109.237.134.54

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.237.134.42	attackspam	http://www.cnc-loft.de Received:from EdizYaziciPC (unknown [185.135.108.189]) by alfa3085.alfahosting-server.de Subject: Anfrage Drehen, Fräsen, Lasern, Schweissen	2020-09-08 20:14:13
109.237.134.42	attack	http://www.cnc-loft.de Received:from EdizYaziciPC (unknown [185.135.108.189]) by alfa3085.alfahosting-server.de Subject: Anfrage Drehen, Fräsen, Lasern, Schweissen	2020-09-08 12:10:11
109.237.134.42	attackbotsspam	http://www.cnc-loft.de Received:from EdizYaziciPC (unknown [185.135.108.189]) by alfa3085.alfahosting-server.de Subject: Anfrage Drehen, Fräsen, Lasern, Schweissen	2020-09-08 04:46:53

Type

Details

Datetime

109.237.134.42

attackspam

http://www.cnc-loft.de
Received:from EdizYaziciPC (unknown [185.135.108.189]) by alfa3085.alfahosting-server.de
Subject: Anfrage Drehen, Fräsen, Lasern, Schweissen

2020-09-08 20:14:13

109.237.134.42

attack

http://www.cnc-loft.de
Received:from EdizYaziciPC (unknown [185.135.108.189]) by alfa3085.alfahosting-server.de
Subject: Anfrage Drehen, Fräsen, Lasern, Schweissen

2020-09-08 12:10:11

109.237.134.42

attackbotsspam

http://www.cnc-loft.de
Received:from EdizYaziciPC (unknown [185.135.108.189]) by alfa3085.alfahosting-server.de
Subject: Anfrage Drehen, Fräsen, Lasern, Schweissen

2020-09-08 04:46:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.237.134.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17745
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.237.134.54.			IN	A

;; AUTHORITY SECTION:
.			550	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:36:21 CST 2022
;; MSG SIZE  rcvd: 107

Host info

54.134.237.109.in-addr.arpa domain name pointer alfa3097.alfahosting-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.134.237.109.in-addr.arpa	name = alfa3097.alfahosting-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.102.56.235	attack	Aug 16 00:33:15 h2177944 kernel: \[4232107.052998\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=30150 PROTO=TCP SPT=50122 DPT=1116 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:33:45 h2177944 kernel: \[4232137.084253\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=40776 PROTO=TCP SPT=50139 DPT=1352 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:34:27 h2177944 kernel: \[4232178.741197\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=59923 PROTO=TCP SPT=50122 DPT=1162 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:40:01 h2177944 kernel: \[4232512.931541\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=60768 PROTO=TCP SPT=50190 DPT=1818 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:52:33 h2177944 kernel: \[4233264.039560\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9	2019-08-16 07:13:54
107.170.233.150	attackspambots	B: /wp-login.php attack	2019-08-16 07:21:32
58.9.85.99	attack	23/tcp [2019-08-15]1pkt	2019-08-16 07:02:09
129.28.115.92	attackbotsspam	Aug 16 01:59:14 server sshd\[20532\]: Invalid user adela from 129.28.115.92 port 37649 Aug 16 01:59:14 server sshd\[20532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.115.92 Aug 16 01:59:17 server sshd\[20532\]: Failed password for invalid user adela from 129.28.115.92 port 37649 ssh2 Aug 16 02:04:32 server sshd\[10813\]: Invalid user jk from 129.28.115.92 port 55777 Aug 16 02:04:32 server sshd\[10813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.115.92	2019-08-16 07:20:39
177.21.198.140	attack	2019-08-1522:17:51dovecot_plainauthenticatorfailedfor\(g6juv4vfbuu59gqmke3kyvmued6kn\)[14.225.3.16]:55054:535Incorrectauthenticationdata\(set_id=info\)2019-08-1522:11:59dovecot_plainauthenticatorfailedfor\(ikxtaqzpbvzha0h5pkxxrvvcaow9u613\)[14.225.3.16]:42385:535Incorrectauthenticationdata\(set_id=info\)2019-08-1522:10:53dovecot_plainauthenticatorfailedfor\(dv4orrvgfo0fhuvj0p0tjntekssvsz\)[139.180.137.216]:40118:535Incorrectauthenticationdata\(set_id=info\)2019-08-1521:58:52dovecot_plainauthenticatorfailedfor\([191.53.195.232]\)[191.53.195.232]:37092:535Incorrectauthenticationdata\(set_id=info\)2019-08-1521:44:41dovecot_plainauthenticatorfailedfor\([177.21.198.140]\)[177.21.198.140]:32780:535Incorrectauthenticationdata\(set_id=info\)2019-08-1521:29:56dovecot_plainauthenticatorfailedfor\([138.36.200.238]\)[138.36.200.238]:52220:535Incorrectauthenticationdata\(set_id=info\)2019-08-1522:12:19dovecot_plainauthenticatorfailedforip-192-169-216-124.ip.secureserver.net\(comgn6j34cvvnuxh64r090jhs1\)[192.169.216.124]:5	2019-08-16 07:37:38
203.87.133.174	attackbotsspam	445/tcp [2019-08-15]1pkt	2019-08-16 07:16:22
165.227.154.59	attackbotsspam	Aug 15 13:25:22 wbs sshd\[18738\]: Invalid user tucker from 165.227.154.59 Aug 15 13:25:22 wbs sshd\[18738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.154.59 Aug 15 13:25:24 wbs sshd\[18738\]: Failed password for invalid user tucker from 165.227.154.59 port 48476 ssh2 Aug 15 13:29:31 wbs sshd\[19471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.154.59 user=root Aug 15 13:29:34 wbs sshd\[19471\]: Failed password for root from 165.227.154.59 port 40374 ssh2	2019-08-16 07:34:46
14.18.154.189	attackspambots	Aug 15 22:18:09 fr01 sshd[26312]: Invalid user test from 14.18.154.189 Aug 15 22:18:09 fr01 sshd[26312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.154.189 Aug 15 22:18:09 fr01 sshd[26312]: Invalid user test from 14.18.154.189 Aug 15 22:18:11 fr01 sshd[26312]: Failed password for invalid user test from 14.18.154.189 port 57185 ssh2 ...	2019-08-16 07:33:01
121.33.247.107	attack	2019-08-15T04:10:34.145398 X postfix/smtpd[31439]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-08-15T09:41:00.141266 X postfix/smtpd[15881]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-08-16T00:49:13.395744 X postfix/smtpd[1072]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-08-16 07:13:33
120.14.164.90	attackspambots	23/tcp [2019-08-15]1pkt	2019-08-16 07:05:00
59.180.229.249	attackspambots	445/tcp [2019-08-15]1pkt	2019-08-16 07:12:20
144.21.105.112	attackspam	ssh intrusion attempt	2019-08-16 07:17:51
141.98.9.42	attackbotsspam	Aug 16 00:50:31 relay postfix/smtpd\[12384\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 16 00:50:53 relay postfix/smtpd\[10408\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 16 00:51:31 relay postfix/smtpd\[12384\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 16 00:51:55 relay postfix/smtpd\[5360\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 16 00:52:32 relay postfix/smtpd\[21952\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-16 07:08:19
36.111.171.108	attack	Aug 15 18:26:30 rb06 sshd[7714]: Failed password for invalid user ales from 36.111.171.108 port 43580 ssh2 Aug 15 18:26:30 rb06 sshd[7714]: Received disconnect from 36.111.171.108: 11: Bye Bye [preauth] Aug 15 18:46:41 rb06 sshd[17559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.171.108 user=r.r Aug 15 18:46:43 rb06 sshd[17559]: Failed password for r.r from 36.111.171.108 port 50220 ssh2 Aug 15 18:46:43 rb06 sshd[17559]: Received disconnect from 36.111.171.108: 11: Bye Bye [preauth] Aug 15 18:52:44 rb06 sshd[22368]: Failed password for invalid user ems from 36.111.171.108 port 36350 ssh2 Aug 15 18:52:44 rb06 sshd[22368]: Received disconnect from 36.111.171.108: 11: Bye Bye [preauth] Aug 15 18:58:37 rb06 sshd[26782]: Failed password for invalid user papoose from 36.111.171.108 port 50706 ssh2 Aug 15 18:58:37 rb06 sshd[26782]: Received disconnect from 36.111.171.108: 11: Bye Bye [preauth] Aug 15 19:04:23 rb06 sshd[31950........ -------------------------------	2019-08-16 07:15:32
54.36.150.20	attack	Automatic report - Banned IP Access	2019-08-16 07:36:52

Recently Reported IPs

109.237.134.16	109.237.138.42	109.237.210.66	109.237.208.61
109.237.209.87	109.237.211.106	109.237.210.137	109.237.208.214
109.237.212.236	109.237.140.8	109.237.216.244	109.237.216.158
109.237.219.145	109.237.27.50	109.237.96.240	109.242.131.61
109.24.52.54	109.239.58.83	109.239.60.158	109.94.172.254