2.134.37.244 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: JSC Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.	2019-12-30 23:14:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.37.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.134.37.244.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123000 1800 900 604800 86400

;; Query time: 182 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 23:21:57 CST 2019
;; MSG SIZE  rcvd: 116

Host info

244.37.134.2.in-addr.arpa domain name pointer 2.134.37.244.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
244.37.134.2.in-addr.arpa	name = 2.134.37.244.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.202.201.220	attackspam	2019-10-17T07:43:41.977570abusebot-5.cloudsearch.cf sshd\[1831\]: Invalid user harold from 223.202.201.220 port 43369	2019-10-17 15:54:11
106.13.222.115	attack	Oct 16 05:19:07 extapp sshd[30155]: Failed password for r.r from 106.13.222.115 port 39864 ssh2 Oct 16 05:24:39 extapp sshd[32342]: Invalid user cameron from 106.13.222.115 Oct 16 05:24:41 extapp sshd[32342]: Failed password for invalid user cameron from 106.13.222.115 port 50030 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.222.115	2019-10-17 16:13:19
27.16.241.48	attackspam	Oct 16 03:39:38 h2034429 sshd[11807]: Invalid user user from 27.16.241.48 Oct 16 03:39:41 h2034429 sshd[11807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.16.241.48 Oct 16 03:39:43 h2034429 sshd[11807]: Failed password for invalid user user from 27.16.241.48 port 40302 ssh2 Oct 16 03:39:43 h2034429 sshd[11807]: Received disconnect from 27.16.241.48 port 40302:11: Bye Bye [preauth] Oct 16 03:39:43 h2034429 sshd[11807]: Disconnected from 27.16.241.48 port 40302 [preauth] Oct 16 03:58:46 h2034429 sshd[11946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.16.241.48 user=r.r Oct 16 03:58:48 h2034429 sshd[11946]: Failed password for r.r from 27.16.241.48 port 56980 ssh2 Oct 16 03:58:48 h2034429 sshd[11946]: Received disconnect from 27.16.241.48 port 56980:11: Bye Bye [preauth] Oct 16 03:58:48 h2034429 sshd[11946]: Disconnected from 27.16.241.48 port 56980 [preauth] Oct 16 04:03:18 h2........ -------------------------------	2019-10-17 16:11:19
123.136.161.146	attackbots	2019-10-17T07:57:10.476421shield sshd\[31999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 user=root 2019-10-17T07:57:12.829556shield sshd\[31999\]: Failed password for root from 123.136.161.146 port 56008 ssh2 2019-10-17T08:01:35.739271shield sshd\[32350\]: Invalid user thaiset from 123.136.161.146 port 58796 2019-10-17T08:01:35.743642shield sshd\[32350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.136.161.146 2019-10-17T08:01:37.479040shield sshd\[32350\]: Failed password for invalid user thaiset from 123.136.161.146 port 58796 ssh2	2019-10-17 16:16:32
94.191.89.180	attack	Oct 17 05:50:57 DAAP sshd[15461]: Invalid user prueba from 94.191.89.180 port 51248 Oct 17 05:50:58 DAAP sshd[15461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.89.180 Oct 17 05:50:57 DAAP sshd[15461]: Invalid user prueba from 94.191.89.180 port 51248 Oct 17 05:51:00 DAAP sshd[15461]: Failed password for invalid user prueba from 94.191.89.180 port 51248 ssh2 ...	2019-10-17 16:13:40
159.65.155.117	attackspam	Automatic report - Banned IP Access	2019-10-17 16:08:47
164.132.107.245	attackbotsspam	Brute force attempt	2019-10-17 15:55:19
106.12.74.123	attack	Oct 17 05:42:21 herz-der-gamer sshd[9108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.123 user=root Oct 17 05:42:23 herz-der-gamer sshd[9108]: Failed password for root from 106.12.74.123 port 48568 ssh2 Oct 17 05:50:44 herz-der-gamer sshd[9162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.123 user=root Oct 17 05:50:46 herz-der-gamer sshd[9162]: Failed password for root from 106.12.74.123 port 46612 ssh2 ...	2019-10-17 16:22:00
221.13.232.37	attackspam	Fail2Ban - FTP Abuse Attempt	2019-10-17 16:11:58
96.19.3.46	attackspambots	Oct 16 18:03:51 auw2 sshd\[23616\]: Invalid user changeme from 96.19.3.46 Oct 16 18:03:51 auw2 sshd\[23616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-19-3-46.cpe.cableone.net Oct 16 18:03:53 auw2 sshd\[23616\]: Failed password for invalid user changeme from 96.19.3.46 port 41448 ssh2 Oct 16 18:07:54 auw2 sshd\[23913\]: Invalid user bot2017 from 96.19.3.46 Oct 16 18:07:54 auw2 sshd\[23913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96-19-3-46.cpe.cableone.net	2019-10-17 15:53:16
109.230.219.100	attackbots	Honeypot attack, port: 445, PTR: vmanager3229.premium-vserver.net.	2019-10-17 16:15:45
90.90.81.137	attackbots	Oct 17 06:51:25 vtv3 sshd\[6830\]: Invalid user pi from 90.90.81.137 port 44492 Oct 17 06:51:25 vtv3 sshd\[6830\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.90.81.137 Oct 17 06:51:25 vtv3 sshd\[6861\]: Invalid user pi from 90.90.81.137 port 44502 Oct 17 06:51:25 vtv3 sshd\[6861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.90.81.137 Oct 17 06:51:27 vtv3 sshd\[6830\]: Failed password for invalid user pi from 90.90.81.137 port 44492 ssh2	2019-10-17 15:44:29
45.227.255.173	attackbots	Invalid user test from 45.227.255.173 port 24711	2019-10-17 16:06:56
49.88.112.114	attack	Oct 16 21:46:54 friendsofhawaii sshd\[14241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 16 21:46:56 friendsofhawaii sshd\[14241\]: Failed password for root from 49.88.112.114 port 51636 ssh2 Oct 16 21:51:04 friendsofhawaii sshd\[14559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 16 21:51:06 friendsofhawaii sshd\[14559\]: Failed password for root from 49.88.112.114 port 40218 ssh2 Oct 16 21:52:03 friendsofhawaii sshd\[14628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-10-17 15:56:30
58.244.255.45	attackbotsspam	58.244.255.45 - - \[17/Oct/2019:05:51:30 +0200\] "GET / HTTP/1.1" 403 483 "-" "Mozilla/5.0 \(Windows NT 6.1\; Win64\; x64\; rv:59.0\) Gecko/20100101 Firefox/59.0" 58.244.255.45 - - \[17/Oct/2019:05:51:31 +0200\] "GET /robots.txt HTTP/1.1" 403 492 "-" "Mozilla/5.0 \(Windows NT 6.1\; Win64\; x64\; rv:59.0\) Gecko/20100101 Firefox/59.0" 58.244.255.45 - - \[17/Oct/2019:05:51:31 +0200\] "POST /e14aa6bc/admin.php HTTP/1.1" 403 500 "-" "Mozilla/5.0 \(Windows NT 6.1\; Win64\; x64\; rv:59.0\) Gecko/20100101 Firefox/59.0" ...	2019-10-17 15:51:53

Recently Reported IPs

36.73.160.249	212.35.185.62	5.182.211.104	162.143.171.40
82.229.11.91	116.97.46.28	49.231.176.19	42.180.146.151
86.62.92.70	203.177.46.158	177.134.157.218	94.42.196.106
42.179.54.78	113.20.100.173	2.95.111.85	102.139.185.15
61.85.66.215	183.193.234.138	74.162.115.169	42.157.129.26