5.158.138.148 - IPInfo

Basic Info

City: Heidelberg

Region: Baden-Württemberg

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.158.138.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55613
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.158.138.148.			IN	A

;; AUTHORITY SECTION:
.			309	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091402 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 15 08:56:07 CST 2020
;; MSG SIZE  rcvd: 117

Host info

148.138.158.5.in-addr.arpa domain name pointer HSI-KBW-5-158-138-148.hsi19.kabel-badenwuerttemberg.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.138.158.5.in-addr.arpa	name = HSI-KBW-5-158-138-148.hsi19.kabel-badenwuerttemberg.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.35.168.218	attackspam	Icarus honeypot on github	2020-09-22 23:54:47
191.6.112.53	attackbotsspam	SSH 191.6.112.53 [22/Sep/2020:06:41:56 "-" "POST /wp-login.php 200 6062 191.6.112.53 [22/Sep/2020:06:41:58 "-" "GET /wp-login.php 200 5999 191.6.112.53 [22/Sep/2020:06:42:00 "-" "POST /wp-login.php 200 6046	2020-09-22 23:57:00
46.20.191.51	attackbotsspam	Unauthorized connection attempt from IP address 46.20.191.51 on Port 445(SMB)	2020-09-22 23:25:37
222.186.175.216	attackspambots	2020-09-22T15:51:14.097791shield sshd\[29580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root 2020-09-22T15:51:16.369160shield sshd\[29580\]: Failed password for root from 222.186.175.216 port 59600 ssh2 2020-09-22T15:51:19.928610shield sshd\[29580\]: Failed password for root from 222.186.175.216 port 59600 ssh2 2020-09-22T15:51:23.407093shield sshd\[29580\]: Failed password for root from 222.186.175.216 port 59600 ssh2 2020-09-22T15:51:26.628802shield sshd\[29580\]: Failed password for root from 222.186.175.216 port 59600 ssh2	2020-09-22 23:56:02
90.142.49.49	attackbots	Sep 17 11:01:16 sip sshd[27023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.142.49.49 Sep 17 11:01:18 sip sshd[27023]: Failed password for invalid user guest from 90.142.49.49 port 20194 ssh2 Sep 17 11:01:19 sip sshd[27043]: Failed password for root from 90.142.49.49 port 20463 ssh2	2020-09-22 23:28:48
159.65.84.183	attack	(sshd) Failed SSH login from 159.65.84.183 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 22 08:32:42 server2 sshd[22323]: Invalid user hack from 159.65.84.183 Sep 22 08:32:44 server2 sshd[22323]: Failed password for invalid user hack from 159.65.84.183 port 35784 ssh2 Sep 22 08:41:26 server2 sshd[28687]: Invalid user RPM from 159.65.84.183 Sep 22 08:41:29 server2 sshd[28687]: Failed password for invalid user RPM from 159.65.84.183 port 38544 ssh2 Sep 22 08:46:07 server2 sshd[1068]: Invalid user ubuntu from 159.65.84.183	2020-09-22 23:27:48
14.167.186.37	attackbots	1600775594 - 09/22/2020 13:53:14 Host: 14.167.186.37/14.167.186.37 Port: 445 TCP Blocked	2020-09-22 23:35:25
118.37.64.202	attackspam	Brute-force attempt banned	2020-09-22 23:49:57
119.187.233.98	attackbots	IP 119.187.233.98 attacked honeypot on port: 23 at 9/21/2020 10:02:02 AM	2020-09-22 23:19:06
111.93.203.206	attackspambots	Sep 22 14:19:05 OPSO sshd\[7541\]: Invalid user felix from 111.93.203.206 port 45707 Sep 22 14:19:05 OPSO sshd\[7541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.203.206 Sep 22 14:19:07 OPSO sshd\[7541\]: Failed password for invalid user felix from 111.93.203.206 port 45707 ssh2 Sep 22 14:23:45 OPSO sshd\[8339\]: Invalid user steam from 111.93.203.206 port 51310 Sep 22 14:23:45 OPSO sshd\[8339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.203.206	2020-09-22 23:19:23
54.36.190.245	attack	Invalid user worker from 54.36.190.245 port 55976	2020-09-22 23:37:18
51.75.18.215	attackspam	Sep 22 14:56:06 plex-server sshd[4159907]: Invalid user oracle from 51.75.18.215 port 50220 Sep 22 14:56:06 plex-server sshd[4159907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.18.215 Sep 22 14:56:06 plex-server sshd[4159907]: Invalid user oracle from 51.75.18.215 port 50220 Sep 22 14:56:08 plex-server sshd[4159907]: Failed password for invalid user oracle from 51.75.18.215 port 50220 ssh2 Sep 22 15:00:15 plex-server sshd[4161612]: Invalid user vishal from 51.75.18.215 port 59946 ...	2020-09-22 23:46:53
201.242.70.73	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-22 23:56:48
201.249.163.106	attackbots	Unauthorized connection attempt from IP address 201.249.163.106 on Port 445(SMB)	2020-09-22 23:42:12
175.119.66.39	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-22 23:34:17

Recently Reported IPs

76.10.100.206	85.49.213.138	219.85.136.33	211.30.19.117
102.242.175.46	57.78.24.33	88.154.96.19	85.250.141.42
125.105.66.78	84.210.193.6	123.241.171.208	210.212.251.165
189.90.22.65	221.65.103.151	86.183.105.16	91.212.119.153
70.145.213.176	180.60.45.122	50.99.24.189	32.17.142.106