94.134.159.101

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: 1&1 Versatel Deutschland GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	[portscan] tcp/23 [TELNET] *(RWIN=52227)(06240931)	2019-06-25 04:59:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.134.159.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17291
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.134.159.101.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062401 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 25 04:59:09 CST 2019
;; MSG SIZE  rcvd: 118

Host info

101.159.134.94.in-addr.arpa domain name pointer i5E869F65.versanet.de.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
101.159.134.94.in-addr.arpa	name = i5E869F65.versanet.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.248.71.153	attackbotsspam	2020-08-20T03:51:04.732544hostname sshd[19046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.153 2020-08-20T03:51:04.707194hostname sshd[19046]: Invalid user carlos1 from 45.248.71.153 port 56852 2020-08-20T03:51:06.403664hostname sshd[19046]: Failed password for invalid user carlos1 from 45.248.71.153 port 56852 ssh2 ...	2020-08-20 07:15:51
182.150.44.41	attack	Aug 19 23:54:09 eventyay sshd[30611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.150.44.41 Aug 19 23:54:11 eventyay sshd[30611]: Failed password for invalid user ester from 182.150.44.41 port 35986 ssh2 Aug 19 23:58:20 eventyay sshd[30798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.150.44.41 ...	2020-08-20 07:16:32
180.249.165.83	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-19T22:52:57Z and 2020-08-19T23:03:11Z	2020-08-20 07:32:41
222.186.173.238	attack	2020-08-20T01:19:46.064032vps773228.ovh.net sshd[2433]: Failed password for root from 222.186.173.238 port 63050 ssh2 2020-08-20T01:19:49.568711vps773228.ovh.net sshd[2433]: Failed password for root from 222.186.173.238 port 63050 ssh2 2020-08-20T01:19:52.488000vps773228.ovh.net sshd[2433]: Failed password for root from 222.186.173.238 port 63050 ssh2 2020-08-20T01:19:55.819477vps773228.ovh.net sshd[2433]: Failed password for root from 222.186.173.238 port 63050 ssh2 2020-08-20T01:19:58.700243vps773228.ovh.net sshd[2433]: Failed password for root from 222.186.173.238 port 63050 ssh2 ...	2020-08-20 07:27:29
125.64.94.131	attackbotsspam	TCP (SYN) 125.64.94.131:57725 -> port 23, len 40	2020-08-20 07:13:07
222.186.175.167	attackspam	Aug 19 19:07:04 ny01 sshd[28565]: Failed password for root from 222.186.175.167 port 33438 ssh2 Aug 19 19:07:16 ny01 sshd[28565]: error: maximum authentication attempts exceeded for root from 222.186.175.167 port 33438 ssh2 [preauth] Aug 19 19:07:22 ny01 sshd[28597]: Failed password for root from 222.186.175.167 port 39344 ssh2	2020-08-20 07:31:51
61.7.147.29	attack	2020-08-20T00:27:50.750731vps751288.ovh.net sshd\[5467\]: Invalid user maquina from 61.7.147.29 port 48638 2020-08-20T00:27:50.757117vps751288.ovh.net sshd\[5467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.147.29 2020-08-20T00:27:52.487140vps751288.ovh.net sshd\[5467\]: Failed password for invalid user maquina from 61.7.147.29 port 48638 ssh2 2020-08-20T00:32:10.407088vps751288.ovh.net sshd\[5553\]: Invalid user zjl from 61.7.147.29 port 58740 2020-08-20T00:32:10.412773vps751288.ovh.net sshd\[5553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.147.29	2020-08-20 07:35:35
198.12.227.90	attack	198.12.227.90 - - [19/Aug/2020:22:51:08 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:09 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:12 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:12 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-08-20 07:06:33
74.82.47.5	attack	SSH login attempts.	2020-08-20 07:04:41
92.63.196.6	attackbots	[MK-VM1] Blocked by UFW	2020-08-20 07:06:17
92.139.168.243	attack	Invalid user yaroslav from 92.139.168.243 port 47298	2020-08-20 07:11:08
198.199.101.122	attackbots	Port scan: Attack repeated for 24 hours	2020-08-20 07:33:17
140.143.244.91	attackbots	Aug 19 19:02:36 NPSTNNYC01T sshd[12021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.244.91 Aug 19 19:02:38 NPSTNNYC01T sshd[12021]: Failed password for invalid user print from 140.143.244.91 port 43172 ssh2 Aug 19 19:08:49 NPSTNNYC01T sshd[12517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.244.91 ...	2020-08-20 07:10:02
142.93.182.7	attack	142.93.182.7 - - [19/Aug/2020:22:50:58 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.182.7 - - [19/Aug/2020:22:51:03 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.182.7 - - [19/Aug/2020:22:51:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-20 07:12:21
3.134.99.70	attackbots	Fail2Ban Ban Triggered	2020-08-20 07:31:20

Recently Reported IPs

36.83.111.210	36.69.152.30	36.68.239.26	35.241.229.237
34.76.159.215	27.194.250.183	1.54.205.201	21.65.226.137
219.147.27.218	219.136.240.150	174.209.70.23	117.3.87.218
191.67.209.6	203.128.92.90	98.243.115.24	56.235.101.114
200.75.155.99	16.148.6.169	194.204.123.123	194.58.71.112