94.242.206.148

Basic Info

City: unknown

Region: unknown

Country: Luxembourg

Internet Service Provider: root SA

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Sep 9 18:56:46 server postfix/smtpd[10329]: NOQUEUE: reject: RCPT from mail.bizetase.nl[94.242.206.148]: 554 5.7.1 Service unavailable; Client host [94.242.206.148] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-10 22:00:01
attackspambots	Sep 9 18:56:46 server postfix/smtpd[10329]: NOQUEUE: reject: RCPT from mail.bizetase.nl[94.242.206.148]: 554 5.7.1 Service unavailable; Client host [94.242.206.148] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-10 13:41:22
attack	Sep 9 18:56:46 server postfix/smtpd[10329]: NOQUEUE: reject: RCPT from mail.bizetase.nl[94.242.206.148]: 554 5.7.1 Service unavailable; Client host [94.242.206.148] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-10 04:23:29

Type

Details

Datetime

attackbots

Sep  9 18:56:46 server postfix/smtpd[10329]: NOQUEUE: reject: RCPT from mail.bizetase.nl[94.242.206.148]: 554 5.7.1 Service unavailable; Client host [94.242.206.148] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=

2020-09-10 22:00:01

attackspambots

Sep  9 18:56:46 server postfix/smtpd[10329]: NOQUEUE: reject: RCPT from mail.bizetase.nl[94.242.206.148]: 554 5.7.1 Service unavailable; Client host [94.242.206.148] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=

2020-09-10 13:41:22

attack

Sep  9 18:56:46 server postfix/smtpd[10329]: NOQUEUE: reject: RCPT from mail.bizetase.nl[94.242.206.148]: 554 5.7.1 Service unavailable; Client host [94.242.206.148] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=

2020-09-10 04:23:29

Comments on same subnet:

IP	Type	Details	Datetime
94.242.206.112	attack	TCP (SYN) 94.242.206.112:51974 -> port 1080, len 60	2020-08-13 03:42:26
94.242.206.142	attack	1,30-02/27 [bc01/m10] PostRequest-Spammer scoring: essen	2019-11-21 05:41:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.242.206.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54290
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.242.206.148.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090901 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 10 04:23:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

148.206.242.94.in-addr.arpa domain name pointer mail.bizetase.nl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.206.242.94.in-addr.arpa	name = mail.bizetase.nl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.23.189.18	attackbotsspam	Automatic report - Banned IP Access	2020-03-27 20:11:04
191.82.183.134	attackbots	Port probing on unauthorized port 23	2020-03-27 20:45:28
116.108.78.203	attack	SSH login attempts.	2020-03-27 20:44:09
222.186.30.76	attackbotsspam	Mar 27 13:18:13 ewelt sshd[971]: Failed password for root from 222.186.30.76 port 24539 ssh2 Mar 27 13:18:16 ewelt sshd[971]: Failed password for root from 222.186.30.76 port 24539 ssh2 Mar 27 13:22:17 ewelt sshd[1296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Mar 27 13:22:19 ewelt sshd[1296]: Failed password for root from 222.186.30.76 port 39043 ssh2 ...	2020-03-27 20:22:58
62.169.208.100	attackspam	Unauthorized connection attempt detected from IP address 62.169.208.100 to port 23	2020-03-27 20:07:44
115.159.220.190	attackspam	Brute force attempt	2020-03-27 20:18:11
35.154.45.251	attackbotsspam	Time: Fri Mar 27 03:51:17 2020 -0300 IP: 35.154.45.251 (IN/India/ec2-35-154-45-251.ap-south-1.compute.amazonaws.com) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2020-03-27 20:13:09
118.24.200.40	attackbotsspam	(sshd) Failed SSH login from 118.24.200.40 (CN/China/-): 5 in the last 3600 secs	2020-03-27 20:00:08
162.243.132.34	attack	Unauthorized connection attempt detected from IP address 162.243.132.34 to port 465 [T]	2020-03-27 20:01:11
184.105.139.80	attack	scan z	2020-03-27 20:03:54
49.235.200.34	attackbotsspam	$f2bV_matches	2020-03-27 20:26:15
65.60.150.116	attackbotsspam	Mar 27 11:25:51 sshgateway sshd\[20753\]: Invalid user lww from 65.60.150.116 Mar 27 11:25:51 sshgateway sshd\[20753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=d60-65-116-150.col.wideopenwest.com Mar 27 11:25:53 sshgateway sshd\[20753\]: Failed password for invalid user lww from 65.60.150.116 port 46583 ssh2	2020-03-27 20:19:58
110.80.17.26	attackbots	B: Abusive ssh attack	2020-03-27 20:41:43
190.143.39.211	attackbotsspam	SSH Brute-Force Attack	2020-03-27 19:58:36
106.13.228.62	attackspambots	Mar 27 07:26:03 vps sshd[13493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.62 Mar 27 07:26:04 vps sshd[13493]: Failed password for invalid user orm from 106.13.228.62 port 59892 ssh2 Mar 27 07:34:01 vps sshd[13945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.62 ...	2020-03-27 20:01:23

Recently Reported IPs

190.113.115.90	51.37.42.45	185.191.171.22	85.27.207.59
51.161.30.230	85.99.207.44	103.83.9.26	34.204.180.70
148.251.47.144	82.210.59.217	199.193.204.188	109.39.160.254
63.88.62.135	201.76.118.137	203.210.134.7	14.1.22.225
41.189.49.79	36.88.247.164	218.62.42.51	200.162.216.152