94.253.2.138 - IPInfo

Basic Info

City: Noginsk

Region: Moscow Oblast

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
94.253.211.89	attack	Sep 3 18:47:05 mellenthin postfix/smtpd[20751]: NOQUEUE: reject: RCPT from cpe-94-253-211-89.st2.cable.xnet.hr[94.253.211.89]: 554 5.7.1 Service unavailable; Client host [94.253.211.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/94.253.211.89; from= to= proto=ESMTP helo=	2020-09-05 00:16:58
94.253.211.89	attack	Sep 3 18:47:05 mellenthin postfix/smtpd[20751]: NOQUEUE: reject: RCPT from cpe-94-253-211-89.st2.cable.xnet.hr[94.253.211.89]: 554 5.7.1 Service unavailable; Client host [94.253.211.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/94.253.211.89; from= to= proto=ESMTP helo=	2020-09-04 15:43:22
94.253.211.89	attack	Sep 3 18:47:05 mellenthin postfix/smtpd[20751]: NOQUEUE: reject: RCPT from cpe-94-253-211-89.st2.cable.xnet.hr[94.253.211.89]: 554 5.7.1 Service unavailable; Client host [94.253.211.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/94.253.211.89; from= to= proto=ESMTP helo=	2020-09-04 08:04:24
94.253.215.228	attack	2019-01-19 04:04:04 1gkgvS-0004Gs-OD SMTP connection from cpe-94-253-215-228.st2.cable.xnet.hr \[94.253.215.228\]:38252 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-01-19 04:04:29 1gkgvr-0004HL-J2 SMTP connection from cpe-94-253-215-228.st2.cable.xnet.hr \[94.253.215.228\]:38476 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-01-19 04:04:45 1gkgw6-0004Hf-Tg SMTP connection from cpe-94-253-215-228.st2.cable.xnet.hr \[94.253.215.228\]:38592 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 23:14:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.253.2.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.253.2.138.			IN	A

;; AUTHORITY SECTION:
.			125	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090101 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 02 12:48:33 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 138.2.253.94.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.2.253.94.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.186.63.220	attackbots	Automatic report - Banned IP Access	2020-03-06 00:14:04
77.35.158.176	attackbotsspam	suspicious action Thu, 05 Mar 2020 10:34:41 -0300	2020-03-05 23:34:53
40.76.213.159	attackspam	Mar 5 16:33:29 server sshd\[14756\]: Invalid user support from 40.76.213.159 Mar 5 16:33:29 server sshd\[14756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.213.159 Mar 5 16:33:32 server sshd\[14756\]: Failed password for invalid user support from 40.76.213.159 port 44104 ssh2 Mar 5 16:48:18 server sshd\[17629\]: Invalid user support from 40.76.213.159 Mar 5 16:48:18 server sshd\[17629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.213.159 ...	2020-03-05 23:53:57
171.100.18.251	attackbotsspam	9530/tcp [2020-03-05]1pkt	2020-03-06 00:11:22
36.91.51.221	attackbotsspam	445/tcp [2020-03-05]1pkt	2020-03-06 00:22:55
138.68.21.125	attack	$f2bV_matches	2020-03-06 00:01:27
192.241.227.72	attack	Automatic report - Port Scan Attack	2020-03-05 23:36:57
101.91.160.243	attack	Mar 5 16:28:37 MK-Soft-VM3 sshd[6103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.160.243 Mar 5 16:28:39 MK-Soft-VM3 sshd[6103]: Failed password for invalid user nicolas from 101.91.160.243 port 34932 ssh2 ...	2020-03-05 23:58:37
218.92.0.138	attackbots	Mar 5 15:56:51 localhost sshd[10491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Mar 5 15:56:54 localhost sshd[10491]: Failed password for root from 218.92.0.138 port 53318 ssh2 Mar 5 15:56:57 localhost sshd[10491]: Failed password for root from 218.92.0.138 port 53318 ssh2 Mar 5 15:56:51 localhost sshd[10491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Mar 5 15:56:54 localhost sshd[10491]: Failed password for root from 218.92.0.138 port 53318 ssh2 Mar 5 15:56:57 localhost sshd[10491]: Failed password for root from 218.92.0.138 port 53318 ssh2 Mar 5 15:56:51 localhost sshd[10491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Mar 5 15:56:54 localhost sshd[10491]: Failed password for root from 218.92.0.138 port 53318 ssh2 Mar 5 15:56:57 localhost sshd[10491]: Failed password fo ...	2020-03-05 23:57:46
183.59.151.68	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-05 23:54:43
222.186.42.75	attackbotsspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-03-06 00:00:29
156.96.153.204	attack	Mar 5 15:51:01 hcbbdb sshd\[32612\]: Invalid user es from 156.96.153.204 Mar 5 15:51:01 hcbbdb sshd\[32612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.96.153.204 Mar 5 15:51:03 hcbbdb sshd\[32612\]: Failed password for invalid user es from 156.96.153.204 port 58170 ssh2 Mar 5 16:00:49 hcbbdb sshd\[1287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.96.153.204 user=root Mar 5 16:00:52 hcbbdb sshd\[1287\]: Failed password for root from 156.96.153.204 port 58208 ssh2	2020-03-06 00:18:10
167.114.97.161	attackbots	Nov 2 00:09:15 odroid64 sshd\[8604\]: Invalid user dave from 167.114.97.161 Nov 2 00:09:15 odroid64 sshd\[8604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.97.161 ...	2020-03-05 23:47:47
167.114.103.140	attackbotsspam	Jan 31 06:49:37 odroid64 sshd\[7379\]: Invalid user viveka from 167.114.103.140 Jan 31 06:49:37 odroid64 sshd\[7379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.103.140 ...	2020-03-06 00:13:01
39.33.165.211	attackbots	445/tcp [2020-03-05]1pkt	2020-03-05 23:47:03

Recently Reported IPs

175.11.115.167	141.245.219.80	48.106.167.199	63.64.142.224
142.222.200.117	48.94.122.23	178.139.143.147	172.86.178.235
159.228.102.15	196.49.135.203	65.22.99.248	81.98.112.246
168.10.214.17	107.5.143.61	102.84.23.96	166.229.12.111
149.250.141.174	208.21.44.64	159.164.155.141	54.83.178.9