109.94.116.149

Basic Info

City: unknown

Region: unknown

Country: Serbia

Internet Service Provider: BEOTELNET d.o.o. ZRENJANIN

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 109.94.116.149 to port 80 [J]	2020-01-27 02:19:15

Comments on same subnet:

IP	Type	Details	Datetime
109.94.116.127	attackspambots	Unauthorized connection attempt detected from IP address 109.94.116.127 to port 23	2020-03-31 03:39:16
109.94.116.9	attack	20/3/16@10:37:34: FAIL: Alarm-Telnet address from=109.94.116.9 ...	2020-03-17 05:09:38
109.94.116.251	attackbots	Automatic report - Port Scan Attack	2020-01-26 15:42:11
109.94.116.227	attackspam	Unauthorized connection attempt detected from IP address 109.94.116.227 to port 80 [J]	2020-01-12 23:40:26
109.94.116.63	attackbotsspam	Unauthorized connection attempt detected from IP address 109.94.116.63 to port 8080 [J]	2020-01-06 16:10:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.94.116.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.94.116.149.			IN	A

;; AUTHORITY SECTION:
.			522	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012601 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 02:19:12 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 149.116.94.109.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.116.94.109.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.216	attackspambots	Mar 17 21:30:33 ift sshd\[34212\]: Failed password for root from 222.186.175.216 port 37508 ssh2Mar 17 21:30:46 ift sshd\[34212\]: Failed password for root from 222.186.175.216 port 37508 ssh2Mar 17 21:30:52 ift sshd\[34225\]: Failed password for root from 222.186.175.216 port 46688 ssh2Mar 17 21:31:08 ift sshd\[34225\]: Failed password for root from 222.186.175.216 port 46688 ssh2Mar 17 21:31:13 ift sshd\[34282\]: Failed password for root from 222.186.175.216 port 13040 ssh2 ...	2020-03-18 03:37:39
84.2.226.70	attack	Mar 17 18:50:48 web8 sshd\[3020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 user=root Mar 17 18:50:50 web8 sshd\[3020\]: Failed password for root from 84.2.226.70 port 49662 ssh2 Mar 17 18:55:02 web8 sshd\[5244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 user=root Mar 17 18:55:04 web8 sshd\[5244\]: Failed password for root from 84.2.226.70 port 43028 ssh2 Mar 17 18:59:13 web8 sshd\[7384\]: Invalid user like from 84.2.226.70	2020-03-18 03:51:39
103.39.217.197	attack	Mar 18 02:26:48 webhost01 sshd[21696]: Failed password for root from 103.39.217.197 port 41240 ssh2 ...	2020-03-18 03:53:16
61.134.142.109	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-18 03:39:01
83.103.59.192	attack	-	2020-03-18 03:58:23
222.186.180.8	attackbots	Mar 17 20:54:25 vps647732 sshd[6682]: Failed password for root from 222.186.180.8 port 44068 ssh2 Mar 17 20:54:39 vps647732 sshd[6682]: error: maximum authentication attempts exceeded for root from 222.186.180.8 port 44068 ssh2 [preauth] ...	2020-03-18 04:07:37
49.235.143.244	attackbotsspam	Mar 17 19:48:06 host01 sshd[6570]: Failed password for root from 49.235.143.244 port 33902 ssh2 Mar 17 19:51:06 host01 sshd[7061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.143.244 Mar 17 19:51:08 host01 sshd[7061]: Failed password for invalid user factory from 49.235.143.244 port 54904 ssh2 ...	2020-03-18 03:57:04
122.227.230.11	attack	Mar 17 19:35:07 legacy sshd[11745]: Failed password for root from 122.227.230.11 port 33164 ssh2 Mar 17 19:38:57 legacy sshd[11855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.227.230.11 Mar 17 19:39:00 legacy sshd[11855]: Failed password for invalid user torrents from 122.227.230.11 port 47844 ssh2 ...	2020-03-18 04:03:19
51.75.141.202	attackbots	2020-03-17T19:25:35.875856abusebot-6.cloudsearch.cf sshd[26813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.ip-51-75-141.eu user=root 2020-03-17T19:25:38.066943abusebot-6.cloudsearch.cf sshd[26813]: Failed password for root from 51.75.141.202 port 39324 ssh2 2020-03-17T19:28:19.181082abusebot-6.cloudsearch.cf sshd[26957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.ip-51-75-141.eu user=root 2020-03-17T19:28:20.885623abusebot-6.cloudsearch.cf sshd[26957]: Failed password for root from 51.75.141.202 port 57800 ssh2 2020-03-17T19:30:55.248999abusebot-6.cloudsearch.cf sshd[27141]: Invalid user mapred from 51.75.141.202 port 46476 2020-03-17T19:30:55.255636abusebot-6.cloudsearch.cf sshd[27141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.ip-51-75-141.eu 2020-03-17T19:30:55.248999abusebot-6.cloudsearch.cf sshd[27141]: Invalid user mapred from 51.7 ...	2020-03-18 03:37:09
96.9.70.234	attackbotsspam	Brute-force attempt banned	2020-03-18 03:39:48
118.27.13.193	attackspambots	Repeated brute force against a port	2020-03-18 04:12:02
104.248.237.238	attackspambots	Failed password for invalid user confluence from 104.248.237.238 port 35946 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 user=root Failed password for root from 104.248.237.238 port 60956 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 user=root Failed password for root from 104.248.237.238 port 57734 ssh2	2020-03-18 04:02:27
13.75.46.224	attack	Lines containing failures of 13.75.46.224 Mar 16 11:28:05 shared03 sshd[24761]: Connection closed by 13.75.46.224 port 39168 [preauth] Mar 17 19:06:01 shared03 sshd[8350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.46.224 user=r.r Mar 17 19:06:02 shared03 sshd[8350]: Failed password for r.r from 13.75.46.224 port 41682 ssh2 Mar 17 19:06:03 shared03 sshd[8350]: Received disconnect from 13.75.46.224 port 41682:11: Bye Bye [preauth] Mar 17 19:06:03 shared03 sshd[8350]: Disconnected from authenticating user r.r 13.75.46.224 port 41682 [preauth] Mar 17 19:12:19 shared03 sshd[10698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.46.224 user=r.r Mar 17 19:12:20 shared03 sshd[10698]: Failed password for r.r from 13.75.46.224 port 50654 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=13.75.46.224	2020-03-18 04:01:33
46.123.243.114	attack	$f2bV_matches	2020-03-18 04:09:27
138.68.55.199	attackspam	Mar 17 08:35:54 php1 sshd\[8604\]: Invalid user xautomation from 138.68.55.199 Mar 17 08:35:54 php1 sshd\[8604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.55.199 Mar 17 08:35:56 php1 sshd\[8604\]: Failed password for invalid user xautomation from 138.68.55.199 port 35208 ssh2 Mar 17 08:40:41 php1 sshd\[9275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.55.199 user=root Mar 17 08:40:43 php1 sshd\[9275\]: Failed password for root from 138.68.55.199 port 59432 ssh2	2020-03-18 04:02:56

Recently Reported IPs

198.96.178.208	200.22.231.51	77.42.109.167	129.198.100.18
169.87.122.153	70.118.49.253	204.132.185.113	69.135.196.205
54.147.165.240	213.251.198.204	170.239.87.188	49.182.45.64
54.183.129.186	36.110.118.137	121.121.119.153	106.2.175.202
36.84.65.59	31.172.135.206	50.209.217.83	123.17.84.133