109.194.54.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.194.54.94	attack	Many many attempts RDP protocol !!!!!!	2020-05-14 21:13:12
109.194.54.94	attack	Many RDP attempts : 4 packets 62Bytes 13/05/2020 16:18:44:426 sniffing : 00000000 03 00 00 2B 26 E0 00 00 00 00 00 43 6F 6F 6B 69 ...+&... ...Cooki 00000010 65 3A 20 6D 73 74 73 68 61 73 68 3D 68 65 6C 6C e: mstsh ash=hell 00000020 6F 0D 0A 01 00 08 00 03 00 00 00 o....... ... 00000000 03 00 00 13 0E D0 00 00 12 34 00 03 00 08 00 02 ........ .4...... 00000010 00 00 00 ...	2020-05-13 22:51:38
109.194.54.126	attackbotsspam	"Unauthorized connection attempt on SSHD detected"	2020-04-12 13:20:47
109.194.54.126	attackspambots	Apr 7 23:42:13 OPSO sshd\[13612\]: Invalid user sqoop from 109.194.54.126 port 40922 Apr 7 23:42:13 OPSO sshd\[13612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Apr 7 23:42:15 OPSO sshd\[13612\]: Failed password for invalid user sqoop from 109.194.54.126 port 40922 ssh2 Apr 7 23:46:02 OPSO sshd\[14330\]: Invalid user contact from 109.194.54.126 port 48594 Apr 7 23:46:02 OPSO sshd\[14330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126	2020-04-08 06:15:11
109.194.54.126	attackspambots	SSH brute-force attempt	2020-04-05 05:43:56
109.194.54.126	attack	Apr 2 05:56:25 ns392434 sshd[12573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 user=root Apr 2 05:56:26 ns392434 sshd[12573]: Failed password for root from 109.194.54.126 port 46420 ssh2 Apr 2 06:03:20 ns392434 sshd[13155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 user=root Apr 2 06:03:21 ns392434 sshd[13155]: Failed password for root from 109.194.54.126 port 59822 ssh2 Apr 2 06:07:01 ns392434 sshd[13463]: Invalid user ll from 109.194.54.126 port 41834 Apr 2 06:07:01 ns392434 sshd[13463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Apr 2 06:07:01 ns392434 sshd[13463]: Invalid user ll from 109.194.54.126 port 41834 Apr 2 06:07:03 ns392434 sshd[13463]: Failed password for invalid user ll from 109.194.54.126 port 41834 ssh2 Apr 2 06:10:37 ns392434 sshd[13855]: Invalid user ll from 109.194.54.126 port 52082	2020-04-02 13:55:35
109.194.54.126	attackbotsspam	$f2bV_matches	2020-03-30 19:34:59
109.194.54.126	attackspambots	Mar 28 07:43:24 * sshd[29624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Mar 28 07:43:25 * sshd[29624]: Failed password for invalid user kxa from 109.194.54.126 port 50582 ssh2	2020-03-28 14:59:10
109.194.54.126	attackspambots	Mar 26 11:17:08 icinga sshd[44355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Mar 26 11:17:10 icinga sshd[44355]: Failed password for invalid user its from 109.194.54.126 port 36292 ssh2 Mar 26 11:24:23 icinga sshd[55975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 ...	2020-03-26 18:54:16
109.194.54.126	attack	Ssh brute force	2020-03-21 10:11:32
109.194.54.126	attackspambots	Mar 19 23:44:07 localhost sshd\[16751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 user=root Mar 19 23:44:09 localhost sshd\[16751\]: Failed password for root from 109.194.54.126 port 58738 ssh2 Mar 19 23:51:02 localhost sshd\[17405\]: Invalid user haoxiaoyang from 109.194.54.126 port 50638 Mar 19 23:51:02 localhost sshd\[17405\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126	2020-03-20 07:05:28
109.194.54.126	attack	Mar 18 05:38:52 ws19vmsma01 sshd[5122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Mar 18 05:38:54 ws19vmsma01 sshd[5122]: Failed password for invalid user lizehan from 109.194.54.126 port 42496 ssh2 ...	2020-03-18 19:37:24
109.194.54.126	attackspam	<6 unauthorized SSH connections	2020-03-13 15:11:30
109.194.54.130	attackspam	suspicious action Thu, 12 Mar 2020 09:27:59 -0300	2020-03-13 04:53:45
109.194.54.126	attack	$f2bV_matches	2020-03-11 09:32:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.194.54.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52089
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.194.54.42.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 20:03:23 CST 2022
;; MSG SIZE  rcvd: 106

Host info

42.54.194.109.in-addr.arpa domain name pointer 109x194x54x42.static-business.kursk.ertelecom.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.54.194.109.in-addr.arpa	name = 109x194x54x42.static-business.kursk.ertelecom.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.31.33.34	attackbots	Dec 9 07:44:11 loxhost sshd\[32765\]: Invalid user sylvia from 218.31.33.34 port 41656 Dec 9 07:44:11 loxhost sshd\[32765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.31.33.34 Dec 9 07:44:13 loxhost sshd\[32765\]: Failed password for invalid user sylvia from 218.31.33.34 port 41656 ssh2 Dec 9 07:51:45 loxhost sshd\[553\]: Invalid user CoolPad@30104 from 218.31.33.34 port 37758 Dec 9 07:51:45 loxhost sshd\[553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.31.33.34 ...	2019-12-09 18:03:31
96.78.175.36	attackspambots	Dec 9 07:23:11 loxhost sshd\[32155\]: Invalid user gisela from 96.78.175.36 port 40397 Dec 9 07:23:11 loxhost sshd\[32155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.36 Dec 9 07:23:13 loxhost sshd\[32155\]: Failed password for invalid user gisela from 96.78.175.36 port 40397 ssh2 Dec 9 07:29:00 loxhost sshd\[32284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.36 user=root Dec 9 07:29:02 loxhost sshd\[32284\]: Failed password for root from 96.78.175.36 port 45212 ssh2 ...	2019-12-09 17:55:23
218.92.0.171	attackspambots	2019-12-08T11:31:43.788966homeassistant sshd[2192]: Failed password for root from 218.92.0.171 port 29965 ssh2 2019-12-09T09:23:27.524871homeassistant sshd[6373]: Failed none for root from 218.92.0.171 port 10136 ssh2 2019-12-09T09:23:27.780810homeassistant sshd[6373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root ...	2019-12-09 17:36:59
176.31.170.245	attack	Dec 8 23:01:24 home sshd[9455]: Invalid user s0420403 from 176.31.170.245 port 56766 Dec 8 23:01:24 home sshd[9455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.170.245 Dec 8 23:01:24 home sshd[9455]: Invalid user s0420403 from 176.31.170.245 port 56766 Dec 8 23:01:26 home sshd[9455]: Failed password for invalid user s0420403 from 176.31.170.245 port 56766 ssh2 Dec 8 23:11:49 home sshd[9617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.170.245 user=root Dec 8 23:11:51 home sshd[9617]: Failed password for root from 176.31.170.245 port 45936 ssh2 Dec 8 23:16:51 home sshd[9651]: Invalid user miskiah from 176.31.170.245 port 54936 Dec 8 23:16:51 home sshd[9651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.170.245 Dec 8 23:16:51 home sshd[9651]: Invalid user miskiah from 176.31.170.245 port 54936 Dec 8 23:16:53 home sshd[9651]: Failed password for inval	2019-12-09 17:55:06
37.186.123.91	attack	Dec 9 14:30:02 gw1 sshd[3435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.186.123.91 Dec 9 14:30:05 gw1 sshd[3435]: Failed password for invalid user server from 37.186.123.91 port 37158 ssh2 ...	2019-12-09 17:33:22
194.228.227.157	attackspambots	SSH bruteforce	2019-12-09 17:36:04
78.234.220.84	attackbots	Fail2Ban Ban Triggered	2019-12-09 17:41:40
77.20.107.79	attackspambots	detected by Fail2Ban	2019-12-09 17:46:07
89.208.198.59	attackspam	Dec 9 08:09:11 server sshd\[17175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.208.198.59 user=root Dec 9 08:09:14 server sshd\[17175\]: Failed password for root from 89.208.198.59 port 64711 ssh2 Dec 9 08:53:47 server sshd\[29787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.208.198.59 user=root Dec 9 08:53:49 server sshd\[29787\]: Failed password for root from 89.208.198.59 port 50007 ssh2 Dec 9 09:29:09 server sshd\[7865\]: Invalid user user from 89.208.198.59 ...	2019-12-09 17:47:33
106.13.134.164	attackbotsspam	Dec 9 10:24:21 jane sshd[1416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164 Dec 9 10:24:22 jane sshd[1416]: Failed password for invalid user admin from 106.13.134.164 port 54356 ssh2 ...	2019-12-09 17:51:36
83.242.157.71	attackspambots	" "	2019-12-09 17:40:06
91.121.156.133	attackbots	SSH brutforce	2019-12-09 18:10:54
176.31.100.19	attack	Dec 8 23:32:43 sachi sshd\[20292\]: Invalid user uhn from 176.31.100.19 Dec 8 23:32:43 sachi sshd\[20292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388913.ip-176-31-100.eu Dec 8 23:32:45 sachi sshd\[20292\]: Failed password for invalid user uhn from 176.31.100.19 port 40394 ssh2 Dec 8 23:37:52 sachi sshd\[20746\]: Invalid user xyz from 176.31.100.19 Dec 8 23:37:52 sachi sshd\[20746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388913.ip-176-31-100.eu	2019-12-09 17:49:35
222.127.101.155	attackbotsspam	Dec 9 09:31:19 web8 sshd\[6670\]: Invalid user home from 222.127.101.155 Dec 9 09:31:19 web8 sshd\[6670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.101.155 Dec 9 09:31:20 web8 sshd\[6670\]: Failed password for invalid user home from 222.127.101.155 port 35340 ssh2 Dec 9 09:38:22 web8 sshd\[9980\]: Invalid user gogs from 222.127.101.155 Dec 9 09:38:22 web8 sshd\[9980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.101.155	2019-12-09 17:59:35
41.78.201.48	attackbots	Dec 9 10:42:19 localhost sshd\[26730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.78.201.48 user=root Dec 9 10:42:21 localhost sshd\[26730\]: Failed password for root from 41.78.201.48 port 54888 ssh2 Dec 9 10:49:35 localhost sshd\[27537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.78.201.48 user=backup	2019-12-09 17:52:02

Recently Reported IPs

104.202.238.5	109.169.81.140	109.195.130.82	109.194.112.233
109.195.243.147	109.195.177.137	109.194.166.36	109.196.114.116
109.195.87.169	109.196.197.63	109.194.175.11	109.197.128.15
104.206.16.141	109.197.164.89	109.199.127.132	109.197.244.195
109.2.133.48	109.197.152.101	109.199.20.5	109.2.147.92