NOTE: Due to excessive queries, page processing has been limited to 10 per minute. Please contact us for bulk data access or try out our API. Do not use this data as a blocklist.

To lookup several IP addresses at the same time, or to just copy/paste a section of a log, use our "Color My Logs" feature.

General Information

Submitter Diversity: Low
Risk (0-10)details: 0
IP Address (click for more detail): 45.95.147.236
Hostname: hosted-by.as49870.net
Country: NL
AS: 49870
AS Name: AS49870-BV, NL
Network: 45.95.147.0/24 (45.95.147.0-45.95.147.255) 45.95.148.0
Reports: - none -
Targets: - none -
First Reported: N/A
Most Recent Report: N/A
Comment: - none -
Abuse POC Email: abuse@westcall.ru

Note: We update the data once an hour. To refresh the data, click here. Not all source IPs in our database are "attackers". There are a few common false positives. For example, hosts that participate in P2P networks, mail servers, load balancers and DNS servers are some of the most common issues. For details, click on the number of reports. Clicking on the number of reports may allow you to conclude if a report is a false positive or not. Scroll down for information from other data feeds.

SSH/Telnet Logs

no ssh logs.

Web Honeypot Logs

Date Reports Different URLs Different User Agents
2024-03-22111
2024-03-15506351
2024-03-142381
2024-03-13521
2024-03-1095951
2024-03-09771
2024-03-0895951
2024-03-07211
2024-02-25190041
2024-02-24456971
2024-02-232431
2024-02-0850332
2024-02-0734281
2024-02-061181

For more details about the web honeypot, see the Weblogs Page. Do not use these reports to identify IP addresses as "bad" for now.

External Threat Feeds

This data was retrieved from various external threat feeds

First Seen Last Seen Feed
2023-11-022024-03-27Port 22 Scanner
2023-10-092024-03-27Port 443 Scanner
2023-10-092024-03-27Port 80 Scanner
2023-10-102024-03-27Apache Web Server Scanner
2023-10-282024-03-27Suspect Bots/Infected
2023-12-042024-03-27Bruteforce
2023-10-072024-03-27CI Army List
2024-01-092024-04-01Emergingthreats
2023-11-192024-03-27Threatview Blocklist
Check Threatstop for more data link arrow

Whois Info

    
Sorry, but RIPE blocks our requests. Please check directly at whois.ripe.net


NetRange:       45.92.20.0 - 45.95.208.255
CIDR:           45.92.32.0/19, 45.95.208.0/24, 45.95.128.0/18, 45.95.0.0/17, 45.93.0.0/16, 45.94.0.0/16, 45.95.192.0/20, 45.92.128.0/17, 45.92.64.0/18, 45.92.24.0/21, 45.92.20.0/22
NetName:        RIPE
NetHandle:      NET-45-92-20-0-1
Parent:         NET45 (NET-45-0-0-0-0)
NetType:        Early Registrations, Transferred to RIPE NCC
OriginAS:       
Organization:   RIPE Network Coordination Centre (RIPE)
RegDate:        2014-09-05
Updated:        2022-10-25
Ref:            https://rdap.arin.net/registry/ip/45.92.20.0

ResourceLink:  https://apps.db.ripe.net/search/query.html
ResourceLink:  whois.ripe.net


OrgName:        RIPE Network Coordination Centre
OrgId:          RIPE
Address:        P.O. Box 10096
City:           Amsterdam
StateProv:      
PostalCode:     1001EB
Country:        NL
RegDate:        
Updated:        2013-07-29
Ref:            https://rdap.arin.net/registry/entity/RIPE

ReferralServer:  whois://whois.ripe.net
ResourceLink:  https://apps.db.ripe.net/search/query.html

OrgTechHandle: RNO29-ARIN
OrgTechName:   RIPE NCC Operations
OrgTechPhone:  +31 20 535 4444 
OrgTechEmail:  hostmaster@ripe.net
OrgTechRef:    https://rdap.arin.net/registry/entity/RNO29-ARIN

OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName:   Abuse Contact
OrgAbusePhone:  +31205354444 
OrgAbuseEmail:  abuse@ripe.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE3850-ARIN