198.199.115.94

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Jul 5 05:49:06 server sshd[964]: Failed password for invalid user zzzz from 198.199.115.94 port 44938 ssh2 Jul 5 05:52:51 server sshd[4504]: Failed password for invalid user teste from 198.199.115.94 port 41650 ssh2 Jul 5 05:56:40 server sshd[10509]: Failed password for invalid user zabbix from 198.199.115.94 port 38362 ssh2	2020-07-05 12:00:51
attack	Fail2Ban Ban Triggered	2020-06-29 14:46:18
attackbots	scans once in preceeding hours on the ports (in chronological order) 17462 resulting in total of 1 scans from 198.199.64.0/18 block.	2020-06-21 20:30:00
attack	TCP (SYN) 198.199.115.94:50334 -> port 24357, len 44	2020-06-09 01:19:33
attackspam	2020-06-04T16:07:56.195426 sshd[11677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 user=root 2020-06-04T16:07:57.916281 sshd[11677]: Failed password for root from 198.199.115.94 port 52422 ssh2 2020-06-04T16:11:55.099795 sshd[11732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 user=root 2020-06-04T16:11:57.297449 sshd[11732]: Failed password for root from 198.199.115.94 port 57206 ssh2 ...	2020-06-05 01:37:24
attackbotsspam	Jun 1 16:56:25 hosting sshd[1098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 user=root Jun 1 16:56:27 hosting sshd[1098]: Failed password for root from 198.199.115.94 port 40536 ssh2 ...	2020-06-01 23:44:55
attackbots	SSH/22 MH Probe, BF, Hack -	2020-05-23 18:38:25
attack	21218/tcp 2590/tcp 1052/tcp... [2020-03-29/05-21]97pkt,34pt.(tcp)	2020-05-22 04:23:51
attackbots	Invalid user admin from 198.199.115.94 port 47378	2020-05-21 07:02:09
attack	May 11 14:21:55 server sshd[29222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 May 11 14:21:57 server sshd[29222]: Failed password for invalid user vboxuser from 198.199.115.94 port 39602 ssh2 May 11 14:26:15 server sshd[29570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 ...	2020-05-11 20:40:17
attackbotsspam	Automatic report BANNED IP	2020-04-26 18:20:35
attackbotsspam	Apr 22 10:06:43 ip-172-31-61-156 sshd[27009]: Invalid user zabbix from 198.199.115.94 Apr 22 10:06:43 ip-172-31-61-156 sshd[27009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 Apr 22 10:06:43 ip-172-31-61-156 sshd[27009]: Invalid user zabbix from 198.199.115.94 Apr 22 10:06:45 ip-172-31-61-156 sshd[27009]: Failed password for invalid user zabbix from 198.199.115.94 port 45358 ssh2 Apr 22 10:12:50 ip-172-31-61-156 sshd[27298]: Invalid user sftpuser from 198.199.115.94 ...	2020-04-22 18:39:35
attack	2020-04-18T00:40:46.8755841495-001 sshd[15360]: Failed password for invalid user postgres from 198.199.115.94 port 40488 ssh2 2020-04-18T00:46:05.1395831495-001 sshd[15587]: Invalid user ha from 198.199.115.94 port 49636 2020-04-18T00:46:05.1469891495-001 sshd[15587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 2020-04-18T00:46:05.1395831495-001 sshd[15587]: Invalid user ha from 198.199.115.94 port 49636 2020-04-18T00:46:07.1539761495-001 sshd[15587]: Failed password for invalid user ha from 198.199.115.94 port 49636 ssh2 2020-04-18T00:51:22.6616361495-001 sshd[15826]: Invalid user db from 198.199.115.94 port 58784 ...	2020-04-18 13:59:33
attackbots	" "	2020-04-13 21:27:03
attackbots	Apr 8 23:43:41 vps sshd[100407]: Failed password for invalid user printer from 198.199.115.94 port 37428 ssh2 Apr 8 23:47:22 vps sshd[122941]: Invalid user deploy from 198.199.115.94 port 33358 Apr 8 23:47:22 vps sshd[122941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 Apr 8 23:47:24 vps sshd[122941]: Failed password for invalid user deploy from 198.199.115.94 port 33358 ssh2 Apr 8 23:51:04 vps sshd[146128]: Invalid user wpyan from 198.199.115.94 port 57516 ...	2020-04-09 05:51:08
attack	Apr 5 10:49:06 itv-usvr-01 sshd[11476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 user=root Apr 5 10:49:08 itv-usvr-01 sshd[11476]: Failed password for root from 198.199.115.94 port 36470 ssh2 Apr 5 10:54:35 itv-usvr-01 sshd[11707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 user=root Apr 5 10:54:37 itv-usvr-01 sshd[11707]: Failed password for root from 198.199.115.94 port 37576 ssh2	2020-04-05 15:18:52
attackbots	Apr 2 00:00:32 markkoudstaal sshd[10394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 Apr 2 00:00:33 markkoudstaal sshd[10394]: Failed password for invalid user wh from 198.199.115.94 port 35428 ssh2 Apr 2 00:05:29 markkoudstaal sshd[11003]: Failed password for root from 198.199.115.94 port 47182 ssh2	2020-04-02 09:16:01
attack	Mar 11 00:06:08 lnxweb62 sshd[957]: Failed password for root from 198.199.115.94 port 59604 ssh2 Mar 11 00:06:08 lnxweb62 sshd[957]: Failed password for root from 198.199.115.94 port 59604 ssh2 Mar 11 00:10:02 lnxweb62 sshd[3120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94	2020-03-11 08:50:26
attackbotsspam	Dec 19 08:11:47 woltan sshd[30698]: Failed password for root from 198.199.115.94 port 58630 ssh2	2020-03-10 07:00:10
attackbots	2020-03-09T05:56:30.316709vps773228.ovh.net sshd[26226]: Invalid user mysql from 198.199.115.94 port 60508 2020-03-09T05:56:30.326498vps773228.ovh.net sshd[26226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 2020-03-09T05:56:30.316709vps773228.ovh.net sshd[26226]: Invalid user mysql from 198.199.115.94 port 60508 2020-03-09T05:56:32.861888vps773228.ovh.net sshd[26226]: Failed password for invalid user mysql from 198.199.115.94 port 60508 ssh2 2020-03-09T05:59:33.104458vps773228.ovh.net sshd[26258]: Invalid user arma from 198.199.115.94 port 53486 2020-03-09T05:59:33.122596vps773228.ovh.net sshd[26258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 2020-03-09T05:59:33.104458vps773228.ovh.net sshd[26258]: Invalid user arma from 198.199.115.94 port 53486 2020-03-09T05:59:34.444078vps773228.ovh.net sshd[26258]: Failed password for invalid user arma from 198.199.115.94 port 53 ...	2020-03-09 13:12:23
attackspam	Invalid user myra from 198.199.115.94 port 44968	2020-01-19 03:42:15
attack	Unauthorized connection attempt detected from IP address 198.199.115.94 to port 2220 [J]	2020-01-17 04:31:11
attack	Jan 8 22:33:16 ns392434 sshd[32499]: Invalid user blog from 198.199.115.94 port 52786 Jan 8 22:33:16 ns392434 sshd[32499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 Jan 8 22:33:16 ns392434 sshd[32499]: Invalid user blog from 198.199.115.94 port 52786 Jan 8 22:33:17 ns392434 sshd[32499]: Failed password for invalid user blog from 198.199.115.94 port 52786 ssh2 Jan 8 22:42:43 ns392434 sshd[32659]: Invalid user bd from 198.199.115.94 port 33128 Jan 8 22:42:43 ns392434 sshd[32659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 Jan 8 22:42:43 ns392434 sshd[32659]: Invalid user bd from 198.199.115.94 port 33128 Jan 8 22:42:46 ns392434 sshd[32659]: Failed password for invalid user bd from 198.199.115.94 port 33128 ssh2 Jan 8 22:45:44 ns392434 sshd[32718]: Invalid user pi from 198.199.115.94 port 37354	2020-01-09 08:12:58
attack	Unauthorized connection attempt detected from IP address 198.199.115.94 to port 2220 [J]	2020-01-07 13:38:27
attackspam	Dec 22 09:35:45 sshgateway sshd\[19330\]: Invalid user guest from 198.199.115.94 Dec 22 09:35:45 sshgateway sshd\[19330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 Dec 22 09:35:47 sshgateway sshd\[19330\]: Failed password for invalid user guest from 198.199.115.94 port 34684 ssh2	2019-12-22 21:58:09
attackspambots	2019-12-20T15:21:30.601085shield sshd\[3717\]: Invalid user kristien from 198.199.115.94 port 55406 2019-12-20T15:21:30.607763shield sshd\[3717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94 2019-12-20T15:21:32.690707shield sshd\[3717\]: Failed password for invalid user kristien from 198.199.115.94 port 55406 ssh2 2019-12-20T15:27:17.495725shield sshd\[4939\]: Invalid user geor from 198.199.115.94 port 34346 2019-12-20T15:27:17.500142shield sshd\[4939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.115.94	2019-12-21 01:08:35
attackspam	Dec 18 10:53:45 plusreed sshd[4599]: Invalid user asterisk from 198.199.115.94 ...	2019-12-19 00:10:07

Comments on same subnet:

IP	Type	Details	Datetime
198.199.115.134	attackspambots	[Fri May 01 16:29:32 2020] - DDoS Attack From IP: 198.199.115.134 Port: 35282	2020-05-03 18:26:30
198.199.115.203	attack	Port Scan detected from 198.199.115.203 (US/United States/California/San Francisco/zg-0312c-335.stretchoid.com). 4 hits in the last 230 seconds	2020-04-25 02:40:35
198.199.115.203	attackbotsspam	Unauthorized connection attempt from IP address 198.199.115.203 on Port 110(POP3)	2020-04-24 00:57:02
198.199.115.203	attackspam	SIP/5060 Probe, BF, Hack -	2020-03-29 02:28:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.199.115.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22924
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;198.199.115.94.			IN	A

;; AUTHORITY SECTION:
.			375	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121800 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 00:10:03 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 94.115.199.198.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.115.199.198.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.162.205.249	attack	Oct 8 10:36:32 vm0 sshd[5975]: Failed password for root from 111.162.205.249 port 49988 ssh2 ...	2020-10-08 17:47:55
49.233.90.66	attackbots	Oct 8 10:54:22 host1 sshd[1549259]: Failed password for root from 49.233.90.66 port 58946 ssh2 Oct 8 10:59:43 host1 sshd[1549692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.66 user=root Oct 8 10:59:45 host1 sshd[1549692]: Failed password for root from 49.233.90.66 port 59268 ssh2 Oct 8 10:59:43 host1 sshd[1549692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.66 user=root Oct 8 10:59:45 host1 sshd[1549692]: Failed password for root from 49.233.90.66 port 59268 ssh2 ...	2020-10-08 17:54:15
31.173.125.202	attackspam	RDP Bruteforce	2020-10-08 18:19:02
180.167.126.126	attackspambots	Oct 8 08:30:13 serwer sshd\[29861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.126.126 user=root Oct 8 08:30:15 serwer sshd\[29861\]: Failed password for root from 180.167.126.126 port 38080 ssh2 Oct 8 08:33:45 serwer sshd\[30220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.126.126 user=root ...	2020-10-08 18:01:17
115.134.128.90	attackbots	Oct 8 08:24:45 sip sshd[31760]: Failed password for root from 115.134.128.90 port 36962 ssh2 Oct 8 08:26:06 sip sshd[32113]: Failed password for root from 115.134.128.90 port 52386 ssh2	2020-10-08 17:42:52
104.248.161.73	attackspam	SSH auth scanning - multiple failed logins	2020-10-08 17:46:29
157.231.102.250	attackbots	$f2bV_matches	2020-10-08 17:49:52
159.65.64.76	attackspam	sshd: Failed password for .... from 159.65.64.76 port 46770 ssh2 (12 attempts)	2020-10-08 17:49:26
92.82.208.71	attackbots	TCP (SYN) 92.82.208.71:54650 -> port 8080, len 40	2020-10-08 18:09:09
162.243.232.174	attack	sshd: Failed password for .... from 162.243.232.174 port 36032 ssh2 (8 attempts)	2020-10-08 17:45:15
112.85.42.190	attackbots	2020-10-08T09:37:01.198469shield sshd\[26295\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.190 user=root 2020-10-08T09:37:03.179901shield sshd\[26295\]: Failed password for root from 112.85.42.190 port 16564 ssh2 2020-10-08T09:37:06.142341shield sshd\[26295\]: Failed password for root from 112.85.42.190 port 16564 ssh2 2020-10-08T09:37:08.851719shield sshd\[26295\]: Failed password for root from 112.85.42.190 port 16564 ssh2 2020-10-08T09:37:11.638510shield sshd\[26295\]: Failed password for root from 112.85.42.190 port 16564 ssh2	2020-10-08 17:56:32
109.175.102.213	attack	109.175.102.213 - - [07/Oct/2020:22:40:13 +0200] "POST /xmlrpc.php HTTP/1.1" 403 1031 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 109.175.102.213 - - [07/Oct/2020:22:42:24 +0200] "POST /xmlrpc.php HTTP/1.1" 403 1031 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-10-08 17:42:05
218.92.0.185	attackspambots	Oct 8 06:43:19 shivevps sshd[1537]: Failed password for root from 218.92.0.185 port 23994 ssh2 Oct 8 06:43:22 shivevps sshd[1537]: Failed password for root from 218.92.0.185 port 23994 ssh2 Oct 8 06:43:25 shivevps sshd[1537]: Failed password for root from 218.92.0.185 port 23994 ssh2 ...	2020-10-08 17:44:00
54.38.134.219	attackbotsspam	Attempt to hack Wordpress Login, XMLRPC or other login	2020-10-08 18:17:17
220.186.159.148	attack	Oct 8 11:40:27 v22019038103785759 sshd\[28472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.186.159.148 user=root Oct 8 11:40:30 v22019038103785759 sshd\[28472\]: Failed password for root from 220.186.159.148 port 37490 ssh2 Oct 8 11:45:26 v22019038103785759 sshd\[28924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.186.159.148 user=root Oct 8 11:45:28 v22019038103785759 sshd\[28924\]: Failed password for root from 220.186.159.148 port 37332 ssh2 Oct 8 11:49:36 v22019038103785759 sshd\[29246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.186.159.148 user=root ...	2020-10-08 18:16:11

Recently Reported IPs

49.51.12.25	37.210.39.252	138.99.216.112	77.42.75.117
138.99.216.147	171.244.51.18	182.155.64.117	88.135.249.69
154.93.214.232	188.226.220.112	182.185.180.250	34.84.196.241
190.175.37.221	201.76.28.26	45.141.87.10	13.89.35.229
142.93.94.86	171.8.11.15	115.73.173.76	40.92.73.14