5.2.64.121 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: LiteServer Holding B.V.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Trying ports that it shouldn't be.	2020-03-17 00:20:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.2.64.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.2.64.121.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031600 1800 900 604800 86400

;; Query time: 264 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 00:20:20 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 121.64.2.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 121.64.2.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.180	attackspambots	Sep 26 00:53:25 ks10 sshd[27272]: Failed password for root from 222.186.173.180 port 55522 ssh2 Sep 26 00:53:30 ks10 sshd[27272]: Failed password for root from 222.186.173.180 port 55522 ssh2 ...	2019-09-26 07:03:34
188.77.180.102	attackbots	namecheap spam	2019-09-26 06:34:54
41.235.245.35	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-26 06:39:01
218.94.136.90	attack	Sep 26 00:42:40 eventyay sshd[29112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 Sep 26 00:42:42 eventyay sshd[29112]: Failed password for invalid user login from 218.94.136.90 port 44696 ssh2 Sep 26 00:45:45 eventyay sshd[29150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 ...	2019-09-26 06:50:47
95.211.189.240	attack	Looking for resource vulnerabilities	2019-09-26 07:02:34
91.206.33.25	attack	port scan and connect, tcp 88 (kerberos-sec)	2019-09-26 06:36:55
101.50.60.253	attackspambots	Sep 25 12:41:27 web9 sshd\[27566\]: Invalid user web from 101.50.60.253 Sep 25 12:41:27 web9 sshd\[27566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.50.60.253 Sep 25 12:41:29 web9 sshd\[27566\]: Failed password for invalid user web from 101.50.60.253 port 51453 ssh2 Sep 25 12:46:50 web9 sshd\[28658\]: Invalid user support from 101.50.60.253 Sep 25 12:46:50 web9 sshd\[28658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.50.60.253	2019-09-26 06:56:57
117.50.44.215	attackbots	Sep 26 01:40:02 server sshd\[13815\]: Invalid user zzz from 117.50.44.215 port 50290 Sep 26 01:40:02 server sshd\[13815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.44.215 Sep 26 01:40:05 server sshd\[13815\]: Failed password for invalid user zzz from 117.50.44.215 port 50290 ssh2 Sep 26 01:44:21 server sshd\[18088\]: Invalid user jenny from 117.50.44.215 port 37231 Sep 26 01:44:21 server sshd\[18088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.44.215	2019-09-26 06:47:44
183.83.52.20	attackbotsspam	Automatic report - Banned IP Access	2019-09-26 07:08:12
82.221.105.7	attackspam	09/25/2019-22:55:48.245635 82.221.105.7 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85	2019-09-26 06:53:54
46.101.226.14	attackbotsspam	Looking for resource vulnerabilities	2019-09-26 06:58:32
221.237.189.26	attackbotsspam	Sep 25 21:05:00 marvibiene postfix/smtpd[17878]: warning: unknown[221.237.189.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 25 21:05:12 marvibiene postfix/smtpd[17878]: warning: unknown[221.237.189.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-26 06:44:39
193.150.109.152	attack	Sep 25 12:25:33 wbs sshd\[22598\]: Invalid user texdir from 193.150.109.152 Sep 25 12:25:33 wbs sshd\[22598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.150.109.152 Sep 25 12:25:34 wbs sshd\[22598\]: Failed password for invalid user texdir from 193.150.109.152 port 44371 ssh2 Sep 25 12:29:32 wbs sshd\[23271\]: Invalid user libevent from 193.150.109.152 Sep 25 12:29:32 wbs sshd\[23271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.150.109.152	2019-09-26 06:37:44
35.240.189.61	attack	10 attempts against mh-misc-ban on heat.magehost.pro	2019-09-26 06:55:03
77.103.0.227	attackspambots	Sep 25 22:52:10 dev0-dcde-rnet sshd[10590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.103.0.227 Sep 25 22:52:12 dev0-dcde-rnet sshd[10590]: Failed password for invalid user admin from 77.103.0.227 port 45382 ssh2 Sep 25 22:56:23 dev0-dcde-rnet sshd[10598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.103.0.227	2019-09-26 06:36:18

Recently Reported IPs

77.40.61.93	94.45.100.0	3.148.5.49	150.222.242.140
134.122.56.77	213.57.94.254	113.172.7.130	1.173.39.80
177.52.26.34	64.225.79.47	45.40.207.143	175.139.192.37
142.254.120.52	106.12.34.68	89.245.247.140	113.190.48.40
5.232.172.147	1.34.107.134	167.173.94.24	193.142.146.21