94.71.161.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Otenet

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Automatic report - Port Scan Attack	2020-04-29 16:34:52

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.71.161.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14593
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.71.161.45.			IN	A

;; AUTHORITY SECTION:
.			495	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042900 1800 900 604800 86400

;; Query time: 128 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 29 16:34:47 CST 2020
;; MSG SIZE  rcvd: 116

Host info

45.161.71.94.in-addr.arpa domain name pointer athedsl-4502821.home.otenet.gr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.161.71.94.in-addr.arpa	name = athedsl-4502821.home.otenet.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.41.77.39	attackbotsspam	Automatic report - Port Scan Attack	2019-07-25 07:28:22
189.221.47.1	attackbots	Brute force attempt	2019-07-25 07:25:17
106.12.100.179	attack	2019-07-24T23:28:54.651010abusebot-5.cloudsearch.cf sshd\[5951\]: Invalid user terraria from 106.12.100.179 port 38196	2019-07-25 07:51:42
45.55.233.33	attack	45.55.233.33 - - [24/Jul/2019:18:35:19 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.233.33 - - [24/Jul/2019:18:35:20 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.233.33 - - [24/Jul/2019:18:35:21 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.233.33 - - [24/Jul/2019:18:35:21 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.233.33 - - [24/Jul/2019:18:35:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.55.233.33 - - [24/Jul/2019:18:35:23 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-25 07:20:12
58.219.137.122	attackbots	Jul 24 22:30:28 db01 sshd[26827]: Bad protocol version identification '' from 58.219.137.122 Jul 24 22:30:29 db01 sshd[26828]: Invalid user openhabian from 58.219.137.122 Jul 24 22:30:29 db01 sshd[26828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.219.137.122 Jul 24 22:30:31 db01 sshd[26828]: Failed password for invalid user openhabian from 58.219.137.122 port 41175 ssh2 Jul 24 22:30:32 db01 sshd[26828]: Connection closed by 58.219.137.122 [preauth] Jul 24 22:30:33 db01 sshd[26832]: Invalid user NetLinx from 58.219.137.122 Jul 24 22:30:33 db01 sshd[26832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.219.137.122 Jul 24 22:30:35 db01 sshd[26832]: Failed password for invalid user NetLinx from 58.219.137.122 port 42001 ssh2 Jul 24 22:30:35 db01 sshd[26832]: Connection closed by 58.219.137.122 [preauth] Jul 24 22:30:36 db01 sshd[26834]: Invalid user nexthink from 58.219.137.122 J........ -------------------------------	2019-07-25 07:11:56
103.250.166.4	attack	Jul 24 16:34:27 TCP Attack: SRC=103.250.166.4 DST=[Masked] LEN=64 TOS=0x00 PREC=0x00 TTL=48 DF PROTO=TCP SPT=57813 DPT=80 WINDOW=457 RES=0x00 ACK URGP=0	2019-07-25 07:33:38
188.36.112.109	attackspam	Unauthorized connection attempt from IP address 188.36.112.109 on Port 445(SMB)	2019-07-25 07:49:57
181.40.125.250	attackbots	Jul 24 20:46:45 localhost sshd\[64966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.125.250 user=mysql Jul 24 20:46:47 localhost sshd\[64966\]: Failed password for mysql from 181.40.125.250 port 60112 ssh2 ...	2019-07-25 07:42:52
1.179.185.253	attackspambots	Jul 24 16:35:30 TCP Attack: SRC=1.179.185.253 DST=[Masked] LEN=451 TOS=0x00 PREC=0x00 TTL=52 DF PROTO=TCP SPT=58096 DPT=80 WINDOW=913 RES=0x00 ACK PSH URGP=0	2019-07-25 07:16:26
204.17.56.42	attack	Brute-Force attack detected (85) and blocked by Fail2Ban.	2019-07-25 07:30:55
198.108.67.104	attackbots	" "	2019-07-25 07:27:22
2.139.209.78	attackspambots	Jul 25 01:13:07 dedicated sshd[4764]: Invalid user web from 2.139.209.78 port 48919	2019-07-25 07:19:16
125.88.177.12	attackspam	Jul 25 02:03:13 server sshd\[4333\]: Invalid user ethan from 125.88.177.12 port 62153 Jul 25 02:03:13 server sshd\[4333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.88.177.12 Jul 25 02:03:15 server sshd\[4333\]: Failed password for invalid user ethan from 125.88.177.12 port 62153 ssh2 Jul 25 02:05:30 server sshd\[1735\]: Invalid user sunday from 125.88.177.12 port 14085 Jul 25 02:05:30 server sshd\[1735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.88.177.12	2019-07-25 07:19:44
77.240.89.44	attackspambots	Unauthorized connection attempt from IP address 77.240.89.44 on Port 445(SMB)	2019-07-25 07:45:02
49.236.214.77	attackspambots	Automatic report - Banned IP Access	2019-07-25 07:09:14

Recently Reported IPs

89.122.131.36	23.106.219.98	31.131.30.139	137.215.207.137
172.93.188.209	23.106.219.247	172.245.5.153	53.227.68.127
93.94.187.126	112.227.100.240	198.95.137.76	145.222.221.251
242.52.149.117	129.254.228.186	117.239.219.36	117.239.219.7
185.127.253.117	233.255.217.89	49.232.135.102	20.226.208.255