5.3.252.213 - IPInfo

Basic Info

City: Saratov

Region: Saratovskaya Oblast

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.3.252.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41792
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.3.252.213.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042401 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 25 05:32:48 CST 2020
;; MSG SIZE  rcvd: 115

Host info

213.252.3.5.in-addr.arpa domain name pointer 5x3x252x213.dynamic.saratov.ertelecom.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
213.252.3.5.in-addr.arpa	name = 5x3x252x213.dynamic.saratov.ertelecom.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.190.137.111	attack	TCP (SYN) 45.190.137.111:38609 -> port 23, len 44	2020-07-01 20:32:22
168.195.170.229	attack	DATE:2020-06-29 23:42:53, IP:168.195.170.229, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-07-01 21:01:57
24.230.41.86	attack	Brute forcing email accounts	2020-07-01 21:04:05
174.22.4.239	attackbots	SSH Bruteforce attack	2020-07-01 20:34:30
162.243.232.174	attack	Jun 30 20:23:09 zulu412 sshd\[1864\]: Invalid user timemachine from 162.243.232.174 port 40149 Jun 30 20:23:09 zulu412 sshd\[1864\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.232.174 Jun 30 20:23:11 zulu412 sshd\[1864\]: Failed password for invalid user timemachine from 162.243.232.174 port 40149 ssh2 ...	2020-07-01 21:17:36
120.24.92.233	attackspam	xmlrpc attack	2020-07-01 21:13:28
104.248.237.70	attackbots	Jun 30 05:39:16 h2034429 sshd[32231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.70 user=r.r Jun 30 05:39:18 h2034429 sshd[32231]: Failed password for r.r from 104.248.237.70 port 43402 ssh2 Jun 30 05:39:18 h2034429 sshd[32231]: Received disconnect from 104.248.237.70 port 43402:11: Bye Bye [preauth] Jun 30 05:39:18 h2034429 sshd[32231]: Disconnected from 104.248.237.70 port 43402 [preauth] Jun 30 05:55:23 h2034429 sshd[32445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.70 user=r.r Jun 30 05:55:25 h2034429 sshd[32445]: Failed password for r.r from 104.248.237.70 port 43495 ssh2 Jun 30 05:55:25 h2034429 sshd[32445]: Received disconnect from 104.248.237.70 port 43495:11: Bye Bye [preauth] Jun 30 05:55:25 h2034429 sshd[32445]: Disconnected from 104.248.237.70 port 43495 [preauth] Jun 30 05:58:35 h2034429 sshd[32474]: Invalid user ralph from 104.248.237.70 Jun........ -------------------------------	2020-07-01 21:03:17
193.56.28.250	attack	Spam detected 2020.06.30 18:42:04 blocked until 2020.08.19 11:44:51 by HoneyPot	2020-07-01 21:04:29
150.109.182.32	attackspam	firewall-block, port(s): 32773/tcp	2020-07-01 20:30:05
178.128.168.87	attackspambots	2020-06-30T18:20:10.413099abusebot-5.cloudsearch.cf sshd[11648]: Invalid user padeoe from 178.128.168.87 port 52990 2020-06-30T18:20:10.418337abusebot-5.cloudsearch.cf sshd[11648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.168.87 2020-06-30T18:20:10.413099abusebot-5.cloudsearch.cf sshd[11648]: Invalid user padeoe from 178.128.168.87 port 52990 2020-06-30T18:20:12.700177abusebot-5.cloudsearch.cf sshd[11648]: Failed password for invalid user padeoe from 178.128.168.87 port 52990 ssh2 2020-06-30T18:23:43.914696abusebot-5.cloudsearch.cf sshd[11662]: Invalid user marketing from 178.128.168.87 port 51128 2020-06-30T18:23:43.920089abusebot-5.cloudsearch.cf sshd[11662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.168.87 2020-06-30T18:23:43.914696abusebot-5.cloudsearch.cf sshd[11662]: Invalid user marketing from 178.128.168.87 port 51128 2020-06-30T18:23:45.779772abusebot-5.cloudsearch.cf s ...	2020-07-01 21:07:28
222.186.15.158	attackbotsspam	06/30/2020-15:39:03.245398 222.186.15.158 Protocol: 6 ET SCAN Potential SSH Scan	2020-07-01 21:12:21
198.71.235.73	attack	Automatic report - XMLRPC Attack	2020-07-01 21:05:23
31.128.159.186	attackbots	Unauthorized connection attempt from IP address 31.128.159.186 on Port 445(SMB)	2020-07-01 21:21:30
162.243.132.159	attack	TCP (SYN) 162.243.132.159:51149 -> port 139, len 40	2020-07-01 20:29:52
61.133.122.19	attackspam	Jul 1 05:32:11 localhost sshd[2321507]: Invalid user tmp from 61.133.122.19 port 57828 ...	2020-07-01 21:08:50

Recently Reported IPs

83.55.255.18	110.56.34.104	221.184.157.252	60.249.126.246
32.60.160.187	199.154.243.1	62.106.165.91	197.15.41.2
192.245.44.153	110.197.79.95	191.33.98.35	71.88.221.159
90.39.182.214	70.162.38.16	125.71.226.41	69.14.67.72
99.12.246.147	109.186.172.209	190.6.120.114	153.132.160.201