195.242.2.61 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Finland

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
195.242.218.8	attackbots	spam spam spam	2020-06-02 20:42:42
195.242.233.133	attackbotsspam	Feb 23 05:53:18 grey postfix/smtpd\[21816\]: NOQUEUE: reject: RCPT from unknown\[195.242.233.133\]: 554 5.7.1 Service unavailable\; Client host \[195.242.233.133\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?195.242.233.133\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-23 16:08:50
195.242.233.133	attackspambots	Jan 13 05:53:08 amit sshd\[3746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.242.233.133 user=root Jan 13 05:53:10 amit sshd\[3746\]: Failed password for root from 195.242.233.133 port 49149 ssh2 Jan 13 05:53:14 amit sshd\[3746\]: Failed password for root from 195.242.233.133 port 49149 ssh2 ...	2020-01-13 13:51:59
195.242.233.158	attackspam	SSH invalid-user multiple login attempts	2020-01-10 15:53:51
195.242.213.155	attack	TCP Port Scanning	2019-11-05 14:59:27
195.242.219.224	attackbots	Port Scan: TCP/443	2019-09-20 20:03:58
195.242.219.224	attack	Fail2Ban Ban Triggered HTTP Fake Web Crawler	2019-09-16 09:16:07
195.242.232.119	attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-08-19 08:56:48
195.242.234.150	attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-08-13 08:31:36
195.242.235.219	attackspam	Jul 29 19:22:52 offspring postfix/smtpd[29760]: warning: hostname host-195.242.235.219.c3.net.pl does not resolve to address 195.242.235.219: Name or service not known Jul 29 19:22:52 offspring postfix/smtpd[29760]: connect from unknown[195.242.235.219] Jul 29 19:22:53 offspring postfix/smtpd[29760]: warning: unknown[195.242.235.219]: SASL CRAM-MD5 authentication failed: authentication failure Jul 29 19:22:53 offspring postfix/smtpd[29760]: warning: unknown[195.242.235.219]: SASL PLAIN authentication failed: authentication failure Jul 29 19:22:54 offspring postfix/smtpd[29760]: warning: unknown[195.242.235.219]: SASL LOGIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=195.242.235.219	2019-07-30 02:28:24
195.242.233.120	attack	Brute force SMTP login attempts.	2019-07-18 05:56:18
195.242.232.14	attackbotsspam	mail auth brute force	2019-07-08 12:57:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.242.2.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25776
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;195.242.2.61.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 14:05:36 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 61.2.242.195.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 61.2.242.195.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.53.10.191	attackbotsspam	fail2ban	2020-06-30 08:13:57
222.232.29.235	attackspambots	Jun 30 01:52:54 inter-technics sshd[495]: Invalid user comp from 222.232.29.235 port 37238 Jun 30 01:52:54 inter-technics sshd[495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235 Jun 30 01:52:54 inter-technics sshd[495]: Invalid user comp from 222.232.29.235 port 37238 Jun 30 01:52:57 inter-technics sshd[495]: Failed password for invalid user comp from 222.232.29.235 port 37238 ssh2 Jun 30 01:59:23 inter-technics sshd[1139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235 user=root Jun 30 01:59:25 inter-technics sshd[1139]: Failed password for root from 222.232.29.235 port 60252 ssh2 ...	2020-06-30 08:01:19
45.199.104.62	attackbotsspam	SS5,DEF GET /phpmyadmin/index.php	2020-06-30 07:58:58
110.25.93.37	attackbotsspam	Honeypot attack, port: 5555, PTR: 110-25-93-37.adsl.fetnet.net.	2020-06-30 08:29:12
192.241.227.7	attackbotsspam	8945/tcp 123/udp [2020-06-27/29]2pkt	2020-06-30 07:53:01
152.32.105.12	attackbots	1593467159 - 06/29/2020 23:45:59 Host: 152.32.105.12/152.32.105.12 Port: 445 TCP Blocked	2020-06-30 07:50:55
173.212.201.28	attackspambots	Jun 29 19:48:00 fwservlet sshd[28833]: Invalid user test1 from 173.212.201.28 Jun 29 19:48:00 fwservlet sshd[28833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.201.28 Jun 29 19:48:02 fwservlet sshd[28833]: Failed password for invalid user test1 from 173.212.201.28 port 55682 ssh2 Jun 29 19:48:02 fwservlet sshd[28833]: Received disconnect from 173.212.201.28 port 55682:11: Bye Bye [preauth] Jun 29 19:48:02 fwservlet sshd[28833]: Disconnected from 173.212.201.28 port 55682 [preauth] Jun 29 19:55:56 fwservlet sshd[29071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.212.201.28 user=nagios Jun 29 19:55:58 fwservlet sshd[29071]: Failed password for nagios from 173.212.201.28 port 49790 ssh2 Jun 29 19:55:58 fwservlet sshd[29071]: Received disconnect from 173.212.201.28 port 49790:11: Bye Bye [preauth] Jun 29 19:55:58 fwservlet sshd[29071]: Disconnected from 173.212.201.28 port........ -------------------------------	2020-06-30 08:21:15
185.143.73.58	attackspambots	2020-06-29T17:38:19.665994linuxbox-skyline auth[370264]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=nationworld rhost=185.143.73.58 ...	2020-06-30 08:00:51
70.71.148.228	attackbotsspam	2020-06-29T20:51:19.315972server.espacesoutien.com sshd[17812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.71.148.228 2020-06-29T20:51:19.302252server.espacesoutien.com sshd[17812]: Invalid user hr from 70.71.148.228 port 36819 2020-06-29T20:51:21.401205server.espacesoutien.com sshd[17812]: Failed password for invalid user hr from 70.71.148.228 port 36819 ssh2 2020-06-29T20:52:33.441207server.espacesoutien.com sshd[17863]: Invalid user er from 70.71.148.228 port 42746 ...	2020-06-30 07:49:53
138.68.106.62	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-06-30 08:22:59
38.132.99.195	attackspambots	Possible port scan detected	2020-06-30 07:53:27
190.16.93.190	attack	Jun 30 02:06:08 eventyay sshd[27174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.16.93.190 Jun 30 02:06:10 eventyay sshd[27174]: Failed password for invalid user paolo from 190.16.93.190 port 50984 ssh2 Jun 30 02:09:12 eventyay sshd[27276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.16.93.190 ...	2020-06-30 08:17:31
202.190.14.121	attack	Unauthorized connection attempt from IP address 202.190.14.121 on Port 445(SMB)	2020-06-30 08:07:36
118.189.74.228	attackbotsspam	Jun 30 03:49:23 webhost01 sshd[10501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.189.74.228 Jun 30 03:49:24 webhost01 sshd[10501]: Failed password for invalid user tester from 118.189.74.228 port 40258 ssh2 ...	2020-06-30 08:30:24
187.190.90.161	attackbotsspam	Unauthorized connection attempt from IP address 187.190.90.161 on Port 445(SMB)	2020-06-30 08:24:24

Recently Reported IPs

8.161.202.241	158.11.116.186	39.69.74.51	9.87.52.56
8.28.153.194	60.145.211.209	98.70.240.55	177.164.108.196
139.86.241.71	252.239.193.21	228.2.143.13	56.251.212.188
153.179.64.226	76.195.125.225	141.111.145.155	169.173.57.122
151.13.30.176	126.7.254.51	68.154.235.158	122.84.172.220