94.102.210.97 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Vautron Rechenzentrum AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	2020-04-11T20:47:48.303405librenms sshd[30864]: Failed password for root from 94.102.210.97 port 41354 ssh2 2020-04-11T20:51:11.834183librenms sshd[31488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1a-7740.antagus.de user=root 2020-04-11T20:51:13.731317librenms sshd[31488]: Failed password for root from 94.102.210.97 port 50132 ssh2 ...	2020-04-12 04:51:57

Type

Details

Datetime

attackbotsspam

2020-04-11T20:47:48.303405librenms sshd[30864]: Failed password for root from 94.102.210.97 port 41354 ssh2
2020-04-11T20:51:11.834183librenms sshd[31488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1a-7740.antagus.de  user=root
2020-04-11T20:51:13.731317librenms sshd[31488]: Failed password for root from 94.102.210.97 port 50132 ssh2
...

2020-04-12 04:51:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.102.210.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56847
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.102.210.97.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041001 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 11 17:26:36 CST 2020
;; MSG SIZE  rcvd: 117

Host info

97.210.102.94.in-addr.arpa domain name pointer 1a-7740.antagus.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.210.102.94.in-addr.arpa	name = 1a-7740.antagus.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.10.184.44	attackbots	SSH Bruteforce Attack	2019-07-11 15:25:42
60.190.152.242	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 03:29:16,982 INFO [amun_request_handler] PortScan Detected on Port: 445 (60.190.152.242)	2019-07-11 15:33:28
74.82.47.4	attackspambots	Automatic report - Web App Attack	2019-07-11 15:09:26
103.1.238.146	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-11 15:05:06
113.160.100.21	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 03:33:01,598 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.160.100.21)	2019-07-11 15:20:40
117.4.161.102	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 03:46:27,909 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.4.161.102)	2019-07-11 14:58:27
67.207.81.44	attack	Scanning random ports - tries to find possible vulnerable services	2019-07-11 15:40:12
206.189.145.152	attackspambots	Jul 11 05:47:41 unicornsoft sshd\[478\]: Invalid user army from 206.189.145.152 Jul 11 05:47:41 unicornsoft sshd\[478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.145.152 Jul 11 05:47:43 unicornsoft sshd\[478\]: Failed password for invalid user army from 206.189.145.152 port 32334 ssh2	2019-07-11 14:53:49
113.189.60.31	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 03:38:29,633 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.189.60.31)	2019-07-11 15:15:21
190.196.182.149	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 03:35:58,426 INFO [amun_request_handler] PortScan Detected on Port: 445 (190.196.182.149)	2019-07-11 15:18:47
184.105.139.78	attack	Scanning random ports - tries to find possible vulnerable services	2019-07-11 15:41:23
209.17.96.226	attackspambots	137/udp 52311/tcp 3000/tcp... [2019-05-10/07-10]106pkt,14pt.(tcp),1pt.(udp)	2019-07-11 15:39:10
181.143.79.154	attack	proto=tcp . spt=47206 . dpt=25 . (listed on Github Combined on 3 lists ) (247)	2019-07-11 15:14:57
218.94.136.90	attackspam	Jul 11 06:34:17 ip-172-31-1-72 sshd\[13636\]: Invalid user siva from 218.94.136.90 Jul 11 06:34:17 ip-172-31-1-72 sshd\[13636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90 Jul 11 06:34:19 ip-172-31-1-72 sshd\[13636\]: Failed password for invalid user siva from 218.94.136.90 port 49763 ssh2 Jul 11 06:41:52 ip-172-31-1-72 sshd\[13832\]: Invalid user ivan from 218.94.136.90 Jul 11 06:41:52 ip-172-31-1-72 sshd\[13832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.136.90	2019-07-11 15:27:42
125.209.67.52	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 03:37:33,758 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.209.67.52)	2019-07-11 15:18:09

Recently Reported IPs

62.234.122.207	183.89.212.29	79.30.254.207	3.9.124.128
189.71.156.218	58.241.150.125	45.40.199.82	107.180.121.33
194.146.36.92	122.51.167.17	68.13.80.99	61.167.166.185
243.35.89.172	235.201.216.99	60.140.167.221	159.146.218.53
148.235.225.30	250.127.55.38	162.28.39.212	80.211.240.161