94.45.149.36 - IPInfo

Basic Info

City: Kyiv

Region: Kyiv City

Country: Ukraine

Internet Service Provider: Kievline LLC

Hostname: unknown

Organization: Kievline LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 20:58:56

Comments on same subnet:

IP	Type	Details	Datetime
94.45.149.101	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/94.45.149.101/ UA - 1H : (35) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : UA NAME ASN : ASN29491 IP : 94.45.149.101 CIDR : 94.45.148.0/23 PREFIX COUNT : 16 UNIQUE IP COUNT : 10240 ATTACKS DETECTED ASN29491 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-11 07:22:18 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-11 19:57:10

Type

Details

Datetime

94.45.149.101

attackspambots

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/94.45.149.101/ 
 
 UA - 1H : (35)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : UA 
 NAME ASN : ASN29491 
 
 IP : 94.45.149.101 
 
 CIDR : 94.45.148.0/23 
 
 PREFIX COUNT : 16 
 
 UNIQUE IP COUNT : 10240 
 
 
 ATTACKS DETECTED ASN29491 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 DateTime : 2019-11-11 07:22:18 
 
 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN  - data recovery

2019-11-11 19:57:10

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.45.149.36
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45705
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.45.149.36.			IN	A

;; AUTHORITY SECTION:
.			733	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 12 23:01:16 CST 2019
;; MSG SIZE  rcvd: 116

Host info

36.149.45.94.in-addr.arpa domain name pointer 94.45.149.036.luxlite.net.ua.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
36.149.45.94.in-addr.arpa	name = 94.45.149.036.luxlite.net.ua.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.210.247.112	attack	Automatic report - XMLRPC Attack	2019-12-16 04:01:55
1.203.115.141	attackbotsspam	21 attempts against mh-ssh on cloud.magehost.pro	2019-12-16 04:26:05
222.186.175.151	attackspam	Dec 15 20:51:00 loxhost sshd\[3474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Dec 15 20:51:02 loxhost sshd\[3474\]: Failed password for root from 222.186.175.151 port 10862 ssh2 Dec 15 20:51:05 loxhost sshd\[3474\]: Failed password for root from 222.186.175.151 port 10862 ssh2 Dec 15 20:51:08 loxhost sshd\[3474\]: Failed password for root from 222.186.175.151 port 10862 ssh2 Dec 15 20:51:11 loxhost sshd\[3474\]: Failed password for root from 222.186.175.151 port 10862 ssh2 ...	2019-12-16 03:59:14
185.175.93.105	attack	Fail2Ban Ban Triggered	2019-12-16 03:58:57
106.13.147.69	attack	Dec 15 21:54:38 sauna sshd[146252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.69 Dec 15 21:54:41 sauna sshd[146252]: Failed password for invalid user f092 from 106.13.147.69 port 39090 ssh2 ...	2019-12-16 04:04:33
189.165.26.13	attack	Telnet/23 MH Probe, BF, Hack -	2019-12-16 04:24:05
85.42.57.221	attackspam	Unauthorized connection attempt detected from IP address 85.42.57.221 to port 445	2019-12-16 04:22:25
212.156.115.102	attackbotsspam	Dec 15 16:49:23 vpn01 sshd[20455]: Failed password for root from 212.156.115.102 port 58917 ssh2 Dec 15 17:04:38 vpn01 sshd[20714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.115.102 ...	2019-12-16 04:35:53
124.206.188.50	attack	Invalid user mcgillvray from 124.206.188.50 port 31800	2019-12-16 04:31:38
223.197.151.55	attackspam	SSH bruteforce (Triggered fail2ban)	2019-12-16 04:28:21
140.143.139.14	attack	Dec 15 20:46:48 gw1 sshd[23724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.139.14 Dec 15 20:46:50 gw1 sshd[23724]: Failed password for invalid user roebling from 140.143.139.14 port 55976 ssh2 ...	2019-12-16 04:19:09
61.145.61.7	attack	$f2bV_matches	2019-12-16 04:20:44
27.75.144.29	attackbots	Telnet/23 MH Probe, BF, Hack -	2019-12-16 04:13:41
68.183.236.66	attackbotsspam	Dec 15 19:15:45 l02a sshd[22461]: Invalid user parmar from 68.183.236.66 Dec 15 19:15:45 l02a sshd[22461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.236.66 Dec 15 19:15:45 l02a sshd[22461]: Invalid user parmar from 68.183.236.66 Dec 15 19:15:47 l02a sshd[22461]: Failed password for invalid user parmar from 68.183.236.66 port 50842 ssh2	2019-12-16 04:19:40
159.203.73.181	attackspam	$f2bV_matches_ltvn	2019-12-16 04:36:36

Recently Reported IPs

94.191.42.156	137.122.195.207	187.189.243.22	177.114.225.32
190.26.0.154	138.128.111.221	49.50.67.63	2.67.28.54
23.250.70.239	53.72.178.40	213.56.28.0	110.72.70.100
64.212.147.34	181.124.153.130	204.237.17.214	70.158.227.183
172.110.97.25	197.94.55.225	190.220.123.25	90.255.166.87