5.145.2.126 - IPInfo

Basic Info

City: Lotzwil

Region: Bern

Country: Switzerland

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
5.145.235.127	attackbots	Unauthorized connection attempt from IP address 5.145.235.127 on Port 445(SMB)	2020-10-14 00:02:27
5.145.235.127	attack	Unauthorized connection attempt from IP address 5.145.235.127 on Port 445(SMB)	2020-10-13 07:53:25
5.145.229.129	attack	Attempted connection to port 445.	2020-09-04 00:05:45
5.145.229.129	attackbots	Attempted connection to port 445.	2020-09-03 15:34:53
5.145.229.129	attackspam	Attempted connection to port 445.	2020-09-03 07:44:42
5.145.213.8	attack	Unauthorized connection attempt detected from IP address 5.145.213.8 to port 23 [T]	2020-05-20 11:40:46
5.145.249.152	attackbots	1589881762 - 05/19/2020 11:49:22 Host: 5.145.249.152/5.145.249.152 Port: 445 TCP Blocked	2020-05-20 01:16:06
5.145.237.170	attackspam	1589575622 - 05/15/2020 22:47:02 Host: 5.145.237.170/5.145.237.170 Port: 445 TCP Blocked	2020-05-16 07:59:14
5.145.222.68	attackspambots	Unauthorized connection attempt detected from IP address 5.145.222.68 to port 23 [J]	2020-01-21 15:09:41
5.145.252.171	attack	Invalid user supervisor from 5.145.252.171 port 60154	2020-01-19 00:20:17
5.145.252.171	attackbots	Invalid user supervisor from 5.145.252.171 port 60154	2020-01-18 03:33:10
5.145.254.161	attack	Telnetd brute force attack detected by fail2ban	2019-07-02 17:28:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.145.2.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1759
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.145.2.126.			IN	A

;; AUTHORITY SECTION:
.			163	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100401 1800 900 604800 86400

;; Query time: 145 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 05 02:51:18 CST 2019
;; MSG SIZE  rcvd: 115

Host info

126.2.145.5.in-addr.arpa domain name pointer 126-2-145-5.dyn.cable.fcom.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
126.2.145.5.in-addr.arpa	name = 126-2-145-5.dyn.cable.fcom.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.93.200.50	attackspambots	Sep 14 01:55:06 kapalua sshd\[14720\]: Invalid user hts from 111.93.200.50 Sep 14 01:55:06 kapalua sshd\[14720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50 Sep 14 01:55:08 kapalua sshd\[14720\]: Failed password for invalid user hts from 111.93.200.50 port 57373 ssh2 Sep 14 01:59:58 kapalua sshd\[15164\]: Invalid user admin123 from 111.93.200.50 Sep 14 01:59:58 kapalua sshd\[15164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50	2019-09-14 20:08:29
42.231.164.149	attack	Sep 14 08:18:23 xb3 sshd[20579]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [42.231.164.149] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 14 08:18:23 xb3 sshd[20688]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [42.231.164.149] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 14 08:18:23 xb3 sshd[20688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.231.164.149 user=r.r Sep 14 08:18:25 xb3 sshd[20688]: Failed password for r.r from 42.231.164.149 port 35786 ssh2 Sep 14 08:18:25 xb3 sshd[20579]: Failed password for invalid user support from 42.231.164.149 port 35779 ssh2 Sep 14 08:18:28 xb3 sshd[20688]: Failed password for r.r from 42.231.164.149 port 35786 ssh2 Sep 14 08:18:28 xb3 sshd[20579]: Failed password for invalid user support from 42.231.164.149 port 35779 ssh2 Sep 14 08:18:30 xb3 sshd[20579]: Failed password for invalid user support from 42.231.164.149 port 35779 ssh2 Sep 14 08:18:30 xb3 sshd[20579]:........ -------------------------------	2019-09-14 20:11:54
45.136.109.34	attack	Sep 14 13:06:24 h2177944 kernel: \[1335650.017627\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.34 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=37097 PROTO=TCP SPT=43097 DPT=3653 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 13:16:24 h2177944 kernel: \[1336250.147299\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.34 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=65361 PROTO=TCP SPT=43097 DPT=3012 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 13:25:59 h2177944 kernel: \[1336825.250503\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.34 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17113 PROTO=TCP SPT=43097 DPT=3747 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 13:28:25 h2177944 kernel: \[1336971.260260\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.34 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=39413 PROTO=TCP SPT=43097 DPT=3199 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 14 13:30:17 h2177944 kernel: \[1337082.934138\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.109.34 DST=85.214.117.9	2019-09-14 19:57:23
106.51.20.67	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 04:55:45,650 INFO [amun_request_handler] PortScan Detected on Port: 445 (106.51.20.67)	2019-09-14 19:41:03
223.19.67.94	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 06:12:15,814 INFO [amun_request_handler] PortScan Detected on Port: 445 (223.19.67.94)	2019-09-14 19:29:55
118.179.228.195	attackbots	RDP Bruteforce	2019-09-14 20:06:46
164.132.204.91	attackbotsspam	F2B jail: sshd. Time: 2019-09-14 14:00:35, Reported by: VKReport	2019-09-14 20:11:07
190.210.247.106	attackspam	2019-09-14T07:32:39.002535WS-Zach sshd[15052]: Invalid user spring from 190.210.247.106 port 54766 2019-09-14T07:32:39.005945WS-Zach sshd[15052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.247.106 2019-09-14T07:32:39.002535WS-Zach sshd[15052]: Invalid user spring from 190.210.247.106 port 54766 2019-09-14T07:32:40.852081WS-Zach sshd[15052]: Failed password for invalid user spring from 190.210.247.106 port 54766 ssh2 2019-09-14T07:45:11.967839WS-Zach sshd[21770]: Invalid user will from 190.210.247.106 port 40994 ...	2019-09-14 19:45:48
220.166.248.96	attack	port 23 attempt blocked	2019-09-14 20:18:31
45.146.202.183	attack	Sent Mail to address hacked/leaked/bought from crystalproductions.cz between 2011 and 2018	2019-09-14 20:18:53
223.247.92.38	attackspambots	2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=223.247.92.38	2019-09-14 19:29:20
222.255.146.19	attackspambots	Sep 13 22:32:41 hpm sshd\[627\]: Invalid user admin from 222.255.146.19 Sep 13 22:32:41 hpm sshd\[627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.255.146.19 Sep 13 22:32:44 hpm sshd\[627\]: Failed password for invalid user admin from 222.255.146.19 port 43306 ssh2 Sep 13 22:37:40 hpm sshd\[1153\]: Invalid user clasic from 222.255.146.19 Sep 13 22:37:40 hpm sshd\[1153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.255.146.19	2019-09-14 19:55:37
128.199.170.77	attackbots	Sep 14 13:49:14 dev0-dcfr-rnet sshd[24682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.170.77 Sep 14 13:49:16 dev0-dcfr-rnet sshd[24682]: Failed password for invalid user matusalem from 128.199.170.77 port 34666 ssh2 Sep 14 13:54:19 dev0-dcfr-rnet sshd[24694]: Failed password for root from 128.199.170.77 port 50902 ssh2	2019-09-14 19:59:18
113.66.255.156	attack	Sep 13 16:24:32 itv-usvr-01 sshd[7405]: Invalid user postgres from 113.66.255.156 Sep 13 16:24:32 itv-usvr-01 sshd[7405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.66.255.156 Sep 13 16:24:32 itv-usvr-01 sshd[7405]: Invalid user postgres from 113.66.255.156 Sep 13 16:24:35 itv-usvr-01 sshd[7405]: Failed password for invalid user postgres from 113.66.255.156 port 59556 ssh2 Sep 13 16:29:53 itv-usvr-01 sshd[7593]: Invalid user hdpuser from 113.66.255.156	2019-09-14 19:56:22
182.71.125.106	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-14 05:55:04,584 INFO [shellcode_manager] (182.71.125.106) no match, writing hexdump (06cb1cdc794ded1faa9f8ed0bf4f6df0 :10711) - SMB (Unknown)	2019-09-14 19:36:11

Recently Reported IPs

133.123.10.124	83.0.190.105	129.157.129.51	218.25.31.150
105.229.32.55	97.219.68.47	208.221.73.205	40.115.168.7
104.172.5.193	186.188.63.192	173.227.36.201	79.230.69.64
138.26.230.247	178.128.156.159	14.49.199.118	124.115.240.65
178.196.30.95	201.145.14.165	153.186.64.224	219.128.97.8