109.254.4.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ukraine

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.254.41.37	attack	Honeypot attack, port: 5555, PTR: ip-109-254-41-37.eq.dec.net.ua.	2020-02-20 14:10:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.254.4.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.254.4.22.			IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040400 1800 900 604800 86400

;; Query time: 324 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 04 15:15:54 CST 2022
;; MSG SIZE  rcvd: 105

Host info

22.4.254.109.in-addr.arpa domain name pointer ip-109-254-4-22.eq.dec.net.ua.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.4.254.109.in-addr.arpa	name = ip-109-254-4-22.eq.dec.net.ua.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
169.197.108.202	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-14 04:22:19
176.118.48.226	attackbotsspam	2019-12-13 09:56:10 H=(ip-176-118-48-226.radionetwork.com.ua) [176.118.48.226]:57182 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/176.118.48.226) 2019-12-13 09:56:10 H=(ip-176-118-48-226.radionetwork.com.ua) [176.118.48.226]:57182 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/176.118.48.226) 2019-12-13 09:56:11 H=(ip-176-118-48-226.radionetwork.com.ua) [176.118.48.226]:57182 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/176.118.48.226) ...	2019-12-14 04:06:45
190.6.93.174	attack	12/13/2019-16:55:37.813829 190.6.93.174 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-14 04:37:41
111.231.108.97	attackspam	Dec 13 19:22:25 lnxweb62 sshd[19679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.108.97	2019-12-14 04:38:00
183.82.121.34	attackspambots	Dec 13 19:08:36 icinga sshd[13711]: Failed password for root from 183.82.121.34 port 57555 ssh2 ...	2019-12-14 04:10:21
5.57.33.71	attack	fail2ban	2019-12-14 04:25:05
84.236.57.216	attack	Dec 13 19:13:46 sso sshd[2861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.236.57.216 Dec 13 19:13:49 sso sshd[2861]: Failed password for invalid user admin from 84.236.57.216 port 33732 ssh2 ...	2019-12-14 04:04:29
222.230.115.251	attack	Dec 13 10:56:04 TORMINT sshd\[12042\]: Invalid user erhhuan from 222.230.115.251 Dec 13 10:56:04 TORMINT sshd\[12042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.230.115.251 Dec 13 10:56:06 TORMINT sshd\[12042\]: Failed password for invalid user erhhuan from 222.230.115.251 port 58950 ssh2 ...	2019-12-14 04:10:07
202.146.235.79	attackspambots	Dec 13 15:09:58 ny01 sshd[23205]: Failed password for sshd from 202.146.235.79 port 46482 ssh2 Dec 13 15:17:11 ny01 sshd[23953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.146.235.79 Dec 13 15:17:13 ny01 sshd[23953]: Failed password for invalid user home from 202.146.235.79 port 54694 ssh2	2019-12-14 04:29:07
202.151.30.141	attackspambots	Dec 13 08:54:07 home sshd[12901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 user=root Dec 13 08:54:09 home sshd[12901]: Failed password for root from 202.151.30.141 port 52808 ssh2 Dec 13 09:08:59 home sshd[12976]: Invalid user damita from 202.151.30.141 port 39050 Dec 13 09:08:59 home sshd[12976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 Dec 13 09:08:59 home sshd[12976]: Invalid user damita from 202.151.30.141 port 39050 Dec 13 09:09:02 home sshd[12976]: Failed password for invalid user damita from 202.151.30.141 port 39050 ssh2 Dec 13 09:17:38 home sshd[13019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 user=root Dec 13 09:17:40 home sshd[13019]: Failed password for root from 202.151.30.141 port 44374 ssh2 Dec 13 09:25:05 home sshd[13060]: Invalid user home from 202.151.30.141 port 49642 Dec 13 09:25:05 home sshd[13060]: pam_	2019-12-14 04:20:34
212.62.61.13	attackspam	TCP Port Scanning	2019-12-14 04:23:48
118.24.89.243	attack	k+ssh-bruteforce	2019-12-14 04:11:27
119.28.29.169	attackbotsspam	Dec 13 16:56:01 cp sshd[21311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.29.169	2019-12-14 04:18:56
187.141.71.27	attack	Dec 13 21:20:16 MK-Soft-VM7 sshd[28023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.71.27 Dec 13 21:20:17 MK-Soft-VM7 sshd[28023]: Failed password for invalid user admin from 187.141.71.27 port 49664 ssh2 ...	2019-12-14 04:36:14
68.183.124.53	attackbots	[Aegis] @ 2019-12-13 19:25:19 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-14 04:30:53

Recently Reported IPs

109.254.38.91	109.254.5.78	109.254.8.104	109.254.8.31
109.254.98.36	109.3.168.3	109.36.154.154	109.37.134.113
109.37.156.236	109.37.159.252	109.40.240.229	109.42.177.202
109.48.249.247	109.49.30.201	109.50.186.241	109.50.194.45
109.50.208.43	109.52.236.18	109.53.19.112	109.53.5.31