5.150.254.135 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Bahnhof AB

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Aug 14 09:30:57 OPSO sshd\[28892\]: Invalid user matthias from 5.150.254.135 port 57100 Aug 14 09:30:58 OPSO sshd\[28892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 Aug 14 09:31:00 OPSO sshd\[28892\]: Failed password for invalid user matthias from 5.150.254.135 port 57100 ssh2 Aug 14 09:35:57 OPSO sshd\[29655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 user=root Aug 14 09:35:59 OPSO sshd\[29655\]: Failed password for root from 5.150.254.135 port 52026 ssh2	2019-08-14 15:42:30
attackspam	2019-08-09T23:17:14.965776abusebot-8.cloudsearch.cf sshd\[18790\]: Invalid user seren from 5.150.254.135 port 58877	2019-08-10 09:33:52
attackbotsspam	[Aegis] @ 2019-08-02 17:54:55 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-08-03 01:43:10
attack	Jul 29 19:41:41 [munged] sshd[18132]: Invalid user shea from 5.150.254.135 port 53606 Jul 29 19:41:41 [munged] sshd[18132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135	2019-07-30 04:07:33
attackbots	Jul 28 23:45:34 s64-1 sshd[19998]: Failed password for root from 5.150.254.135 port 47428 ssh2 Jul 28 23:50:49 s64-1 sshd[20069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 Jul 28 23:50:52 s64-1 sshd[20069]: Failed password for invalid user com from 5.150.254.135 port 43962 ssh2 ...	2019-07-29 05:54:05
attack	Jul 28 22:09:37 s64-1 sshd[18652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 Jul 28 22:09:39 s64-1 sshd[18652]: Failed password for invalid user xiaolin82 from 5.150.254.135 port 53172 ssh2 Jul 28 22:14:58 s64-1 sshd[18711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 ...	2019-07-29 04:24:35
attackspambots	2019-07-28T02:51:37.449920abusebot-2.cloudsearch.cf sshd\[25677\]: Invalid user touchy from 5.150.254.135 port 47051	2019-07-28 10:56:35
attackbotsspam	Jul 27 05:08:29 raspberrypi sshd\[1969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 user=root Jul 27 05:08:32 raspberrypi sshd\[1969\]: Failed password for root from 5.150.254.135 port 54646 ssh2 Jul 27 05:29:58 raspberrypi sshd\[2213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.135 user=root	2019-07-27 11:43:02

Comments on same subnet:

IP	Type	Details	Datetime
5.150.254.21	attackbots	Sep 19 20:36:30 MK-Soft-VM5 sshd\[8402\]: Invalid user homeitop from 5.150.254.21 port 53250 Sep 19 20:36:30 MK-Soft-VM5 sshd\[8402\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 Sep 19 20:36:33 MK-Soft-VM5 sshd\[8402\]: Failed password for invalid user homeitop from 5.150.254.21 port 53250 ssh2 ...	2019-09-20 05:40:19
5.150.254.21	attack	Sep 1 11:50:47 lcdev sshd\[29654\]: Invalid user ncuser from 5.150.254.21 Sep 1 11:50:47 lcdev sshd\[29654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 Sep 1 11:50:48 lcdev sshd\[29654\]: Failed password for invalid user ncuser from 5.150.254.21 port 38468 ssh2 Sep 1 11:55:28 lcdev sshd\[30088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 user=root Sep 1 11:55:30 lcdev sshd\[30088\]: Failed password for root from 5.150.254.21 port 54320 ssh2	2019-09-02 05:57:28
5.150.254.21	attack	2019-08-26T19:14:02.842969abusebot-3.cloudsearch.cf sshd\[20996\]: Invalid user wu from 5.150.254.21 port 51586	2019-08-27 03:36:39
5.150.254.21	attackbotsspam	Aug 23 10:51:39 web1 sshd\[20912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 user=sys Aug 23 10:51:41 web1 sshd\[20912\]: Failed password for sys from 5.150.254.21 port 51436 ssh2 Aug 23 10:57:00 web1 sshd\[21413\]: Invalid user student03 from 5.150.254.21 Aug 23 10:57:00 web1 sshd\[21413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 Aug 23 10:57:02 web1 sshd\[21413\]: Failed password for invalid user student03 from 5.150.254.21 port 40940 ssh2	2019-08-24 05:05:36
5.150.254.21	attackbotsspam	Aug 21 17:02:32 eddieflores sshd\[32215\]: Invalid user postgres from 5.150.254.21 Aug 21 17:02:32 eddieflores sshd\[32215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 Aug 21 17:02:34 eddieflores sshd\[32215\]: Failed password for invalid user postgres from 5.150.254.21 port 49546 ssh2 Aug 21 17:08:02 eddieflores sshd\[32678\]: Invalid user jt from 5.150.254.21 Aug 21 17:08:02 eddieflores sshd\[32678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21	2019-08-22 11:20:04
5.150.254.21	attackbotsspam	Aug 15 11:28:42 host sshd\[43581\]: Invalid user nicolas from 5.150.254.21 port 51562 Aug 15 11:28:42 host sshd\[43581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 ...	2019-08-15 18:50:24
5.150.254.67	attackspambots	Aug 11 20:16:06 vps sshd[16125]: Failed password for root from 5.150.254.67 port 53666 ssh2 Aug 11 20:16:10 vps sshd[16125]: Failed password for root from 5.150.254.67 port 53666 ssh2 Aug 11 20:16:14 vps sshd[16125]: Failed password for root from 5.150.254.67 port 53666 ssh2 Aug 11 20:16:17 vps sshd[16125]: Failed password for root from 5.150.254.67 port 53666 ssh2 ...	2019-08-12 02:48:28
5.150.254.21	attack	DATE:2019-07-12 01:54:11, IP:5.150.254.21, PORT:ssh SSH brute force auth (ermes)	2019-07-12 16:11:17
5.150.254.21	attackbotsspam	Jul 3 08:20:06 SilenceServices sshd[8588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 Jul 3 08:20:08 SilenceServices sshd[8588]: Failed password for invalid user caleb from 5.150.254.21 port 35284 ssh2 Jul 3 08:24:56 SilenceServices sshd[11188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21	2019-07-03 18:19:19
5.150.254.21	attack	Jul 3 05:20:03 SilenceServices sshd[8847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21 Jul 3 05:20:04 SilenceServices sshd[8847]: Failed password for invalid user mc from 5.150.254.21 port 37218 ssh2 Jul 3 05:25:21 SilenceServices sshd[11784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.150.254.21	2019-07-03 11:34:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.150.254.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27595
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.150.254.135.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072602 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 27 11:42:56 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 135.254.150.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 135.254.150.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.233.183.155	attack	2020-02-08T18:18:27.507506abusebot-2.cloudsearch.cf sshd[5442]: Invalid user dki from 49.233.183.155 port 36138 2020-02-08T18:18:27.516272abusebot-2.cloudsearch.cf sshd[5442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.155 2020-02-08T18:18:27.507506abusebot-2.cloudsearch.cf sshd[5442]: Invalid user dki from 49.233.183.155 port 36138 2020-02-08T18:18:29.219445abusebot-2.cloudsearch.cf sshd[5442]: Failed password for invalid user dki from 49.233.183.155 port 36138 ssh2 2020-02-08T18:21:55.206876abusebot-2.cloudsearch.cf sshd[5614]: Invalid user ajf from 49.233.183.155 port 53010 2020-02-08T18:21:55.215337abusebot-2.cloudsearch.cf sshd[5614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.155 2020-02-08T18:21:55.206876abusebot-2.cloudsearch.cf sshd[5614]: Invalid user ajf from 49.233.183.155 port 53010 2020-02-08T18:21:57.139371abusebot-2.cloudsearch.cf sshd[5614]: Failed password f ...	2020-02-09 04:36:17
222.186.180.142	attack	Feb 8 17:38:54 firewall sshd[6084]: Failed password for root from 222.186.180.142 port 52868 ssh2 Feb 8 17:38:56 firewall sshd[6084]: Failed password for root from 222.186.180.142 port 52868 ssh2 Feb 8 17:38:58 firewall sshd[6084]: Failed password for root from 222.186.180.142 port 52868 ssh2 ...	2020-02-09 04:42:25
116.213.168.244	attackbots	Feb 8 17:43:36 work-partkepr sshd\[22055\]: Invalid user bxq from 116.213.168.244 port 46840 Feb 8 17:43:36 work-partkepr sshd\[22055\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.213.168.244 ...	2020-02-09 04:24:49
120.1.140.101	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-09 04:55:51
43.225.67.233	attack	Brute forcing RDP port 3389	2020-02-09 04:49:04
188.153.92.41	attack	23/tcp [2020-02-08]1pkt	2020-02-09 04:50:05
188.68.0.112	attackspambots	16.222.773,06-13/04 [bc27/m129] PostRequest-Spammer scoring: maputo01_x2b	2020-02-09 04:31:12
66.85.129.140	attackspambots	Feb 7 04:03:50 ahost sshd[26726]: Invalid user xlk from 66.85.129.140 Feb 7 04:03:50 ahost sshd[26726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.85.129.140 Feb 7 04:03:52 ahost sshd[26726]: Failed password for invalid user xlk from 66.85.129.140 port 46643 ssh2 Feb 7 04:03:52 ahost sshd[26726]: Received disconnect from 66.85.129.140: 11: Bye Bye [preauth] Feb 7 04:09:13 ahost sshd[26782]: Invalid user ruu from 66.85.129.140 Feb 7 04:09:13 ahost sshd[26782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.85.129.140 Feb 7 04:09:15 ahost sshd[26782]: Failed password for invalid user ruu from 66.85.129.140 port 32860 ssh2 Feb 7 04:24:37 ahost sshd[30712]: Invalid user bvj from 66.85.129.140 Feb 7 04:24:37 ahost sshd[30712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.85.129.140 Feb 7 04:24:39 ahost sshd[30712]: Failed passw........ ------------------------------	2020-02-09 04:42:49
218.92.0.158	attackspam	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.158 user=root Failed password for root from 218.92.0.158 port 7815 ssh2 Failed password for root from 218.92.0.158 port 7815 ssh2 Failed password for root from 218.92.0.158 port 7815 ssh2 Failed password for root from 218.92.0.158 port 7815 ssh2	2020-02-09 04:37:41
90.59.57.168	attackbotsspam	Feb 8 20:24:04 PAR-182295 sshd[1211587]: Failed password for invalid user mej from 90.59.57.168 port 50836 ssh2 Feb 8 20:49:52 PAR-182295 sshd[1226894]: Failed password for invalid user uls from 90.59.57.168 port 56552 ssh2 Feb 8 21:12:16 PAR-182295 sshd[1240289]: Failed password for invalid user rng from 90.59.57.168 port 47216 ssh2	2020-02-09 04:27:08
35.194.64.202	attack	Feb 8 18:57:27 odroid64 sshd\[27638\]: Invalid user kgx from 35.194.64.202 Feb 8 18:57:27 odroid64 sshd\[27638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.194.64.202 ...	2020-02-09 05:06:11
185.39.10.124	attackspam	Feb 8 21:20:00 debian-2gb-nbg1-2 kernel: \[3452439.438856\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.39.10.124 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=10570 PROTO=TCP SPT=40146 DPT=27897 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-09 04:39:35
81.133.216.92	attack	Invalid user manager from 81.133.216.92 port 33952 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.133.216.92 Failed password for invalid user manager from 81.133.216.92 port 33952 ssh2 Invalid user test from 81.133.216.92 port 39013 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.133.216.92	2020-02-09 05:05:01
111.206.120.250	attack	02/08/2020-15:22:47.283797 111.206.120.250 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-09 04:50:54
123.153.1.189	attackbots	$f2bV_matches	2020-02-09 04:52:04

Recently Reported IPs

190.189.26.81	62.234.91.113	144.76.60.130	77.68.91.224
94.191.58.157	182.254.172.63	129.28.166.212	54.36.148.189
148.70.84.130	52.86.185.62	49.234.5.134	198.211.101.74
50.28.66.234	166.219.6.214	41.134.189.189	2.187.37.25
234.14.146.183	167.99.77.255	107.155.96.46	151.60.127.135