Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.242.26.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44249
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.242.26.64.			IN	A

;; AUTHORITY SECTION:
.			173	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010801 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 09 11:03:18 CST 2022
;; MSG SIZE  rcvd: 104
Host info
64.26.242.2.in-addr.arpa domain name pointer dynamic-002-242-026-064.2.242.pool.telefonica.de.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.26.242.2.in-addr.arpa	name = dynamic-002-242-026-064.2.242.pool.telefonica.de.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
111.229.136.177 attackbots
Sep 12 09:26:59 dhoomketu sshd[3027857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.136.177 
Sep 12 09:26:59 dhoomketu sshd[3027857]: Invalid user master from 111.229.136.177 port 36432
Sep 12 09:27:01 dhoomketu sshd[3027857]: Failed password for invalid user master from 111.229.136.177 port 36432 ssh2
Sep 12 09:31:27 dhoomketu sshd[3027910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.136.177  user=root
Sep 12 09:31:29 dhoomketu sshd[3027910]: Failed password for root from 111.229.136.177 port 41956 ssh2
...
2020-09-12 14:31:58
202.155.206.50 attack
Brute-Force reported by Fail2Ban
2020-09-12 13:57:38
91.210.225.11 attackbots
2020-09-11T21:42:25.857427ionos.janbro.de sshd[79683]: Failed password for invalid user admin from 91.210.225.11 port 38498 ssh2
2020-09-11T21:42:29.957807ionos.janbro.de sshd[79683]: Failed password for invalid user admin from 91.210.225.11 port 38498 ssh2
2020-09-11T21:42:32.587983ionos.janbro.de sshd[79683]: Failed password for invalid user admin from 91.210.225.11 port 38498 ssh2
2020-09-11T21:42:34.979005ionos.janbro.de sshd[79683]: Failed password for invalid user admin from 91.210.225.11 port 38498 ssh2
2020-09-11T21:42:38.081008ionos.janbro.de sshd[79683]: Failed password for invalid user admin from 91.210.225.11 port 38498 ssh2
2020-09-11T21:42:38.088800ionos.janbro.de sshd[79683]: error: maximum authentication attempts exceeded for invalid user admin from 91.210.225.11 port 38498 ssh2 [preauth]
2020-09-11T21:42:46.696167ionos.janbro.de sshd[79687]: Invalid user admin from 91.210.225.11 port 38948
2020-09-11T21:42:46.880228ionos.janbro.de sshd[79687]: pam_unix(sshd:auth): auth
...
2020-09-12 14:17:33
140.86.12.202 attack
140.86.12.202 - - [03/Jul/2020:20:44:42 +0000] "\x16\x03\x01\x00\x89\x01\x00\x00\x85\x03\x03~?\xCAGQ\x80\x17\x8B\xE2W;\x9B6\xA4" 400 166 "-" "-"
2020-09-12 14:04:51
218.92.0.212 attackspam
Sep 12 07:49:07 nextcloud sshd\[25149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212  user=root
Sep 12 07:49:09 nextcloud sshd\[25149\]: Failed password for root from 218.92.0.212 port 6849 ssh2
Sep 12 07:49:21 nextcloud sshd\[25149\]: Failed password for root from 218.92.0.212 port 6849 ssh2
2020-09-12 14:07:25
77.199.87.64 attackspam
Invalid user sophia from 77.199.87.64 port 46018
2020-09-12 14:16:28
206.189.138.99 attack
SSH-BruteForce
2020-09-12 14:13:18
113.176.61.244 attackspam
Automatic report - Port Scan Attack
2020-09-12 14:33:50
37.23.214.18 attackbots
(sshd) Failed SSH login from 37.23.214.18 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 11 12:56:00 server5 sshd[15108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.23.214.18  user=root
Sep 11 12:56:02 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2
Sep 11 12:56:07 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2
Sep 11 12:56:12 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2
Sep 11 12:56:14 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2
2020-09-12 14:26:22
159.65.229.200 attackspam
Wordpress malicious attack:[sshd]
2020-09-12 14:11:16
212.70.149.83 attackspam
Sep 12 08:07:23 relay postfix/smtpd\[15316\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 12 08:07:49 relay postfix/smtpd\[15317\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 12 08:08:14 relay postfix/smtpd\[15316\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 12 08:08:40 relay postfix/smtpd\[19854\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 12 08:09:06 relay postfix/smtpd\[15317\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-09-12 14:11:57
62.189.96.69 attack
Sep  9 22:18:51 hurricane sshd[23674]: Invalid user em3-user from 62.189.96.69 port 56526
Sep  9 22:18:51 hurricane sshd[23674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.189.96.69
Sep  9 22:18:53 hurricane sshd[23674]: Failed password for invalid user em3-user from 62.189.96.69 port 56526 ssh2
Sep  9 22:18:53 hurricane sshd[23674]: Connection closed by 62.189.96.69 port 56526 [preauth]
Sep  9 22:18:55 hurricane sshd[23676]: Invalid user jenkins from 62.189.96.69 port 57006
Sep  9 22:18:55 hurricane sshd[23676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.189.96.69


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=62.189.96.69
2020-09-12 14:08:28
193.95.90.82 attackbots
Brute forcing RDP port 3389
2020-09-12 14:24:18
115.159.214.247 attackbots
2020-09-12T05:40:35.416208abusebot.cloudsearch.cf sshd[17553]: Invalid user kuaisuweb from 115.159.214.247 port 35074
2020-09-12T05:40:35.422345abusebot.cloudsearch.cf sshd[17553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.214.247
2020-09-12T05:40:35.416208abusebot.cloudsearch.cf sshd[17553]: Invalid user kuaisuweb from 115.159.214.247 port 35074
2020-09-12T05:40:37.643427abusebot.cloudsearch.cf sshd[17553]: Failed password for invalid user kuaisuweb from 115.159.214.247 port 35074 ssh2
2020-09-12T05:43:45.755113abusebot.cloudsearch.cf sshd[17573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.214.247  user=root
2020-09-12T05:43:47.725539abusebot.cloudsearch.cf sshd[17573]: Failed password for root from 115.159.214.247 port 43788 ssh2
2020-09-12T05:46:54.213568abusebot.cloudsearch.cf sshd[17589]: Invalid user sales from 115.159.214.247 port 52510
...
2020-09-12 14:02:04
63.82.55.193 attackbots
Sep  7 20:10:52 online-web-1 postfix/smtpd[1043754]: connect from agree.bmglondon.com[63.82.55.193]
Sep x@x
Sep  7 20:10:58 online-web-1 postfix/smtpd[1043754]: disconnect from agree.bmglondon.com[63.82.55.193] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Sep  7 20:11:00 online-web-1 postfix/smtpd[1040809]: connect from agree.bmglondon.com[63.82.55.193]
Sep x@x
Sep  7 20:11:05 online-web-1 postfix/smtpd[1040809]: disconnect from agree.bmglondon.com[63.82.55.193] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Sep  7 20:15:19 online-web-1 postfix/smtpd[1043755]: connect from agree.bmglondon.com[63.82.55.193]
Sep x@x
Sep  7 20:15:25 online-web-1 postfix/smtpd[1043755]: disconnect from agree.bmglondon.com[63.82.55.193] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5
Sep  7 20:15:34 online-web-1 postfix/smtpd[1041064]: connect from agree.bmglondon.com[63.82.55.193]
Sep x@x
Sep  7 20:15:39 online-web-1 postfix/smtpd[1041064]: disconnect from ........
-------------------------------
2020-09-12 13:59:43

Recently Reported IPs

105.172.23.170 114.176.50.177 27.50.162.168 101.96.119.55
200.46.160.166 238.61.240.236 116.135.7.217 53.40.59.229
80.189.18.119 35.162.139.80 102.40.187.24 174.248.222.144
168.66.10.107 73.250.129.120 135.190.95.120 22.87.6.56
118.34.27.202 117.192.197.133 168.102.1.61 191.168.155.147