2.134.2.49 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.134.28.68	attack	Unauthorized connection attempt from IP address 2.134.28.68 on Port 445(SMB)	2020-07-09 02:38:18
2.134.202.108	attackspam	Port probing on unauthorized port 445	2020-06-10 14:30:05
2.134.240.168	attackspambots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-21 17:04:41
2.134.242.89	attack	DATE:2020-02-09 00:04:11, IP:2.134.242.89, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-09 08:07:43
2.134.242.89	attackbots	Unauthorized connection attempt detected from IP address 2.134.242.89 to port 23 [J]	2020-02-05 19:48:28
2.134.254.193	attackspam	2019-07-08 18:33:06 1hkWZd-0005oh-CW SMTP connection from \(2.134.254.193.megaline.telecom.kz\) \[2.134.254.193\]:20576 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:33:30 1hkWa1-0005pH-KS SMTP connection from \(2.134.254.193.megaline.telecom.kz\) \[2.134.254.193\]:20774 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:33:40 1hkWaC-0005pX-0k SMTP connection from \(2.134.254.193.megaline.telecom.kz\) \[2.134.254.193\]:20855 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 02:11:07
2.134.240.111	attackbots	Telnet/23 MH Probe, BF, Hack -	2020-01-10 04:22:58
2.134.241.5	attack	Unauthorized connection attempt detected from IP address 2.134.241.5 to port 23 [J]	2020-01-05 04:02:11
2.134.226.58	attackbots	namecheap spam	2019-08-28 16:13:23
2.134.204.20	attack	fell into ViewStateTrap:wien2018	2019-07-18 15:03:28
2.134.204.20	attackspam	/posting.php?mode=post&f=3	2019-07-05 04:43:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.2.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60791
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.134.2.49.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:07:25 CST 2022
;; MSG SIZE  rcvd: 103

Host info

49.2.134.2.in-addr.arpa domain name pointer 2.134.2.49.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.2.134.2.in-addr.arpa	name = 2.134.2.49.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
23.129.64.203	attackbots	Automatic report - Web App Attack	2019-07-09 07:18:30
27.3.150.15	attackbotsspam	Jul 8 22:56:32 dev0-dcde-rnet sshd[14488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.3.150.15 Jul 8 22:56:34 dev0-dcde-rnet sshd[14488]: Failed password for invalid user usuario from 27.3.150.15 port 44594 ssh2 Jul 8 22:56:37 dev0-dcde-rnet sshd[14488]: Failed password for invalid user usuario from 27.3.150.15 port 44594 ssh2 Jul 8 22:56:39 dev0-dcde-rnet sshd[14488]: Failed password for invalid user usuario from 27.3.150.15 port 44594 ssh2	2019-07-09 07:07:48
165.169.44.176	attack	Jul 8 23:51:35 mout sshd[13728]: Failed password for invalid user 587 from 165.169.44.176 port 59124 ssh2 Jul 8 23:51:35 mout sshd[13728]: Connection closed by 165.169.44.176 port 59124 [preauth] Jul 9 01:03:54 mout sshd[16197]: Invalid user user from 165.169.44.176 port 43498	2019-07-09 07:39:26
218.104.199.131	attackbots	Jul 8 16:45:24 * sshd[27569]: Failed password for invalid user wellington from 218.104.199.131 port 60777 ssh2 Jul 8 16:47:39 * sshd[27571]: Failed password for invalid user patrol from 218.104.199.131 port 39817 ssh2 Jul 8 16:50:54 * sshd[27579]: Failed password for invalid user insanos from 218.104.199.131 port 50190 ssh2 Jul 8 16:52:00 * sshd[27581]: Failed password for invalid user philippe from 218.104.199.131 port 53646 ssh2 Jul 8 16:55:03 * sshd[27587]: Failed password for invalid user ts from 218.104.199.131 port 35785 ssh2 Jul 8 16:55:59 * sshd[27592]: Failed password for invalid user sean from 218.104.199.131 port 39242 ssh2	2019-07-09 07:41:54
188.83.163.6	attack	2019-07-08T17:54:03.556192WS-Zach sshd[17739]: Invalid user tom from 188.83.163.6 port 60919 2019-07-08T17:54:03.559920WS-Zach sshd[17739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.83.163.6 2019-07-08T17:54:03.556192WS-Zach sshd[17739]: Invalid user tom from 188.83.163.6 port 60919 2019-07-08T17:54:05.214653WS-Zach sshd[17739]: Failed password for invalid user tom from 188.83.163.6 port 60919 ssh2 2019-07-08T17:58:24.787907WS-Zach sshd[20098]: Invalid user cassandra from 188.83.163.6 port 41360 ...	2019-07-09 07:39:44
66.70.188.25	attack	Jul 8 22:49:42 icinga sshd[16951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.188.25 Jul 8 22:49:44 icinga sshd[16951]: Failed password for invalid user kathleen from 66.70.188.25 port 46464 ssh2 ...	2019-07-09 07:45:59
186.90.48.171	attack	445/tcp [2019-07-08]1pkt	2019-07-09 07:06:41
73.95.35.149	attack	Jul 8 20:33:21 mail sshd\[1754\]: Invalid user sinusbot1 from 73.95.35.149\ Jul 8 20:33:23 mail sshd\[1754\]: Failed password for invalid user sinusbot1 from 73.95.35.149 port 44882 ssh2\ Jul 8 20:36:50 mail sshd\[1789\]: Invalid user ftpuser from 73.95.35.149\ Jul 8 20:36:52 mail sshd\[1789\]: Failed password for invalid user ftpuser from 73.95.35.149 port 35217 ssh2\ Jul 8 20:39:10 mail sshd\[1839\]: Invalid user jiao from 73.95.35.149\ Jul 8 20:39:12 mail sshd\[1839\]: Failed password for invalid user jiao from 73.95.35.149 port 39333 ssh2\	2019-07-09 07:48:57
185.220.101.70	attack	2019-07-08T14:41:01.490583WS-Zach sshd[15103]: User root from 185.220.101.70 not allowed because none of user's groups are listed in AllowGroups 2019-07-08T14:41:01.500555WS-Zach sshd[15103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.70 user=root 2019-07-08T14:41:01.490583WS-Zach sshd[15103]: User root from 185.220.101.70 not allowed because none of user's groups are listed in AllowGroups 2019-07-08T14:41:03.818720WS-Zach sshd[15103]: Failed password for invalid user root from 185.220.101.70 port 36907 ssh2 2019-07-08T14:41:01.500555WS-Zach sshd[15103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.70 user=root 2019-07-08T14:41:01.490583WS-Zach sshd[15103]: User root from 185.220.101.70 not allowed because none of user's groups are listed in AllowGroups 2019-07-08T14:41:03.818720WS-Zach sshd[15103]: Failed password for invalid user root from 185.220.101.70 port 36907 ssh2 2019-07-08T14:41:07.62836	2019-07-09 07:07:01
123.207.2.120	attackspam	2019-07-08T20:39:27.400210scmdmz1 sshd\[31636\]: Invalid user faina from 123.207.2.120 port 40652 2019-07-08T20:39:27.403360scmdmz1 sshd\[31636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.2.120 2019-07-08T20:39:29.481209scmdmz1 sshd\[31636\]: Failed password for invalid user faina from 123.207.2.120 port 40652 ssh2 ...	2019-07-09 07:44:44
68.180.119.231	attack	Jul 9 01:42:51 mout sshd[17387]: Invalid user admin1234 from 68.180.119.231 port 59346	2019-07-09 07:48:32
113.234.25.159	attackspam	firewall-block, port(s): 22/tcp	2019-07-09 07:36:24
207.46.13.154	attackbots	Automatic report - Web App Attack	2019-07-09 07:40:16
85.105.14.197	attack	445/tcp 445/tcp [2019-07-08]2pkt	2019-07-09 07:14:03
103.253.107.246	attack	firewall-block, port(s): 445/tcp	2019-07-09 07:37:45

Recently Reported IPs

193.233.141.170	193.19.253.241	78.110.66.117	212.102.49.22
125.47.140.177	185.65.160.119	37.212.2.93	181.27.219.166
210.61.124.17	116.58.224.133	220.198.204.222	185.139.137.88
125.26.169.21	200.52.53.151	112.30.1.91	103.218.111.220
88.247.66.9	124.198.6.75	120.230.88.111	98.148.3.61