94.52.205.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: SC Nextgen Communications SRL

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2020-05-27 05:52:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.52.205.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21910
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.52.205.241.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052602 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 27 05:52:01 CST 2020
;; MSG SIZE  rcvd: 117

Host info

241.205.52.94.in-addr.arpa domain name pointer 94-52-205-241.next-gen.ro.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
241.205.52.94.in-addr.arpa	name = 94-52-205-241.next-gen.ro.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.52.20.112	attack	Aug 18 23:11:15 inter-technics sshd[2503]: Invalid user user from 106.52.20.112 port 32904 Aug 18 23:11:15 inter-technics sshd[2503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.20.112 Aug 18 23:11:15 inter-technics sshd[2503]: Invalid user user from 106.52.20.112 port 32904 Aug 18 23:11:17 inter-technics sshd[2503]: Failed password for invalid user user from 106.52.20.112 port 32904 ssh2 Aug 18 23:13:33 inter-technics sshd[2600]: Invalid user admin from 106.52.20.112 port 41398 ...	2020-08-19 05:36:59
81.82.227.9	attackbots	Port 22 Scan, PTR: None	2020-08-19 06:04:41
186.89.225.162	attackbotsspam	Attempted connection to port 445.	2020-08-19 05:39:25
221.192.139.251	attack	Attempted connection to port 1433.	2020-08-19 05:31:33
66.45.251.154	attackspam	2020-08-18T20:46:19.604355abusebot-2.cloudsearch.cf sshd[29824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.45.251.154 user=root 2020-08-18T20:46:21.597230abusebot-2.cloudsearch.cf sshd[29824]: Failed password for root from 66.45.251.154 port 51400 ssh2 2020-08-18T20:46:22.637305abusebot-2.cloudsearch.cf sshd[29826]: Invalid user admin from 66.45.251.154 port 54456 2020-08-18T20:46:22.644120abusebot-2.cloudsearch.cf sshd[29826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.45.251.154 2020-08-18T20:46:22.637305abusebot-2.cloudsearch.cf sshd[29826]: Invalid user admin from 66.45.251.154 port 54456 2020-08-18T20:46:24.716581abusebot-2.cloudsearch.cf sshd[29826]: Failed password for invalid user admin from 66.45.251.154 port 54456 ssh2 2020-08-18T20:46:25.695218abusebot-2.cloudsearch.cf sshd[29828]: Invalid user admin from 66.45.251.154 port 57360 ...	2020-08-19 05:35:22
190.80.194.37	attack	Attempted connection to port 445.	2020-08-19 05:36:33
212.70.149.20	attack	Aug 18 23:51:55 cho postfix/smtpd[967023]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 23:52:21 cho postfix/smtpd[973861]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 23:52:48 cho postfix/smtpd[974298]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 23:53:14 cho postfix/smtpd[971166]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 23:53:40 cho postfix/smtpd[973861]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-19 05:57:03
31.173.87.215	attackbotsspam	Unauthorized connection attempt from IP address 31.173.87.215 on Port 445(SMB)	2020-08-19 06:01:21
201.148.144.221	attackspambots	Attempted connection to port 445.	2020-08-19 05:33:58
104.211.241.188	attackbotsspam	Aug 18 23:20:16 h2779839 sshd[4254]: Invalid user guest from 104.211.241.188 port 40146 Aug 18 23:20:16 h2779839 sshd[4254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.241.188 Aug 18 23:20:16 h2779839 sshd[4254]: Invalid user guest from 104.211.241.188 port 40146 Aug 18 23:20:18 h2779839 sshd[4254]: Failed password for invalid user guest from 104.211.241.188 port 40146 ssh2 Aug 18 23:24:36 h2779839 sshd[4322]: Invalid user fah from 104.211.241.188 port 39482 Aug 18 23:24:36 h2779839 sshd[4322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.241.188 Aug 18 23:24:36 h2779839 sshd[4322]: Invalid user fah from 104.211.241.188 port 39482 Aug 18 23:24:38 h2779839 sshd[4322]: Failed password for invalid user fah from 104.211.241.188 port 39482 ssh2 Aug 18 23:28:54 h2779839 sshd[4373]: Invalid user eps from 104.211.241.188 port 38814 ...	2020-08-19 05:58:11
179.184.0.112	attackspambots	Aug 18 23:51:36 abendstille sshd\[15641\]: Invalid user taiga from 179.184.0.112 Aug 18 23:51:36 abendstille sshd\[15641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.184.0.112 Aug 18 23:51:38 abendstille sshd\[15641\]: Failed password for invalid user taiga from 179.184.0.112 port 54510 ssh2 Aug 18 23:58:41 abendstille sshd\[22296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.184.0.112 user=root Aug 18 23:58:44 abendstille sshd\[22296\]: Failed password for root from 179.184.0.112 port 52918 ssh2 ...	2020-08-19 06:00:38
112.211.255.217	attackbots	Attempted connection to ports 8291, 8728.	2020-08-19 05:49:16
157.230.220.179	attackbots	2020-08-18T20:42:29.446195dmca.cloudsearch.cf sshd[11582]: Invalid user demo from 157.230.220.179 port 47132 2020-08-18T20:42:29.451826dmca.cloudsearch.cf sshd[11582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.220.179 2020-08-18T20:42:29.446195dmca.cloudsearch.cf sshd[11582]: Invalid user demo from 157.230.220.179 port 47132 2020-08-18T20:42:31.203271dmca.cloudsearch.cf sshd[11582]: Failed password for invalid user demo from 157.230.220.179 port 47132 ssh2 2020-08-18T20:45:42.114050dmca.cloudsearch.cf sshd[11752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.220.179 user=root 2020-08-18T20:45:44.362125dmca.cloudsearch.cf sshd[11752]: Failed password for root from 157.230.220.179 port 50094 ssh2 2020-08-18T20:48:48.096225dmca.cloudsearch.cf sshd[11815]: Invalid user lfm from 157.230.220.179 port 53072 ...	2020-08-19 05:35:03
189.195.134.142	attackspambots	Unauthorized connection attempt from IP address 189.195.134.142 on Port 445(SMB)	2020-08-19 05:46:07
66.190.254.165	attackspambots	Port 22 Scan, PTR: None	2020-08-19 05:44:34

Recently Reported IPs

183.49.198.87	223.101.142.93	118.159.142.190	86.84.3.113
20.50.245.143	14.0.86.0	62.171.166.144	10.243.4.187
106.181.101.45	8.70.11.68	101.115.236.169	91.16.90.203
146.68.236.57	13.51.227.111	81.60.88.26	131.68.31.77
51.178.169.200	181.139.74.85	90.33.166.43	103.239.6.198