5.53.160.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Bulgaria

Internet Service Provider: A1 Bulgaria EAD

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SSH-bruteforce attempts	2019-10-23 06:51:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.53.160.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43062
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.53.160.21.			IN	A

;; AUTHORITY SECTION:
.			255	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102201 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 23 06:51:51 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 21.160.53.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.160.53.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.108.64.71	attack	Tried sshing with brute force.	2020-05-20 18:16:48
114.237.106.1	attackbots	SpamScore above: 10.0	2020-05-20 18:28:22
178.12.92.11	attack	May 20 05:20:24 ny01 sshd[25212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.12.92.11 May 20 05:20:26 ny01 sshd[25212]: Failed password for invalid user gxc from 178.12.92.11 port 29072 ssh2 May 20 05:25:17 ny01 sshd[26300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.12.92.11	2020-05-20 18:14:44
165.22.143.3	attackspam	May 20 11:52:48 lnxded64 sshd[30328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.143.3	2020-05-20 18:12:23
193.202.45.202	attack	SmallBizIT.US 5 packets to udp(5060)	2020-05-20 18:09:29
150.109.150.77	attack	May 20 17:35:52 web1 sshd[24048]: Invalid user vi from 150.109.150.77 port 36126 May 20 17:35:52 web1 sshd[24048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.150.77 May 20 17:35:52 web1 sshd[24048]: Invalid user vi from 150.109.150.77 port 36126 May 20 17:35:54 web1 sshd[24048]: Failed password for invalid user vi from 150.109.150.77 port 36126 ssh2 May 20 17:43:47 web1 sshd[25945]: Invalid user sof from 150.109.150.77 port 60698 May 20 17:43:47 web1 sshd[25945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.150.77 May 20 17:43:47 web1 sshd[25945]: Invalid user sof from 150.109.150.77 port 60698 May 20 17:43:49 web1 sshd[25945]: Failed password for invalid user sof from 150.109.150.77 port 60698 ssh2 May 20 17:47:41 web1 sshd[26931]: Invalid user lea from 150.109.150.77 port 41680 ...	2020-05-20 18:25:58
37.59.36.210	attackspam	509. On May 18 2020 experienced a Brute Force SSH login attempt -> 2 unique times by 37.59.36.210.	2020-05-20 17:59:44
138.197.175.236	attack	2020-05-20T11:42:40.722802galaxy.wi.uni-potsdam.de sshd[27939]: Invalid user cqx from 138.197.175.236 port 36270 2020-05-20T11:42:40.729063galaxy.wi.uni-potsdam.de sshd[27939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 2020-05-20T11:42:40.722802galaxy.wi.uni-potsdam.de sshd[27939]: Invalid user cqx from 138.197.175.236 port 36270 2020-05-20T11:42:42.565332galaxy.wi.uni-potsdam.de sshd[27939]: Failed password for invalid user cqx from 138.197.175.236 port 36270 ssh2 2020-05-20T11:45:05.500783galaxy.wi.uni-potsdam.de sshd[28218]: Invalid user can from 138.197.175.236 port 51396 2020-05-20T11:45:05.506011galaxy.wi.uni-potsdam.de sshd[28218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 2020-05-20T11:45:05.500783galaxy.wi.uni-potsdam.de sshd[28218]: Invalid user can from 138.197.175.236 port 51396 2020-05-20T11:45:07.582337galaxy.wi.uni-potsdam.de sshd[28218]: Failed pas ...	2020-05-20 18:00:44
77.222.111.165	attack	1589960878 - 05/20/2020 09:47:58 Host: 77.222.111.165/77.222.111.165 Port: 445 TCP Blocked	2020-05-20 18:06:12
129.204.225.65	attack	Brute force SMTP login attempted. ...	2020-05-20 17:56:06
80.211.128.151	attackspambots	May 20 08:01:56 web8 sshd\[18209\]: Invalid user gue from 80.211.128.151 May 20 08:01:56 web8 sshd\[18209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.128.151 May 20 08:01:58 web8 sshd\[18209\]: Failed password for invalid user gue from 80.211.128.151 port 56506 ssh2 May 20 08:06:40 web8 sshd\[20841\]: Invalid user nf from 80.211.128.151 May 20 08:06:40 web8 sshd\[20841\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.128.151	2020-05-20 17:54:43
61.181.80.253	attack	2020-05-19 UTC: (44x) - aiu,avr,cbt,cke,ctg,duj,dyj,fds,feq,fje,ftb,gas,gvk,hde,hxt,jol,kvt,manavi,mj,mvb,oco,oet,ovl,pbz,por,prz,psj,pzg,rgv,rjl,rvh,sxz,tew,toq,unh,urn,wanyao,wdh,wln,wze,ysk,yvc,zhanglei,zhangyingzi	2020-05-20 17:58:05
109.165.205.2	attackspambots	64. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 109.165.205.2.	2020-05-20 18:06:30
218.92.0.199	attackbotsspam	May 20 11:43:00 legacy sshd[10500]: Failed password for root from 218.92.0.199 port 41781 ssh2 May 20 11:43:49 legacy sshd[10532]: Failed password for root from 218.92.0.199 port 54754 ssh2 ...	2020-05-20 17:59:56
185.175.93.14	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-20 17:55:28

Recently Reported IPs

106.13.202.114	88.230.98.131	185.251.249.21	173.239.12.164
80.211.240.4	110.78.4.79	187.250.161.37	86.149.30.121
14.245.209.218	111.253.226.140	37.215.26.70	155.232.195.63
218.59.5.166	113.180.87.92	110.93.13.190	88.248.13.117
178.132.69.18	142.93.225.227	51.91.108.77	161.117.0.23