172.94.9.242 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.94.99.203	attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-11-29 13:01:05
172.94.92.27	attackbots	Unauthorized connection attempt from IP address 172.94.92.27 on Port 445(SMB)	2019-10-06 02:21:29
172.94.98.42	attackbots	3389BruteforceFW21	2019-06-23 03:03:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.94.9.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.94.9.242.			IN	A

;; AUTHORITY SECTION:
.			175	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022071302 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 14 07:05:32 CST 2022
;; MSG SIZE  rcvd: 105

Host info

242.9.94.172.in-addr.arpa domain name pointer sk.s5.ans1.ns148.ztomy.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.9.94.172.in-addr.arpa	name = sk.s5.ans1.ns148.ztomy.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.147.181	attackspam	2020-06-11T12:06:03.306417upcloud.m0sh1x2.com sshd[4882]: Invalid user hadoop from 122.51.147.181 port 33308	2020-06-12 02:15:09
167.172.115.193	attack	$f2bV_matches	2020-06-12 02:22:25
116.196.82.45	attackspam	Jun 4 09:14:46 WHD8 dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=116.196.82.45, lip=10.64.89.208, session=\ Jun 4 09:14:56 WHD8 dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=116.196.82.45, lip=10.64.89.208, session=\ Jun 4 09:15:08 WHD8 dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 10 secs$: user=\, method=PLAIN, rip=116.196.82.45, lip=10.64.89.208, session=\ ...	2020-06-12 02:07:23
132.232.29.210	attackbotsspam	(sshd) Failed SSH login from 132.232.29.210 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 11 17:43:51 s1 sshd[19124]: Invalid user chenlihong from 132.232.29.210 port 57552 Jun 11 17:43:53 s1 sshd[19124]: Failed password for invalid user chenlihong from 132.232.29.210 port 57552 ssh2 Jun 11 18:00:18 s1 sshd[19445]: Invalid user gituser from 132.232.29.210 port 58608 Jun 11 18:00:20 s1 sshd[19445]: Failed password for invalid user gituser from 132.232.29.210 port 58608 ssh2 Jun 11 18:03:21 s1 sshd[19502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.29.210 user=root	2020-06-12 02:22:43
27.78.186.20	attackbotsspam	Honeypot attack, port: 445, PTR: localhost.	2020-06-12 01:55:18
118.24.247.76	attack	invalid user	2020-06-12 01:51:11
62.94.193.216	attackspambots	$f2bV_matches	2020-06-12 02:23:38
122.152.215.115	attackspambots	(sshd) Failed SSH login from 122.152.215.115 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 11 17:04:13 srv sshd[26577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.215.115 user=root Jun 11 17:04:15 srv sshd[26577]: Failed password for root from 122.152.215.115 port 55022 ssh2 Jun 11 17:12:30 srv sshd[26709]: Invalid user admin from 122.152.215.115 port 50452 Jun 11 17:12:32 srv sshd[26709]: Failed password for invalid user admin from 122.152.215.115 port 50452 ssh2 Jun 11 17:17:26 srv sshd[26767]: Invalid user gemma from 122.152.215.115 port 45276	2020-06-12 01:58:10
49.232.4.109	attackspambots	2020-06-10 19:36:37 server sshd[85094]: Failed password for invalid user root from 49.232.4.109 port 52884 ssh2	2020-06-12 01:56:43
222.186.173.142	attack	Jun 11 20:11:20 server sshd[20454]: Failed none for root from 222.186.173.142 port 59044 ssh2 Jun 11 20:11:23 server sshd[20454]: Failed password for root from 222.186.173.142 port 59044 ssh2 Jun 11 20:11:26 server sshd[20454]: Failed password for root from 222.186.173.142 port 59044 ssh2	2020-06-12 02:13:15
146.148.72.138	attack	Invalid user pai from 146.148.72.138 port 58434	2020-06-12 02:17:59
222.186.190.17	attackbotsspam	Jun 11 17:47:06 rush sshd[7169]: Failed password for root from 222.186.190.17 port 26320 ssh2 Jun 11 17:50:35 rush sshd[7260]: Failed password for root from 222.186.190.17 port 19307 ssh2 ...	2020-06-12 01:57:00
188.6.161.77	attackbots	5x Failed Password	2020-06-12 02:24:16
59.124.205.214	attackspam	Jun 11 17:15:47 haigwepa sshd[9712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.205.214 Jun 11 17:15:50 haigwepa sshd[9712]: Failed password for invalid user yarn from 59.124.205.214 port 39504 ssh2 ...	2020-06-12 02:30:04
64.91.60.164	attackspam	Honeypot attack, port: 81, PTR: 64-91-60-164.stat.centurytel.net.	2020-06-12 01:56:19

Recently Reported IPs

201.111.48.195	2.200.106.189	45.190.159.11	50.250.38.28
61.178.55.112	190.149.228.113	37.110.24.205	49.82.27.168
49.249.50.254	88.218.66.22	107.173.110.193	174.138.29.8
122.169.96.82	173.212.242.73	31.163.186.142	61.115.100.215
211.199.80.82	187.56.55.236	216.126.67.7	44.204.42.72