195.34.242.72 - IPInfo

Basic Info

City: Lipetsk

Region: Lipetsk Oblast

Country: Russia

Internet Service Provider: Lipetsk DSL Dynamic-IP

Hostname: unknown

Organization: Rostelecom

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 195.34.242.72 on Port 445(SMB)	2019-07-13 01:09:33

Comments on same subnet:

IP	Type	Details	Datetime
195.34.242.172	attack	Unauthorized connection attempt from IP address 195.34.242.172 on Port 445(SMB)	2020-01-08 19:13:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.34.242.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33811
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.34.242.72.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 13 01:09:19 CST 2019
;; MSG SIZE  rcvd: 117

Host info

72.242.34.195.in-addr.arpa domain name pointer X72.DSL06.lipetsk.ru.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
72.242.34.195.in-addr.arpa	name = X72.DSL06.lipetsk.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.83.90.177	attackspam	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-07-14 20:22:47
203.106.140.95	attackspam	frenzy	2020-07-14 20:01:17
159.89.91.67	attackbotsspam	Jul 14 11:22:53 XXXXXX sshd[54665]: Invalid user teran from 159.89.91.67 port 49042	2020-07-14 20:08:46
116.73.142.67	attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-07-14 20:23:06
222.252.25.186	attack	Jul 14 13:57:34 Invalid user dia from 222.252.25.186 port 46967	2020-07-14 20:02:54
202.184.193.108	attack	Port Scan detected! ...	2020-07-14 20:15:27
89.3.236.207	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-14T11:54:07Z and 2020-07-14T11:59:41Z	2020-07-14 20:32:37
52.136.123.132	attack	...	2020-07-14 20:18:54
158.69.235.18	attackbotsspam	Jul 14 11:14:04 XXX sshd[36552]: Invalid user tf2server from 158.69.235.18 port 46652	2020-07-14 20:04:58
64.197.196.174	attack	Jul 14 11:55:28 XXXXXX sshd[54778]: Invalid user hal from 64.197.196.174 port 38402	2020-07-14 20:06:51
118.70.42.52	attack	1594727995 - 07/14/2020 13:59:55 Host: 118.70.42.52/118.70.42.52 Port: 445 TCP Blocked	2020-07-14 20:14:01
157.245.155.13	attackspam	Jul 14 13:29:55 pve1 sshd[4713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 Jul 14 13:29:57 pve1 sshd[4713]: Failed password for invalid user eugene from 157.245.155.13 port 52816 ssh2 ...	2020-07-14 20:01:43
192.241.233.29	attackbotsspam	TCP (SYN) 192.241.233.29:44879 -> port 22, len 40	2020-07-14 19:55:45
51.178.46.95	attack	Jul 14 11:06:16 XXX sshd[36003]: Invalid user sjx from 51.178.46.95 port 35256	2020-07-14 20:09:55
45.232.75.253	attackbots	Jul 14 05:12:02 dignus sshd[11560]: Failed password for invalid user lpy from 45.232.75.253 port 45282 ssh2 Jul 14 05:16:01 dignus sshd[12006]: Invalid user tempuser from 45.232.75.253 port 41890 Jul 14 05:16:01 dignus sshd[12006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.232.75.253 Jul 14 05:16:03 dignus sshd[12006]: Failed password for invalid user tempuser from 45.232.75.253 port 41890 ssh2 Jul 14 05:19:54 dignus sshd[12427]: Invalid user cinzia from 45.232.75.253 port 38498 ...	2020-07-14 20:28:02

Recently Reported IPs

146.87.39.46	95.13.226.249	210.153.203.35	2a02:560:42ca:4500:118e:8dad:2455:dda
105.96.62.226	152.58.64.83	58.11.242.69	124.207.12.101
37.120.98.113	177.125.110.227	87.198.191.62	77.241.214.18
147.43.152.207	105.67.228.171	108.136.177.201	125.186.133.56
89.126.130.127	62.249.227.34	151.26.85.179	184.22.46.111