5.89.55.144 - IPInfo

Basic Info

City: Vicchio

Region: Tuscany

Country: Italy

Internet Service Provider: Vodafone Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Invalid user sa from 5.89.55.144 port 58973	2020-02-14 10:12:45
attackspambots	Invalid user frank from 5.89.55.144 port 46774	2020-01-25 07:35:15
attack	Unauthorized connection attempt detected from IP address 5.89.55.144 to port 2220 [J]	2020-01-19 02:11:01
attackbots	Unauthorized connection attempt detected from IP address 5.89.55.144 to port 2220 [J]	2020-01-18 04:49:26
attackbotsspam	Unauthorized connection attempt detected from IP address 5.89.55.144 to port 2220 [J]	2020-01-17 03:32:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.89.55.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38286
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.89.55.144.			IN	A

;; AUTHORITY SECTION:
.			173	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011601 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 03:32:03 CST 2020
;; MSG SIZE  rcvd: 115

Host info

144.55.89.5.in-addr.arpa domain name pointer net-5-89-55-144.cust.vodafonedsl.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
144.55.89.5.in-addr.arpa	name = net-5-89-55-144.cust.vodafonedsl.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.30.56.243	attack	1587988300 - 04/27/2020 13:51:40 Host: 95.30.56.243/95.30.56.243 Port: 445 TCP Blocked	2020-04-28 01:54:09
173.89.163.88	attack	SSH bruteforce	2020-04-28 01:55:27
85.159.35.138	attackspam	(imapd) Failed IMAP login from 85.159.35.138 (RU/Russia/-): 1 in the last 3600 secs	2020-04-28 02:13:56
117.50.41.136	attack	DATE:2020-04-27 15:52:29, IP:117.50.41.136, PORT:ssh SSH brute force auth (docker-dc)	2020-04-28 02:16:45
196.207.254.250	attackspam	Apr 27 16:46:30 124388 sshd[22561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.207.254.250 Apr 27 16:46:30 124388 sshd[22561]: Invalid user oracle from 196.207.254.250 port 49819 Apr 27 16:46:32 124388 sshd[22561]: Failed password for invalid user oracle from 196.207.254.250 port 49819 ssh2 Apr 27 16:46:34 124388 sshd[22563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.207.254.250 user=root Apr 27 16:46:35 124388 sshd[22563]: Failed password for root from 196.207.254.250 port 50062 ssh2	2020-04-28 01:40:21
189.180.216.31	attack	Unauthorized connection attempt detected from IP address 189.180.216.31 to port 8080	2020-04-28 01:43:36
106.13.178.153	attackbotsspam	Apr 27 13:43:05 h2779839 sshd[5815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.178.153 user=root Apr 27 13:43:06 h2779839 sshd[5815]: Failed password for root from 106.13.178.153 port 37936 ssh2 Apr 27 13:47:14 h2779839 sshd[5837]: Invalid user zabbix from 106.13.178.153 port 60238 Apr 27 13:47:14 h2779839 sshd[5837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.178.153 Apr 27 13:47:14 h2779839 sshd[5837]: Invalid user zabbix from 106.13.178.153 port 60238 Apr 27 13:47:17 h2779839 sshd[5837]: Failed password for invalid user zabbix from 106.13.178.153 port 60238 ssh2 Apr 27 13:51:06 h2779839 sshd[5870]: Invalid user ucl from 106.13.178.153 port 54288 Apr 27 13:51:06 h2779839 sshd[5870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.178.153 Apr 27 13:51:06 h2779839 sshd[5870]: Invalid user ucl from 106.13.178.153 port 54288 Apr 27 13:51 ...	2020-04-28 02:17:30
106.54.114.208	attack	Apr 27 18:11:33 ovpn sshd\[9965\]: Invalid user temp1 from 106.54.114.208 Apr 27 18:11:33 ovpn sshd\[9965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.114.208 Apr 27 18:11:35 ovpn sshd\[9965\]: Failed password for invalid user temp1 from 106.54.114.208 port 36182 ssh2 Apr 27 18:23:45 ovpn sshd\[13042\]: Invalid user saint from 106.54.114.208 Apr 27 18:23:45 ovpn sshd\[13042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.114.208	2020-04-28 01:53:46
212.117.95.47	attackspambots	Port scan: Attack repeated for 24 hours	2020-04-28 02:10:49
42.200.244.178	attack	2020-04-27T16:01:14.871608abusebot-8.cloudsearch.cf sshd[30123]: Invalid user iac from 42.200.244.178 port 33786 2020-04-27T16:01:14.883242abusebot-8.cloudsearch.cf sshd[30123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-244-178.static.imsbiz.com 2020-04-27T16:01:14.871608abusebot-8.cloudsearch.cf sshd[30123]: Invalid user iac from 42.200.244.178 port 33786 2020-04-27T16:01:16.677425abusebot-8.cloudsearch.cf sshd[30123]: Failed password for invalid user iac from 42.200.244.178 port 33786 ssh2 2020-04-27T16:05:05.505228abusebot-8.cloudsearch.cf sshd[30359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-244-178.static.imsbiz.com user=root 2020-04-27T16:05:08.013153abusebot-8.cloudsearch.cf sshd[30359]: Failed password for root from 42.200.244.178 port 60647 ssh2 2020-04-27T16:08:51.141976abusebot-8.cloudsearch.cf sshd[30546]: Invalid user yin from 42.200.244.178 port 59276 ...	2020-04-28 02:07:17
80.211.13.167	attackbots	Apr 27 16:54:41 icinga sshd[48647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.13.167 Apr 27 16:54:43 icinga sshd[48647]: Failed password for invalid user eye from 80.211.13.167 port 33816 ssh2 Apr 27 17:00:46 icinga sshd[59503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.13.167 ...	2020-04-28 01:44:08
198.143.158.84	attackbots	" "	2020-04-28 01:58:37
193.252.189.177	attackbots	Apr 27 15:23:58 srv01 sshd[7960]: Invalid user test04 from 193.252.189.177 port 50306 Apr 27 15:23:58 srv01 sshd[7960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.252.189.177 Apr 27 15:23:58 srv01 sshd[7960]: Invalid user test04 from 193.252.189.177 port 50306 Apr 27 15:24:01 srv01 sshd[7960]: Failed password for invalid user test04 from 193.252.189.177 port 50306 ssh2 Apr 27 15:28:08 srv01 sshd[8107]: Invalid user god from 193.252.189.177 port 33904 ...	2020-04-28 01:54:27
142.93.222.215	attack	Apr 27 14:01:54 ns382633 sshd\[7540\]: Invalid user br from 142.93.222.215 port 45138 Apr 27 14:01:54 ns382633 sshd\[7540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.222.215 Apr 27 14:01:56 ns382633 sshd\[7540\]: Failed password for invalid user br from 142.93.222.215 port 45138 ssh2 Apr 27 14:13:21 ns382633 sshd\[9897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.222.215 user=root Apr 27 14:13:23 ns382633 sshd\[9897\]: Failed password for root from 142.93.222.215 port 35452 ssh2	2020-04-28 01:45:59
114.67.95.121	attack	Brute-force attempt banned	2020-04-28 01:34:22

Recently Reported IPs

158.154.160.255	209.182.218.137	171.79.22.212	208.48.167.217
217.136.3.108	107.72.222.123	40.84.54.55	206.189.158.96
225.188.185.86	216.4.28.213	152.7.152.146	126.30.107.51
149.125.56.1	181.210.211.105	14.117.253.129	180.183.126.30
180.168.95.234	177.19.90.196	80.77.123.226	81.62.198.13