2.134.66.186 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: JSC Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 2.134.66.186 on Port 445(SMB)	2020-02-24 19:59:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.66.186
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20597
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.134.66.186.			IN	A

;; AUTHORITY SECTION:
.			329	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022400 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 19:59:51 CST 2020
;; MSG SIZE  rcvd: 116

Host info

186.66.134.2.in-addr.arpa domain name pointer 2.134.66.186.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
186.66.134.2.in-addr.arpa	name = 2.134.66.186.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.1.229.202	attackbotsspam	port 23	2020-05-12 15:06:14
123.16.32.215	attackspambots	Dovecot Invalid User Login Attempt.	2020-05-12 15:40:04
202.98.248.123	attack	May 12 05:41:24 Ubuntu-1404-trusty-64-minimal sshd\[26431\]: Invalid user yhlee from 202.98.248.123 May 12 05:41:24 Ubuntu-1404-trusty-64-minimal sshd\[26431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.98.248.123 May 12 05:41:26 Ubuntu-1404-trusty-64-minimal sshd\[26431\]: Failed password for invalid user yhlee from 202.98.248.123 port 40758 ssh2 May 12 06:03:38 Ubuntu-1404-trusty-64-minimal sshd\[8157\]: Invalid user hadoop from 202.98.248.123 May 12 06:03:38 Ubuntu-1404-trusty-64-minimal sshd\[8157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.98.248.123	2020-05-12 15:04:50
171.221.255.5	attack	Automatic report - WordPress Brute Force	2020-05-12 15:35:39
114.33.28.236	attack	Bruteforce detected by fail2ban	2020-05-12 15:40:35
14.29.241.29	attackspam	May 12 09:28:42 163-172-32-151 sshd[27305]: Invalid user patrick from 14.29.241.29 port 40248 ...	2020-05-12 15:42:14
115.72.236.25	attackspambots	W 31101,/var/log/nginx/access.log,-,-	2020-05-12 15:34:50
46.101.84.28	attackspambots	Invalid user ik from 46.101.84.28 port 37823	2020-05-12 15:21:01
106.54.202.136	attackbots	(sshd) Failed SSH login from 106.54.202.136 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 12 06:41:12 s1 sshd[26578]: Invalid user iva from 106.54.202.136 port 55958 May 12 06:41:14 s1 sshd[26578]: Failed password for invalid user iva from 106.54.202.136 port 55958 ssh2 May 12 06:46:20 s1 sshd[26758]: Invalid user testing from 106.54.202.136 port 51714 May 12 06:46:21 s1 sshd[26758]: Failed password for invalid user testing from 106.54.202.136 port 51714 ssh2 May 12 06:51:33 s1 sshd[26904]: Invalid user oe from 106.54.202.136 port 47466	2020-05-12 15:22:38
184.67.105.182	attackspam	SSH brutforce	2020-05-12 15:21:22
49.88.112.69	attack	2020-05-12T07:02:40.721755shield sshd\[26682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.69 user=root 2020-05-12T07:02:42.924737shield sshd\[26682\]: Failed password for root from 49.88.112.69 port 33737 ssh2 2020-05-12T07:02:45.803972shield sshd\[26682\]: Failed password for root from 49.88.112.69 port 33737 ssh2 2020-05-12T07:02:47.756583shield sshd\[26682\]: Failed password for root from 49.88.112.69 port 33737 ssh2 2020-05-12T07:11:07.391728shield sshd\[29462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.69 user=root	2020-05-12 15:25:08
195.154.133.163	attackbots	195.154.133.163 - - [12/May/2020:11:28:16 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-05-12 15:38:03
192.169.219.72	attack	Automatic report - XMLRPC Attack	2020-05-12 15:04:18
51.159.52.209	attackspambots	(sshd) Failed SSH login from 51.159.52.209 (FR/France/51-159-52-209.rev.poneytelecom.eu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 12 08:32:32 ubnt-55d23 sshd[29138]: Invalid user ubuntu from 51.159.52.209 port 37350 May 12 08:32:35 ubnt-55d23 sshd[29138]: Failed password for invalid user ubuntu from 51.159.52.209 port 37350 ssh2	2020-05-12 15:18:47
178.128.248.121	attackspam	<6 unauthorized SSH connections	2020-05-12 15:34:19

Recently Reported IPs

229.50.220.231	7.40.34.21	137.101.138.173	142.44.251.104
120.79.212.168	201.249.123.173	117.102.124.202	45.80.149.190
122.117.63.58	88.214.26.99	80.85.152.75	220.107.15.251
78.97.235.50	94.174.44.7	62.211.6.99	167.60.59.200
52.59.221.104	188.76.8.125	182.200.37.80	120.15.236.112