94.81.194.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Vega SRL

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user oscar from 94.81.194.42 port 40753	2019-07-28 05:06:26
attackspam	Jul 24 06:43:00 ArkNodeAT sshd\[8361\]: Invalid user virtual from 94.81.194.42 Jul 24 06:43:00 ArkNodeAT sshd\[8361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.81.194.42 Jul 24 06:43:02 ArkNodeAT sshd\[8361\]: Failed password for invalid user virtual from 94.81.194.42 port 42937 ssh2	2019-07-24 13:20:49
attackspam	Jul 16 03:41:17 srv03 sshd\[31838\]: Invalid user linux from 94.81.194.42 port 40082 Jul 16 03:41:17 srv03 sshd\[31838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.81.194.42 Jul 16 03:41:19 srv03 sshd\[31838\]: Failed password for invalid user linux from 94.81.194.42 port 40082 ssh2	2019-07-16 09:55:00
attackbotsspam	Jul 8 11:29:00 hosting sshd[32050]: Invalid user qemu from 94.81.194.42 port 34102 Jul 8 11:29:00 hosting sshd[32050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host42-194-static.81-94-b.business.telecomitalia.it Jul 8 11:29:00 hosting sshd[32050]: Invalid user qemu from 94.81.194.42 port 34102 Jul 8 11:29:03 hosting sshd[32050]: Failed password for invalid user qemu from 94.81.194.42 port 34102 ssh2 Jul 8 11:46:23 hosting sshd[1097]: Invalid user test1 from 94.81.194.42 port 48390 ...	2019-07-08 17:10:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.81.194.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12501
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.81.194.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 11:28:10 +08 2019
;; MSG SIZE  rcvd: 116

Host info

42.194.81.94.in-addr.arpa domain name pointer host42-194-static.81-94-b.business.telecomitalia.it.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
42.194.81.94.in-addr.arpa	name = host42-194-static.81-94-b.business.telecomitalia.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.253.104.164	attackbots	Invalid user kristof from 82.253.104.164 port 35874	2020-02-27 08:46:22
51.91.212.80	attack	02/26/2020-19:30:34.448666 51.91.212.80 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2020-02-27 08:39:43
185.176.27.250	attack	Excessive Port-Scanning	2020-02-27 08:34:28
83.11.235.149	attackspambots	Feb 26 16:04:07 home sshd[11837]: Invalid user tiancheng from 83.11.235.149 port 37608 Feb 26 16:04:07 home sshd[11837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.11.235.149 Feb 26 16:04:07 home sshd[11837]: Invalid user tiancheng from 83.11.235.149 port 37608 Feb 26 16:04:08 home sshd[11837]: Failed password for invalid user tiancheng from 83.11.235.149 port 37608 ssh2 Feb 26 16:24:51 home sshd[11910]: Invalid user zcx from 83.11.235.149 port 37760 Feb 26 16:24:51 home sshd[11910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.11.235.149 Feb 26 16:24:51 home sshd[11910]: Invalid user zcx from 83.11.235.149 port 37760 Feb 26 16:24:53 home sshd[11910]: Failed password for invalid user zcx from 83.11.235.149 port 37760 ssh2 Feb 26 16:31:15 home sshd[11933]: Invalid user tu from 83.11.235.149 port 39160 Feb 26 16:31:15 home sshd[11933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh	2020-02-27 08:32:53
104.131.68.92	attackbots	Automatic report - XMLRPC Attack	2020-02-27 08:59:32
86.102.22.185	attackspambots	" "	2020-02-27 08:30:37
49.88.112.67	attackspam	Feb 27 01:13:23 v22018053744266470 sshd[19714]: Failed password for root from 49.88.112.67 port 23434 ssh2 Feb 27 01:18:12 v22018053744266470 sshd[20020]: Failed password for root from 49.88.112.67 port 50025 ssh2 ...	2020-02-27 08:25:15
201.182.212.104	attackbots	Automatic report - Port Scan Attack	2020-02-27 09:00:07
64.225.124.68	attack	Feb 26 14:39:49 web1 sshd\[17838\]: Invalid user us from 64.225.124.68 Feb 26 14:39:49 web1 sshd\[17838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.124.68 Feb 26 14:39:50 web1 sshd\[17838\]: Failed password for invalid user us from 64.225.124.68 port 51862 ssh2 Feb 26 14:48:11 web1 sshd\[18656\]: Invalid user lishanbin from 64.225.124.68 Feb 26 14:48:11 web1 sshd\[18656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.124.68	2020-02-27 08:49:11
45.55.65.92	attackspam	firewall-block, port(s): 10173/tcp	2020-02-27 08:58:38
59.3.154.12	attackbotsspam	Feb 27 00:30:45 Ubuntu-1404-trusty-64-minimal sshd\[11611\]: Invalid user justin from 59.3.154.12 Feb 27 00:30:45 Ubuntu-1404-trusty-64-minimal sshd\[11611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.3.154.12 Feb 27 00:30:47 Ubuntu-1404-trusty-64-minimal sshd\[11611\]: Failed password for invalid user justin from 59.3.154.12 port 54972 ssh2 Feb 27 00:45:27 Ubuntu-1404-trusty-64-minimal sshd\[17687\]: Invalid user moodle from 59.3.154.12 Feb 27 00:45:27 Ubuntu-1404-trusty-64-minimal sshd\[17687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.3.154.12	2020-02-27 08:57:59
61.177.172.128	attack	Feb 26 10:25:12 debian sshd[10836]: Unable to negotiate with 61.177.172.128 port 31401: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Feb 26 19:31:53 debian sshd[5156]: Unable to negotiate with 61.177.172.128 port 28826: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-02-27 08:32:34
77.94.105.43	attack	" "	2020-02-27 08:44:20
222.186.173.154	attack	Feb 27 01:27:16 minden010 sshd[7313]: Failed password for root from 222.186.173.154 port 26114 ssh2 Feb 27 01:27:19 minden010 sshd[7313]: Failed password for root from 222.186.173.154 port 26114 ssh2 Feb 27 01:27:22 minden010 sshd[7313]: Failed password for root from 222.186.173.154 port 26114 ssh2 Feb 27 01:27:25 minden010 sshd[7313]: Failed password for root from 222.186.173.154 port 26114 ssh2 ...	2020-02-27 08:28:44
101.78.229.4	attack	Feb 27 00:44:23 server sshd\[3740\]: Invalid user centos from 101.78.229.4 Feb 27 00:44:23 server sshd\[3740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.229.4 Feb 27 00:44:25 server sshd\[3740\]: Failed password for invalid user centos from 101.78.229.4 port 19681 ssh2 Feb 27 00:46:52 server sshd\[4499\]: Invalid user test from 101.78.229.4 Feb 27 00:46:52 server sshd\[4499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.229.4 ...	2020-02-27 08:51:39

Recently Reported IPs

194.199.118.241	185.71.253.227	27.241.132.255	121.26.221.6
225.49.65.134	165.227.18.165	192.99.175.180	63.123.116.38
22.253.151.112	78.63.217.148	197.112.131.123	175.126.168.97
34.149.255.184	9.214.254.164	101.143.164.254	161.58.172.208
5.63.151.116	190.215.112.122	222.240.147.226	0.0.0.34