23.94.204.22 - IPInfo

Basic Info

City: Elk Grove Village

Region: Illinois

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
23.94.204.232	attackbotsspam	Oct 6 16:13:48 prox sshd[9731]: Failed password for root from 23.94.204.232 port 39010 ssh2	2020-10-07 02:50:40
23.94.204.232	attack	23.94.204.232 (US/United States/yithay.org), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-10-06 18:50:11
23.94.204.67	attackspambots	Unauthorized connection attempt detected from IP address 23.94.204.67 to port 22	2020-01-07 22:25:16

Type

Details

Datetime

23.94.204.232

attackbotsspam

Oct  6 16:13:48 prox sshd[9731]: Failed password for root from 23.94.204.232 port 39010 ssh2

2020-10-07 02:50:40

23.94.204.232

attack

23.94.204.232 (US/United States/yithay.org), 12 distributed sshd attacks on account [root] in the last 3600 secs

2020-10-06 18:50:11

23.94.204.67

attackspambots

Unauthorized connection attempt detected from IP address 23.94.204.67 to port 22

2020-01-07 22:25:16

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       23.94.0.0 - 23.95.255.255
CIDR:           23.94.0.0/15
NetName:        CC-16
NetHandle:      NET-23-94-0-0-1
Parent:         NET23 (NET-23-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   HostPapa (HOSTP-7)
RegDate:        2013-08-16
Updated:        2024-02-02
Comment:        Geofeed https://geofeeds.oniaas.io/geofeeds.csv
Ref:            https://rdap.arin.net/registry/ip/23.94.0.0


OrgName:        HostPapa
OrgId:          HOSTP-7
Address:        325 Delaware Avenue
Address:        Suite 300
City:           Buffalo
StateProv:      NY
PostalCode:     14202
Country:        US
RegDate:        2016-06-06
Updated:        2025-10-05
Ref:            https://rdap.arin.net/registry/entity/HOSTP-7


OrgAbuseHandle: NETAB23-ARIN
OrgAbuseName:   NETABUSE
OrgAbusePhone:  +1-905-315-3455 
OrgAbuseEmail:  net-abuse-global@hostpapa.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/NETAB23-ARIN

OrgTechHandle: NETTE9-ARIN
OrgTechName:   NETTECH
OrgTechPhone:  +1-905-315-3455 
OrgTechEmail:  net-tech-global@hostpapa.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NETTE9-ARIN

RAbuseHandle: NETAB27-ARIN
RAbuseName:   NETABUSE-COLOCROSSING
RAbusePhone:  +1-800-518-9716 
RAbuseEmail:  abuse@colocrossing.com
RAbuseRef:    https://rdap.arin.net/registry/entity/NETAB27-ARIN

RTechHandle: NETTE11-ARIN
RTechName:   NETTECH-COLOCROSSING
RTechPhone:  +1-800-518-9716 
RTechEmail:  support@colocrossing.com
RTechRef:    https://rdap.arin.net/registry/entity/NETTE11-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 23.94.204.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55609
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;23.94.204.22.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026052203 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 23 06:30:12 CST 2026
;; MSG SIZE  rcvd: 105

Host info

22.204.94.23.in-addr.arpa domain name pointer 23-94-204-22-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.204.94.23.in-addr.arpa	name = 23-94-204-22-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.56.158.75	attack	TCP (SYN) 218.56.158.75:42092 -> port 1433, len 44	2020-09-05 03:02:49
179.163.236.96	attack	(sshd) Failed SSH login from 179.163.236.96 (BR/Brazil/179-163-236-96.user.vivozap.com.br): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 12:43:41 internal2 sshd[30235]: Invalid user ubnt from 179.163.236.96 port 48949 Sep 3 12:44:35 internal2 sshd[30890]: Invalid user admin from 179.163.236.96 port 48976 Sep 3 12:44:37 internal2 sshd[30910]: Invalid user admin from 179.163.236.96 port 48977	2020-09-05 02:56:14
122.224.237.234	attackspambots	Sep 4 17:28:52 gw1 sshd[17717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.237.234 Sep 4 17:28:54 gw1 sshd[17717]: Failed password for invalid user qwt from 122.224.237.234 port 58187 ssh2 ...	2020-09-05 03:06:32
132.145.128.157	attackspambots	(sshd) Failed SSH login from 132.145.128.157 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 14:05:39 server5 sshd[28890]: Invalid user gj from 132.145.128.157 Sep 4 14:05:39 server5 sshd[28890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.128.157 Sep 4 14:05:41 server5 sshd[28890]: Failed password for invalid user gj from 132.145.128.157 port 33810 ssh2 Sep 4 14:20:20 server5 sshd[6476]: Invalid user ab from 132.145.128.157 Sep 4 14:20:20 server5 sshd[6476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.128.157	2020-09-05 02:56:34
177.136.39.254	attackspambots	Fail2Ban Ban Triggered (2)	2020-09-05 02:37:02
61.178.108.175	attackbots	TCP (SYN) 61.178.108.175:57813 -> port 1433, len 44	2020-09-05 03:07:34
103.145.12.40	attackbots	[2020-09-04 14:26:29] NOTICE[1194][C-000006c2] chan_sip.c: Call from '' (103.145.12.40:55273) to extension '01146812420166' rejected because extension not found in context 'public'. [2020-09-04 14:26:29] SECURITY[1233] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-04T14:26:29.722-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146812420166",SessionID="0x7f2ddc0e4da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.40/55273",ACLName="no_extension_match" [2020-09-04 14:27:55] NOTICE[1194][C-000006c7] chan_sip.c: Call from '' (103.145.12.40:52542) to extension '901146812420166' rejected because extension not found in context 'public'. [2020-09-04 14:27:55] SECURITY[1233] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-04T14:27:55.406-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146812420166",SessionID="0x7f2ddc0bf9a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/10 ...	2020-09-05 02:38:58
176.122.156.32	attackspambots	Sep 4 17:54:37 pornomens sshd\[2041\]: Invalid user icecast from 176.122.156.32 port 52158 Sep 4 17:54:37 pornomens sshd\[2041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.122.156.32 Sep 4 17:54:38 pornomens sshd\[2041\]: Failed password for invalid user icecast from 176.122.156.32 port 52158 ssh2 ...	2020-09-05 02:33:38
167.71.86.88	attack	Sep 4 sshd[21522]: Invalid user yarn from 167.71.86.88 port 48358	2020-09-05 02:59:09
151.225.69.127	attack	Sep 4 01:28:49 scw-6657dc sshd[20032]: Invalid user pi from 151.225.69.127 port 52170 Sep 4 01:28:49 scw-6657dc sshd[20032]: Invalid user pi from 151.225.69.127 port 52170 Sep 4 01:28:49 scw-6657dc sshd[20033]: Invalid user pi from 151.225.69.127 port 52174 ...	2020-09-05 02:53:16
218.92.0.249	attackbots	2020-09-04T21:47:59.314450afi-git.jinr.ru sshd[10895]: Failed password for root from 218.92.0.249 port 19360 ssh2 2020-09-04T21:48:02.314785afi-git.jinr.ru sshd[10895]: Failed password for root from 218.92.0.249 port 19360 ssh2 2020-09-04T21:48:05.060112afi-git.jinr.ru sshd[10895]: Failed password for root from 218.92.0.249 port 19360 ssh2 2020-09-04T21:48:05.060272afi-git.jinr.ru sshd[10895]: error: maximum authentication attempts exceeded for root from 218.92.0.249 port 19360 ssh2 [preauth] 2020-09-04T21:48:05.060288afi-git.jinr.ru sshd[10895]: Disconnecting: Too many authentication failures [preauth] ...	2020-09-05 02:58:02
62.234.153.213	attackspambots	Bruteforce detected by fail2ban	2020-09-05 02:59:35
128.14.230.12	attack	2020-09-04T17:42:57.381644cyberdyne sshd[3526430]: Invalid user ubuntu from 128.14.230.12 port 36760 2020-09-04T17:42:57.384146cyberdyne sshd[3526430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.14.230.12 2020-09-04T17:42:57.381644cyberdyne sshd[3526430]: Invalid user ubuntu from 128.14.230.12 port 36760 2020-09-04T17:42:59.219670cyberdyne sshd[3526430]: Failed password for invalid user ubuntu from 128.14.230.12 port 36760 ssh2 ...	2020-09-05 03:03:27
122.51.166.84	attack	SSH brute force attempt	2020-09-05 02:39:42
113.190.34.227	attackbots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-09-05 02:40:03

Recently Reported IPs

121.41.167.149	3.85.134.131	2606:4700:10::6816:230	2606:4700:10::ac43:1995
2606:4700:10::6816:1423	2606:4700:10::6814:7958	122.192.203.52	2606:4700:10::6814:8045
66.132.186.160	219.82.2.110	2606:4700:10::6814:4466	52.203.40.22
2606:4700:10::6816:2305	121.234.219.86	2606:4700:10::6814:9322	206.189.42.12
110.78.138.173	2606:4700:10::6816:510	2606:4700:10::6816:4688	185.93.89.154