City: unknown
Region: unknown
Country: Russian Federation
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 94.29.124.45 | spambotsattack | This server has bad connection, some apps don't even work. |
2021-03-01 14:14:02 |
| 94.29.124.106 | attackspambots | Unauthorized connection attempt from IP address 94.29.124.106 on Port 445(SMB) |
2019-11-01 00:55:10 |
| 94.29.124.106 | attackbots | Unauthorised access (Oct 10) SRC=94.29.124.106 LEN=52 TTL=113 ID=18762 DF TCP DPT=445 WINDOW=8192 SYN |
2019-10-11 02:53:13 |
| 94.29.124.85 | attack | Unauthorized connection attempt from IP address 94.29.124.85 on Port 445(SMB) |
2019-09-24 03:47:59 |
| 94.29.124.55 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 10:57:44. |
2019-09-19 18:50:59 |
| 94.29.124.46 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 21:12:56,007 INFO [amun_request_handler] PortScan Detected on Port: 445 (94.29.124.46) |
2019-09-17 10:43:26 |
| 94.29.124.80 | attackbotsspam | Unauthorized connection attempt from IP address 94.29.124.80 on Port 445(SMB) |
2019-09-11 03:35:35 |
| 94.29.124.233 | attackspambots | Unauthorized connection attempt from IP address 94.29.124.233 on Port 445(SMB) |
2019-09-05 16:41:37 |
| 94.29.124.190 | attackspam | Unauthorized connection attempt from IP address 94.29.124.190 on Port 445(SMB) |
2019-08-14 14:51:37 |
| 94.29.124.138 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 20:38:13,986 INFO [amun_request_handler] PortScan Detected on Port: 445 (94.29.124.138) |
2019-08-09 09:43:39 |
| 94.29.124.45 | attack | Unauthorized connection attempt from IP address 94.29.124.45 on Port 445(SMB) |
2019-07-31 21:31:45 |
| 94.29.124.233 | attack | Unauthorized connection attempt from IP address 94.29.124.233 on Port 445(SMB) |
2019-07-31 19:29:12 |
| 94.29.124.55 | attackspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 06:10:11,551 INFO [amun_request_handler] PortScan Detected on Port: 445 (94.29.124.55) |
2019-07-17 19:25:55 |
| 94.29.124.89 | attackspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 01:25:07,917 INFO [shellcode_manager] (94.29.124.89) no match, writing hexdump (ddf46e155a23b6dc841fa1cd1322d98a :2262228) - MS17010 (EternalBlue) |
2019-06-27 03:02:33 |
| 94.29.124.190 | attack | 445/tcp 445/tcp 445/tcp... [2019-05-06/06-26]4pkt,1pt.(tcp) |
2019-06-27 01:00:48 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.29.124.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 464
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;94.29.124.159. IN A
;; AUTHORITY SECTION:
. 281 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 18:36:35 CST 2022
;; MSG SIZE rcvd: 106Host 159.124.29.94.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 159.124.29.94.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 132.232.118.214 | attackbotsspam | Dec 6 16:53:24 nextcloud sshd\[9635\]: Invalid user \~!@\# from 132.232.118.214 Dec 6 16:53:24 nextcloud sshd\[9635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.118.214 Dec 6 16:53:25 nextcloud sshd\[9635\]: Failed password for invalid user \~!@\# from 132.232.118.214 port 46046 ssh2 ... |
2019-12-06 23:54:44 |
| 109.173.40.60 | attackspambots | Dec 6 17:39:38 server sshd\[32455\]: Invalid user korostelev from 109.173.40.60 Dec 6 17:39:38 server sshd\[32455\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=broadband-109-173-40-60.ip.moscow.rt.ru Dec 6 17:39:40 server sshd\[32455\]: Failed password for invalid user korostelev from 109.173.40.60 port 45968 ssh2 Dec 6 17:51:03 server sshd\[3445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=broadband-109-173-40-60.ip.moscow.rt.ru user=root Dec 6 17:51:05 server sshd\[3445\]: Failed password for root from 109.173.40.60 port 32786 ssh2 ... |
2019-12-06 23:29:18 |
| 96.44.187.10 | attack | (imapd) Failed IMAP login from 96.44.187.10 (US/United States/96.44.187.10.static.quadranet.com): 1 in the last 3600 secs |
2019-12-06 23:22:57 |
| 80.82.70.239 | attackspam | Dec 6 15:17:00 h2177944 kernel: \[8516989.290469\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=30631 PROTO=TCP SPT=42014 DPT=3369 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 6 15:20:05 h2177944 kernel: \[8517173.819493\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=25947 PROTO=TCP SPT=42014 DPT=3367 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 6 15:22:08 h2177944 kernel: \[8517296.255382\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=49765 PROTO=TCP SPT=42014 DPT=3355 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 6 15:27:50 h2177944 kernel: \[8517638.724815\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=26214 PROTO=TCP SPT=42014 DPT=3350 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 6 15:51:04 h2177944 kernel: \[8519032.089896\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN= |
2019-12-06 23:30:49 |
| 140.246.32.143 | attackbots | 2019-12-06T15:19:22.354424abusebot-2.cloudsearch.cf sshd\[6936\]: Invalid user dorothy from 140.246.32.143 port 41396 |
2019-12-06 23:21:07 |
| 118.89.249.95 | attack | Dec 6 16:07:19 vps691689 sshd[14125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.249.95 Dec 6 16:07:20 vps691689 sshd[14125]: Failed password for invalid user barnett from 118.89.249.95 port 35970 ssh2 ... |
2019-12-06 23:25:23 |
| 159.203.197.31 | attackspam | 2019-12-06 04:37:28 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[159.203.197.31] input="EHLO zg-0911a-85 " |
2019-12-06 23:32:32 |
| 46.175.86.101 | attackspam | 1433/tcp [2019-12-06]1pkt |
2019-12-06 23:44:36 |
| 203.162.13.68 | attack | Too many connections or unauthorized access detected from Arctic banned ip |
2019-12-06 23:26:36 |
| 45.82.153.139 | attackspambots | Dec 6 16:24:43 relay postfix/smtpd\[19689\]: warning: unknown\[45.82.153.139\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 6 16:25:05 relay postfix/smtpd\[7379\]: warning: unknown\[45.82.153.139\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 6 16:27:27 relay postfix/smtpd\[19689\]: warning: unknown\[45.82.153.139\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 6 16:27:47 relay postfix/smtpd\[19691\]: warning: unknown\[45.82.153.139\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 6 16:31:46 relay postfix/smtpd\[15431\]: warning: unknown\[45.82.153.139\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-12-06 23:58:13 |
| 186.236.23.33 | attackspam | 23/tcp [2019-12-06]1pkt |
2019-12-06 23:52:53 |
| 46.105.124.52 | attack | 2019-12-06T15:25:22.948393abusebot-7.cloudsearch.cf sshd\[3384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.124.52 user=root |
2019-12-06 23:42:38 |
| 122.160.18.211 | attack | port scan and connect, tcp 23 (telnet) |
2019-12-06 23:58:47 |
| 112.85.42.179 | attackbots | Dec 6 12:20:42 firewall sshd[9707]: Failed password for root from 112.85.42.179 port 37976 ssh2 Dec 6 12:20:45 firewall sshd[9707]: Failed password for root from 112.85.42.179 port 37976 ssh2 Dec 6 12:20:49 firewall sshd[9707]: Failed password for root from 112.85.42.179 port 37976 ssh2 ... |
2019-12-06 23:25:38 |
| 69.175.97.174 | attack | 12/06/2019-09:50:55.058230 69.175.97.174 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 70 |
2019-12-06 23:42:08 |