5.63.119.48 - IPInfo

Basic Info

City: Nur-Sultan

Region: Nur-Sultan

Country: Kazakhstan

Internet Service Provider: Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
5.63.119.66	attackbotsspam	1597351322 - 08/13/2020 22:42:02 Host: 5.63.119.66/5.63.119.66 Port: 445 TCP Blocked	2020-08-14 08:52:00
5.63.119.107	attack	1580619515 - 02/02/2020 05:58:35 Host: 5.63.119.107/5.63.119.107 Port: 445 TCP Blocked	2020-02-02 13:12:13
5.63.119.154	attackspambots	Jan 1 05:58:55 MK-Soft-VM7 sshd[9173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.63.119.154 Jan 1 05:58:57 MK-Soft-VM7 sshd[9173]: Failed password for invalid user chris from 5.63.119.154 port 50290 ssh2 ...	2020-01-01 13:01:47
5.63.119.154	attackspambots	Dec 25 05:30:01 *** sshd[4329]: Invalid user hollenbach from 5.63.119.154	2019-12-25 14:14:30
5.63.119.49	attackspam	Unauthorized connection attempt detected from IP address 5.63.119.49 to port 445	2019-12-19 08:19:37
5.63.119.107	attackspam	Unauthorized connection attempt from IP address 5.63.119.107 on Port 445(SMB)	2019-10-31 03:14:15
5.63.119.49	attackspam	445/tcp [2019-07-19]1pkt	2019-07-20 04:03:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.63.119.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61588
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.63.119.48.			IN	A

;; AUTHORITY SECTION:
.			309	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063000 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 30 15:15:44 CST 2022
;; MSG SIZE  rcvd: 104

Host info

48.119.63.5.in-addr.arpa domain name pointer 5.63.119.48.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.119.63.5.in-addr.arpa	name = 5.63.119.48.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
109.57.86.21	attack	Jan 12 21:18:17 xxx sshd[29363]: Invalid user testing from 109.57.86.21 Jan 12 21:18:19 xxx sshd[29363]: Failed password for invalid user testing from 109.57.86.21 port 35318 ssh2 Jan 12 22:06:26 xxx sshd[32327]: Invalid user wp from 109.57.86.21 Jan 12 22:06:29 xxx sshd[32327]: Failed password for invalid user wp from 109.57.86.21 port 52430 ssh2 Jan 12 22:18:24 xxx sshd[742]: Invalid user redmine from 109.57.86.21 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.57.86.21	2020-01-13 09:31:56
129.154.67.65	attackbotsspam	Unauthorized connection attempt detected from IP address 129.154.67.65 to port 2220 [J]	2020-01-13 09:13:27
212.79.122.1	attackspam	Unauthorized connection attempt detected from IP address 212.79.122.1 to port 2220 [J]	2020-01-13 09:22:02
221.140.151.235	attackspam	2020-01-12 21:54:14,729 fail2ban.actions [2870]: NOTICE [sshd] Ban 221.140.151.235 2020-01-12 22:29:01,334 fail2ban.actions [2870]: NOTICE [sshd] Ban 221.140.151.235 2020-01-12 23:04:45,273 fail2ban.actions [2870]: NOTICE [sshd] Ban 221.140.151.235 2020-01-12 23:40:43,027 fail2ban.actions [2870]: NOTICE [sshd] Ban 221.140.151.235 2020-01-13 00:14:03,367 fail2ban.actions [2870]: NOTICE [sshd] Ban 221.140.151.235 ...	2020-01-13 09:29:22
186.122.148.216	attackbots	Jan 13 00:18:16 server sshd\[10475\]: Invalid user ashok from 186.122.148.216 Jan 13 00:18:16 server sshd\[10475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.216 Jan 13 00:18:18 server sshd\[10475\]: Failed password for invalid user ashok from 186.122.148.216 port 59108 ssh2 Jan 13 00:32:33 server sshd\[14082\]: Invalid user tian from 186.122.148.216 Jan 13 00:32:33 server sshd\[14082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.216 ...	2020-01-13 09:07:09
60.8.216.98	attack	Unauthorized connection attempt detected from IP address 60.8.216.98 to port 1433 [J]	2020-01-13 09:25:38
52.81.22.185	attackbotsspam	Jan 13 01:20:38 server6 sshd[12474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-81-22-185.cn-north-1.compute.amazonaws.com.cn Jan 13 01:20:40 server6 sshd[12474]: Failed password for invalid user fernanda from 52.81.22.185 port 34722 ssh2 Jan 13 01:20:40 server6 sshd[12474]: Received disconnect from 52.81.22.185: 11: Bye Bye [preauth] Jan 13 01:31:45 server6 sshd[29039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-81-22-185.cn-north-1.compute.amazonaws.com.cn Jan 13 01:31:47 server6 sshd[29039]: Failed password for invalid user aa from 52.81.22.185 port 46296 ssh2 Jan 13 01:31:47 server6 sshd[29039]: Received disconnect from 52.81.22.185: 11: Bye Bye [preauth] Jan 13 01:35:03 server6 sshd[32201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-81-22-185.cn-north-1.compute.amazonaws.com.cn Jan 13 01:35:06 server6 sshd[32201........ -------------------------------	2020-01-13 09:32:34
89.248.168.63	attackbotsspam	Fail2Ban Ban Triggered	2020-01-13 13:05:46
190.64.213.155	attackspambots	2020-01-13T04:54:37.468728shield sshd\[30533\]: Invalid user team2 from 190.64.213.155 port 51914 2020-01-13T04:54:37.472122shield sshd\[30533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-213-155.su-static.adinet.com.uy 2020-01-13T04:54:39.448000shield sshd\[30533\]: Failed password for invalid user team2 from 190.64.213.155 port 51914 ssh2 2020-01-13T04:56:14.397489shield sshd\[30573\]: Invalid user jboss from 190.64.213.155 port 35650 2020-01-13T04:56:14.402349shield sshd\[30573\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-213-155.su-static.adinet.com.uy	2020-01-13 13:02:47
13.235.63.208	attackspambots	$f2bV_matches	2020-01-13 13:07:08
94.191.90.85	attackspam	Unauthorized connection attempt detected from IP address 94.191.90.85 to port 2220 [J]	2020-01-13 13:04:52
159.203.11.53	attackbots	Jan 13 01:59:03 vps58358 sshd\[30079\]: Invalid user libsys from 159.203.11.53Jan 13 01:59:05 vps58358 sshd\[30079\]: Failed password for invalid user libsys from 159.203.11.53 port 43788 ssh2Jan 13 02:02:28 vps58358 sshd\[30112\]: Invalid user oozie from 159.203.11.53Jan 13 02:02:30 vps58358 sshd\[30112\]: Failed password for invalid user oozie from 159.203.11.53 port 47424 ssh2Jan 13 02:05:49 vps58358 sshd\[30325\]: Invalid user sandy from 159.203.11.53Jan 13 02:05:51 vps58358 sshd\[30325\]: Failed password for invalid user sandy from 159.203.11.53 port 51130 ssh2 ...	2020-01-13 09:18:24
185.112.37.28	attackbots	Jan 13 08:09:12 our-server-hostname postfix/smtpd[1814]: connect from unknown[185.112.37.28] Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x Jan x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.112.37.28	2020-01-13 09:05:35
170.83.146.82	attackbots	Automatic report - Port Scan Attack	2020-01-13 09:31:11
111.20.56.246	attack	Unauthorized connection attempt detected from IP address 111.20.56.246 to port 2220 [J]	2020-01-13 09:32:17

Recently Reported IPs

94.102.59.91	80.82.70.67	137.226.241.239	108.178.57.198
190.93.237.112	138.128.114.213	152.200.154.60	180.76.93.165
47.152.195.128	241.38.8.57	94.102.61.220	137.226.175.138
92.148.94.216	137.226.25.186	87.71.61.10	137.226.31.229
47.200.125.172	38.44.69.160	137.226.17.218	137.226.41.202