94.53.81.2 - IPInfo

Basic Info

City: Giurgiu

Region: Giurgiu

Country: Romania

Internet Service Provider: SC Nextgen Communications SRL

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	" "	2020-10-14 08:19:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.53.81.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58747
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.53.81.2.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020101302 1800 900 604800 86400

;; Query time: 171 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 14 08:19:05 CST 2020
;; MSG SIZE  rcvd: 114

Host info

2.81.53.94.in-addr.arpa domain name pointer 94-53-81-2.next-gen.ro.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.81.53.94.in-addr.arpa	name = 94-53-81-2.next-gen.ro.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.79.52.150	attackspambots	Sep 13 07:21:06 vtv3 sshd\[30661\]: Invalid user teamspeak3 from 51.79.52.150 port 43766 Sep 13 07:21:06 vtv3 sshd\[30661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.52.150 Sep 13 07:21:08 vtv3 sshd\[30661\]: Failed password for invalid user teamspeak3 from 51.79.52.150 port 43766 ssh2 Sep 13 07:26:32 vtv3 sshd\[818\]: Invalid user upload from 51.79.52.150 port 39406 Sep 13 07:26:32 vtv3 sshd\[818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.52.150 Sep 13 07:38:15 vtv3 sshd\[6464\]: Invalid user gitlab-runner from 51.79.52.150 port 55880 Sep 13 07:38:15 vtv3 sshd\[6464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.52.150 Sep 13 07:38:17 vtv3 sshd\[6464\]: Failed password for invalid user gitlab-runner from 51.79.52.150 port 55880 ssh2 Sep 13 07:42:25 vtv3 sshd\[8508\]: Invalid user sinusbot from 51.79.52.150 port 42548 Sep 13 07:42:25 vtv3 sshd\[8	2019-09-14 03:31:30
113.190.252.160	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-13 10:55:56,697 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.190.252.160)	2019-09-14 03:26:44
14.162.31.172	attackspambots	Automatic report - Port Scan Attack	2019-09-14 03:53:57
193.112.49.155	attackspam	Sep 13 03:34:24 eddieflores sshd\[32608\]: Invalid user postgres from 193.112.49.155 Sep 13 03:34:24 eddieflores sshd\[32608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.49.155 Sep 13 03:34:26 eddieflores sshd\[32608\]: Failed password for invalid user postgres from 193.112.49.155 port 52214 ssh2 Sep 13 03:40:36 eddieflores sshd\[1420\]: Invalid user sinusbot from 193.112.49.155 Sep 13 03:40:36 eddieflores sshd\[1420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.49.155	2019-09-14 03:41:34
213.168.72.135	attack	Sep 13 12:40:25 hb sshd\[15541\]: Invalid user vyatta from 213.168.72.135 Sep 13 12:40:25 hb sshd\[15541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=xdsl-213-168-72-135.nc.de Sep 13 12:40:27 hb sshd\[15541\]: Failed password for invalid user vyatta from 213.168.72.135 port 45926 ssh2 Sep 13 12:48:56 hb sshd\[16230\]: Invalid user developer from 213.168.72.135 Sep 13 12:48:56 hb sshd\[16230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=xdsl-213-168-72-135.nc.de	2019-09-14 04:02:45
49.204.228.1	attack	Unauthorized connection attempt from IP address 49.204.228.1 on Port 445(SMB)	2019-09-14 03:31:56
101.78.9.186	attack	Sep 13 11:03:07 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=101.78.9.186, lip=10.140.194.78, TLS: Disconnected, session= Sep 13 11:10:54 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=101.78.9.186, lip=10.140.194.78, TLS, session= Sep 13 11:11:06 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 9 secs): user=, method=PLAIN, rip=101.78.9.186, lip=10.140.194.78, TLS, session=	2019-09-14 03:55:36
110.42.6.31	attack	Sep 13 21:33:33 OPSO sshd\[26199\]: Invalid user testuser from 110.42.6.31 port 56300 Sep 13 21:33:33 OPSO sshd\[26199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.42.6.31 Sep 13 21:33:35 OPSO sshd\[26199\]: Failed password for invalid user testuser from 110.42.6.31 port 56300 ssh2 Sep 13 21:37:45 OPSO sshd\[27142\]: Invalid user factorio from 110.42.6.31 port 34026 Sep 13 21:37:45 OPSO sshd\[27142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.42.6.31	2019-09-14 03:46:44
188.163.109.153	attackbotsspam	1,25-01/29 [bc01/m39] concatform PostRequest-Spammer scoring: Durban02	2019-09-14 03:58:19
202.187.227.171	attack	Sep 13 15:15:15 lnxmail61 postfix/smtpd[20843]: warning: unknown[202.187.227.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 15:15:15 lnxmail61 postfix/smtpd[20843]: lost connection after AUTH from unknown[202.187.227.171] Sep 13 15:15:22 lnxmail61 postfix/smtpd[24793]: warning: unknown[202.187.227.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 15:15:22 lnxmail61 postfix/smtpd[24793]: lost connection after AUTH from unknown[202.187.227.171] Sep 13 15:15:33 lnxmail61 postfix/smtpd[27076]: warning: unknown[202.187.227.171]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-14 04:03:34
220.164.145.63	attack	ssh brute force	2019-09-14 03:40:18
89.181.8.181	attackspam	Spam Timestamp : 13-Sep-19 11:29 BlockList Provider combined abuse (395)	2019-09-14 03:30:23
51.254.128.34	attackbotsspam	fail2ban honeypot	2019-09-14 04:01:50
183.61.109.23	attackspambots	Sep 13 05:46:28 eddieflores sshd\[13640\]: Invalid user test123 from 183.61.109.23 Sep 13 05:46:28 eddieflores sshd\[13640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.61.109.23 Sep 13 05:46:30 eddieflores sshd\[13640\]: Failed password for invalid user test123 from 183.61.109.23 port 51102 ssh2 Sep 13 05:53:14 eddieflores sshd\[14222\]: Invalid user q1w2e3 from 183.61.109.23 Sep 13 05:53:14 eddieflores sshd\[14222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.61.109.23	2019-09-14 03:25:41
117.239.58.27	attackbotsspam	445/tcp 445/tcp [2019-08-06/09-13]2pkt	2019-09-14 03:38:09

Recently Reported IPs

45.238.121.130	122.156.248.29	95.151.144.214	119.48.185.129
115.54.227.145	195.154.114.24	36.133.177.139	185.88.102.90
156.96.44.172	117.62.194.214	117.6.116.104	171.221.151.130
106.75.241.94	13.84.161.62	31.163.169.202	167.250.216.63
113.111.55.173	87.186.56.235	163.172.83.228	49.88.160.13