2.133.48.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: JSC Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt from IP address 2.133.48.13 on Port 445(SMB)	2019-11-22 06:24:45

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.133.48.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19551
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.133.48.13.			IN	A

;; AUTHORITY SECTION:
.			436	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112101 1800 900 604800 86400

;; Query time: 526 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 06:24:42 CST 2019
;; MSG SIZE  rcvd: 115

Host info

13.48.133.2.in-addr.arpa domain name pointer 2.133.48.13.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.48.133.2.in-addr.arpa	name = 2.133.48.13.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.211.250.8	attackspam	Tried sshing with brute force.	2019-07-22 16:54:51
190.189.136.100	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-07-22 17:12:07
218.92.0.132	attack	Jul 22 09:32:10 *** sshd[8067]: User root from 218.92.0.132 not allowed because not listed in AllowUsers	2019-07-22 17:47:53
201.59.18.170	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-22 03:38:25,990 INFO [amun_request_handler] PortScan Detected on Port: 445 (201.59.18.170)	2019-07-22 17:09:49
165.227.209.96	attack	Jul 22 10:46:39 OPSO sshd\[22166\]: Invalid user cliente from 165.227.209.96 port 55468 Jul 22 10:46:39 OPSO sshd\[22166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.209.96 Jul 22 10:46:41 OPSO sshd\[22166\]: Failed password for invalid user cliente from 165.227.209.96 port 55468 ssh2 Jul 22 10:52:20 OPSO sshd\[22911\]: Invalid user anonymous from 165.227.209.96 port 51376 Jul 22 10:52:20 OPSO sshd\[22911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.209.96	2019-07-22 16:58:32
77.164.87.157	attack	Automatic report - Port Scan Attack	2019-07-22 17:25:56
182.61.184.47	attack	Jul 22 03:41:45 aat-srv002 sshd[6103]: Failed password for root from 182.61.184.47 port 38950 ssh2 Jul 22 03:46:57 aat-srv002 sshd[6209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.184.47 Jul 22 03:46:59 aat-srv002 sshd[6209]: Failed password for invalid user ab from 182.61.184.47 port 34622 ssh2 ...	2019-07-22 17:08:21
113.173.222.210	attackspam	Unauthorized connection attempt from IP address 113.173.222.210 on Port 445(SMB)	2019-07-22 18:04:11
59.115.131.3	attackbots	Unauthorized connection attempt from IP address 59.115.131.3 on Port 445(SMB)	2019-07-22 17:45:49
185.137.111.132	attackbotsspam	Jul 22 09:45:41 mail postfix/smtpd\[4264\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 10:16:28 mail postfix/smtpd\[4656\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 10:18:11 mail postfix/smtpd\[5097\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 10:20:04 mail postfix/smtpd\[4936\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-22 17:02:30
111.116.20.110	attack	Jul 22 08:53:03 mail sshd\[20988\]: Invalid user mike from 111.116.20.110 port 33856 Jul 22 08:53:03 mail sshd\[20988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.116.20.110 Jul 22 08:53:05 mail sshd\[20988\]: Failed password for invalid user mike from 111.116.20.110 port 33856 ssh2 Jul 22 08:58:42 mail sshd\[21763\]: Invalid user sampath from 111.116.20.110 port 57864 Jul 22 08:58:42 mail sshd\[21763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.116.20.110	2019-07-22 17:04:19
125.25.187.161	attackbotsspam	Unauthorized connection attempt from IP address 125.25.187.161 on Port 445(SMB)	2019-07-22 17:03:48
112.175.238.149	attackspambots	2019-07-22T09:53:01.924391abusebot-8.cloudsearch.cf sshd\[29231\]: Invalid user stefan from 112.175.238.149 port 46014	2019-07-22 17:57:25
198.144.184.34	attack	Jul 22 04:56:15 plusreed sshd[11406]: Invalid user file from 198.144.184.34 ...	2019-07-22 17:14:16
113.164.8.159	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-22 01:31:16,413 INFO [shellcode_manager] (113.164.8.159) no match, writing hexdump (a5b57249905e9738efd1bb0e8b4fb1c2 :2068051) - MS17010 (EternalBlue)	2019-07-22 17:07:14

Recently Reported IPs

37.146.144.141	124.216.146.21	189.126.195.198	88.242.135.32
34.148.39.55	196.245.216.37	180.83.133.73	177.106.49.213
34.216.48.69	252.57.125.64	42.112.110.200	148.56.100.232
111.59.64.15	78.26.249.117	41.250.140.185	2001:41d0:602:2f69::
75.144.120.10	123.16.234.163	42.113.198.178	203.78.119.204