94.29.124.89 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Moscow Local Telephone Network

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 01:25:07,917 INFO [shellcode_manager] (94.29.124.89) no match, writing hexdump (ddf46e155a23b6dc841fa1cd1322d98a :2262228) - MS17010 (EternalBlue)	2019-06-27 03:02:33

Type

Details

Datetime

attackspam

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 01:25:07,917 INFO [shellcode_manager] (94.29.124.89) no match, writing hexdump (ddf46e155a23b6dc841fa1cd1322d98a :2262228) - MS17010 (EternalBlue)

2019-06-27 03:02:33

Comments on same subnet:

IP	Type	Details	Datetime
94.29.124.45	spambotsattack	This server has bad connection, some apps don't even work.	2021-03-01 14:14:02
94.29.124.106	attackspambots	Unauthorized connection attempt from IP address 94.29.124.106 on Port 445(SMB)	2019-11-01 00:55:10
94.29.124.106	attackbots	Unauthorised access (Oct 10) SRC=94.29.124.106 LEN=52 TTL=113 ID=18762 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-11 02:53:13
94.29.124.85	attack	Unauthorized connection attempt from IP address 94.29.124.85 on Port 445(SMB)	2019-09-24 03:47:59
94.29.124.55	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 10:57:44.	2019-09-19 18:50:59
94.29.124.46	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 21:12:56,007 INFO [amun_request_handler] PortScan Detected on Port: 445 (94.29.124.46)	2019-09-17 10:43:26
94.29.124.80	attackbotsspam	Unauthorized connection attempt from IP address 94.29.124.80 on Port 445(SMB)	2019-09-11 03:35:35
94.29.124.233	attackspambots	Unauthorized connection attempt from IP address 94.29.124.233 on Port 445(SMB)	2019-09-05 16:41:37
94.29.124.190	attackspam	Unauthorized connection attempt from IP address 94.29.124.190 on Port 445(SMB)	2019-08-14 14:51:37
94.29.124.138	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 20:38:13,986 INFO [amun_request_handler] PortScan Detected on Port: 445 (94.29.124.138)	2019-08-09 09:43:39
94.29.124.45	attack	Unauthorized connection attempt from IP address 94.29.124.45 on Port 445(SMB)	2019-07-31 21:31:45
94.29.124.233	attack	Unauthorized connection attempt from IP address 94.29.124.233 on Port 445(SMB)	2019-07-31 19:29:12
94.29.124.55	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 06:10:11,551 INFO [amun_request_handler] PortScan Detected on Port: 445 (94.29.124.55)	2019-07-17 19:25:55
94.29.124.190	attack	445/tcp 445/tcp 445/tcp... [2019-05-06/06-26]4pkt,1pt.(tcp)	2019-06-27 01:00:48
94.29.124.37	attackspam	Unauthorized connection attempt from IP address 94.29.124.37 on Port 445(SMB)	2019-06-22 16:38:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.29.124.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29151
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.29.124.89.			IN	A

;; AUTHORITY SECTION:
.			436	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062601 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 03:02:26 CST 2019
;; MSG SIZE  rcvd: 116

Host info

89.124.29.94.in-addr.arpa has no PTR record

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 89.124.29.94.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.36.210.121	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-08 09:22:07
202.168.205.181	attackbots	Apr 8 02:39:48 OPSO sshd\[14174\]: Invalid user amane from 202.168.205.181 port 8618 Apr 8 02:39:48 OPSO sshd\[14174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.168.205.181 Apr 8 02:39:50 OPSO sshd\[14174\]: Failed password for invalid user amane from 202.168.205.181 port 8618 ssh2 Apr 8 02:42:59 OPSO sshd\[15076\]: Invalid user deploy from 202.168.205.181 port 20425 Apr 8 02:42:59 OPSO sshd\[15076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.168.205.181	2020-04-08 09:00:13
122.51.50.210	attack	Automatic report BANNED IP	2020-04-08 09:11:53
164.132.196.134	attack	2020-04-07T23:32:30.650334abusebot-7.cloudsearch.cf sshd[9499]: Invalid user system from 164.132.196.134 port 51584 2020-04-07T23:32:30.657650abusebot-7.cloudsearch.cf sshd[9499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.ip-164-132-196.eu 2020-04-07T23:32:30.650334abusebot-7.cloudsearch.cf sshd[9499]: Invalid user system from 164.132.196.134 port 51584 2020-04-07T23:32:32.543596abusebot-7.cloudsearch.cf sshd[9499]: Failed password for invalid user system from 164.132.196.134 port 51584 ssh2 2020-04-07T23:36:30.327568abusebot-7.cloudsearch.cf sshd[9840]: Invalid user deploy from 164.132.196.134 port 60638 2020-04-07T23:36:30.332555abusebot-7.cloudsearch.cf sshd[9840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.ip-164-132-196.eu 2020-04-07T23:36:30.327568abusebot-7.cloudsearch.cf sshd[9840]: Invalid user deploy from 164.132.196.134 port 60638 2020-04-07T23:36:32.163855abusebot-7.cloudsearc ...	2020-04-08 09:05:48
200.31.19.206	attack	20 attempts against mh-ssh on cloud	2020-04-08 09:00:45
49.247.198.97	attack	SSH Invalid Login	2020-04-08 08:52:29
85.192.138.149	attackbotsspam	SSH invalid-user multiple login try	2020-04-08 08:45:43
106.12.36.224	attackbots	Apr 7 18:05:11 mockhub sshd[7633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.36.224 Apr 7 18:05:13 mockhub sshd[7633]: Failed password for invalid user relay from 106.12.36.224 port 54254 ssh2 ...	2020-04-08 09:17:26
94.243.137.238	attackbotsspam	Apr 8 00:24:39 scw-6657dc sshd[15075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.243.137.238 Apr 8 00:24:39 scw-6657dc sshd[15075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.243.137.238 Apr 8 00:24:41 scw-6657dc sshd[15075]: Failed password for invalid user opscode from 94.243.137.238 port 50020 ssh2 ...	2020-04-08 09:21:09
111.93.4.174	attack	Apr 8 02:58:33 localhost sshd\[3745\]: Invalid user postgres from 111.93.4.174 Apr 8 02:58:33 localhost sshd\[3745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.4.174 Apr 8 02:58:36 localhost sshd\[3745\]: Failed password for invalid user postgres from 111.93.4.174 port 45268 ssh2 Apr 8 03:02:45 localhost sshd\[4062\]: Invalid user t7inst from 111.93.4.174 Apr 8 03:02:45 localhost sshd\[4062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.4.174 ...	2020-04-08 09:15:08
106.13.182.60	attack	SSH Invalid Login	2020-04-08 08:41:31
36.99.39.95	attack	Apr 7 22:21:17 *** sshd[23740]: Invalid user sftpuser from 36.99.39.95	2020-04-08 08:55:11
64.225.24.239	attackbotsspam	2020-04-07T22:22:51.867484abusebot-3.cloudsearch.cf sshd[10536]: Invalid user charlie from 64.225.24.239 port 50738 2020-04-07T22:22:51.877118abusebot-3.cloudsearch.cf sshd[10536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.24.239 2020-04-07T22:22:51.867484abusebot-3.cloudsearch.cf sshd[10536]: Invalid user charlie from 64.225.24.239 port 50738 2020-04-07T22:22:54.388983abusebot-3.cloudsearch.cf sshd[10536]: Failed password for invalid user charlie from 64.225.24.239 port 50738 ssh2 2020-04-07T22:30:24.527248abusebot-3.cloudsearch.cf sshd[11020]: Invalid user ftpuser from 64.225.24.239 port 49240 2020-04-07T22:30:24.538888abusebot-3.cloudsearch.cf sshd[11020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.24.239 2020-04-07T22:30:24.527248abusebot-3.cloudsearch.cf sshd[11020]: Invalid user ftpuser from 64.225.24.239 port 49240 2020-04-07T22:30:26.909696abusebot-3.cloudsearch.cf sshd[1102 ...	2020-04-08 08:48:27
75.130.124.90	attack	3x Failed Password	2020-04-08 08:46:49
103.80.55.19	attackspambots	Apr 8 02:45:44 XXX sshd[20612]: Invalid user user2 from 103.80.55.19 port 41440	2020-04-08 09:19:21

Recently Reported IPs

118.173.120.194	92.247.119.131	241.106.165.167	69.163.200.24
64.20.140.7	54.129.40.72	71.74.180.193	122.52.109.188
175.83.4.237	129.54.17.95	14.237.204.90	235.23.12.135
227.69.34.216	168.228.151.31	47.198.65.5	179.46.172.100
87.138.233.22	24.237.99.120	45.237.26.231	220.45.61.149