79.53.199.94 - IPInfo

Basic Info

City: Massa e Cozzile

Region: Tuscany

Country: Italy

Internet Service Provider: Telecom Italia S.p.A.

Hostname: unknown

Organization: Telecom Italia

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Honeypot attack, port: 23, PTR: host94-199-dynamic.53-79-r.retail.telecomitalia.it.	2019-06-29 00:25:07

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 79.53.199.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24188
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;79.53.199.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062800 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 29 00:24:56 CST 2019
;; MSG SIZE  rcvd: 116

Host info

94.199.53.79.in-addr.arpa domain name pointer host94-199-dynamic.53-79-r.retail.telecomitalia.it.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.199.53.79.in-addr.arpa	name = host94-199-dynamic.53-79-r.retail.telecomitalia.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.99.134.28	attackbots	failed_logins	2020-09-19 01:54:05
45.70.1.186	attackspam	Sep 17 18:43:04 mail.srvfarm.net postfix/smtps/smtpd[161658]: warning: unknown[45.70.1.186]: SASL PLAIN authentication failed: Sep 17 18:43:04 mail.srvfarm.net postfix/smtps/smtpd[161658]: lost connection after AUTH from unknown[45.70.1.186] Sep 17 18:49:43 mail.srvfarm.net postfix/smtps/smtpd[161183]: warning: unknown[45.70.1.186]: SASL PLAIN authentication failed: Sep 17 18:49:43 mail.srvfarm.net postfix/smtps/smtpd[161183]: lost connection after AUTH from unknown[45.70.1.186] Sep 17 18:52:08 mail.srvfarm.net postfix/smtps/smtpd[161661]: warning: unknown[45.70.1.186]: SASL PLAIN authentication failed:	2020-09-19 01:57:01
222.186.15.115	attackbots	Sep 18 16:57:11 marvibiene sshd[28796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Sep 18 16:57:13 marvibiene sshd[28796]: Failed password for root from 222.186.15.115 port 28212 ssh2 Sep 18 16:57:15 marvibiene sshd[28796]: Failed password for root from 222.186.15.115 port 28212 ssh2 Sep 18 16:57:11 marvibiene sshd[28796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Sep 18 16:57:13 marvibiene sshd[28796]: Failed password for root from 222.186.15.115 port 28212 ssh2 Sep 18 16:57:15 marvibiene sshd[28796]: Failed password for root from 222.186.15.115 port 28212 ssh2	2020-09-19 01:03:01
112.135.241.52	attack	Automatic report - Port Scan Attack	2020-09-19 01:43:33
122.51.34.215	attackspam	2020-09-18T21:34:03.120280paragon sshd[164738]: Invalid user delnaz from 122.51.34.215 port 34924 2020-09-18T21:34:05.096419paragon sshd[164738]: Failed password for invalid user delnaz from 122.51.34.215 port 34924 ssh2 2020-09-18T21:35:54.405823paragon sshd[164827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.34.215 user=root 2020-09-18T21:35:56.949712paragon sshd[164827]: Failed password for root from 122.51.34.215 port 55216 ssh2 2020-09-18T21:37:41.492114paragon sshd[164902]: Invalid user bot from 122.51.34.215 port 47272 ...	2020-09-19 01:41:44
195.8.192.212	attackspam	2020-09-18 00:33:29 server sshd[48341]: Failed password for invalid user wangqi from 195.8.192.212 port 57816 ssh2	2020-09-19 01:47:02
38.81.163.42	attackspambots	Bad bot requested remote resources	2020-09-19 01:05:09
189.244.107.101	attackbots	1600361826 - 09/17/2020 18:57:06 Host: 189.244.107.101/189.244.107.101 Port: 445 TCP Blocked	2020-09-19 01:37:59
104.131.97.47	attackbots	Sep 18 18:53:33 localhost sshd\[29475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.97.47 user=root Sep 18 18:53:35 localhost sshd\[29475\]: Failed password for root from 104.131.97.47 port 56646 ssh2 Sep 18 18:57:22 localhost sshd\[29696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.97.47 user=root Sep 18 18:57:24 localhost sshd\[29696\]: Failed password for root from 104.131.97.47 port 40240 ssh2 Sep 18 19:01:09 localhost sshd\[29955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.97.47 user=root ...	2020-09-19 01:41:20
148.203.151.248	attackbots	Sep 18 16:02:27 mail.srvfarm.net postfix/smtpd[819719]: NOQUEUE: reject: RCPT from mailrelay5.vw.com.mx[148.203.151.248]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 18 16:02:27 mail.srvfarm.net postfix/smtpd[806927]: NOQUEUE: reject: RCPT from mailrelay5.vw.com.mx[148.203.151.248]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 18 16:02:28 mail.srvfarm.net postfix/smtpd[819719]: NOQUEUE: reject: RCPT from mailrelay5.vw.com.mx[148.203.151.248]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 18 16:02:28 mail.srvfarm.net postfix/smtpd[806927]: NOQUEUE	2020-09-19 01:51:39
106.53.207.227	attackspambots	$f2bV_matches	2020-09-19 01:42:22
5.188.84.228	attackbots	8,28-01/02 [bc01/m14] PostRequest-Spammer scoring: lisboa	2020-09-19 01:44:05
175.145.102.240	attackspambots	Automatic report - Banned IP Access	2020-09-19 01:41:02
182.182.252.176	attack	Brute forcing email accounts	2020-09-19 01:39:49
88.199.41.154	attackspambots	Sep 18 04:10:56 mail.srvfarm.net postfix/smtps/smtpd[538692]: warning: unknown[88.199.41.154]: SASL PLAIN authentication failed: Sep 18 04:10:56 mail.srvfarm.net postfix/smtps/smtpd[538692]: lost connection after AUTH from unknown[88.199.41.154] Sep 18 04:11:41 mail.srvfarm.net postfix/smtpd[525584]: warning: unknown[88.199.41.154]: SASL PLAIN authentication failed: Sep 18 04:11:41 mail.srvfarm.net postfix/smtpd[525584]: lost connection after AUTH from unknown[88.199.41.154] Sep 18 04:14:59 mail.srvfarm.net postfix/smtps/smtpd[523777]: warning: unknown[88.199.41.154]: SASL PLAIN authentication failed:	2020-09-19 01:54:57

Recently Reported IPs

42.98.129.9	188.133.113.94	100.246.170.123	183.89.126.205
62.227.60.1	131.239.56.197	36.198.78.104	54.174.130.33
146.53.145.72	82.135.184.19	81.242.200.227	124.202.168.129
83.231.34.13	191.32.89.66	195.206.110.82	2001:44c8:45c1:5def:d8da:9ca4:b6dc:5bc7
198.98.61.249	47.122.229.88	116.209.190.95	134.209.81.60