2.34.48.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Vodafone Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	(imapd) Failed IMAP login from 2.34.48.54 (IT/Italy/net-2-34-48-54.cust.vodafonedsl.it): 1 in the last 3600 secs	2020-04-01 15:10:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.34.48.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46928
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.34.48.54.			IN	A

;; AUTHORITY SECTION:
.			442	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 182 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 15:09:54 CST 2020
;; MSG SIZE  rcvd: 114

Host info

54.48.34.2.in-addr.arpa domain name pointer net-2-34-48-54.cust.vodafonedsl.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.48.34.2.in-addr.arpa	name = net-2-34-48-54.cust.vodafonedsl.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.190	attack	May 8 14:35:36 dcd-gentoo sshd[1380]: User root from 218.92.0.190 not allowed because none of user's groups are listed in AllowGroups May 8 14:35:38 dcd-gentoo sshd[1380]: error: PAM: Authentication failure for illegal user root from 218.92.0.190 May 8 14:35:38 dcd-gentoo sshd[1380]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.190 port 58900 ssh2 ...	2020-05-08 20:38:24
222.186.169.194	attackspam	2020-05-08T14:27:12.747224centos sshd[24465]: Failed password for root from 222.186.169.194 port 32802 ssh2 2020-05-08T14:27:17.753269centos sshd[24465]: Failed password for root from 222.186.169.194 port 32802 ssh2 2020-05-08T14:27:22.763383centos sshd[24465]: Failed password for root from 222.186.169.194 port 32802 ssh2 ...	2020-05-08 20:28:39
178.175.148.36	attackbots	CMS (WordPress or Joomla) login attempt.	2020-05-08 20:45:32
185.220.100.253	attackspam	May 8 13:42:35 vmd48417 sshd[30020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.100.253	2020-05-08 20:16:27
81.4.100.71	attack	May 8 12:20:36 vlre-nyc-1 sshd\[7767\]: Invalid user zc from 81.4.100.71 May 8 12:20:36 vlre-nyc-1 sshd\[7767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.100.71 May 8 12:20:38 vlre-nyc-1 sshd\[7767\]: Failed password for invalid user zc from 81.4.100.71 port 34694 ssh2 May 8 12:24:30 vlre-nyc-1 sshd\[7821\]: Invalid user user from 81.4.100.71 May 8 12:24:30 vlre-nyc-1 sshd\[7821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.100.71 ...	2020-05-08 20:39:20
1.214.220.227	attackspam	May 8 14:27:14 eventyay sshd[22642]: Failed password for root from 1.214.220.227 port 36261 ssh2 May 8 14:31:09 eventyay sshd[22727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.214.220.227 May 8 14:31:11 eventyay sshd[22727]: Failed password for invalid user user from 1.214.220.227 port 54565 ssh2 ...	2020-05-08 20:36:32
52.168.33.106	attackspambots	05/08/2020-08:15:57.823494 52.168.33.106 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner)	2020-05-08 20:22:46
106.13.232.184	attackbotsspam	2020-05-08T07:54:32.4913861495-001 sshd[23496]: Invalid user mongodb from 106.13.232.184 port 49822 2020-05-08T07:54:34.2654781495-001 sshd[23496]: Failed password for invalid user mongodb from 106.13.232.184 port 49822 ssh2 2020-05-08T08:02:52.4595671495-001 sshd[23972]: Invalid user seh from 106.13.232.184 port 55548 2020-05-08T08:02:52.4663771495-001 sshd[23972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.232.184 2020-05-08T08:02:52.4595671495-001 sshd[23972]: Invalid user seh from 106.13.232.184 port 55548 2020-05-08T08:02:54.8754401495-001 sshd[23972]: Failed password for invalid user seh from 106.13.232.184 port 55548 ssh2 ...	2020-05-08 20:56:08
193.31.118.241	attackbotsspam	fake offers From: "Health Smart Watch" Date: Thu, 07 May 2020 22:31:30 -0500 Received: from punishdevelop.icu (unknown [193.31.118.241])	2020-05-08 20:16:44
222.186.175.183	attackspam	May 8 14:18:04 home sshd[31933]: Failed password for root from 222.186.175.183 port 63558 ssh2 May 8 14:18:17 home sshd[31933]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 63558 ssh2 [preauth] May 8 14:18:22 home sshd[31972]: Failed password for root from 222.186.175.183 port 12398 ssh2 ...	2020-05-08 20:37:28
201.163.183.198	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-05-08 20:53:44
195.54.160.243	attack	May 8 14:31:11 debian-2gb-nbg1-2 kernel: \[11199951.856066\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.160.243 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=12510 PROTO=TCP SPT=58124 DPT=12472 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-08 20:32:15
125.160.134.206	attackbots	Unauthorized connection attempt from IP address 125.160.134.206 on Port 445(SMB)	2020-05-08 20:25:42
93.174.228.82	attackbotsspam	Unauthorized connection attempt from IP address 93.174.228.82 on Port 445(SMB)	2020-05-08 20:20:27
198.108.67.52	attack	05/08/2020-08:15:35.933082 198.108.67.52 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-08 20:55:05

Recently Reported IPs

181.42.41.225	41.218.155.209	205.185.113.166	134.126.78.95
129.107.13.72	167.18.159.14	80.199.182.175	1.246.182.163
74.255.116.22	222.28.180.114	177.63.224.222	114.99.13.217
168.76.83.181	91.136.96.234	173.192.183.0	204.52.46.243
164.67.17.172	143.177.59.210	101.7.127.241	167.201.16.201