147.91.242.245

Basic Info

City: unknown

Region: unknown

Country: Serbia

Internet Service Provider: unknown

Hostname: unknown

Organization: Akademska mreza Republike Srbije - AMRES

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.91.242.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29829
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.91.242.245.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 27 19:19:29 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 245.242.91.147.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 245.242.91.147.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.172.218.82	attackbotsspam	[WedNov2707:29:55.0876402019][:error][pid1029:tid47011388753664][client5.172.218.82:50038][client5.172.218.82]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"cser.ch"][uri"/3.sql"][unique_id"Xd4X4wTwcDLXoZj2WO0kSgAAAIw"][WedNov2707:29:55.8598932019][:error][pid773:tid47011388753664][client5.172.218.82:50127][client5.172.218.82]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"	2019-11-27 16:24:22
206.189.127.133	attack	This client attempted to login to an administrator account on a Website, or abused from another resource.	2019-11-27 16:02:31
118.25.195.244	attack	Invalid user ts3 from 118.25.195.244 port 33346 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.195.244 Failed password for invalid user ts3 from 118.25.195.244 port 33346 ssh2 Invalid user wwwadmin from 118.25.195.244 port 42106 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.195.244	2019-11-27 16:10:48
51.77.144.50	attackspambots	Nov 27 09:13:13 sd-53420 sshd\[13176\]: Invalid user vcsa from 51.77.144.50 Nov 27 09:13:13 sd-53420 sshd\[13176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 Nov 27 09:13:15 sd-53420 sshd\[13176\]: Failed password for invalid user vcsa from 51.77.144.50 port 54336 ssh2 Nov 27 09:19:18 sd-53420 sshd\[14244\]: Invalid user kaylee from 51.77.144.50 Nov 27 09:19:18 sd-53420 sshd\[14244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 ...	2019-11-27 16:32:07
121.33.247.107	attack	Nov 26 06:48:24 warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: authentication failure Nov 26 06:48:34 warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: authentication failure Nov 26 06:49:06 warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: authentication failure	2019-11-27 16:19:58
51.91.136.174	attack	Nov 27 09:09:57 ns381471 sshd[1550]: Failed password for root from 51.91.136.174 port 58084 ssh2	2019-11-27 16:37:45
114.69.232.234	attack	trying to hack my yahoo e-mail	2019-11-27 16:13:14
175.159.44.46	attack	SpamReport	2019-11-27 16:05:37
45.93.20.169	attackbotsspam	firewall-block, port(s): 54880/tcp	2019-11-27 16:18:19
125.77.30.71	attack	Nov 27 07:11:01 cw sshd[17309]: User r.r from 125.77.30.71 not allowed because listed in DenyUsers Nov 27 07:11:23 cw sshd[17317]: User r.r from 125.77.30.71 not allowed because listed in DenyUsers Nov 27 07:11:46 cw sshd[17509]: User r.r from 125.77.30.71 not allowed because listed in DenyUsers Nov 27 07:11:51 cw sshd[17511]: User r.r from 125.77.30.71 not allowed because listed in DenyUsers Nov 27 07:11:59 cw sshd[17514]: User r.r from 125.77.30.71 not allowed because listed in DenyUsers Nov 27 07:12:14 cw sshd[17520]: User r.r from 125.77.30.71 not allowed because listed in DenyUsers ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.77.30.71	2019-11-27 16:08:33
184.75.211.148	attackspam	(From chiu.fidelia@msn.com) We're looking for website owners like yourself who want to automate their existing business and make some extra income... Continuous Residual Income and the product practically sells itself on auto pilot. Check out: http://trimurl.co/AutomateAnyBusiness.	2019-11-27 16:04:26
5.188.84.35	attackbotsspam	2019-11-27 06:30:49 UTC \| HarekPaugs \| anatoliy.khalaimov@m \| http://explorempls.com/explore-more/buy-imitrex-25-mg-fast-delivery/ \| 5.188.84.35 \| Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.87 Safari/537.36 OPR/54.0.2952.64 (Edition Yx) \| Anecdotal reports of increase in liability following treatment with pseudoephedrine or other over-the-counter chilling preparations may be partially explained by this mechanism, however, no dosing recommendations are readily obtainable. It means distinguishing unequivocally between fetching up these issues in a factious and in a medical fashion. This switch was symbolised before the reversal in the BMA business in its 1993 turn up on вЂcomplementary medicineвЂ™ women's heal \|	2019-11-27 16:19:38
209.235.23.125	attackspam	Nov 27 08:35:09 *** sshd[12978]: User root from 209.235.23.125 not allowed because not listed in AllowUsers	2019-11-27 16:38:12
52.9.186.5	attack	B: /wp-login.php attack	2019-11-27 16:16:52
218.92.0.180	attack	Nov 27 09:15:41 mail sshd[18864]: Failed password for root from 218.92.0.180 port 2876 ssh2 Nov 27 09:15:46 mail sshd[18864]: Failed password for root from 218.92.0.180 port 2876 ssh2 Nov 27 09:15:51 mail sshd[18864]: Failed password for root from 218.92.0.180 port 2876 ssh2 Nov 27 09:15:54 mail sshd[18864]: Failed password for root from 218.92.0.180 port 2876 ssh2	2019-11-27 16:25:10

Recently Reported IPs

109.52.218.218	118.121.207.212	52.41.81.123	114.237.188.163
223.81.161.125	132.191.245.82	113.22.199.86	212.194.136.167
14.164.23.235	151.25.159.10	60.118.206.63	194.242.98.194
215.99.139.15	105.112.68.131	53.183.124.143	184.230.58.51
110.46.15.131	208.1.149.236	42.119.75.124	121.56.230.39