194.0.148.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ukraine

Internet Service Provider: State Service of Ukraine for Emergencies

Hostname: unknown

Organization: unknown

Usage Type: Government

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Attempt to attack host OS, exploiting network vulnerabilities, on 20-09-2019 19:20:24.	2019-09-21 04:23:28

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.0.148.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5278
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;194.0.148.11.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092001 1800 900 604800 86400

;; Query time: 452 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 04:23:25 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 11.148.0.194.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.148.0.194.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.37.92.238	attackbotsspam	SSH login attempts.	2020-10-07 15:38:58
82.199.47.2	attackbots	Lines containing failures of 82.199.47.2 Oct 6 22:23:16 shared06 sshd[674]: Invalid user admin from 82.199.47.2 port 54788 Oct 6 22:23:17 shared06 sshd[674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.199.47.2 Oct 6 22:23:19 shared06 sshd[674]: Failed password for invalid user admin from 82.199.47.2 port 54788 ssh2 Oct 6 22:23:19 shared06 sshd[674]: Connection closed by invalid user admin 82.199.47.2 port 54788 [preauth] Oct 6 22:23:20 shared06 sshd[676]: Invalid user admin from 82.199.47.2 port 54790 Oct 6 22:23:20 shared06 sshd[676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.199.47.2 Oct 6 22:23:22 shared06 sshd[676]: Failed password for invalid user admin from 82.199.47.2 port 54790 ssh2 Oct 6 22:23:22 shared06 sshd[676]: Connection closed by invalid user admin 82.199.47.2 port 54790 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=82.199.47.2	2020-10-07 16:05:36
197.54.246.103	attackbotsspam	Port probing on unauthorized port 23	2020-10-07 15:37:11
119.96.175.244	attackspam	s2.hscode.pl - SSH Attack	2020-10-07 15:24:53
174.219.133.47	attackbots	Brute forcing email accounts	2020-10-07 15:41:40
186.10.94.93	attack	RDP Brute-Force (honeypot 13)	2020-10-07 15:51:00
198.199.65.166	attackbotsspam	$f2bV_matches	2020-10-07 15:26:00
23.224.109.144	attack	2020-10-07T08:03:38.592038centos sshd[11399]: Failed password for root from 23.224.109.144 port 38930 ssh2 2020-10-07T08:08:32.488087centos sshd[11719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.224.109.144 user=root 2020-10-07T08:08:34.976043centos sshd[11719]: Failed password for root from 23.224.109.144 port 43050 ssh2 ...	2020-10-07 15:24:13
94.242.171.166	attackbots	1602016923 - 10/06/2020 22:42:03 Host: 94.242.171.166/94.242.171.166 Port: 445 TCP Blocked ...	2020-10-07 15:35:52
54.38.65.215	attackbotsspam	Oct 7 17:28:03 web1 sshd[2124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.65.215 user=root Oct 7 17:28:05 web1 sshd[2124]: Failed password for root from 54.38.65.215 port 52796 ssh2 Oct 7 17:32:19 web1 sshd[3571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.65.215 user=root Oct 7 17:32:21 web1 sshd[3571]: Failed password for root from 54.38.65.215 port 57705 ssh2 Oct 7 17:36:04 web1 sshd[4876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.65.215 user=root Oct 7 17:36:06 web1 sshd[4876]: Failed password for root from 54.38.65.215 port 60681 ssh2 Oct 7 17:39:43 web1 sshd[6012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.65.215 user=root Oct 7 17:39:46 web1 sshd[6012]: Failed password for root from 54.38.65.215 port 35424 ssh2 Oct 7 17:43:13 web1 sshd[7240]: pam_unix(sshd:auth) ...	2020-10-07 15:33:36
182.71.46.37	attackspambots	1602056046 - 10/07/2020 09:34:06 Host: 182.71.46.37/182.71.46.37 Port: 445 TCP Blocked	2020-10-07 15:38:11
51.158.145.216	attackbotsspam	Automatic report - Banned IP Access	2020-10-07 15:56:47
132.232.77.85	attackspambots	Oct 7 09:08:17 vpn01 sshd[15293]: Failed password for root from 132.232.77.85 port 45614 ssh2 ...	2020-10-07 15:26:46
142.44.242.38	attack	SSH login attempts.	2020-10-07 15:40:17
103.84.240.208	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-07 15:43:36

Recently Reported IPs

239.12.69.82	21.141.16.193	118.106.164.167	189.230.19.25
56.91.12.158	95.191.203.99	111.155.233.20	25.118.103.121
57.154.57.72	170.60.95.199	185.209.0.48	25.15.87.150
233.98.95.70	174.220.124.23	217.31.189.0	32.170.110.37
51.98.172.160	193.180.182.160	114.232.42.78	113.200.50.125