142.4.5.113 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.4.5.35	attackbots	Automatic report - Banned IP Access	2020-07-11 15:47:16
142.4.5.46	normal	Judi Online Terpercaya , Agen Agen Sbobet, sbobet Casino , Sbobet sPoker Online Terpercaya Uang Asli ,rekanpoker adalah situs Idn Poker situs judi slot terpercaya di indonesia, agen IONTOGEL Togel Singapura Togel Hongkong Togel Online dan agen Togel iontogelyang terpernting adalah ion togel pasti membayar Situs agen judi bandar poker dominoqqpoker onlineSitus agen judi bandar poker dominoqq generasipoker idn poker Situs agen judi generasipoker judi bandar poker dominoqq poker poker dominoqq, bandar99, bandarqq pkv game poker online. poker o	2020-07-01 03:29:58
142.4.5.46	normal	http://142.4.5.46/ Permainan judi poker domino bandarq sangat di minati oleh banyak penggemar judi online yang ada di indonesia.Oleh sebab hal yang terjadi saat ini banyak bermunculan situs baru yang menawArkan permainan BANDAR Q online, dan sudah tentu Anda akan di bikin bingung harus memilih situs judi BANDAR online yang mana, karna semua agen judi BANDAR Q online pasti memberikan stagman yang posistif utuk bisa menjaring anggota sebanyak mungkin,seperti halnya situs judi BANDAR Q yang kali ini akan saya bahas yaitu situs judi bandarq https://www.sbobetmu.co/ http://47.74.189.96/ http://192.232.197.110/~harapanqqpoker/ http://18.182.188.221/Togel.aspx http://18.182.188.221/Slot.aspx http://142.4.5.46/ http://134.209.98.74/ http://188.114.244.157/ http://185.198.9.68	2020-07-01 03:27:25
142.4.5.46	normal	http://142.4.5.46/ Permainan judi poker domino bandarq sangat di minati oleh banyak penggemar judi online yang ada di indonesia.Oleh sebab hal yang terjadi saat ini banyak bermunculan situs baru yang menawArkan permainan BANDAR Q online, dan sudah tentu Anda akan di bikin bingung harus memilih situs judi BANDAR online yang mana, karna semua agen judi BANDAR Q online pasti memberikan stagman yang posistif utuk bisa menjaring anggota sebanyak mungkin,seperti halnya situs judi BANDAR Q yang kali ini akan saya bahas yaitu situs judi bandarq https://www.sbobetmu.co/ http://47.74.189.96/ http://192.232.197.110/~harapanqqpoker/ http://18.182.188.221/Togel.aspx http://18.182.188.221/Slot.aspx http://142.4.5.46/ http://134.209.98.74/ http://188.114.244.157/ http://185.198.9.68	2020-07-01 03:27:16
142.4.5.35	attackspambots	firewall-block, port(s): 2575/tcp	2020-04-22 18:16:44
142.4.5.35	attack	firewall-block, port(s): 12992/tcp	2020-04-22 04:50:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.4.5.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36631
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.4.5.113.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:04:34 CST 2022
;; MSG SIZE  rcvd: 104

Host info

113.5.4.142.in-addr.arpa domain name pointer server.vidyarthiplus.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
113.5.4.142.in-addr.arpa	name = server.vidyarthiplus.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
173.252.87.15	attackspam	[Sat Mar 21 10:49:17.238090 2020] [:error] [pid 8548:tid 140035788281600] [client 173.252.87.15:35560] [client 173.252.87.15] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/favicon-32-32.png"] [unique_id "XnWOvZ9F5-B@XHMcU2k@YQAAAAE"] ...	2020-03-21 17:27:58
89.40.117.123	attack	(sshd) Failed SSH login from 89.40.117.123 (DE/Germany/host123-117-40-89.static.arubacloud.de): 5 in the last 3600 secs	2020-03-21 17:21:53
173.252.87.14	attackspambots	[Sat Mar 21 10:49:31.919745 2020] [:error] [pid 8914:tid 140035796674304] [client 173.252.87.14:49646] [client 173.252.87.14] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/android-icon-192-192.png"] [unique_id "XnWOyyAfYwaTdgUVK3vcWAAAAAE"] ...	2020-03-21 17:14:30
222.186.175.216	attackbotsspam	Mar 20 23:22:31 web9 sshd\[22103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Mar 20 23:22:33 web9 sshd\[22103\]: Failed password for root from 222.186.175.216 port 45126 ssh2 Mar 20 23:22:37 web9 sshd\[22103\]: Failed password for root from 222.186.175.216 port 45126 ssh2 Mar 20 23:22:41 web9 sshd\[22103\]: Failed password for root from 222.186.175.216 port 45126 ssh2 Mar 20 23:22:44 web9 sshd\[22103\]: Failed password for root from 222.186.175.216 port 45126 ssh2	2020-03-21 17:34:04
173.252.87.12	attack	[Sat Mar 21 10:49:26.301951 2020] [:error] [pid 8243:tid 140035779888896] [client 173.252.87.12:38676] [client 173.252.87.12] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/comlink-worker-v1.js"] [unique_id "XnWOxk9P8QlH7eYVVSo6-gAAAAE"], referer: https://karangploso.jatim.bmkg.go.id/ ...	2020-03-21 17:16:49
103.78.215.150	attackspam	Mar 21 05:00:03 OPSO sshd\[3312\]: Invalid user wangxm from 103.78.215.150 port 53510 Mar 21 05:00:03 OPSO sshd\[3312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.78.215.150 Mar 21 05:00:05 OPSO sshd\[3312\]: Failed password for invalid user wangxm from 103.78.215.150 port 53510 ssh2 Mar 21 05:05:11 OPSO sshd\[4724\]: Invalid user vagrant from 103.78.215.150 port 38080 Mar 21 05:05:11 OPSO sshd\[4724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.78.215.150	2020-03-21 16:59:52
173.252.87.10	attackspambots	[Sat Mar 21 10:49:15.386051 2020] [:error] [pid 8223:tid 140035796674304] [client 173.252.87.10:39318] [client 173.252.87.10] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/banners/banner-v3.webp"] [unique_id "XnWOuzjiiwLa2pbs7a3BUgAAAAE"] ...	2020-03-21 17:32:29
168.121.136.84	attackspam	Automatic report - Port Scan Attack	2020-03-21 17:03:41
140.143.238.108	attack	Mar 21 06:38:31 hosting180 sshd[25995]: Invalid user sa from 140.143.238.108 port 44836 ...	2020-03-21 16:50:08
115.159.46.47	attackbotsspam	Invalid user wildfly from 115.159.46.47 port 35153	2020-03-21 17:30:04
185.173.35.17	attackspam	Mar 21 04:49:14 debian-2gb-nbg1-2 kernel: \[7021654.016895\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.173.35.17 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=39518 PROTO=TCP SPT=64890 DPT=593 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-21 17:31:58
109.167.200.10	attack	Invalid user trainees from 109.167.200.10 port 54632	2020-03-21 17:30:34
165.22.216.185	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-03-21 17:11:05
132.232.59.247	attackspam	Invalid user artif from 132.232.59.247 port 55952	2020-03-21 17:26:43
83.250.26.148	attackspam	Honeypot attack, port: 5555, PTR: c83-250-26-148.bredband.comhem.se.	2020-03-21 17:38:42

Recently Reported IPs

142.4.4.52	142.4.33.37	142.4.5.233	142.4.41.138
142.4.5.50	142.4.5.55	142.4.6.11	142.4.7.189
142.4.7.99	142.4.9.56	142.4.5.70	142.4.7.76
142.4.6.207	213.255.18.241	142.4.6.237	142.4.97.33
142.4.9.131	142.44.128.236	142.44.131.5	142.44.129.236