2.42.63.164 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Vodafone Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Cluster member 67.227.229.95 (US/United States/saathoff.geek) said, DENY 2.42.63.164, Reason:[(sshd) Failed SSH login from 2.42.63.164 (IT/Italy/net-2-42-63-164.cust.vodafonedsl.it): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-06-29 17:24:23

Type

Details

Datetime

attack

Cluster member 67.227.229.95 (US/United States/saathoff.geek) said, DENY 2.42.63.164, Reason:[(sshd) Failed SSH login from 2.42.63.164 (IT/Italy/net-2-42-63-164.cust.vodafonedsl.it): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER

2020-06-29 17:24:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.42.63.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.42.63.164.			IN	A

;; AUTHORITY SECTION:
.			234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062900 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 29 17:24:15 CST 2020
;; MSG SIZE  rcvd: 115

Host info

164.63.42.2.in-addr.arpa domain name pointer net-2-42-63-164.cust.vodafonedsl.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.63.42.2.in-addr.arpa	name = net-2-42-63-164.cust.vodafonedsl.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.174.4.146	attackspam	Mon, 22 Jul 2019 23:28:33 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:25:56
42.236.10.121	attackbotsspam	Automatic report - Banned IP Access	2019-07-23 08:23:46
45.84.80.2	attackspam	Mon, 22 Jul 2019 23:28:47 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 07:53:20
181.215.64.11	attack	Mon, 22 Jul 2019 23:28:31 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:27:54
61.72.254.71	attackbotsspam	Jul 23 02:28:26 server01 sshd\[13904\]: Invalid user admin from 61.72.254.71 Jul 23 02:28:26 server01 sshd\[13904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.72.254.71 Jul 23 02:28:28 server01 sshd\[13904\]: Failed password for invalid user admin from 61.72.254.71 port 52766 ssh2 ...	2019-07-23 08:33:49
103.3.226.228	attackspambots	Jul 8 08:34:59 vtv3 sshd\[7797\]: Invalid user user1 from 103.3.226.228 port 39776 Jul 8 08:34:59 vtv3 sshd\[7797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.228 Jul 8 08:35:00 vtv3 sshd\[7797\]: Failed password for invalid user user1 from 103.3.226.228 port 39776 ssh2 Jul 8 08:39:29 vtv3 sshd\[9887\]: Invalid user martin from 103.3.226.228 port 46786 Jul 8 08:39:29 vtv3 sshd\[9887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.228 Jul 8 08:49:50 vtv3 sshd\[14648\]: Invalid user test from 103.3.226.228 port 42214 Jul 8 08:49:50 vtv3 sshd\[14648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.228 Jul 8 08:49:52 vtv3 sshd\[14648\]: Failed password for invalid user test from 103.3.226.228 port 42214 ssh2 Jul 8 08:52:09 vtv3 sshd\[15935\]: Invalid user blog from 103.3.226.228 port 58284 Jul 8 08:52:09 vtv3 sshd\[15935\]: pam_unix\(ss	2019-07-23 08:23:29
159.255.32.186	attackbotsspam	Mon, 22 Jul 2019 23:28:34 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:20:15
193.187.114.2	attackspam	Mon, 22 Jul 2019 23:28:45 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 07:56:02
158.115.243.239	attack	Mon, 22 Jul 2019 23:28:42 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:04:11
216.74.125.209	attackspambots	Mon, 22 Jul 2019 23:28:38 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:11:09
82.117.93.110	attackbots	Mon, 22 Jul 2019 23:28:42 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:04:44
45.13.29.119	attack	Mon, 22 Jul 2019 23:28:33 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:26:47
213.32.18.189	attack	Jul 23 01:28:38 * sshd[19213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.18.189 Jul 23 01:28:39 * sshd[19213]: Failed password for invalid user ankit from 213.32.18.189 port 58320 ssh2	2019-07-23 08:05:03
181.215.16.107	attack	Mon, 22 Jul 2019 23:28:38 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:11:44
178.171.122.188	attackbotsspam	Mon, 22 Jul 2019 23:28:39 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-23 08:10:07

Recently Reported IPs

222.222.120.33	36.57.89.154	222.186.148.107	191.53.236.131
188.66.6.88	241.66.13.134	178.119.72.145	117.69.188.223
14.174.129.151	14.20.89.236	200.61.54.140	45.179.189.201
5.62.61.243	220.166.42.139	34.87.72.179	20.190.40.119
187.170.244.26	45.230.200.220	77.42.119.105	191.235.64.57