 22:42:12 ip-172-31-62-245 sshd\[4700\]: Invalid user nagios from 103.39.215.6\ Apr 24 22:42:14 ip-172-31-62-245 sshd\[4700\]: Failed password for invalid user nagios from 103.39.215.6 port 51650 ssh2\	2020-04-25 06:46:01
185.204.3.36	attackbotsspam	Invalid user admin from 185.204.3.36 port 33396	2020-04-25 06:37:13
80.14.99.14	attackspambots	Invalid user user from 80.14.99.14 port 41109	2020-04-25 06:48:26
111.231.141.141	attackspambots	Invalid user xs from 111.231.141.141 port 60082	2020-04-25 06:41:47
41.139.130.139	attackspam	Dovecot Invalid User Login Attempt.	2020-04-25 06:54:30
188.131.219.64	attackbots	Invalid user zl from 188.131.219.64 port 36652	2020-04-25 06:39:11

Recently Reported IPs

72.161.93.201	118.210.246.96	194.20.50.223	142.33.205.100
229.239.202.78	176.55.195.176	219.81.82.243	82.113.66.100
147.177.39.169	34.167.207.55	135.107.0.251	91.30.225.232
24.71.12.252	43.244.69.220	134.58.109.10	201.71.77.142
118.206.99.78	107.66.173.66	90.229.253.72	51.172.181.205