2.40.34.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.40.34.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.40.34.242.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 16:28:48 CST 2022
;; MSG SIZE  rcvd: 104

Host info

242.34.40.2.in-addr.arpa domain name pointer net-2-40-34-242.cust.vodafonedsl.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.34.40.2.in-addr.arpa	name = net-2-40-34-242.cust.vodafonedsl.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.141.71.27	attack	Apr 1 08:11:24 vmd48417 sshd[26490]: Failed password for root from 187.141.71.27 port 45350 ssh2	2020-04-01 14:29:50
185.163.31.180	attackbots	Apr 1 08:13:12 host sshd[40323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.163.31.180 user=root Apr 1 08:13:14 host sshd[40323]: Failed password for root from 185.163.31.180 port 53695 ssh2 ...	2020-04-01 14:55:13
165.227.93.39	attackspam	Invalid user mep from 165.227.93.39 port 42092	2020-04-01 14:40:38
5.181.51.170	attack	2020-04-01T03:47:29.908187shield sshd\[16376\]: Invalid user oracle from 5.181.51.170 port 48158 2020-04-01T03:47:29.911434shield sshd\[16376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v2202003104530110793.powersrv.de 2020-04-01T03:47:32.251163shield sshd\[16376\]: Failed password for invalid user oracle from 5.181.51.170 port 48158 ssh2 2020-04-01T03:53:00.239206shield sshd\[18106\]: Invalid user www from 5.181.51.170 port 32778 2020-04-01T03:53:00.242817shield sshd\[18106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v2202003104530110793.powersrv.de	2020-04-01 15:03:03
123.1.174.156	attackbotsspam	Apr 1 05:25:14 *** sshd[10651]: User root from 123.1.174.156 not allowed because not listed in AllowUsers	2020-04-01 14:47:52
222.186.15.158	attackbots	Unauthorized connection attempt detected from IP address 222.186.15.158 to port 22	2020-04-01 14:34:57
175.6.102.248	attack	Brute-force attempt banned	2020-04-01 15:03:23
222.186.42.137	attackspambots	SSH brute-force attempt	2020-04-01 14:52:23
198.54.125.27	attackspam	Automatic report - XMLRPC Attack	2020-04-01 14:32:38
148.70.183.43	attackspambots	Mar 31 20:23:53 web1 sshd\[3832\]: Invalid user admin from 148.70.183.43 Mar 31 20:23:53 web1 sshd\[3832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.183.43 Mar 31 20:23:55 web1 sshd\[3832\]: Failed password for invalid user admin from 148.70.183.43 port 33167 ssh2 Mar 31 20:29:47 web1 sshd\[4457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.183.43 user=root Mar 31 20:29:48 web1 sshd\[4457\]: Failed password for root from 148.70.183.43 port 38768 ssh2	2020-04-01 15:00:22
177.152.124.23	attack	failed root login	2020-04-01 14:48:56
94.19.29.200	attackspambots	DATE:2020-04-01 05:53:00, IP:94.19.29.200, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-04-01 15:02:30
94.154.18.59	attackbots	Apr 1 05:45:58 mail.srvfarm.net postfix/smtpd[1072856]: NOQUEUE: reject: RCPT from 94-154-18-59.rev.cheeloo.net[94.154.18.59]: 554 5.7.1 Service unavailable; Client host [94.154.18.59] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?94.154.18.59; from= to= proto=ESMTP helo=<94-154-18-59.rev.cheeloo.net> Apr 1 05:45:58 mail.srvfarm.net postfix/smtpd[1072856]: NOQUEUE: reject: RCPT from 94-154-18-59.rev.cheeloo.net[94.154.18.59]: 554 5.7.1 Service unavailable; Client host [94.154.18.59] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?94.154.18.59; from= to= proto=ESMTP helo=<94-154-18-59.rev.cheeloo.net> Apr 1 05:45:59 mail.srvfarm.net postfix/smtpd[1072856]: NOQUEUE: reject: RCPT from 94-154-18-59.rev.cheeloo.net[94.154.18.59]: 554 5.7.1 Service unavailable; Client host [94.154.18.59] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl	2020-04-01 14:27:30
195.154.170.245	attackspambots	(mod_security) mod_security (id:225170) triggered by 195.154.170.245 (FR/France/195-154-170-245.rev.poneytelecom.eu): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Tue Mar 31 23:53:36.475554 2020] [:error] [pid 7312:tid 47018766657280] [client 195.154.170.245:52160] [client 195.154.170.245] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|cjthedj97.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cjthedj97.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "XoQQQDAU0kaR6cW5LXIU1AAAARg"]	2020-04-01 14:35:34
188.166.251.156	attackspam	Apr 1 10:48:45 webhost01 sshd[16057]: Failed password for root from 188.166.251.156 port 54090 ssh2 ...	2020-04-01 15:00:05

Recently Reported IPs

2.38.180.157	2.43.10.208	2.44.181.187	2.42.74.102
2.44.146.183	2.39.125.201	2.47.39.208	2.47.198.45
2.47.232.71	2.50.136.187	2.50.137.150	2.50.136.90
2.45.13.131	2.50.140.199	2.50.156.218	2.50.177.228
2.50.180.50	2.51.28.149	2.50.173.173	2.50.29.198