5.53.118.19 - IPInfo

Basic Info

City: Kyiv

Region: Kyiv City

Country: Ukraine

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.53.118.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26691
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.53.118.19.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 05:46:26 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 19.118.53.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.118.53.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.154.171.126	attackspam	[Thu Feb 27 21:20:35.922068 2020] [:error] [pid 3357:tid 139837718796032] [client 178.154.171.126:47189] [client 178.154.171.126] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XlfQM8clhrsAFCo3ZaJ1wgAAAAA"] ...	2020-02-28 04:54:15
162.218.244.84	attackspam	Email rejected due to spam filtering	2020-02-28 04:45:07
122.142.177.2	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 05:15:30
192.241.221.239	attackspam	Web application attack detected by fail2ban	2020-02-28 05:19:22
222.186.180.41	attackspambots	Feb 27 21:53:55 nextcloud sshd\[20060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Feb 27 21:53:57 nextcloud sshd\[20060\]: Failed password for root from 222.186.180.41 port 62466 ssh2 Feb 27 21:54:00 nextcloud sshd\[20060\]: Failed password for root from 222.186.180.41 port 62466 ssh2	2020-02-28 04:55:46
122.165.185.99	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 05:00:47
14.166.43.199	attackbotsspam	Email rejected due to spam filtering	2020-02-28 04:53:32
14.53.209.84	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 04:52:39
80.82.77.193	attackbotsspam	Message meets Alert condition date=2020-02-27 time=11:27:16 devname=FG200E4Q16901016 devid=FG200E4Q16901016 logid=0101037131 type=event subtype=vpn level=error vd=root logdesc="IPsec ESP" msg="IPsec ESP" action=error remip=80.82.77.193 locip=107.178.11.178 remport=51996 locport=500 outintf="wan1" cookies="N/A" user="N/A" group="N/A" xauthuser="N/A" xauthgroup="N/A" assignip=N/A vpntunnel="N/A" status=esp_error error_num="Received ESP packet with unknown SPI." spi="d4c3b2a1" seq="02000400"	2020-02-28 05:23:07
37.49.230.30	attack	[2020-02-27 15:47:32] NOTICE[1148][C-0000c852] chan_sip.c: Call from '' (37.49.230.30:58666) to extension '0000272846462607614' rejected because extension not found in context 'public'. [2020-02-27 15:47:32] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-27T15:47:32.866-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000272846462607614",SessionID="0x7fd82c3e9978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.30/58666",ACLName="no_extension_match" [2020-02-27 15:50:11] NOTICE[1148][C-0000c853] chan_sip.c: Call from '' (37.49.230.30:52361) to extension '0000282946462607614' rejected because extension not found in context 'public'. [2020-02-27 15:50:11] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-27T15:50:11.422-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000282946462607614",SessionID="0x7fd82c2aad18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddre ...	2020-02-28 05:07:35
189.252.38.211	attack	1582813239 - 02/27/2020 15:20:39 Host: 189.252.38.211/189.252.38.211 Port: 445 TCP Blocked	2020-02-28 04:51:54
113.163.209.86	attackbots	Email rejected due to spam filtering	2020-02-28 04:49:28
119.160.219.5	attackspam	firewall-block, port(s): 1433/tcp	2020-02-28 05:19:01
139.59.80.65	attack	2020-02-27T19:40:49.185335 sshd[28114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 2020-02-27T19:40:49.171794 sshd[28114]: Invalid user cisco from 139.59.80.65 port 34434 2020-02-27T19:40:50.877985 sshd[28114]: Failed password for invalid user cisco from 139.59.80.65 port 34434 ssh2 2020-02-27T21:44:37.830117 sshd[30242]: Invalid user monica from 139.59.80.65 port 35034 ...	2020-02-28 05:20:16
139.59.95.117	attackspambots	Unauthorized connection attempt detected from IP address 139.59.95.117 to port 5900	2020-02-28 04:42:21

Recently Reported IPs

221.138.189.242	90.142.39.38	116.98.82.40	220.125.202.175
51.159.0.184	65.38.200.234	63.95.47.231	190.163.121.78
117.98.161.11	167.56.179.78	179.128.228.207	93.3.254.205
167.100.120.118	221.44.192.29	128.130.46.117	3.228.40.176
213.132.46.76	114.95.226.244	58.95.124.148	47.133.8.113