95.49.148.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: Orange Polska Spolka Akcyjna

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.49.148.58/ PL - 1H : (179) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN5617 IP : 95.49.148.58 CIDR : 95.48.0.0/14 PREFIX COUNT : 183 UNIQUE IP COUNT : 5363456 WYKRYTE ATAKI Z ASN5617 : 1H - 7 3H - 13 6H - 23 12H - 41 24H - 68 DateTime : 2019-10-17 05:55:51 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-17 13:13:41

Type

Details

Datetime

attack

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.49.148.58/ 
 PL - 1H : (179)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : PL 
 NAME ASN : ASN5617 
 
 IP : 95.49.148.58 
 
 CIDR : 95.48.0.0/14 
 
 PREFIX COUNT : 183 
 
 UNIQUE IP COUNT : 5363456 
 
 
 WYKRYTE ATAKI Z ASN5617 :  
  1H - 7 
  3H - 13 
  6H - 23 
 12H - 41 
 24H - 68 
 
 DateTime : 2019-10-17 05:55:51 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-17 13:13:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.49.148.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.49.148.58.			IN	A

;; AUTHORITY SECTION:
.			172	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101601 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 13:13:38 CST 2019
;; MSG SIZE  rcvd: 116

Host info

58.148.49.95.in-addr.arpa domain name pointer affs58.neoplus.adsl.tpnet.pl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.148.49.95.in-addr.arpa	name = affs58.neoplus.adsl.tpnet.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.207	attack	Jun 22 22:25:30 plusreed sshd[28750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.207 user=root Jun 22 22:25:32 plusreed sshd[28750]: Failed password for root from 218.92.0.207 port 43452 ssh2 ...	2019-06-23 10:39:21
125.227.130.5	attackspam	Jun 23 00:14:21 raspberrypi sshd\[20536\]: Invalid user minecraft from 125.227.130.5Jun 23 00:14:24 raspberrypi sshd\[20536\]: Failed password for invalid user minecraft from 125.227.130.5 port 60293 ssh2Jun 23 00:17:25 raspberrypi sshd\[20587\]: Invalid user beau from 125.227.130.5 ...	2019-06-23 11:05:26
193.112.94.153	attackspam	leo_www	2019-06-23 11:10:51
193.112.129.199	attack	Jun 22 23:02:07 bilbo sshd\[17587\]: Invalid user hei from 193.112.129.199\ Jun 22 23:02:09 bilbo sshd\[17587\]: Failed password for invalid user hei from 193.112.129.199 port 36868 ssh2\ Jun 22 23:03:42 bilbo sshd\[17886\]: Invalid user jian from 193.112.129.199\ Jun 22 23:03:43 bilbo sshd\[17886\]: Failed password for invalid user jian from 193.112.129.199 port 51056 ssh2\	2019-06-23 11:13:18
123.58.5.243	attackspambots	21 attempts against mh-ssh on comet.magehost.pro	2019-06-23 11:07:28
223.214.194.114	attack	20 attempts against mh-ssh on pluto.magehost.pro	2019-06-23 11:11:58
193.188.22.17	attackspam	RDP Bruteforce	2019-06-23 10:33:41
128.199.78.191	attackspambots	Jun 23 02:48:24 lnxmail61 sshd[19543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.78.191 Jun 23 02:48:24 lnxmail61 sshd[19543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.78.191	2019-06-23 10:56:14
190.69.102.166	attackspam	SSH-Bruteforce	2019-06-23 10:32:02
178.128.68.110	attackspam	2019-06-23T01:38:11.039368abusebot-5.cloudsearch.cf sshd\[8062\]: Invalid user oracle from 178.128.68.110 port 33930	2019-06-23 11:01:38
142.93.202.122	attack	Wordpress attack	2019-06-23 11:08:26
184.105.139.68	attack	From CCTV User Interface Log ...::ffff:184.105.139.68 - - [22/Jun/2019:20:18:43 +0000] "-" 400 179 ...	2019-06-23 10:37:49
45.163.159.160	attack	Jun 23 03:18:58 srv-4 sshd\[11728\]: Invalid user admin from 45.163.159.160 Jun 23 03:18:58 srv-4 sshd\[11728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.163.159.160 Jun 23 03:19:00 srv-4 sshd\[11728\]: Failed password for invalid user admin from 45.163.159.160 port 3736 ssh2 ...	2019-06-23 10:30:37
114.113.221.162	attackspam	ssh failed login	2019-06-23 10:52:20
187.120.135.52	attack	failed_logins	2019-06-23 10:34:46

Recently Reported IPs

106.52.236.249	124.160.83.138	98.215.10.149	87.122.84.84
114.27.7.169	85.93.20.84	70.118.31.195	150.109.6.70
197.94.203.211	58.87.108.184	117.54.131.130	196.46.55.2
85.15.226.122	201.222.30.179	80.211.129.34	128.199.49.171
46.166.187.159	156.203.231.199	104.238.137.254	179.179.39.158