5.2.64.121 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: LiteServer Holding B.V.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Trying ports that it shouldn't be.	2020-03-17 00:20:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.2.64.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.2.64.121.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031600 1800 900 604800 86400

;; Query time: 264 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 00:20:20 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 121.64.2.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 121.64.2.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.193	attackbotsspam	2019-11-22T15:34:59.246768abusebot-2.cloudsearch.cf sshd\[8362\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.193 user=root	2019-11-23 02:19:16
134.73.55.65	attackbots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-11-23 02:07:34
122.3.5.101	attackspambots	Unauthorized connection attempt from IP address 122.3.5.101 on Port 445(SMB)	2019-11-23 02:08:49
180.251.153.112	attackbotsspam	Unauthorized connection attempt from IP address 180.251.153.112 on Port 445(SMB)	2019-11-23 01:56:10
128.199.145.205	attackspam	SSH Brute Force, server-1 sshd[5043]: Failed password for invalid user jjjj from 128.199.145.205 port 41843 ssh2	2019-11-23 01:49:38
95.154.88.70	attackbots	2019-11-22 15:54:43,211 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 95.154.88.70 2019-11-22 16:28:42,958 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 95.154.88.70 2019-11-22 17:03:20,222 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 95.154.88.70 2019-11-22 17:45:10,896 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 95.154.88.70 2019-11-22 18:28:02,587 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 95.154.88.70 ...	2019-11-23 01:59:39
218.92.0.191	attackspam	Nov 22 18:56:56 dcd-gentoo sshd[28064]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 22 18:57:00 dcd-gentoo sshd[28064]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 22 18:56:56 dcd-gentoo sshd[28064]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 22 18:57:00 dcd-gentoo sshd[28064]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 22 18:56:56 dcd-gentoo sshd[28064]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 22 18:57:00 dcd-gentoo sshd[28064]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 22 18:57:00 dcd-gentoo sshd[28064]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 40832 ssh2 ...	2019-11-23 02:09:30
41.77.145.34	attack	SSH Brute Force, server-1 sshd[4963]: Failed password for root from 41.77.145.34 port 48794 ssh2	2019-11-23 01:52:28
139.215.217.181	attackspam	SSH Brute Force, server-1 sshd[4448]: Failed password for invalid user petronela from 139.215.217.181 port 53942 ssh2	2019-11-23 01:49:25
189.89.238.170	attackbots	Unauthorized connection attempt from IP address 189.89.238.170 on Port 445(SMB)	2019-11-23 01:48:13
192.166.218.108	attackspam	Nov 18 16:33:26 minden010 sshd[2627]: Failed password for r.r from 192.166.218.108 port 34650 ssh2 Nov 18 16:37:19 minden010 sshd[3911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.166.218.108 Nov 18 16:37:21 minden010 sshd[3911]: Failed password for invalid user bsnl from 192.166.218.108 port 44826 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=192.166.218.108	2019-11-23 02:19:47
211.181.237.68	attackspambots	Unauthorized connection attempt from IP address 211.181.237.68 on Port 445(SMB)	2019-11-23 02:11:52
125.164.232.60	attack	Unauthorized connection attempt from IP address 125.164.232.60 on Port 445(SMB)	2019-11-23 01:53:14
103.248.174.11	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-11-23 02:23:13
157.7.135.176	attackbots	Nov 18 15:46:45 xb0 sshd[19931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.7.135.176 user=r.r Nov 18 15:46:47 xb0 sshd[19931]: Failed password for r.r from 157.7.135.176 port 52429 ssh2 Nov 18 15:46:48 xb0 sshd[19931]: Received disconnect from 157.7.135.176: 11: Bye Bye [preauth] Nov 18 15:56:30 xb0 sshd[20134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.7.135.176 user=r.r Nov 18 15:56:32 xb0 sshd[20134]: Failed password for r.r from 157.7.135.176 port 57260 ssh2 Nov 18 15:56:32 xb0 sshd[20134]: Received disconnect from 157.7.135.176: 11: Bye Bye [preauth] Nov x@x Nov 18 16:00:47 xb0 sshd[18646]: Received disconnect from 157.7.135.176: 11: Bye Bye [preauth] Nov 18 16:04:57 xb0 sshd[29642]: Failed password for invalid user baste from 157.7.135.176 port 39627 ssh2 Nov 18 16:04:57 xb0 sshd[29642]: Received disconnect from 157.7.135.176: 11: Bye Bye [preauth] Nov 18 16:09:08........ -------------------------------	2019-11-23 02:15:55

Recently Reported IPs

77.40.61.93	94.45.100.0	3.148.5.49	150.222.242.140
134.122.56.77	213.57.94.254	113.172.7.130	1.173.39.80
177.52.26.34	64.225.79.47	45.40.207.143	175.139.192.37
142.254.120.52	106.12.34.68	89.245.247.140	113.190.48.40
5.232.172.147	1.34.107.134	167.173.94.24	193.142.146.21