5.142.148.238 - IPInfo

Basic Info

City: Svetlogorsk

Region: Kaliningradskaya Oblast'

Country: Russia

Internet Service Provider: OJSC North-West Telecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Target: MSSQL :1433 [Brute-force]	2020-04-24 06:51:03

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.142.148.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.142.148.238.			IN	A

;; AUTHORITY SECTION:
.			443	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042302 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 24 06:50:59 CST 2020
;; MSG SIZE  rcvd: 117

Host info

238.148.142.5.in-addr.arpa domain name pointer 238-148-142-5.baltnet.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
238.148.142.5.in-addr.arpa	name = 238-148-142-5.baltnet.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.186.248.142	attackspambots	Invalid user admin from 14.186.248.142 port 41816	2020-06-18 05:58:01
203.86.239.251	attackbotsspam	Invalid user paj from 203.86.239.251 port 58442	2020-06-18 05:26:27
180.76.161.77	attackspam	ssh intrusion attempt	2020-06-18 05:29:41
14.172.221.244	attackspambots	Invalid user admin from 14.172.221.244 port 51427	2020-06-18 05:59:01
80.213.238.67	attackbotsspam	Jun 17 19:57:02 vps333114 sshd[19672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0003a400-0831.bb.online.no Jun 17 19:57:04 vps333114 sshd[19672]: Failed password for invalid user ftptest from 80.213.238.67 port 43948 ssh2 ...	2020-06-18 05:54:13
14.232.221.147	attackbotsspam	Invalid user admin from 14.232.221.147 port 36006	2020-06-18 05:57:35
172.245.66.53	attackspam	Invalid user yll from 172.245.66.53 port 56162	2020-06-18 05:31:11
41.237.110.132	attack	Invalid user admin from 41.237.110.132 port 57639	2020-06-18 05:55:54
116.99.54.236	attackbots	Invalid user admin from 116.99.54.236 port 57174	2020-06-18 05:48:46
180.140.243.207	attackbotsspam	Invalid user gpadmin from 180.140.243.207 port 55396	2020-06-18 05:44:01
35.234.136.100	attack	2020-06-17T20:05:51.479228abusebot.cloudsearch.cf sshd[23461]: Invalid user hezoujie from 35.234.136.100 port 60300 2020-06-17T20:05:51.485123abusebot.cloudsearch.cf sshd[23461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=100.136.234.35.bc.googleusercontent.com 2020-06-17T20:05:51.479228abusebot.cloudsearch.cf sshd[23461]: Invalid user hezoujie from 35.234.136.100 port 60300 2020-06-17T20:05:54.204452abusebot.cloudsearch.cf sshd[23461]: Failed password for invalid user hezoujie from 35.234.136.100 port 60300 ssh2 2020-06-17T20:08:57.026403abusebot.cloudsearch.cf sshd[23729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=100.136.234.35.bc.googleusercontent.com user=root 2020-06-17T20:08:59.279301abusebot.cloudsearch.cf sshd[23729]: Failed password for root from 35.234.136.100 port 59966 ssh2 2020-06-17T20:12:05.332653abusebot.cloudsearch.cf sshd[23995]: pam_unix(sshd:auth): authentication failure; lo ...	2020-06-18 05:56:25
116.255.213.176	attackspambots	$f2bV_matches	2020-06-18 05:34:30
106.53.68.194	attackbots	Jun 18 06:01:32 web1 sshd[22037]: Invalid user odoo from 106.53.68.194 port 43294 Jun 18 06:01:32 web1 sshd[22037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.68.194 Jun 18 06:01:32 web1 sshd[22037]: Invalid user odoo from 106.53.68.194 port 43294 Jun 18 06:01:34 web1 sshd[22037]: Failed password for invalid user odoo from 106.53.68.194 port 43294 ssh2 Jun 18 06:08:59 web1 sshd[24104]: Invalid user orange from 106.53.68.194 port 59476 Jun 18 06:08:59 web1 sshd[24104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.68.194 Jun 18 06:08:59 web1 sshd[24104]: Invalid user orange from 106.53.68.194 port 59476 Jun 18 06:09:01 web1 sshd[24104]: Failed password for invalid user orange from 106.53.68.194 port 59476 ssh2 Jun 18 06:13:28 web1 sshd[25205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.68.194 user=root Jun 18 06:13:30 web1 sshd[25205]: ...	2020-06-18 05:36:20
120.132.27.238	attackspambots	$f2bV_matches	2020-06-18 05:33:56
64.64.224.54	attackspam	Invalid user hts from 64.64.224.54 port 57576	2020-06-18 05:55:07

Recently Reported IPs

41.237.126.9	24.21.247.203	36.198.173.155	74.77.247.135
213.199.236.161	77.92.226.165	82.211.9.144	107.103.115.254
71.228.31.186	186.199.192.183	185.207.145.154	112.105.220.238
219.154.201.238	123.21.181.219	104.247.37.165	69.105.243.23
81.187.215.33	163.14.48.172	67.40.236.101	71.162.228.195