94.255.197.149

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Wexnet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Honeypot attack, port: 445, PTR: 94-255-197-149.cust.bredband2.com.	2020-03-08 00:17:24

Comments on same subnet:

IP	Type	Details	Datetime
94.255.197.15	attackspam	Unauthorized connection attempt detected from IP address 94.255.197.15 to port 5555 [J]	2020-01-30 23:34:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.255.197.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48132
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.255.197.149.			IN	A

;; AUTHORITY SECTION:
.			142	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030700 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 00:17:15 CST 2020
;; MSG SIZE  rcvd: 118

Host info

149.197.255.94.in-addr.arpa domain name pointer 94-255-197-149.cust.bredband2.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.197.255.94.in-addr.arpa	name = 94-255-197-149.cust.bredband2.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.29.50.74	attackbots	Apr 13 22:14:42 lukav-desktop sshd\[5681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.50.74 user=root Apr 13 22:14:44 lukav-desktop sshd\[5681\]: Failed password for root from 14.29.50.74 port 50302 ssh2 Apr 13 22:16:53 lukav-desktop sshd\[5815\]: Invalid user kiss from 14.29.50.74 Apr 13 22:16:53 lukav-desktop sshd\[5815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.50.74 Apr 13 22:16:55 lukav-desktop sshd\[5815\]: Failed password for invalid user kiss from 14.29.50.74 port 55882 ssh2	2020-04-14 04:00:44
104.206.128.30	attackspambots	Port Scan: Events[1] countPorts[1]: 5060 ..	2020-04-14 03:39:34
46.181.152.48	attack	Unauthorised access (Apr 13) SRC=46.181.152.48 LEN=52 TTL=121 ID=17380 DF TCP DPT=1433 WINDOW=8192 SYN	2020-04-14 03:55:44
218.92.0.145	attack	Automatic report BANNED IP	2020-04-14 03:46:06
101.227.82.219	attackspambots	Apr 13 21:20:26 lukav-desktop sshd\[23899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.227.82.219 user=root Apr 13 21:20:28 lukav-desktop sshd\[23899\]: Failed password for root from 101.227.82.219 port 8471 ssh2 Apr 13 21:23:01 lukav-desktop sshd\[24071\]: Invalid user llgadmin from 101.227.82.219 Apr 13 21:23:01 lukav-desktop sshd\[24071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.227.82.219 Apr 13 21:23:03 lukav-desktop sshd\[24071\]: Failed password for invalid user llgadmin from 101.227.82.219 port 28238 ssh2	2020-04-14 03:35:51
51.68.231.103	attack	Apr 13 19:40:59 localhost sshd[17115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.ip-51-68-231.eu user=root Apr 13 19:41:01 localhost sshd[17115]: Failed password for root from 51.68.231.103 port 58230 ssh2 Apr 13 19:45:01 localhost sshd[17648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.ip-51-68-231.eu user=games Apr 13 19:45:02 localhost sshd[17648]: Failed password for games from 51.68.231.103 port 37712 ssh2 Apr 13 19:48:39 localhost sshd[18128]: Invalid user admin from 51.68.231.103 port 45422 ...	2020-04-14 03:55:18
203.110.215.167	attackspambots	Fail2Ban Ban Triggered	2020-04-14 04:05:21
106.54.64.136	attackspam	Apr 13 20:41:28 OPSO sshd\[1822\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.64.136 user=root Apr 13 20:41:30 OPSO sshd\[1822\]: Failed password for root from 106.54.64.136 port 47884 ssh2 Apr 13 20:44:39 OPSO sshd\[2092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.64.136 user=root Apr 13 20:44:41 OPSO sshd\[2092\]: Failed password for root from 106.54.64.136 port 55506 ssh2 Apr 13 20:47:42 OPSO sshd\[2799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.64.136 user=root	2020-04-14 03:30:14
60.168.42.64	attackspambots	(sshd) Failed SSH login from 60.168.42.64 (CN/China/-): 5 in the last 3600 secs	2020-04-14 03:34:43
87.170.202.124	attack	RDP Brute-Force (Grieskirchen RZ2)	2020-04-14 04:08:11
91.233.42.38	attack	$f2bV_matches	2020-04-14 04:07:52
159.203.191.221	attackspambots	Apr 13 19:18:30 debian-2gb-nbg1-2 kernel: \[9057303.353916\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=159.203.191.221 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=56701 PROTO=TCP SPT=50980 DPT=4199 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-14 03:38:25
212.174.19.186	attackbotsspam	Automatic report - Banned IP Access	2020-04-14 03:50:58
45.95.168.245	attackbotsspam	auto-add	2020-04-14 03:56:36
95.168.118.24	attack	Bruteforce detected by fail2ban	2020-04-14 03:30:44

Recently Reported IPs

78.236.74.146	194.190.110.239	186.250.130.4	191.96.249.156
218.64.122.63	175.193.152.67	45.175.159.33	85.117.93.43
177.47.227.88	37.147.41.63	115.221.66.100	103.113.87.62
39.99.128.174	45.5.0.7	104.248.137.209	191.96.249.137
186.91.174.242	27.2.129.224	182.160.125.18	5.143.148.200