94.45.149.36 - IPInfo

Basic Info

City: Kyiv

Region: Kyiv City

Country: Ukraine

Internet Service Provider: Kievline LLC

Hostname: unknown

Organization: Kievline LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 20:58:56

Comments on same subnet:

IP	Type	Details	Datetime
94.45.149.101	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.45.149.101/ UA - 1H : (35) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : UA NAME ASN : ASN29491 IP : 94.45.149.101 CIDR : 94.45.148.0/23 PREFIX COUNT : 16 UNIQUE IP COUNT : 10240 ATTACKS DETECTED ASN29491 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-11 07:22:18 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-11 19:57:10

Type

Details

Datetime

94.45.149.101

attackspambots

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/94.45.149.101/ 
 
 UA - 1H : (35)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : UA 
 NAME ASN : ASN29491 
 
 IP : 94.45.149.101 
 
 CIDR : 94.45.148.0/23 
 
 PREFIX COUNT : 16 
 
 UNIQUE IP COUNT : 10240 
 
 
 ATTACKS DETECTED ASN29491 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 DateTime : 2019-11-11 07:22:18 
 
 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN  - data recovery

2019-11-11 19:57:10

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.45.149.36
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45705
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.45.149.36.			IN	A

;; AUTHORITY SECTION:
.			733	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 12 23:01:16 CST 2019
;; MSG SIZE  rcvd: 116

Host info

36.149.45.94.in-addr.arpa domain name pointer 94.45.149.036.luxlite.net.ua.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
36.149.45.94.in-addr.arpa	name = 94.45.149.036.luxlite.net.ua.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
205.185.122.99	attackspam	Jan 22 14:49:52 eddieflores sshd\[31771\]: Invalid user dev from 205.185.122.99 Jan 22 14:49:52 eddieflores sshd\[31771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.122.99 Jan 22 14:49:54 eddieflores sshd\[31771\]: Failed password for invalid user dev from 205.185.122.99 port 43976 ssh2 Jan 22 14:52:59 eddieflores sshd\[32123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.122.99 user=root Jan 22 14:53:01 eddieflores sshd\[32123\]: Failed password for root from 205.185.122.99 port 46250 ssh2	2020-01-23 09:03:33
128.106.180.61	attack	Honeypot attack, port: 445, PTR: bb128-106-180-61.singnet.com.sg.	2020-01-23 08:37:19
2.81.219.150	attack	Honeypot attack, port: 445, PTR: bl20-219-150.dsl.telepac.pt.	2020-01-23 08:36:55
92.118.234.178	attackbots	Fail2Ban Ban Triggered	2020-01-23 09:14:04
154.127.112.94	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-23 08:46:47
51.159.58.65	attackspam	SIP/5060 Probe, BF, Hack -	2020-01-23 09:06:03
111.231.82.143	attackbots	Jan 23 02:10:16 meumeu sshd[14919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.82.143 Jan 23 02:10:19 meumeu sshd[14919]: Failed password for invalid user movie from 111.231.82.143 port 46642 ssh2 Jan 23 02:12:55 meumeu sshd[15372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.82.143 ...	2020-01-23 09:13:32
183.134.101.21	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-23 08:40:58
222.186.30.209	attackspambots	Unauthorized connection attempt detected from IP address 222.186.30.209 to port 22 [J]	2020-01-23 08:35:04
51.89.180.50	attack	Port 22 Scan, PTR: None	2020-01-23 09:07:43
74.63.227.26	attackspambots	01/22/2020-19:47:53.898555 74.63.227.26 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-23 08:54:42
124.156.240.138	attack	Unauthorized connection attempt detected from IP address 124.156.240.138 to port 38 [J]	2020-01-23 08:42:45
54.37.151.239	attackspambots	Jan 23 01:40:48 sd-53420 sshd\[14848\]: Invalid user zzz from 54.37.151.239 Jan 23 01:40:48 sd-53420 sshd\[14848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 Jan 23 01:40:50 sd-53420 sshd\[14848\]: Failed password for invalid user zzz from 54.37.151.239 port 44131 ssh2 Jan 23 01:43:29 sd-53420 sshd\[15252\]: Invalid user kawasaki from 54.37.151.239 Jan 23 01:43:29 sd-53420 sshd\[15252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.151.239 ...	2020-01-23 09:02:43
112.175.232.155	attackbots	Jan 22 21:46:13 XXX sshd[18114]: Invalid user vision from 112.175.232.155 port 41904	2020-01-23 08:36:27
107.150.112.182	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-01-23 09:02:19

Recently Reported IPs

94.191.42.156	137.122.195.207	187.189.243.22	177.114.225.32
190.26.0.154	138.128.111.221	49.50.67.63	2.67.28.54
23.250.70.239	53.72.178.40	213.56.28.0	110.72.70.100
64.212.147.34	181.124.153.130	204.237.17.214	70.158.227.183
172.110.97.25	197.94.55.225	190.220.123.25	90.255.166.87