212.0.134.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sudan

Internet Service Provider: Sudatel

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-02-27 09:38:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.0.134.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.0.134.242.			IN	A

;; AUTHORITY SECTION:
.			494	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022602 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 09:38:11 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 242.134.0.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.134.0.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.158.111.168	attack	Jun 13 17:25:27 prod4 sshd\[21314\]: Failed password for root from 51.158.111.168 port 45708 ssh2 Jun 13 17:28:36 prod4 sshd\[22252\]: Invalid user lijinze from 51.158.111.168 Jun 13 17:28:38 prod4 sshd\[22252\]: Failed password for invalid user lijinze from 51.158.111.168 port 46772 ssh2 ...	2020-06-14 02:22:02
198.50.155.238	attackspambots	[Sat Jun 13 01:56:52 2020 GMT] "Bloomberg xxxxet Alerts" [], Subject: Be part of a covid test group	2020-06-14 01:59:44
218.92.0.208	attack	Jun 13 19:28:25 server sshd[12557]: Failed password for root from 218.92.0.208 port 55796 ssh2 Jun 13 19:29:51 server sshd[13984]: Failed password for root from 218.92.0.208 port 14431 ssh2 Jun 13 19:29:53 server sshd[13984]: Failed password for root from 218.92.0.208 port 14431 ssh2	2020-06-14 01:46:15
52.87.190.15	attackbotsspam	Invalid user nexus from 52.87.190.15 port 39168	2020-06-14 01:56:34
190.145.192.106	attackbotsspam	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-14 02:03:06
82.223.104.33	attack	Jun 13 19:49:21 eventyay sshd[12043]: Failed password for root from 82.223.104.33 port 35182 ssh2 Jun 13 19:51:41 eventyay sshd[12089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.223.104.33 Jun 13 19:51:43 eventyay sshd[12089]: Failed password for invalid user sistem from 82.223.104.33 port 42908 ssh2 ...	2020-06-14 02:01:30
193.70.37.148	attack	odoo8 ...	2020-06-14 02:01:12
176.37.60.16	attackbots	Jun 13 17:52:44 XXX sshd[64139]: Invalid user fa from 176.37.60.16 port 46933	2020-06-14 02:14:46
213.169.39.218	attackspam	2020-06-13T11:02:13.2962071495-001 sshd[23187]: Invalid user headmaster from 213.169.39.218 port 36688 2020-06-13T11:02:13.2995211495-001 sshd[23187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.169.39.218 2020-06-13T11:02:13.2962071495-001 sshd[23187]: Invalid user headmaster from 213.169.39.218 port 36688 2020-06-13T11:02:15.7525291495-001 sshd[23187]: Failed password for invalid user headmaster from 213.169.39.218 port 36688 ssh2 2020-06-13T11:06:00.9805481495-001 sshd[23334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.169.39.218 user=root 2020-06-13T11:06:02.9315401495-001 sshd[23334]: Failed password for root from 213.169.39.218 port 34786 ssh2 ...	2020-06-14 01:53:26
207.154.235.23	attackspam	serveres are UTC Lines containing failures of 207.154.235.23 Jun 13 00:57:00 tux2 sshd[23202]: Invalid user usq from 207.154.235.23 port 33630 Jun 13 00:57:00 tux2 sshd[23202]: Failed password for invalid user usq from 207.154.235.23 port 33630 ssh2 Jun 13 00:57:00 tux2 sshd[23202]: Received disconnect from 207.154.235.23 port 33630:11: Bye Bye [preauth] Jun 13 00:57:00 tux2 sshd[23202]: Disconnected from invalid user usq 207.154.235.23 port 33630 [preauth] Jun 13 01:01:10 tux2 sshd[23429]: Failed password for r.r from 207.154.235.23 port 33012 ssh2 Jun 13 01:01:10 tux2 sshd[23429]: Received disconnect from 207.154.235.23 port 33012:11: Bye Bye [preauth] Jun 13 01:01:10 tux2 sshd[23429]: Disconnected from authenticating user r.r 207.154.235.23 port 33012 [preauth] Jun 13 01:04:30 tux2 sshd[23613]: Invalid user hema from 207.154.235.23 port 52706 Jun 13 01:04:30 tux2 sshd[23613]: Failed password for invalid user hema from 207.154.235.23 port 52706 ssh2 Jun 13 01:04:30 tu........ ------------------------------	2020-06-14 01:44:00
37.187.7.95	attackbotsspam	Invalid user chandra from 37.187.7.95 port 52258	2020-06-14 02:14:19
103.104.119.66	attack	2020-06-13 02:41:07 server sshd[6716]: Failed password for invalid user lmt from 103.104.119.66 port 53738 ssh2	2020-06-14 02:18:12
96.127.179.156	attackbots	Jun 13 15:03:03 ws24vmsma01 sshd[223096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.127.179.156 Jun 13 15:03:05 ws24vmsma01 sshd[223096]: Failed password for invalid user g from 96.127.179.156 port 38076 ssh2 ...	2020-06-14 02:13:21
31.129.162.122	attackspam	TCP (SYN) 31.129.162.122:51577 -> port 23, len 44	2020-06-14 02:10:31
122.114.207.34	attack	TCP (SYN) 122.114.207.34:43891 -> port 18855, len 44	2020-06-14 01:38:55

Recently Reported IPs

202.181.25.36	202.165.225.32	202.158.69.162	202.152.36.214
202.142.159.54	202.134.166.23	202.85.214.89	202.83.173.244
218.3.48.49	118.200.66.140	108.106.112.168	58.121.76.36
242.195.147.236	51.75.23.214	92.243.232.123	102.25.24.31
214.156.208.1	182.124.110.51	148.60.31.62	123.248.35.174