2.134.241.5 - IPInfo

Basic Info

City: Atyrau

Region: Atyrau Oblysy

Country: Kazakhstan

Internet Service Provider: JSC Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 2.134.241.5 to port 23 [J]	2020-01-05 04:02:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.241.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11741
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.134.241.5.			IN	A

;; AUTHORITY SECTION:
.			273	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 04:02:08 CST 2020
;; MSG SIZE  rcvd: 115

Host info

5.241.134.2.in-addr.arpa domain name pointer 2.134.241.5.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.241.134.2.in-addr.arpa	name = 2.134.241.5.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.169.15	attackspambots	2020-09-05T05:47:12.235972vps1033 sshd[369]: Invalid user roy from 49.235.169.15 port 39284 2020-09-05T05:47:12.242758vps1033 sshd[369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.169.15 2020-09-05T05:47:12.235972vps1033 sshd[369]: Invalid user roy from 49.235.169.15 port 39284 2020-09-05T05:47:14.793136vps1033 sshd[369]: Failed password for invalid user roy from 49.235.169.15 port 39284 ssh2 2020-09-05T05:51:20.015125vps1033 sshd[9043]: Invalid user ec2-user from 49.235.169.15 port 56124 ...	2020-09-05 14:53:08
213.32.23.54	attackspam	Invalid user webapps from 213.32.23.54 port 56564	2020-09-05 15:23:26
171.227.211.78	attackbots	2020-09-04T19:05:14.499376shiva sshd[24469]: Invalid user support from 171.227.211.78 port 54342 2020-09-04T19:05:31.345585shiva sshd[24473]: Invalid user user from 171.227.211.78 port 41560 2020-09-04T19:05:31.697535shiva sshd[24475]: Invalid user operator from 171.227.211.78 port 53560 2020-09-04T19:05:49.780171shiva sshd[24483]: Invalid user user from 171.227.211.78 port 34642 ...	2020-09-05 15:21:12
61.219.11.153	attackspam	TCP (SYN) 61.219.11.153:63988 -> port 8080, len 44	2020-09-05 15:02:07
94.102.51.28	attackbots	firewall-block, port(s): 717/tcp, 1784/tcp, 2750/tcp, 3715/tcp, 8120/tcp, 8197/tcp, 8214/tcp, 8498/tcp, 9669/tcp, 11261/tcp, 11532/tcp, 12180/tcp, 12427/tcp, 12649/tcp, 13080/tcp, 13817/tcp, 13938/tcp, 17122/tcp, 18633/tcp, 18660/tcp, 26634/tcp, 26997/tcp, 32598/tcp, 33933/tcp, 34840/tcp, 35297/tcp, 36400/tcp, 37752/tcp, 39315/tcp, 39550/tcp, 40067/tcp, 40658/tcp, 41198/tcp, 41331/tcp, 41538/tcp, 41936/tcp, 42205/tcp, 42447/tcp, 43645/tcp, 44610/tcp, 45079/tcp, 45195/tcp, 45827/tcp, 49880/tcp, 49922/tcp, 50570/tcp, 50746/tcp, 50867/tcp, 51202/tcp, 51372/tcp, 51883/tcp, 51954/tcp, 53950/tcp, 59468/tcp, 61341/tcp, 62357/tcp, 64871/tcp	2020-09-05 15:06:25
186.185.130.138	attackspambots	20/9/4@13:19:43: FAIL: Alarm-Network address from=186.185.130.138 20/9/4@13:19:44: FAIL: Alarm-Network address from=186.185.130.138 ...	2020-09-05 15:15:12
191.234.178.249	attackspam	(mod_security) mod_security (id:210492) triggered by 191.234.178.249 (BR/Brazil/-): 5 in the last 3600 secs	2020-09-05 14:48:49
190.121.144.122	attackspambots	Honeypot attack, port: 445, PTR: 190121144122.ip14.static.mediacommerce.com.co.	2020-09-05 15:31:09
91.229.112.12	attackbotsspam	[Mon Aug 17 22:20:51 2020] - DDoS Attack From IP: 91.229.112.12 Port: 45819	2020-09-05 15:07:47
139.186.67.94	attack	Invalid user vector from 139.186.67.94 port 33928	2020-09-05 15:29:05
200.27.212.22	attackbots	Sep 5 06:11:20 ns3033917 sshd[18701]: Invalid user gpadmin from 200.27.212.22 port 49886 Sep 5 06:11:22 ns3033917 sshd[18701]: Failed password for invalid user gpadmin from 200.27.212.22 port 49886 ssh2 Sep 5 06:25:43 ns3033917 sshd[18765]: Invalid user nei from 200.27.212.22 port 49896 ...	2020-09-05 14:47:56
191.233.199.68	attack	Sep 5 02:13:30 django-0 sshd[17417]: Invalid user sakshi from 191.233.199.68 ...	2020-09-05 14:49:18
1.227.100.17	attack	web-1 [ssh] SSH Attack	2020-09-05 15:30:40
88.218.17.103	attackbotsspam	TCP (SYN) 88.218.17.103:54437 -> port 3396, len 44	2020-09-05 15:11:21
187.188.251.218	attackspambots	Honeypot attack, port: 445, PTR: fixed-187-188-251-218.totalplay.net.	2020-09-05 15:17:41

Recently Reported IPs

95.16.73.62	210.212.235.51	213.86.194.100	107.151.21.197
209.203.248.147	210.12.190.40	52.108.2.235	150.142.129.35
200.222.5.141	135.22.101.144	183.48.249.142	200.207.22.31
154.157.40.228	14.39.56.255	196.221.99.111	2.201.172.158
190.162.197.244	190.44.221.74	137.138.25.199	190.239.43.18