64.94.45.59 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Internap Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	ICMP MP Probe, Scan -	2019-08-10 21:22:18

Comments on same subnet:

IP	Type	Details	Datetime
64.94.45.0	attackspam	ICMP MP Probe, Scan -	2019-08-10 21:24:37
64.94.45.63	attack	ICMP MP Probe, Scan -	2019-08-10 21:21:30
64.94.45.66	attack	ICMP MP Probe, Scan -	2019-08-10 21:20:15
64.94.45.67	attack	ICMP MP Probe, Scan -	2019-08-10 21:16:12
64.94.45.68	attack	ICMP MP Probe, Scan -	2019-08-10 21:13:42
64.94.45.69	attackbotsspam	ICMP MP Probe, Scan -	2019-08-10 21:08:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 64.94.45.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61722
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;64.94.45.59.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 21:22:05 CST 2019
;; MSG SIZE  rcvd: 115

Host info

59.45.94.64.in-addr.arpa domain name pointer performance-measurement-174-1.chg.pnap.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
59.45.94.64.in-addr.arpa	name = performance-measurement-174-1.chg.pnap.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.92.173.154	attackspam	Aug 15 18:29:42 gw1 sshd[5927]: Failed password for root from 120.92.173.154 port 5404 ssh2 ...	2020-08-15 22:44:20
183.247.214.63	attack	Unauthorised access (Aug 15) SRC=183.247.214.63 LEN=40 TOS=0x14 TTL=47 ID=34754 TCP DPT=8080 WINDOW=10644 SYN Unauthorised access (Aug 14) SRC=183.247.214.63 LEN=40 TOS=0x14 TTL=47 ID=11481 TCP DPT=8080 WINDOW=10644 SYN Unauthorised access (Aug 12) SRC=183.247.214.63 LEN=40 TOS=0x14 TTL=50 ID=50822 TCP DPT=8080 WINDOW=35655 SYN Unauthorised access (Aug 10) SRC=183.247.214.63 LEN=40 TOS=0x14 TTL=47 ID=64450 TCP DPT=8080 WINDOW=10644 SYN Unauthorised access (Aug 9) SRC=183.247.214.63 LEN=40 TOS=0x14 TTL=47 ID=44202 TCP DPT=8080 WINDOW=35655 SYN	2020-08-15 22:24:09
103.67.235.104	attack	Brute forcing email accounts	2020-08-15 22:22:46
111.72.197.225	attack	Aug 15 14:11:32 srv01 postfix/smtpd\[7469\]: warning: unknown\[111.72.197.225\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 14:22:11 srv01 postfix/smtpd\[31105\]: warning: unknown\[111.72.197.225\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 14:22:23 srv01 postfix/smtpd\[31105\]: warning: unknown\[111.72.197.225\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 14:22:41 srv01 postfix/smtpd\[31105\]: warning: unknown\[111.72.197.225\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 14:23:01 srv01 postfix/smtpd\[31105\]: warning: unknown\[111.72.197.225\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-15 22:44:55
167.58.240.138	attackspam	Aug 15 14:11:10 mxgate1 postfix/postscreen[4584]: CONNECT from [167.58.240.138]:48201 to [176.31.12.44]:25 Aug 15 14:11:10 mxgate1 postfix/dnsblog[4586]: addr 167.58.240.138 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 15 14:11:10 mxgate1 postfix/dnsblog[4586]: addr 167.58.240.138 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 15 14:11:10 mxgate1 postfix/dnsblog[4585]: addr 167.58.240.138 listed by domain cbl.abuseat.org as 127.0.0.2 Aug 15 14:11:16 mxgate1 postfix/postscreen[4584]: DNSBL rank 3 for [167.58.240.138]:48201 Aug x@x Aug 15 14:11:17 mxgate1 postfix/postscreen[4584]: HANGUP after 1.6 from [167.58.240.138]:48201 in tests after SMTP handshake Aug 15 14:11:17 mxgate1 postfix/postscreen[4584]: DISCONNECT [167.58.240.138]:48201 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=167.58.240.138	2020-08-15 22:55:48
101.187.123.101	attack	frenzy	2020-08-15 22:29:25
167.172.239.118	attackbots	Aug 15 08:40:37 lanister sshd[13557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.239.118 user=root Aug 15 08:40:40 lanister sshd[13557]: Failed password for root from 167.172.239.118 port 59336 ssh2 Aug 15 08:48:12 lanister sshd[13650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.239.118 user=root Aug 15 08:48:14 lanister sshd[13650]: Failed password for root from 167.172.239.118 port 55014 ssh2	2020-08-15 22:52:24
123.122.161.233	attackspam	frenzy	2020-08-15 22:35:56
218.92.0.199	attack	Aug 15 16:24:38 pve1 sshd[16631]: Failed password for root from 218.92.0.199 port 28425 ssh2 Aug 15 16:24:41 pve1 sshd[16631]: Failed password for root from 218.92.0.199 port 28425 ssh2 ...	2020-08-15 22:29:43
192.99.244.45	attack	TCP (SYN) 192.99.244.45:47115 -> port 3389, len 40	2020-08-15 22:20:59
222.186.175.23	attackbotsspam	2020-08-15T14:24:53.015216shield sshd\[26577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root 2020-08-15T14:24:55.050414shield sshd\[26577\]: Failed password for root from 222.186.175.23 port 15189 ssh2 2020-08-15T14:24:58.002392shield sshd\[26577\]: Failed password for root from 222.186.175.23 port 15189 ssh2 2020-08-15T14:25:00.644220shield sshd\[26577\]: Failed password for root from 222.186.175.23 port 15189 ssh2 2020-08-15T14:25:03.163353shield sshd\[26585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root	2020-08-15 22:28:14
35.187.98.101	attackspambots	Unauthorized connection attempt to my NAS detected from IP address 35.187.98.101	2020-08-15 22:51:29
222.186.175.216	attackbots	Aug 15 07:52:44 dignus sshd[25809]: Failed password for root from 222.186.175.216 port 16088 ssh2 Aug 15 07:52:48 dignus sshd[25809]: Failed password for root from 222.186.175.216 port 16088 ssh2 Aug 15 07:52:51 dignus sshd[25809]: Failed password for root from 222.186.175.216 port 16088 ssh2 Aug 15 07:52:54 dignus sshd[25809]: Failed password for root from 222.186.175.216 port 16088 ssh2 Aug 15 07:52:58 dignus sshd[25809]: Failed password for root from 222.186.175.216 port 16088 ssh2 ...	2020-08-15 22:54:13
113.52.132.195	attackbotsspam	1597494205 - 08/15/2020 19:23:25 Host: 113-52-132-195.layerdns.cloud/113.52.132.195 Port: 21 TCP Blocked ...	2020-08-15 22:30:42
218.92.0.145	attack	2020-08-15T14:23:50.846627shield sshd\[26508\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root 2020-08-15T14:23:53.029526shield sshd\[26508\]: Failed password for root from 218.92.0.145 port 37943 ssh2 2020-08-15T14:23:56.023286shield sshd\[26508\]: Failed password for root from 218.92.0.145 port 37943 ssh2 2020-08-15T14:23:58.771800shield sshd\[26508\]: Failed password for root from 218.92.0.145 port 37943 ssh2 2020-08-15T14:24:01.921591shield sshd\[26508\]: Failed password for root from 218.92.0.145 port 37943 ssh2	2020-08-15 22:31:17

Recently Reported IPs

23.73.133.198	23.73.133.163	188.68.76.38	189.84.191.137
23.73.133.0	13.209.99.103	78.232.144.207	23.6.113.181
151.80.103.105	106.35.196.28	23.215.129.94	95.182.120.218
67.222.102.11	62.234.103.62	23.215.129.151	177.11.116.238
23.215.129.102	222.132.57.119	118.99.96.75	179.162.155.205