5.54.29.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Vodafone-Panafon Hellenic Telecommunications Company SA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-01-26 21:05:09

Comments on same subnet:

IP	Type	Details	Datetime
5.54.29.61	attack	Honeypot attack, port: 81, PTR: ppp005054029061.access.hol.gr.	2020-03-03 16:14:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.54.29.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56021
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.54.29.52.			IN	A

;; AUTHORITY SECTION:
.			314	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012600 1800 900 604800 86400

;; Query time: 355 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 21:05:04 CST 2020
;; MSG SIZE  rcvd: 114

Host info

52.29.54.5.in-addr.arpa domain name pointer ppp005054029052.access.hol.gr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.29.54.5.in-addr.arpa	name = ppp005054029052.access.hol.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.139.198.117	attackbots	Mar 25 21:34:28 ws22vmsma01 sshd[29738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.139.198.117 Mar 25 21:34:29 ws22vmsma01 sshd[29738]: Failed password for invalid user admin from 119.139.198.117 port 37462 ssh2 ...	2020-03-26 08:54:53
1.194.50.91	attack	Mar 25 22:34:08 DAAP sshd[12317]: Invalid user sftpuser04 from 1.194.50.91 port 44446 Mar 25 22:34:08 DAAP sshd[12317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.194.50.91 Mar 25 22:34:08 DAAP sshd[12317]: Invalid user sftpuser04 from 1.194.50.91 port 44446 Mar 25 22:34:09 DAAP sshd[12317]: Failed password for invalid user sftpuser04 from 1.194.50.91 port 44446 ssh2 Mar 25 22:41:34 DAAP sshd[12559]: Invalid user sato from 1.194.50.91 port 41340 ...	2020-03-26 08:34:06
106.13.17.8	attackspambots	Mar 26 00:48:22 raspberrypi sshd[11530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.17.8	2020-03-26 08:26:38
106.13.73.210	attack	(sshd) Failed SSH login from 106.13.73.210 (CN/China/-): 5 in the last 3600 secs	2020-03-26 08:42:14
84.204.168.242	attack	Mar 26 00:08:08 silence02 sshd[17125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.204.168.242 Mar 26 00:08:10 silence02 sshd[17125]: Failed password for invalid user vidya from 84.204.168.242 port 42033 ssh2 Mar 26 00:14:37 silence02 sshd[17532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.204.168.242	2020-03-26 08:43:02
79.191.121.115	attack	Lines containing failures of 79.191.121.115 Mar 25 22:31:46 myhost sshd[9856]: Invalid user pi from 79.191.121.115 port 58916 Mar 25 22:31:46 myhost sshd[9856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.191.121.115 Mar 25 22:31:46 myhost sshd[9858]: Invalid user pi from 79.191.121.115 port 58918 Mar 25 22:31:46 myhost sshd[9858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.191.121.115 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=79.191.121.115	2020-03-26 08:51:27
93.110.154.113	attack	(pop3d) Failed POP3 login from 93.110.154.113 (IR/Iran/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 26 02:11:33 ir1 dovecot[566034]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.110.154.113, lip=5.63.12.44, session=	2020-03-26 08:29:42
67.205.182.172	attack	Mar 25 22:41:13 debian-2gb-nbg1-2 kernel: \[7431551.248086\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=67.205.182.172 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=43539 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0	2020-03-26 08:52:24
95.54.166.5	attackbotsspam	serveres are UTC -0400 Lines containing failures of 95.54.166.5 Mar 25 17:32:23 tux2 sshd[20348]: Invalid user admin from 95.54.166.5 port 38403 Mar 25 17:32:23 tux2 sshd[20348]: Failed password for invalid user admin from 95.54.166.5 port 38403 ssh2 Mar 25 17:32:23 tux2 sshd[20348]: Connection closed by invalid user admin 95.54.166.5 port 38403 [preauth] Mar 25 17:32:27 tux2 sshd[20360]: Invalid user admin from 95.54.166.5 port 38420 Mar 25 17:32:27 tux2 sshd[20360]: Failed password for invalid user admin from 95.54.166.5 port 38420 ssh2 Mar 25 17:32:28 tux2 sshd[20360]: Connection closed by invalid user admin 95.54.166.5 port 38420 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.54.166.5	2020-03-26 08:58:44
111.229.77.64	attack	2020-03-25T18:13:55.640241linuxbox-skyline sshd[29986]: Invalid user post1 from 111.229.77.64 port 51098 ...	2020-03-26 08:38:12
98.128.144.159	attack	Mar 25 20:49:45 emirates sshd[56806]: refused connect from 98.128.144.159 (98.128.144.159) Mar 25 22:23:27 emirates sshd[63670]: refused connect from 98.128.144.159 (98.128.144.159) Mar 25 22:25:09 emirates sshd[63779]: refused connect from 98.128.144.159 (98.128.144.159) Mar 25 22:26:48 emirates sshd[63865]: refused connect from 98.128.144.159 (98.128.144.159) Mar 25 22:28:28 emirates sshd[63971]: refused connect from 98.128.144.159 (98.128.144.159) Mar 25 22:30:08 emirates sshd[64091]: refused connect from 98.128.144.159 (98.128.144.159) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=98.128.144.159	2020-03-26 08:41:33
203.156.197.125	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-03-26 08:40:40
49.234.80.94	attackspambots	SSH Brute-Force Attack	2020-03-26 08:54:34
176.31.255.223	attack	2020-03-25T18:17:32.301178linuxbox-skyline sshd[30091]: Invalid user ireland from 176.31.255.223 port 44926 ...	2020-03-26 08:50:51
125.99.105.86	attackbots	2020-03-25T19:39:25.794021sorsha.thespaminator.com sshd[23575]: Invalid user noapte from 125.99.105.86 port 37182 2020-03-25T19:39:27.523542sorsha.thespaminator.com sshd[23575]: Failed password for invalid user noapte from 125.99.105.86 port 37182 ssh2 ...	2020-03-26 09:00:53

Recently Reported IPs

157.245.136.195	155.4.56.205	201.18.21.181	102.189.212.164
27.3.160.62	95.211.100.164	182.180.54.253	114.32.140.131
116.102.126.34	78.186.218.231	203.81.91.205	114.33.28.236
39.44.250.131	42.112.205.205	41.203.73.239	185.34.240.244
125.161.136.114	136.169.224.221	14.189.17.31	83.49.134.128