69.204.105.5 - IPInfo

Basic Info

City: Buffalo

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.204.105.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32126
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;69.204.105.5.			IN	A

;; AUTHORITY SECTION:
.			256	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023040301 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 04 08:07:57 CST 2023
;; MSG SIZE  rcvd: 105

Host info

5.105.204.69.in-addr.arpa domain name pointer cpe-69-204-105-5.buffalo.res.rr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.105.204.69.in-addr.arpa	name = cpe-69-204-105-5.buffalo.res.rr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.120.135.116	attackspam	Fail2Ban Ban Triggered	2020-01-31 14:35:07
94.25.163.95	attack	Jan 31 03:08:50 firewall sshd[30153]: Invalid user ajavindu from 94.25.163.95 Jan 31 03:08:52 firewall sshd[30153]: Failed password for invalid user ajavindu from 94.25.163.95 port 56130 ssh2 Jan 31 03:14:21 firewall sshd[30304]: Invalid user jalendra from 94.25.163.95 ...	2020-01-31 14:46:47
49.255.20.158	attackspambots	Jan 31 07:22:48 OPSO sshd\[30567\]: Invalid user mitali from 49.255.20.158 port 1248 Jan 31 07:22:48 OPSO sshd\[30567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.255.20.158 Jan 31 07:22:50 OPSO sshd\[30567\]: Failed password for invalid user mitali from 49.255.20.158 port 1248 ssh2 Jan 31 07:26:31 OPSO sshd\[31462\]: Invalid user parikha@123 from 49.255.20.158 port 1629 Jan 31 07:26:31 OPSO sshd\[31462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.255.20.158	2020-01-31 14:59:58
5.255.253.25	attackspam	[Fri Jan 31 11:57:46.750305 2020] [:error] [pid 13720:tid 140469332326144] [client 5.255.253.25:61784] [client 5.255.253.25] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XjOzykdOJHo1WGB1aNpwvgAAAAQ"] ...	2020-01-31 14:28:59
122.51.30.101	attack	Jan 31 05:54:57 MainVPS sshd[21004]: Invalid user kaarikaa from 122.51.30.101 port 50620 Jan 31 05:54:57 MainVPS sshd[21004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.30.101 Jan 31 05:54:57 MainVPS sshd[21004]: Invalid user kaarikaa from 122.51.30.101 port 50620 Jan 31 05:54:59 MainVPS sshd[21004]: Failed password for invalid user kaarikaa from 122.51.30.101 port 50620 ssh2 Jan 31 05:57:52 MainVPS sshd[26636]: Invalid user abhimani from 122.51.30.101 port 46560 ...	2020-01-31 14:23:24
123.31.31.12	attack	Automatic report - Banned IP Access	2020-01-31 14:57:03
165.227.102.177	attack	Unauthorized connection attempt detected from IP address 165.227.102.177 to port 2220 [J]	2020-01-31 14:46:02
185.156.177.250	attackspam	RDP brute force attack detected by fail2ban	2020-01-31 14:22:55
110.77.154.166	attackspam	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:39:14
213.6.141.114	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-01-31 14:38:50
34.245.57.231	attackspambots	Detected & Blocked - Scanning for Citrix CVE-2019-19781	2020-01-31 14:40:57
14.207.41.233	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:26:04
106.75.87.152	attackspam	Unauthorized connection attempt detected from IP address 106.75.87.152 to port 2220 [J]	2020-01-31 14:39:33
35.229.251.233	attackbotsspam	Unauthorized connection attempt detected from IP address 35.229.251.233 to port 2220 [J]	2020-01-31 14:40:39
41.60.232.203	attackspambots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 14:28:06

Recently Reported IPs

252.159.162.46	102.66.89.86	49.19.133.139	124.56.180.239
113.24.225.234	185.213.134.201	93.55.176.16	187.138.176.43
58.152.4.68	72.17.182.150	108.108.133.136	26.26.198.117
32.152.169.184	78.98.243.95	227.11.61.203	95.148.252.3
118.113.33.145	173.128.153.45	130.173.114.245	239.82.47.119