192.145.142.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.145.142.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57314
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;192.145.142.2.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 16:16:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

2.142.145.192.in-addr.arpa domain name pointer 192-145-142-2.as328596.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.142.145.192.in-addr.arpa	name = 192-145-142-2.as328596.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.176.27.166	attack	11/27/2019-08:38:39.439404 185.176.27.166 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-27 16:03:48
1.203.115.141	attackbots	Nov 26 20:23:04 hanapaa sshd\[6712\]: Invalid user delgersaikhan from 1.203.115.141 Nov 26 20:23:04 hanapaa sshd\[6712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.141 Nov 26 20:23:05 hanapaa sshd\[6712\]: Failed password for invalid user delgersaikhan from 1.203.115.141 port 35518 ssh2 Nov 26 20:30:31 hanapaa sshd\[7314\]: Invalid user sacrament from 1.203.115.141 Nov 26 20:30:31 hanapaa sshd\[7314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.141	2019-11-27 15:59:26
185.185.40.9	attack	185.185.40.9 - - [27/Nov/2019:07:30:21 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.185.40.9 - - [27/Nov/2019:07:30:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.185.40.9 - - [27/Nov/2019:07:30:21 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.185.40.9 - - [27/Nov/2019:07:30:22 +0100] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.185.40.9 - - [27/Nov/2019:07:30:22 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.185.40.9 - - [27/Nov/2019:07:30:22 +0100] "POST /wp-login.php HTTP/1.1" 200 1626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-27 16:03:16
130.162.64.72	attack	$f2bV_matches	2019-11-27 16:08:14
103.26.43.202	attackspambots	Nov 26 20:59:26 sachi sshd\[6391\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.43.202 user=root Nov 26 20:59:28 sachi sshd\[6391\]: Failed password for root from 103.26.43.202 port 60538 ssh2 Nov 26 21:03:33 sachi sshd\[6723\]: Invalid user server from 103.26.43.202 Nov 26 21:03:33 sachi sshd\[6723\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.43.202 Nov 26 21:03:34 sachi sshd\[6723\]: Failed password for invalid user server from 103.26.43.202 port 49907 ssh2	2019-11-27 16:30:51
80.228.4.194	attackbots	Nov 27 13:20:34 gw1 sshd[15108]: Failed password for root from 80.228.4.194 port 9410 ssh2 ...	2019-11-27 16:33:43
129.211.76.101	attackbotsspam	$f2bV_matches_ltvn	2019-11-27 16:27:37
36.255.27.192	attackbots	Email spam botnet	2019-11-27 16:20:21
49.88.112.58	attackspam	$f2bV_matches	2019-11-27 16:35:18
114.69.232.234	attack	trying to hack my yahoo e-mail	2019-11-27 16:13:14
5.172.218.82	attackbotsspam	[WedNov2707:29:55.0876402019][:error][pid1029:tid47011388753664][client5.172.218.82:50038][client5.172.218.82]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"cser.ch"][uri"/3.sql"][unique_id"Xd4X4wTwcDLXoZj2WO0kSgAAAIw"][WedNov2707:29:55.8598932019][:error][pid773:tid47011388753664][client5.172.218.82:50127][client5.172.218.82]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"	2019-11-27 16:24:22
218.92.0.139	attack	Nov 27 02:59:14 TORMINT sshd\[31582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.139 user=root Nov 27 02:59:17 TORMINT sshd\[31582\]: Failed password for root from 218.92.0.139 port 40828 ssh2 Nov 27 02:59:20 TORMINT sshd\[31582\]: Failed password for root from 218.92.0.139 port 40828 ssh2 ...	2019-11-27 16:01:34
122.51.108.144	attackbots	Nov 27 06:13:55 pi01 sshd[6240]: Connection from 122.51.108.144 port 61755 on 192.168.1.10 port 22 Nov 27 06:13:57 pi01 sshd[6240]: Invalid user from 122.51.108.144 port 61755 Nov 27 06:13:57 pi01 sshd[6240]: Failed none for invalid user from 122.51.108.144 port 61755 ssh2 Nov 27 06:13:59 pi01 sshd[6245]: Connection from 122.51.108.144 port 61907 on 192.168.1.10 port 22 Nov 27 06:14:00 pi01 sshd[6245]: User r.r from 122.51.108.144 not allowed because not listed in AllowUsers Nov 27 06:14:00 pi01 sshd[6245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.108.144 user=r.r Nov 27 06:14:02 pi01 sshd[6245]: Failed password for invalid user r.r from 122.51.108.144 port 61907 ssh2 Nov 27 06:14:02 pi01 sshd[6245]: Connection closed by 122.51.108.144 port 61907 [preauth] Nov 27 06:14:03 pi01 sshd[6251]: Connection from 122.51.108.144 port 62228 on 192.168.1.10 port 22 Nov 27 06:14:04 pi01 sshd[6251]: User r.r from 122.51.108.144........ -------------------------------	2019-11-27 16:29:29
5.188.84.35	attackbotsspam	2019-11-27 06:30:49 UTC \| HarekPaugs \| anatoliy.khalaimov@m \| http://explorempls.com/explore-more/buy-imitrex-25-mg-fast-delivery/ \| 5.188.84.35 \| Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36 OPR/54.0.2952.64 (Edition Yx) \| Anecdotal reports of increase in liability following treatment with pseudoephedrine or other over-the-counter chilling preparations may be partially explained by this mechanism, however, no dosing recommendations are readily obtainable. It means distinguishing unequivocally between fetching up these issues in a factious and in a medical fashion. This switch was symbolised before the reversal in the BMA business in its 1993 turn up on вЂcomplementary medicineвЂ™ women's heal \|	2019-11-27 16:19:38
177.105.193.93	attack	SS1,DEF GET /admin/build/modules	2019-11-27 16:05:09

Recently Reported IPs

192.144.67.229	192.145.168.45	192.154.224.108	192.155.90.114
192.15.229.124	192.162.0.128	192.162.167.142	192.154.249.42
192.164.132.11	192.145.142.252	192.164.50.164	192.163.198.87
192.162.134.23	192.168.0.32	192.168.0.5	192.168.0.33
192.168.0.19	192.163.192.243	192.168.100.108	192.166.219.162