145.102.6.127 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: University of Twente

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port scan on 1 port(s): 53	2019-08-08 15:36:54

Comments on same subnet:

IP	Type	Details	Datetime
145.102.6.73	attackspam	Port scan on 1 port(s): 53	2020-06-25 03:23:48
145.102.6.58	attackspam	Port scan on 1 port(s): 53	2020-06-25 03:15:42
145.102.6.49	attackbots	Port scan on 1 port(s): 53	2020-06-25 03:01:10
145.102.6.49	attack	Port scan on 1 port(s): 53	2020-05-16 22:39:45
145.102.6.86	attackspambots	Port scan on 1 port(s): 53	2020-05-16 22:39:01
145.102.6.46	attackbots	Port scan on 1 port(s): 53	2020-04-28 01:12:56
145.102.6.57	attack	Port scan on 1 port(s): 53	2020-04-28 01:12:42
145.102.6.58	attackbotsspam	Port scan on 1 port(s): 53	2020-04-28 01:10:27
145.102.6.49	attack	Port scan on 1 port(s): 53	2020-04-19 23:38:00
145.102.6.73	attackspam	Port scan on 1 port(s): 53	2020-04-19 23:37:49
145.102.6.57	attackbotsspam	Port scan on 1 port(s): 53	2020-04-11 03:33:54
145.102.6.86	attack	Port scan on 1 port(s): 53	2020-04-11 03:33:36
145.102.6.46	attackspambots	Port scan on 1 port(s): 53	2020-04-11 03:25:51
145.102.6.73	attackspam	Port scan detected on *	2020-03-21 05:29:57
145.102.6.55	attackbots	Port scan on 1 port(s): 53	2020-03-19 21:23:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.102.6.127
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4632
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.102.6.127.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 15:36:48 CST 2019
;; MSG SIZE  rcvd: 117

Host info

127.6.102.145.in-addr.arpa domain name pointer please.visit.www.openintel.nl.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
127.6.102.145.in-addr.arpa	name = please.visit.www.openintel.nl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.82.68.254	attackspambots	Jul 25 12:29:01 MK-Soft-VM4 sshd\[509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.82.68.254 user=root Jul 25 12:29:03 MK-Soft-VM4 sshd\[509\]: Failed password for root from 119.82.68.254 port 58760 ssh2 Jul 25 12:37:41 MK-Soft-VM4 sshd\[5829\]: Invalid user hadoop from 119.82.68.254 port 53935 ...	2019-07-25 23:43:41
130.61.121.78	attackspambots	Jul 25 14:46:17 mail sshd\[19007\]: Failed password for invalid user applmgr from 130.61.121.78 port 40986 ssh2 Jul 25 15:03:44 mail sshd\[19376\]: Invalid user ginger from 130.61.121.78 port 59908 Jul 25 15:03:44 mail sshd\[19376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.121.78 ...	2019-07-26 00:02:33
37.139.2.218	attackspam	Jul 25 16:53:37 mail sshd\[21760\]: Failed password for invalid user csgoserver from 37.139.2.218 port 50290 ssh2 Jul 25 17:09:44 mail sshd\[22094\]: Invalid user coin from 37.139.2.218 port 32874 Jul 25 17:09:44 mail sshd\[22094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.2.218 ...	2019-07-26 00:21:16
54.38.78.122	attackspambots	Jul 25 09:46:47 aat-srv002 sshd[22164]: Failed password for root from 54.38.78.122 port 54636 ssh2 Jul 25 09:54:03 aat-srv002 sshd[22455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.78.122 Jul 25 09:54:06 aat-srv002 sshd[22455]: Failed password for invalid user guillaume from 54.38.78.122 port 50788 ssh2 ...	2019-07-25 23:14:39
3.130.45.196	attackbotsspam	3.130.45.196 - - [25/Jul/2019:14:37:07 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.130.45.196 - - [25/Jul/2019:14:37:07 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.130.45.196 - - [25/Jul/2019:14:37:08 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.130.45.196 - - [25/Jul/2019:14:37:09 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.130.45.196 - - [25/Jul/2019:14:37:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.130.45.196 - - [25/Jul/2019:14:37:10 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-26 00:08:08
115.84.121.80	attackspambots	Jul 25 23:01:15 webhost01 sshd[3457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.84.121.80 Jul 25 23:01:17 webhost01 sshd[3457]: Failed password for invalid user halt from 115.84.121.80 port 56000 ssh2 ...	2019-07-26 00:17:07
91.121.132.116	attackbotsspam	Jul 25 16:47:37 v22019058497090703 sshd[18987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.132.116 Jul 25 16:47:38 v22019058497090703 sshd[18987]: Failed password for invalid user helene from 91.121.132.116 port 53518 ssh2 Jul 25 16:51:58 v22019058497090703 sshd[19249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.132.116 ...	2019-07-25 23:11:19
51.158.96.14	attack	st-nyc1-01 recorded 3 login violations from 51.158.96.14 and was blocked at 2019-07-25 13:41:03. 51.158.96.14 has been blocked on 13 previous occasions. 51.158.96.14's first attempt was recorded at 2019-07-25 10:05:05	2019-07-25 22:42:12
217.112.128.180	attack	Sent Mail to address hacked/leaked/bought from crystalproductions.cz between 2011 and 2018	2019-07-25 22:45:45
192.169.190.180	attackspam	A user with IP addr 192.169.190.180 has been locked out from signing in or using the password recovery form for the following reason: Exceeded the maximum number of login failures which is: 2. The last username they tried to sign in with was: 'zzz'. User IP: 192.169.190.180 User hostname: ip-192-169-190-180.ip.secureserver.net User location: Scottsdale, United States	2019-07-25 23:40:51
51.52.66.49	attackbotsspam	Jul 25 14:38:54 mail sshd\[19158\]: Invalid user master from 51.52.66.49 Jul 25 14:38:54 mail sshd\[19158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.52.66.49 Jul 25 14:38:55 mail sshd\[19158\]: Failed password for invalid user master from 51.52.66.49 port 64679 ssh2 ...	2019-07-25 22:41:44
138.68.182.179	attackspambots	Jul 25 15:55:57 ip-172-31-1-72 sshd\[14518\]: Invalid user xe from 138.68.182.179 Jul 25 15:55:57 ip-172-31-1-72 sshd\[14518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.182.179 Jul 25 15:55:59 ip-172-31-1-72 sshd\[14518\]: Failed password for invalid user xe from 138.68.182.179 port 43218 ssh2 Jul 25 16:00:29 ip-172-31-1-72 sshd\[14631\]: Invalid user pork from 138.68.182.179 Jul 25 16:00:29 ip-172-31-1-72 sshd\[14631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.182.179	2019-07-26 00:28:53
216.244.66.201	attackspambots	20 attempts against mh-misbehave-ban on air.magehost.pro	2019-07-25 23:09:56
39.104.67.3	attack	2019-07-25T15:26:19.285239cavecanem sshd[9291]: Invalid user raghu from 39.104.67.3 port 18136 2019-07-25T15:26:19.289142cavecanem sshd[9291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.104.67.3 2019-07-25T15:26:19.285239cavecanem sshd[9291]: Invalid user raghu from 39.104.67.3 port 18136 2019-07-25T15:26:21.093717cavecanem sshd[9291]: Failed password for invalid user raghu from 39.104.67.3 port 18136 ssh2 2019-07-25T15:27:05.733264cavecanem sshd[9535]: Invalid user fcweb from 39.104.67.3 port 20706 2019-07-25T15:27:05.735709cavecanem sshd[9535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.104.67.3 2019-07-25T15:27:05.733264cavecanem sshd[9535]: Invalid user fcweb from 39.104.67.3 port 20706 2019-07-25T15:27:07.856222cavecanem sshd[9535]: Failed password for invalid user fcweb from 39.104.67.3 port 20706 ssh2 2019-07-25T15:27:56.935718cavecanem sshd[9713]: Invalid user pradeep from 39.104.67. ...	2019-07-26 00:21:46
200.209.174.76	attackspam	Jul 25 18:01:20 meumeu sshd[12618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 Jul 25 18:01:23 meumeu sshd[12618]: Failed password for invalid user michela from 200.209.174.76 port 43259 ssh2 Jul 25 18:05:50 meumeu sshd[15473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 ...	2019-07-26 00:08:53

Recently Reported IPs

185.49.64.6	59.175.15.245	49.74.15.246	36.72.217.127
5.12.197.56	217.67.2.105	123.19.56.15	117.93.16.30
113.173.186.64	37.214.40.200	81.19.8.110	218.61.70.124
156.218.183.188	184.82.147.125	180.122.65.48	113.87.136.81
117.18.190.231	14.182.220.126	94.23.41.149	37.6.217.1