94.232.42.80 - IPInfo

Basic Info

City: Perm

Region: Perm Krai

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attack, like DDOS, Brute-Force, Port Scan, Hack, etc. Panda Security	2021-09-28 17:30:49

Comments on same subnet:

IP	Type	Details	Datetime
94.232.42.179	attackspam	scans 4 times in preceeding hours on the ports (in chronological order) 1723 1723 1723 1723	2020-10-13 02:57:02
94.232.42.179	attackbots	[H1.VM8] Blocked by UFW	2020-10-12 18:24:04
94.232.42.179	attack	[H1] Blocked by UFW	2020-10-10 21:56:55

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 94.232.42.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4951
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;94.232.42.80.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:56:36 CST 2021
;; MSG SIZE  rcvd: 41

'

Host info

Host 80.42.232.94.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.42.232.94.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.249.236.35	attackspam	Unauthorized connection attempt from IP address 180.249.236.35 on Port 445(SMB)	2020-02-29 13:55:52
128.199.204.164	attackbots	Feb 29 05:55:21 v22019058497090703 sshd[28344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.204.164 Feb 29 05:55:23 v22019058497090703 sshd[28344]: Failed password for invalid user pyqt from 128.199.204.164 port 40280 ssh2 ...	2020-02-29 13:23:13
85.104.56.147	attackspambots	Automatic report - Port Scan Attack	2020-02-29 13:15:26
5.135.181.53	attack	Feb 29 05:12:03 h2646465 sshd[21332]: Invalid user infusion-stoked from 5.135.181.53 Feb 29 05:12:03 h2646465 sshd[21332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.181.53 Feb 29 05:12:03 h2646465 sshd[21332]: Invalid user infusion-stoked from 5.135.181.53 Feb 29 05:12:05 h2646465 sshd[21332]: Failed password for invalid user infusion-stoked from 5.135.181.53 port 34076 ssh2 Feb 29 05:47:03 h2646465 sshd[31666]: Invalid user naga from 5.135.181.53 Feb 29 05:47:03 h2646465 sshd[31666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.181.53 Feb 29 05:47:03 h2646465 sshd[31666]: Invalid user naga from 5.135.181.53 Feb 29 05:47:05 h2646465 sshd[31666]: Failed password for invalid user naga from 5.135.181.53 port 42992 ssh2 Feb 29 06:03:20 h2646465 sshd[4030]: Invalid user web from 5.135.181.53 ...	2020-02-29 13:31:40
14.161.6.201	attackspam	Feb 29 05:55:47 ns382633 sshd\[13972\]: Invalid user pi from 14.161.6.201 port 45396 Feb 29 05:55:47 ns382633 sshd\[13974\]: Invalid user pi from 14.161.6.201 port 45398 Feb 29 05:55:47 ns382633 sshd\[13972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.6.201 Feb 29 05:55:47 ns382633 sshd\[13974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.6.201 Feb 29 05:55:49 ns382633 sshd\[13972\]: Failed password for invalid user pi from 14.161.6.201 port 45396 ssh2 Feb 29 05:55:49 ns382633 sshd\[13974\]: Failed password for invalid user pi from 14.161.6.201 port 45398 ssh2	2020-02-29 13:20:51
45.116.207.196	attackspam	Unauthorized connection attempt from IP address 45.116.207.196 on Port 445(SMB)	2020-02-29 13:50:47
68.183.229.218	attackspambots	Feb 29 08:07:40 server sshd\[29417\]: Invalid user rabbitmq from 68.183.229.218 Feb 29 08:07:40 server sshd\[29417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 Feb 29 08:07:42 server sshd\[29417\]: Failed password for invalid user rabbitmq from 68.183.229.218 port 40668 ssh2 Feb 29 08:16:43 server sshd\[31098\]: Invalid user rabbitmq from 68.183.229.218 Feb 29 08:16:43 server sshd\[31098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 ...	2020-02-29 13:17:34
62.234.122.199	attackbotsspam	Feb 28 19:06:15 web1 sshd\[23372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.122.199 user=root Feb 28 19:06:17 web1 sshd\[23372\]: Failed password for root from 62.234.122.199 port 42228 ssh2 Feb 28 19:11:44 web1 sshd\[23960\]: Invalid user super from 62.234.122.199 Feb 28 19:11:44 web1 sshd\[23960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.122.199 Feb 28 19:11:47 web1 sshd\[23960\]: Failed password for invalid user super from 62.234.122.199 port 43666 ssh2	2020-02-29 13:18:01
148.70.223.53	attackspambots	Feb 29 05:54:55 pornomens sshd\[21888\]: Invalid user alma from 148.70.223.53 port 49336 Feb 29 05:54:55 pornomens sshd\[21888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.223.53 Feb 29 05:54:56 pornomens sshd\[21888\]: Failed password for invalid user alma from 148.70.223.53 port 49336 ssh2 ...	2020-02-29 13:42:21
218.92.0.212	attack	SSH Brute-Force Attack	2020-02-29 13:48:29
13.56.213.141	attackbotsspam	Port Scan detected from 13.56.213.141 (US/United States/ec2-13-56-213-141.us-west-1.compute.amazonaws.com). 4 hits in the last 110 seconds	2020-02-29 13:39:17
78.187.5.218	attackbotsspam	Port probing on unauthorized port 23	2020-02-29 13:16:30
121.185.44.58	attackbots	Automatic report - Port Scan Attack	2020-02-29 13:41:16
222.186.175.154	attackbotsspam	Feb 29 06:20:02 eventyay sshd[25280]: Failed password for root from 222.186.175.154 port 13946 ssh2 Feb 29 06:20:16 eventyay sshd[25280]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 13946 ssh2 [preauth] Feb 29 06:20:23 eventyay sshd[25306]: Failed password for root from 222.186.175.154 port 14686 ssh2 ...	2020-02-29 13:21:58
126.44.212.72	attack	Feb 29 06:15:32 localhost sshd\[22580\]: Invalid user p4ssword from 126.44.212.72 port 44942 Feb 29 06:15:32 localhost sshd\[22580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=126.44.212.72 Feb 29 06:15:34 localhost sshd\[22580\]: Failed password for invalid user p4ssword from 126.44.212.72 port 44942 ssh2	2020-02-29 13:23:37

Recently Reported IPs

61.85.114.59	209.58.157.115	2.56.8.86	185.97.115.83
185.174.159.18	185.211.42.248	142.169.78.42	118.101.98.171
78.61.93.178	119.133.32.38	68.113.97.155	193.148.94.226
161.22.43.79	104.33.91.38	96.20.24.249	65.49.157.45
160.32.219.242	97.86.248.19	178.48.124.182	75.145.83.205