109.94.2.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Quartz Telecom LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.94.226.102	attackbotsspam	Automatic report - Port Scan Attack	2020-07-30 15:18:19
109.94.226.18	attack	Unauthorized connection attempt detected from IP address 109.94.226.18 to port 8080	2020-07-22 18:37:08
109.94.23.227	attack	Bruteforce detected by fail2ban	2020-06-16 01:05:42
109.94.221.135	attack	hack my email and game accouts and tried to hack my amazon account	2020-03-17 19:42:07
109.94.221.135	attack	hack my email and game accouts and tried to hack my amazon account	2020-03-17 19:42:03
109.94.223.130	attackspam	B: Magento admin pass test (wrong country)	2020-03-17 07:38:55
109.94.223.78	attackbots	B: Magento admin pass test (wrong country)	2020-03-11 10:05:26
109.94.221.97	attack	B: Magento admin pass test (wrong country)	2020-03-01 15:40:32
109.94.227.108	attack	Unauthorized connection attempt detected from IP address 109.94.227.108 to port 80 [J]	2020-01-29 00:13:46
109.94.226.10	attackspam	Unauthorized connection attempt detected from IP address 109.94.226.10 to port 8080 [J]	2020-01-21 17:10:02
109.94.225.246	attack	Unauthorized connection attempt detected from IP address 109.94.225.246 to port 8080 [J]	2020-01-19 05:35:39
109.94.227.163	attack	Unauthorized connection attempt detected from IP address 109.94.227.163 to port 23 [J]	2020-01-18 19:37:36
109.94.223.31	attackbots	B: Magento admin pass test (wrong country)	2020-01-16 15:06:16
109.94.224.88	attackspam	Lines containing failures of 109.94.224.88 Jan 8 22:13:56 shared02 sshd[15861]: Invalid user test from 109.94.224.88 port 55008 Jan 8 22:13:56 shared02 sshd[15861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.94.224.88 Jan 8 22:13:58 shared02 sshd[15861]: Failed password for invalid user test from 109.94.224.88 port 55008 ssh2 Jan 8 22:13:58 shared02 sshd[15861]: Connection closed by invalid user test 109.94.224.88 port 55008 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.94.224.88	2020-01-09 05:45:04
109.94.226.102	attackbots	Automatic report - Port Scan Attack	2020-01-06 06:10:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.94.2.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46931
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.94.2.54.			IN	A

;; AUTHORITY SECTION:
.			253	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010201 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 05:31:29 CST 2020
;; MSG SIZE  rcvd: 115

Host info

54.2.94.109.in-addr.arpa domain name pointer msk.podmoskoviya.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.2.94.109.in-addr.arpa	name = msk.podmoskoviya.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.181	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.181 user=root Failed password for root from 222.186.175.181 port 51750 ssh2 Failed password for root from 222.186.175.181 port 51750 ssh2 Failed password for root from 222.186.175.181 port 51750 ssh2 Failed password for root from 222.186.175.181 port 51750 ssh2	2019-12-28 07:35:37
54.236.1.18	attack	ignoring robots.txt	2019-12-28 07:54:58
106.13.97.121	attackbots	Dec 28 00:07:30 ns3110291 sshd\[14781\]: Invalid user antoi from 106.13.97.121 Dec 28 00:07:30 ns3110291 sshd\[14781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.121 Dec 28 00:07:33 ns3110291 sshd\[14781\]: Failed password for invalid user antoi from 106.13.97.121 port 44632 ssh2 Dec 28 00:09:57 ns3110291 sshd\[14810\]: Invalid user nfs from 106.13.97.121 Dec 28 00:09:57 ns3110291 sshd\[14810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.121 ...	2019-12-28 07:29:00
148.70.94.56	attackbots	Dec 23 08:36:38 scivo sshd[17151]: Invalid user nordmark from 148.70.94.56 Dec 23 08:36:38 scivo sshd[17151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.94.56 Dec 23 08:36:40 scivo sshd[17151]: Failed password for invalid user nordmark from 148.70.94.56 port 46040 ssh2 Dec 23 08:36:41 scivo sshd[17151]: Received disconnect from 148.70.94.56: 11: Bye Bye [preauth] Dec 23 08:46:13 scivo sshd[17733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.94.56 user=r.r Dec 23 08:46:15 scivo sshd[17733]: Failed password for r.r from 148.70.94.56 port 57142 ssh2 Dec 23 08:46:15 scivo sshd[17733]: Received disconnect from 148.70.94.56: 11: Bye Bye [preauth] Dec 23 08:54:14 scivo sshd[18095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.94.56 user=r.r Dec 23 08:54:16 scivo sshd[18095]: Failed password for r.r from 148.70.94.56 port 36........ -------------------------------	2019-12-28 07:56:23
119.194.116.46	attack	Triggered by Fail2Ban at Vostok web server	2019-12-28 07:41:55
103.104.232.99	attackbots	leo_www	2019-12-28 07:27:44
49.233.153.194	attackspam	Invalid user bangs from 49.233.153.194 port 50164	2019-12-28 07:54:42
222.186.173.215	attackbots	Dec 27 18:04:44 v22018086721571380 sshd[9886]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 1570 ssh2 [preauth] Dec 28 00:48:44 v22018086721571380 sshd[29643]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 35246 ssh2 [preauth]	2019-12-28 07:50:34
212.237.4.147	attackbots	firewall-block, port(s): 22/tcp	2019-12-28 07:35:57
89.248.160.193	attackbotsspam	12/27/2019-23:56:16.372836 89.248.160.193 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2019-12-28 07:31:49
71.6.146.185	attack	" "	2019-12-28 07:42:45
94.255.247.21	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-28 07:30:56
191.193.172.190	attackbots	Dec 25 09:44:49 kmh-mb-001 sshd[6320]: Invalid user cortney from 191.193.172.190 port 51272 Dec 25 09:44:49 kmh-mb-001 sshd[6320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.193.172.190 Dec 25 09:44:52 kmh-mb-001 sshd[6320]: Failed password for invalid user cortney from 191.193.172.190 port 51272 ssh2 Dec 25 09:44:52 kmh-mb-001 sshd[6320]: Received disconnect from 191.193.172.190 port 51272:11: Bye Bye [preauth] Dec 25 09:44:52 kmh-mb-001 sshd[6320]: Disconnected from 191.193.172.190 port 51272 [preauth] Dec 25 09:50:32 kmh-mb-001 sshd[7137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.193.172.190 user=r.r Dec 25 09:50:34 kmh-mb-001 sshd[7137]: Failed password for r.r from 191.193.172.190 port 44004 ssh2 Dec 25 09:50:34 kmh-mb-001 sshd[7137]: Received disconnect from 191.193.172.190 port 44004:11: Bye Bye [preauth] Dec 25 09:50:34 kmh-mb-001 sshd[7137]: Disconnected from 19........ -------------------------------	2019-12-28 07:51:19
61.156.32.184	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-28 07:47:36
50.73.116.43	attackbotsspam	Web application attack detected by fail2ban	2019-12-28 07:48:58

Recently Reported IPs

154.52.138.137	108.37.190.191	140.196.47.23	139.174.53.68
107.97.149.116	55.190.239.122	117.232.41.219	130.5.22.166
109.224.86.114	111.48.196.30	8.24.24.28	19.234.72.55
45.189.73.112	136.105.62.136	107.144.79.123	129.122.3.211
209.223.220.86	176.4.126.29	155.77.88.59	24.174.12.36