2.134.3.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.134.32.134	attackspambots	2019-10-23 19:56:55 1iNKsQ-000421-Qp SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19700 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:57:02 1iNKsX-00042A-CO SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19756 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:57:07 1iNKsc-00042j-JG SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19784 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 02:09:42
2.134.37.244	attack	CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.	2019-12-30 23:14:10

Type

Details

Datetime

2.134.32.134

attackspambots

2019-10-23 19:56:55 1iNKsQ-000421-Qp SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19700 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-10-23 19:57:02 1iNKsX-00042A-CO SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19756 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-10-23 19:57:07 1iNKsc-00042j-JG SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19784 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-01-30 02:09:42

2.134.37.244

attack

CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.

2019-12-30 23:14:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.3.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36842
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.134.3.72.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 14:40:41 CST 2022
;; MSG SIZE  rcvd: 103

Host info

72.3.134.2.in-addr.arpa domain name pointer 2.134.3.72.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.3.134.2.in-addr.arpa	name = 2.134.3.72.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.254.250.164	attackspam	Wordpress malicious attack:[octausername]	2020-06-13 17:31:11
167.71.89.108	attack	SSH Brute Force	2020-06-13 17:38:57
116.121.104.10	attackbotsspam	Wordpress malicious attack:[octawpauthor]	2020-06-13 18:14:57
210.105.82.53	attackspam	Invalid user monitor from 210.105.82.53 port 43438	2020-06-13 17:56:13
120.132.116.214	attackbots	(sshd) Failed SSH login from 120.132.116.214 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 13 07:00:35 s1 sshd[28684]: Invalid user li226-150 from 120.132.116.214 port 58088 Jun 13 07:00:37 s1 sshd[28684]: Failed password for invalid user li226-150 from 120.132.116.214 port 58088 ssh2 Jun 13 07:05:07 s1 sshd[28821]: Invalid user abby from 120.132.116.214 port 47118 Jun 13 07:05:09 s1 sshd[28821]: Failed password for invalid user abby from 120.132.116.214 port 47118 ssh2 Jun 13 07:06:42 s1 sshd[28876]: Invalid user jhartley from 120.132.116.214 port 35790	2020-06-13 18:13:54
125.88.144.56	attackbotsspam	ssh brute force	2020-06-13 17:36:28
95.111.74.98	attackbots	Jun 13 11:25:24 vps333114 sshd[23868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.111.74.98 Jun 13 11:25:26 vps333114 sshd[23868]: Failed password for invalid user test from 95.111.74.98 port 55992 ssh2 ...	2020-06-13 17:59:48
123.206.59.235	attackbotsspam	Jun 13 07:47:55 vps1 sshd[1062227]: Failed password for root from 123.206.59.235 port 57688 ssh2 Jun 13 07:51:34 vps1 sshd[1063264]: Invalid user avion from 123.206.59.235 port 34264 ...	2020-06-13 18:17:14
123.118.20.146	attack	Unauthorized connection attempt detected from IP address 123.118.20.146 to port 23	2020-06-13 17:57:04
188.217.181.18	attackbots	Jun 13 08:59:23 cosmoit sshd[6784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.217.181.18	2020-06-13 17:45:15
37.59.112.180	attack	Wordpress malicious attack:[sshd]	2020-06-13 17:51:52
94.191.23.15	attackspam	Jun 13 10:47:06 lnxweb61 sshd[27443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.23.15	2020-06-13 17:40:02
129.211.92.41	attack	ssh brute force	2020-06-13 17:32:14
41.94.28.9	attackspam	Invalid user jx from 41.94.28.9 port 33958	2020-06-13 17:33:10
116.12.251.132	attackbotsspam	Invalid user guq from 116.12.251.132 port 38961	2020-06-13 18:03:32

Recently Reported IPs

86.99.204.182	93.186.12.36	111.53.122.69	110.35.53.168
188.164.194.117	189.212.114.142	125.143.53.2	165.16.71.1
177.77.120.142	223.241.225.113	116.247.93.94	178.93.35.148
172.70.149.74	95.43.42.100	176.46.150.192	31.135.78.37
120.204.196.181	110.77.240.245	1.171.155.94	151.242.224.172