City: Milan
Region: Lombardy
Country: Italy
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.252.181.134 | attack | firewall-block, port(s): 445/tcp |
2020-05-25 07:15:25 |
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '5.252.16.0 - 5.252.19.255'
% Abuse contact for '5.252.16.0 - 5.252.19.255' is 'luca.albertini@wavecom.it'
inetnum: 5.252.16.0 - 5.252.19.255
netname: IT-WAVECOM-20190204
country: IT
org: ORG-WS213-RIPE
admin-c: LA7317-RIPE
tech-c: LA7317-RIPE
status: ALLOCATED PA
mnt-by: it-wavecom-1-mnt
mnt-by: RIPE-NCC-HM-MNT
created: 2023-12-29T10:27:14Z
last-modified: 2023-12-29T10:27:14Z
source: RIPE
organisation: ORG-WS213-RIPE
org-name: WAVECOM SRL
country: IT
org-type: LIR
address: via Vertoiba, 4
address: 20137
address: Milano
address: ITALY
phone: +390280016800
admin-c: LA7317-RIPE
tech-c: LA7317-RIPE
abuse-c: AR47472-RIPE
mnt-ref: it-wavecom-1-mnt
mnt-by: RIPE-NCC-HM-MNT
mnt-by: it-wavecom-1-mnt
created: 2018-07-16T13:00:28Z
last-modified: 2021-08-18T08:36:08Z
source: RIPE # Filtered
person: Luca Albertini
address: via Vertoiba, 4
address: 20137
address: Milano
address: ITALY
phone: +390280016800
nic-hdl: LA7317-RIPE
mnt-by: it-wavecom-1-mnt
created: 2018-07-16T13:00:27Z
last-modified: 2023-07-27T15:49:58Z
source: RIPE
% Information related to '5.252.18.0/24AS200497'
route: 5.252.18.0/24
origin: AS200497
mnt-by: it-wavecom-1-mnt
created: 2021-01-04T16:40:32Z
last-modified: 2021-01-04T16:40:32Z
source: RIPE
% Information related to '5.252.18.0/24AS212559'
route: 5.252.18.0/24
origin: AS212559
mnt-by: it-wavecom-1-mnt
created: 2024-06-26T17:13:35Z
last-modified: 2024-06-26T17:13:35Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.121.2 (ABERDEEN); <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.252.18.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;5.252.18.193. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032801 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 29 11:26:33 CST 2026
;; MSG SIZE rcvd: 105Host 193.18.252.5.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 193.18.252.5.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 74.92.210.138 | attackspambots | Sep 2 08:16:58 tdfoods sshd\[16704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-92-210-138-colorado.hfc.comcastbusiness.net user=sync Sep 2 08:17:00 tdfoods sshd\[16704\]: Failed password for sync from 74.92.210.138 port 57304 ssh2 Sep 2 08:21:01 tdfoods sshd\[17036\]: Invalid user eliane from 74.92.210.138 Sep 2 08:21:01 tdfoods sshd\[17036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-92-210-138-colorado.hfc.comcastbusiness.net Sep 2 08:21:03 tdfoods sshd\[17036\]: Failed password for invalid user eliane from 74.92.210.138 port 45996 ssh2 |
2019-09-03 04:18:48 |
| 125.24.153.254 | attackspambots | 445/tcp [2019-09-02]1pkt |
2019-09-03 04:17:05 |
| 49.88.112.77 | attackspam | 2019-09-02T15:26:14.429290abusebot-3.cloudsearch.cf sshd\[30694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.77 user=root |
2019-09-03 03:56:02 |
| 192.99.17.189 | attackspambots | Sep 2 21:03:49 SilenceServices sshd[31245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.17.189 Sep 2 21:03:51 SilenceServices sshd[31245]: Failed password for invalid user e-mail from 192.99.17.189 port 46009 ssh2 Sep 2 21:07:06 SilenceServices sshd[1240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.17.189 |
2019-09-03 04:38:25 |
| 49.88.112.72 | attackspam | Sep 2 22:15:39 mail sshd\[22973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root Sep 2 22:15:41 mail sshd\[22973\]: Failed password for root from 49.88.112.72 port 48361 ssh2 Sep 2 22:15:44 mail sshd\[22973\]: Failed password for root from 49.88.112.72 port 48361 ssh2 Sep 2 22:15:46 mail sshd\[22973\]: Failed password for root from 49.88.112.72 port 48361 ssh2 Sep 2 22:17:20 mail sshd\[23233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root |
2019-09-03 04:23:25 |
| 95.170.205.151 | attackbotsspam | Sep 2 15:49:10 vserver sshd\[32297\]: Failed password for root from 95.170.205.151 port 46586 ssh2Sep 2 15:53:30 vserver sshd\[32307\]: Failed password for root from 95.170.205.151 port 59966 ssh2Sep 2 15:57:57 vserver sshd\[32331\]: Invalid user testtest from 95.170.205.151Sep 2 15:58:00 vserver sshd\[32331\]: Failed password for invalid user testtest from 95.170.205.151 port 21682 ssh2 ... |
2019-09-03 03:50:20 |
| 31.171.0.55 | attack | Automatic report - Banned IP Access |
2019-09-03 03:56:26 |
| 129.211.49.77 | attack | Sep 2 20:03:21 mail sshd\[520\]: Failed password for invalid user p@55wOrd from 129.211.49.77 port 32834 ssh2 Sep 2 20:07:58 mail sshd\[1287\]: Invalid user gbeothy from 129.211.49.77 port 48134 Sep 2 20:07:58 mail sshd\[1287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.49.77 Sep 2 20:08:00 mail sshd\[1287\]: Failed password for invalid user gbeothy from 129.211.49.77 port 48134 ssh2 Sep 2 20:12:38 mail sshd\[2227\]: Invalid user qwerty from 129.211.49.77 port 35210 |
2019-09-03 03:48:52 |
| 60.179.74.36 | attack | 37215/tcp [2019-09-02]1pkt |
2019-09-03 04:42:20 |
| 50.239.143.100 | attack | Sep 2 06:20:59 tdfoods sshd\[5687\]: Invalid user applmgr1 from 50.239.143.100 Sep 2 06:20:59 tdfoods sshd\[5687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 Sep 2 06:21:01 tdfoods sshd\[5687\]: Failed password for invalid user applmgr1 from 50.239.143.100 port 53070 ssh2 Sep 2 06:25:18 tdfoods sshd\[6807\]: Invalid user 1qazse4 from 50.239.143.100 Sep 2 06:25:18 tdfoods sshd\[6807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 |
2019-09-03 04:35:01 |
| 36.89.209.22 | attack | 2019-09-02T14:13:59.234206abusebot-6.cloudsearch.cf sshd\[31772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.209.22 user=root |
2019-09-03 03:54:40 |
| 178.128.201.224 | attackspam | Sep 2 16:23:57 debian sshd\[32418\]: Invalid user butter from 178.128.201.224 port 45304 Sep 2 16:23:57 debian sshd\[32418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.201.224 Sep 2 16:23:59 debian sshd\[32418\]: Failed password for invalid user butter from 178.128.201.224 port 45304 ssh2 ... |
2019-09-03 04:39:19 |
| 46.21.147.47 | attackspambots | Sep 2 16:40:43 lnxmail61 postfix/smtpd[27985]: warning: unknown[46.21.147.47]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 2 16:40:43 lnxmail61 postfix/smtpd[27985]: lost connection after AUTH from unknown[46.21.147.47] |
2019-09-03 04:38:55 |
| 36.72.213.142 | attack | 34567/tcp [2019-09-02]1pkt |
2019-09-03 04:02:52 |
| 80.85.155.144 | attackspam | TCP Port: 25 _ invalid blocked dnsbl-sorbs barracudacentral _ _ _ _ (848) |
2019-09-03 04:00:22 |