94.153.22.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ukraine

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
94.153.224.202	attack	94.153.224.202 - - [04/Oct/2020:02:47:05 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [04/Oct/2020:02:47:07 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [04/Oct/2020:02:47:08 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-04 09:11:57
94.153.224.202	attackbots	94.153.224.202 - - [03/Oct/2020:16:13:53 +0100] "POST /wp-login.php HTTP/1.1" 200 2643 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [03/Oct/2020:16:13:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [03/Oct/2020:16:13:55 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-04 01:48:42
94.153.224.202	attackspam	94.153.224.202 - - \[03/Oct/2020:11:13:41 +0200\] "POST /wp-login.php HTTP/1.0" 200 5983 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - \[03/Oct/2020:11:13:42 +0200\] "POST /wp-login.php HTTP/1.0" 200 5815 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - \[03/Oct/2020:11:13:42 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-10-03 17:33:48
94.153.224.202	attackspambots	94.153.224.202 - - [01/Oct/2020:15:15:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2307 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:15:15:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:15:15:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2307 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 01:08:55
94.153.224.202	attackbotsspam	94.153.224.202 - - [01/Oct/2020:10:03:57 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:10:03:57 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:10:03:58 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:10:03:58 +0200] "POST /wp-login.php HTTP/1.1" 200 2697 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:10:03:58 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [01/Oct/2020:10:03:59 +0200] "POST /wp-login.php HTTP/1.1" 200 2696 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-10-01 17:15:37
94.153.224.202	attackspam	2020-09-30T15:09:13.986535727Z wordpress(ufrj.br): Blocked username authentication attempt for [login] from 94.153.224.202 ...	2020-10-01 09:05:29
94.153.224.202	attackbots	94.153.224.202 - - [30/Sep/2020:17:22:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [30/Sep/2020:17:22:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [30/Sep/2020:17:22:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2367 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 01:41:53
94.153.224.202	attackbotsspam	(PERMBLOCK) 94.153.224.202 (UA/Ukraine/94-153-224-202.ip.kyivstar.net) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-09-30 17:53:44
94.153.224.202	attackbots	94.153.224.202 - - [22/Sep/2020:18:34:50 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [22/Sep/2020:18:34:52 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.153.224.202 - - [22/Sep/2020:18:34:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-23 01:47:42
94.153.224.202	attack	CMS (WordPress or Joomla) login attempt.	2020-09-22 17:51:12
94.153.224.206	attack	Unauthorized connection attempt from IP address 94.153.224.206 on Port 445(SMB)	2020-08-18 02:18:03
94.153.229.229	attackspam	Port probing on unauthorized port 8181	2020-03-13 15:34:10
94.153.229.229	attackspam	Honeypot attack, port: 5555, PTR: 94-153-229-229.ip.kyivstar.net.	2019-11-17 15:03:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.153.22.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39261
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.153.22.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012200 1800 900 604800 86400

;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 23:33:44 CST 2025
;; MSG SIZE  rcvd: 105

Host info

45.22.153.94.in-addr.arpa domain name pointer 94-153-22-45.broadband.kyivstar.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.22.153.94.in-addr.arpa	name = 94-153-22-45.broadband.kyivstar.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.106.193.72	attackspambots	Jun 8 06:47:39 vpn01 sshd[30790]: Failed password for root from 91.106.193.72 port 47488 ssh2 ...	2020-06-08 19:17:51
180.249.116.57	attackspam	Brute forcing RDP port 3389	2020-06-08 19:23:56
94.255.36.163	attackbots	Unauthorized connection attempt from IP address 94.255.36.163 on Port 445(SMB)	2020-06-08 19:32:46
118.172.157.193	attackspam	Unauthorized connection attempt from IP address 118.172.157.193 on Port 445(SMB)	2020-06-08 19:16:46
219.153.31.186	attackbotsspam	Jun 8 13:10:26 root sshd[23491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.153.31.186 user=root Jun 8 13:10:28 root sshd[23491]: Failed password for root from 219.153.31.186 port 31425 ssh2 ...	2020-06-08 19:16:01
200.179.23.83	attack	Brute force attempt	2020-06-08 19:42:13
42.114.170.55	attackbotsspam	1591588018 - 06/08/2020 05:46:58 Host: 42.114.170.55/42.114.170.55 Port: 445 TCP Blocked	2020-06-08 19:06:25
167.99.170.83	attack	Jun 8 08:58:52 datenbank sshd[63973]: Failed password for root from 167.99.170.83 port 33528 ssh2 Jun 8 09:00:53 datenbank sshd[63990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.170.83 user=root Jun 8 09:00:55 datenbank sshd[63990]: Failed password for root from 167.99.170.83 port 41876 ssh2 ...	2020-06-08 19:03:48
103.10.87.54	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-06-08 19:23:03
85.209.0.100	attackspam	Total attacks: 4	2020-06-08 19:13:09
222.186.52.131	attack	SSH/22 MH Probe, BF, Hack -	2020-06-08 19:46:04
192.95.6.110	attackspam	Jun 8 03:32:20 pixelmemory sshd[823957]: Failed password for root from 192.95.6.110 port 60720 ssh2 Jun 8 03:35:44 pixelmemory sshd[828247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.95.6.110 user=root Jun 8 03:35:45 pixelmemory sshd[828247]: Failed password for root from 192.95.6.110 port 34210 ssh2 Jun 8 03:38:57 pixelmemory sshd[831903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.95.6.110 user=root Jun 8 03:38:59 pixelmemory sshd[831903]: Failed password for root from 192.95.6.110 port 35899 ssh2 ...	2020-06-08 19:46:43
202.79.34.76	attackbots	2020-06-08T11:22:48.771859shield sshd\[4492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root 2020-06-08T11:22:50.822833shield sshd\[4492\]: Failed password for root from 202.79.34.76 port 54346 ssh2 2020-06-08T11:27:24.035797shield sshd\[7111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root 2020-06-08T11:27:26.643709shield sshd\[7111\]: Failed password for root from 202.79.34.76 port 57640 ssh2 2020-06-08T11:31:54.798723shield sshd\[9377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.79.34.76 user=root	2020-06-08 19:32:13
175.118.126.81	attack	Jun 8 12:10:13 rotator sshd\[8041\]: Failed password for root from 175.118.126.81 port 47838 ssh2Jun 8 12:12:10 rotator sshd\[8587\]: Failed password for root from 175.118.126.81 port 45884 ssh2Jun 8 12:14:11 rotator sshd\[8633\]: Failed password for root from 175.118.126.81 port 43930 ssh2Jun 8 12:16:06 rotator sshd\[9423\]: Failed password for root from 175.118.126.81 port 41982 ssh2Jun 8 12:18:04 rotator sshd\[9472\]: Failed password for root from 175.118.126.81 port 40036 ssh2Jun 8 12:19:54 rotator sshd\[9508\]: Failed password for root from 175.118.126.81 port 38072 ssh2 ...	2020-06-08 19:33:20
168.194.108.31	attack	Unauthorized connection attempt from IP address 168.194.108.31 on Port 445(SMB)	2020-06-08 19:35:48

Recently Reported IPs

49.214.119.201	247.57.66.141	251.15.52.29	65.5.112.200
117.145.196.120	248.21.80.133	45.138.150.189	240.216.169.85
13.13.102.121	131.44.21.149	6.184.147.88	159.68.116.211
41.229.219.174	245.234.46.172	20.216.251.166	136.197.89.180
240.139.220.75	149.200.57.196	85.151.113.128	251.6.93.24