2.94.46.242 - IPInfo

Basic Info

City: Smolensk

Region: Smolenskaya Oblast'

Country: Russia

Internet Service Provider: PJSC Vimpelcom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	445/tcp [2020-04-04]1pkt	2020-04-05 05:30:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.94.46.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38583
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.94.46.242.			IN	A

;; AUTHORITY SECTION:
.			135	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 05:30:12 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 242.46.94.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.46.94.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.188.49.176	attack	Oct 10 07:26:49 ns382633 sshd\[29199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.49.176 user=root Oct 10 07:26:51 ns382633 sshd\[29199\]: Failed password for root from 35.188.49.176 port 40182 ssh2 Oct 10 07:30:19 ns382633 sshd\[29786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.49.176 user=root Oct 10 07:30:21 ns382633 sshd\[29786\]: Failed password for root from 35.188.49.176 port 46050 ssh2 Oct 10 07:33:46 ns382633 sshd\[30025\]: Invalid user squirreluser from 35.188.49.176 port 51924 Oct 10 07:33:46 ns382633 sshd\[30025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.49.176	2020-10-10 14:02:18
211.219.18.186	attackbotsspam	Oct 10 04:23:25 l03 sshd[24087]: Invalid user serveur from 211.219.18.186 port 55760 ...	2020-10-10 13:59:34
45.148.122.173	attackspambots	TCP (SYN) 45.148.122.173:55294 -> port 22, len 44	2020-10-10 14:06:14
132.232.31.157	attack	Oct 10 04:37:34 ns382633 sshd\[2040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.31.157 user=root Oct 10 04:37:35 ns382633 sshd\[2040\]: Failed password for root from 132.232.31.157 port 55952 ssh2 Oct 10 04:44:21 ns382633 sshd\[3246\]: Invalid user perry from 132.232.31.157 port 53418 Oct 10 04:44:21 ns382633 sshd\[3246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.31.157 Oct 10 04:44:23 ns382633 sshd\[3246\]: Failed password for invalid user perry from 132.232.31.157 port 53418 ssh2	2020-10-10 14:12:01
121.58.222.125	attackbots	Unauthorized connection attempt from IP address 121.58.222.125 on Port 445(SMB)	2020-10-10 07:50:18
49.235.233.189	attack	Oct 10 01:28:30 hidden sshd[42949]: Invalid user x from 49.235.233.189 port 53698 Oct 10 01:28:30 hidden sshd[42949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.233.189 Oct 10 01:28:32 hidden sshd[42949]: Failed password for invalid user x from 49.235.233.189 port 53698 ssh2	2020-10-10 07:42:47
104.244.72.38	attack	CMS (WordPress or Joomla) login attempt.	2020-10-10 14:08:50
181.167.205.7	attackspam	181.167.205.7 - - [08/Oct/2020:17:45:26 -0300] "GET /css/datePicker.css HTTP/1.1" 200 1335 "https://www.mavbsystem.com.ar/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36 Edg/85.0.564.68" 181.167.205.7 - - [08/Oct/2020:17:45:26 -0300] "GET /css/jquery-ui-1.8.2.custom.css HTTP/1.1" 200 6789 "https://www.mavbsystem.com.ar/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36 Edg/85.0.564.68" 181.167.205.7 - - [08/Oct/2020:17:45:26 -0300] "GET /css/ui.jqgrid.css HTTP/1.1" 200 3163 "https://www.mavbsystem.com.ar/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.121 Safari/537.36 Edg/85.0.564.68" 181.167.205.7 - - [08/Oct/2020:17:45:26 -0300] "GET /css/contact.css HTTP/1.1" 200 1386 "https://www.mavbsystem.com.ar/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0. ...	2020-10-10 08:05:56
85.133.154.122	attack	Unauthorized connection attempt from IP address 85.133.154.122 on Port 445(SMB)	2020-10-10 07:42:31
201.193.198.70	attackspambots	1602276541 - 10/09/2020 22:49:01 Host: 201.193.198.70/201.193.198.70 Port: 445 TCP Blocked ...	2020-10-10 14:07:30
148.233.37.48	attack	Unauthorized connection attempt from IP address 148.233.37.48 on Port 445(SMB)	2020-10-10 07:47:42
203.62.153.43	attackbotsspam	Unauthorized connection attempt from IP address 203.62.153.43 on Port 445(SMB)	2020-10-10 07:57:12
54.37.154.113	attack	fail2ban -- 54.37.154.113 ...	2020-10-10 07:51:56
132.232.4.33	attack	SSH Brute Force	2020-10-10 07:56:13
162.243.128.127	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-10 13:59:54

Recently Reported IPs

152.38.75.170	134.44.59.30	170.246.184.12	12.1.90.44
78.137.130.49	32.127.159.223	116.110.12.235	63.15.151.29
112.187.173.202	219.190.75.93	130.131.35.83	118.112.40.153
73.150.46.50	245.41.147.206	137.193.230.132	251.230.95.212
88.35.155.161	228.208.250.169	91.218.85.210	41.62.111.51