94.134.152.44 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: 1&1 Versatel Deutschland GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 11 07:01:34 box sshd[31830]: error: maximum authentication attempts exceeded for invalid user support from 94.134.152.44 port 58302 ssh2 [preauth]	2019-07-11 12:46:30

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.134.152.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56321
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.134.152.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071002 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 11 12:46:19 CST 2019
;; MSG SIZE  rcvd: 117

Host info

44.152.134.94.in-addr.arpa domain name pointer i5E86982C.versanet.de.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
44.152.134.94.in-addr.arpa	name = i5E86982C.versanet.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.248	attack	Oct 8 18:16:41 minden010 sshd[12706]: Failed password for root from 218.92.0.248 port 21491 ssh2 Oct 8 18:16:45 minden010 sshd[12706]: Failed password for root from 218.92.0.248 port 21491 ssh2 Oct 8 18:16:49 minden010 sshd[12706]: Failed password for root from 218.92.0.248 port 21491 ssh2 Oct 8 18:16:52 minden010 sshd[12706]: Failed password for root from 218.92.0.248 port 21491 ssh2 ...	2020-10-09 00:17:32
221.229.218.50	attackbots	Oct 8 11:05:01 firewall sshd[25091]: Failed password for root from 221.229.218.50 port 32837 ssh2 Oct 8 11:08:50 firewall sshd[25200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.218.50 user=root Oct 8 11:08:52 firewall sshd[25200]: Failed password for root from 221.229.218.50 port 52306 ssh2 ...	2020-10-08 23:42:57
5.188.219.13	attackbots	C1,Magento Bruteforce Login Attack POST /index.php/admin/	2020-10-09 00:27:30
49.88.112.118	attackbotsspam	Oct 8 17:12:48 sip sshd[1865342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.118 user=root Oct 8 17:12:49 sip sshd[1865342]: Failed password for root from 49.88.112.118 port 26232 ssh2 Oct 8 17:12:53 sip sshd[1865342]: Failed password for root from 49.88.112.118 port 26232 ssh2 ...	2020-10-09 00:12:45
81.133.142.45	attackbots	Oct 8 13:37:26 host sshd[6950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host81-133-142-45.in-addr.btopenworld.com user=root Oct 8 13:37:28 host sshd[6950]: Failed password for root from 81.133.142.45 port 37432 ssh2 ...	2020-10-08 23:55:40
103.208.137.2	attackbotsspam	Oct 9 01:13:34 web1 sshd[12374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.2 user=root Oct 9 01:13:37 web1 sshd[12374]: Failed password for root from 103.208.137.2 port 46272 ssh2 Oct 9 01:19:23 web1 sshd[14245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.2 user=root Oct 9 01:19:26 web1 sshd[14245]: Failed password for root from 103.208.137.2 port 56444 ssh2 Oct 9 01:22:44 web1 sshd[15391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.2 user=root Oct 9 01:22:46 web1 sshd[15391]: Failed password for root from 103.208.137.2 port 42738 ssh2 Oct 9 01:25:59 web1 sshd[16547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.208.137.2 user=root Oct 9 01:26:01 web1 sshd[16547]: Failed password for root from 103.208.137.2 port 57260 ssh2 Oct 9 01:29:24 web1 sshd[17622]: pa ...	2020-10-08 23:49:07
211.14.169.146	attackspambots	Lines containing failures of 211.14.169.146 Oct 6 05:17:38 rancher sshd[16898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.14.169.146 user=r.r Oct 6 05:17:40 rancher sshd[16898]: Failed password for r.r from 211.14.169.146 port 52650 ssh2 Oct 6 05:17:41 rancher sshd[16898]: Received disconnect from 211.14.169.146 port 52650:11: Bye Bye [preauth] Oct 6 05:17:41 rancher sshd[16898]: Disconnected from authenticating user r.r 211.14.169.146 port 52650 [preauth] Oct 6 05:26:14 rancher sshd[17004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.14.169.146 user=r.r Oct 6 05:26:15 rancher sshd[17004]: Failed password for r.r from 211.14.169.146 port 39332 ssh2 Oct 6 05:26:18 rancher sshd[17004]: Received disconnect from 211.14.169.146 port 39332:11: Bye Bye [preauth] Oct 6 05:26:18 rancher sshd[17004]: Disconnected from authenticating user r.r 211.14.169.146 port 39332 [preaut........ ------------------------------	2020-10-08 23:51:14
173.249.52.246	attackspambots	SIPVicious Scanner Detection	2020-10-08 23:58:53
101.51.191.21	attack	1602103454 - 10/07/2020 22:44:14 Host: 101.51.191.21/101.51.191.21 Port: 445 TCP Blocked	2020-10-09 00:16:17
3.133.236.208	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-09 00:00:24
106.12.93.251	attack	2020-10-08T12:41:48.909871abusebot-6.cloudsearch.cf sshd[16901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.251 user=root 2020-10-08T12:41:50.937589abusebot-6.cloudsearch.cf sshd[16901]: Failed password for root from 106.12.93.251 port 57000 ssh2 2020-10-08T12:43:50.611323abusebot-6.cloudsearch.cf sshd[16907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.251 user=root 2020-10-08T12:43:52.719640abusebot-6.cloudsearch.cf sshd[16907]: Failed password for root from 106.12.93.251 port 48388 ssh2 2020-10-08T12:45:52.219122abusebot-6.cloudsearch.cf sshd[16921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.251 user=root 2020-10-08T12:45:54.076280abusebot-6.cloudsearch.cf sshd[16921]: Failed password for root from 106.12.93.251 port 39770 ssh2 2020-10-08T12:47:54.237845abusebot-6.cloudsearch.cf sshd[16932]: pam_unix(sshd:auth): authe ...	2020-10-08 23:50:17
107.179.226.45	attackbots	"GET /phpmyadmin/index.php?lang=en	2020-10-09 00:03:01
185.234.218.84	attack	Oct 8 15:28:53 mail postfix/smtpd\[29724\]: warning: unknown\[185.234.218.84\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 8 16:03:53 mail postfix/smtpd\[31225\]: warning: unknown\[185.234.218.84\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 8 16:39:03 mail postfix/smtpd\[31975\]: warning: unknown\[185.234.218.84\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 8 17:13:57 mail postfix/smtpd\[1400\]: warning: unknown\[185.234.218.84\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-10-08 23:52:44
171.15.17.161	attackbots	Oct 8 04:02:21 db sshd[1630]: User root from 171.15.17.161 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-09 00:27:54
170.106.37.30	attack	Oct 8 12:52:48 s2 sshd[29823]: Failed password for root from 170.106.37.30 port 40906 ssh2 Oct 8 12:55:11 s2 sshd[29952]: Failed password for root from 170.106.37.30 port 54942 ssh2	2020-10-09 00:09:07

Recently Reported IPs

113.160.148.179	124.123.57.185	58.136.93.251	115.160.255.90
221.237.164.20	186.200.236.146	114.230.34.220	119.136.196.128
180.124.241.30	14.172.110.104	111.242.116.24	37.239.27.226
223.204.12.159	83.223.167.158	159.39.242.118	113.160.166.26
112.85.196.138	171.233.85.166	110.9.6.12	36.79.245.142