5.134.46.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: Disenadores Informaticos Y Tecnologicos S.L.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Hits on port : 8080	2020-08-25 19:49:25

Comments on same subnet:

IP	Type	Details	Datetime
5.134.46.215	attackbotsspam	unauthorized connection attempt	2020-01-28 16:07:59
5.134.46.43	attack	Unauthorized connection attempt detected from IP address 5.134.46.43 to port 8080 [J]	2020-01-13 02:35:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.134.46.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27132
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.134.46.142.			IN	A

;; AUTHORITY SECTION:
.			490	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082500 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 25 19:49:18 CST 2020
;; MSG SIZE  rcvd: 116

Host info

142.46.134.5.in-addr.arpa domain name pointer 5-134-46-142.ipdinamica.dinfotec.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.46.134.5.in-addr.arpa	name = 5-134-46-142.ipdinamica.dinfotec.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.112.57.224	attackbots	SSH Brute Force	2020-08-08 03:56:59
116.247.81.100	attack	$f2bV_matches	2020-08-08 04:08:09
190.145.81.37	attack	Aug 7 16:20:04 cosmoit sshd[30951]: Failed password for root from 190.145.81.37 port 32823 ssh2	2020-08-08 04:14:20
106.12.68.150	attackspambots	Aug 7 19:46:26 ns382633 sshd\[23441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.150 user=root Aug 7 19:46:27 ns382633 sshd\[23441\]: Failed password for root from 106.12.68.150 port 42160 ssh2 Aug 7 19:53:33 ns382633 sshd\[24416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.150 user=root Aug 7 19:53:35 ns382633 sshd\[24416\]: Failed password for root from 106.12.68.150 port 42160 ssh2 Aug 7 19:54:42 ns382633 sshd\[24498\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.68.150 user=root	2020-08-08 04:10:12
84.235.83.162	attackbotsspam	Unauthorized connection attempt from IP address 84.235.83.162 on Port 445(SMB)	2020-08-08 04:12:28
113.190.36.114	attackbots	Dovecot Invalid User Login Attempt.	2020-08-08 04:13:49
192.95.30.59	attackspambots	192.95.30.59 - - [07/Aug/2020:20:58:16 +0100] "POST /wp-login.php HTTP/1.1" 200 6199 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [07/Aug/2020:21:01:31 +0100] "POST /wp-login.php HTTP/1.1" 200 6192 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [07/Aug/2020:21:03:23 +0100] "POST /wp-login.php HTTP/1.1" 200 6192 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-08 04:20:32
193.142.146.216	attackspambots	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 32400 proto: tcp cat: Attempted Information Leakbytes: 289	2020-08-08 04:19:18
198.100.145.89	attackbotsspam	198.100.145.89 - - [07/Aug/2020:19:59:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.100.145.89 - - [07/Aug/2020:19:59:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.100.145.89 - - [07/Aug/2020:19:59:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-08 04:29:10
177.78.206.58	attackbotsspam	Aug 7 14:31:04 master sshd[29176]: Failed password for root from 177.78.206.58 port 10631 ssh2 Aug 7 14:31:11 master sshd[29179]: Failed password for root from 177.78.206.58 port 10632 ssh2 Aug 7 14:31:17 master sshd[29185]: Failed password for invalid user ubnt from 177.78.206.58 port 10633 ssh2 Aug 7 14:31:24 master sshd[29187]: Failed password for root from 177.78.206.58 port 10634 ssh2 Aug 7 14:31:31 master sshd[29189]: Failed password for root from 177.78.206.58 port 10635 ssh2 Aug 7 14:31:37 master sshd[29191]: Failed password for root from 177.78.206.58 port 10636 ssh2 Aug 7 14:31:43 master sshd[29193]: Failed password for root from 177.78.206.58 port 10637 ssh2 Aug 7 14:31:50 master sshd[29195]: Failed password for root from 177.78.206.58 port 10638 ssh2 Aug 7 14:31:57 master sshd[29197]: Failed password for root from 177.78.206.58 port 10639 ssh2 Aug 7 14:32:03 master sshd[29199]: Failed password for root from 177.78.206.58 port 10640 ssh2	2020-08-08 04:14:40
185.147.215.14	attackbotsspam	[2020-08-07 15:43:00] NOTICE[1248] chan_sip.c: Registration from '' failed for '185.147.215.14:61177' - Wrong password [2020-08-07 15:43:00] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-07T15:43:00.233-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="20",SessionID="0x7f2720161a78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14/61177",Challenge="62b13b69",ReceivedChallenge="62b13b69",ReceivedHash="65e751ccb390703a685363b14816ad45" [2020-08-07 15:43:19] NOTICE[1248] chan_sip.c: Registration from '' failed for '185.147.215.14:53845' - Wrong password [2020-08-07 15:43:19] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-07T15:43:19.566-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1129",SessionID="0x7f2720259e98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14 ...	2020-08-08 03:53:56
223.190.120.244	attack	firewall-block, port(s): 445/tcp	2020-08-08 03:53:05
2.132.178.128	attack	Unauthorized connection attempt from IP address 2.132.178.128 on Port 445(SMB)	2020-08-08 03:52:44
161.189.108.119	attackbots	Aug 2 23:37:35 h2034429 sshd[11800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.189.108.119 user=r.r Aug 2 23:37:37 h2034429 sshd[11800]: Failed password for r.r from 161.189.108.119 port 37062 ssh2 Aug 2 23:37:37 h2034429 sshd[11800]: Received disconnect from 161.189.108.119 port 37062:11: Bye Bye [preauth] Aug 2 23:37:37 h2034429 sshd[11800]: Disconnected from 161.189.108.119 port 37062 [preauth] Aug 2 23:53:12 h2034429 sshd[12002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.189.108.119 user=r.r Aug 2 23:53:14 h2034429 sshd[12002]: Failed password for r.r from 161.189.108.119 port 33866 ssh2 Aug 2 23:53:15 h2034429 sshd[12002]: Received disconnect from 161.189.108.119 port 33866:11: Bye Bye [preauth] Aug 2 23:53:15 h2034429 sshd[12002]: Disconnected from 161.189.108.119 port 33866 [preauth] Aug 2 23:57:36 h2034429 sshd[12059]: pam_unix(sshd:auth): authenticatio........ -------------------------------	2020-08-08 04:17:06
67.107.12.29	attackbots	prod8 ...	2020-08-08 04:16:16

Recently Reported IPs

87.42.6.251	193.231.205.91	31.129.125.122	25.227.178.144
108.138.45.18	92.52.98.62	150.89.161.214	217.252.173.59
253.143.136.52	18.23.249.239	194.44.20.78	255.29.219.149
190.76.8.184	64.85.66.206	53.132.0.52	203.43.140.244
181.149.243.63	234.173.178.57	134.116.254.157	122.175.196.98