94.244.64.97 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Lithuania

Internet Service Provider: UAB Kauno Interneto Sistemos

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-07-18 00:50:52

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.244.64.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16462
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.244.64.97.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071700 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 18 00:50:43 CST 2020
;; MSG SIZE  rcvd: 116

Host info

97.64.244.94.in-addr.arpa domain name pointer 94-244-64-97.ip.kis.lt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.64.244.94.in-addr.arpa	name = 94-244-64-97.ip.kis.lt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
105.226.172.167	attackspambots	2019-08-22 20:55:24 unexpected disconnection while reading SMTP command from (172-226-105-167.north.dsl.telkomsa.net) [105.226.172.167]:21648 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-08-22 20:56:20 unexpected disconnection while reading SMTP command from (172-226-105-167.north.dsl.telkomsa.net) [105.226.172.167]:41680 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-08-22 20:56:51 unexpected disconnection while reading SMTP command from (172-226-105-167.north.dsl.telkomsa.net) [105.226.172.167]:11044 I=[10.100.18.25]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.226.172.167	2019-08-23 08:48:06
112.84.90.193	attack	SpamReport	2019-08-23 08:27:51
123.142.29.76	attack	Aug 23 02:08:54 vps01 sshd[20696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.29.76 Aug 23 02:08:55 vps01 sshd[20696]: Failed password for invalid user dbuser from 123.142.29.76 port 44869 ssh2	2019-08-23 08:20:12
90.113.83.145	attack	$f2bV_matches	2019-08-23 08:49:43
223.196.83.98	attackspambots	Aug 23 00:21:13 web8 sshd\[31945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.196.83.98 user=root Aug 23 00:21:15 web8 sshd\[31945\]: Failed password for root from 223.196.83.98 port 50984 ssh2 Aug 23 00:27:06 web8 sshd\[2675\]: Invalid user elastic from 223.196.83.98 Aug 23 00:27:06 web8 sshd\[2675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.196.83.98 Aug 23 00:27:08 web8 sshd\[2675\]: Failed password for invalid user elastic from 223.196.83.98 port 46320 ssh2	2019-08-23 08:29:31
42.157.129.158	attackbotsspam	Aug 22 14:17:16 lcdev sshd\[16719\]: Invalid user corrina from 42.157.129.158 Aug 22 14:17:16 lcdev sshd\[16719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.129.158 Aug 22 14:17:18 lcdev sshd\[16719\]: Failed password for invalid user corrina from 42.157.129.158 port 34002 ssh2 Aug 22 14:25:27 lcdev sshd\[17682\]: Invalid user oz from 42.157.129.158 Aug 22 14:25:27 lcdev sshd\[17682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.129.158	2019-08-23 08:26:51
198.199.83.143	attackbotsspam	Aug 22 13:18:58 lcprod sshd\[15286\]: Invalid user bot from 198.199.83.143 Aug 22 13:18:58 lcprod sshd\[15286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.83.143 Aug 22 13:19:00 lcprod sshd\[15286\]: Failed password for invalid user bot from 198.199.83.143 port 53074 ssh2 Aug 22 13:28:05 lcprod sshd\[16090\]: Invalid user ccp from 198.199.83.143 Aug 22 13:28:05 lcprod sshd\[16090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.83.143	2019-08-23 08:35:10
157.230.252.181	attack	Aug 23 01:48:38 tux-35-217 sshd\[1092\]: Invalid user admin from 157.230.252.181 port 42630 Aug 23 01:48:38 tux-35-217 sshd\[1092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.252.181 Aug 23 01:48:40 tux-35-217 sshd\[1092\]: Failed password for invalid user admin from 157.230.252.181 port 42630 ssh2 Aug 23 01:53:22 tux-35-217 sshd\[1129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.252.181 user=backup ...	2019-08-23 08:53:39
36.232.250.193	attack	:	2019-08-23 08:20:41
112.16.93.184	attackspam	Aug 22 20:47:51 TORMINT sshd\[935\]: Invalid user msimon from 112.16.93.184 Aug 22 20:47:51 TORMINT sshd\[935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.16.93.184 Aug 22 20:47:53 TORMINT sshd\[935\]: Failed password for invalid user msimon from 112.16.93.184 port 60184 ssh2 ...	2019-08-23 09:04:57
223.220.159.78	attackbotsspam	Aug 23 00:57:49 dedicated sshd[31688]: Invalid user kot from 223.220.159.78 port 13516	2019-08-23 08:49:13
104.248.254.222	attackbots	Aug 22 11:03:55 sachi sshd\[9910\]: Invalid user git from 104.248.254.222 Aug 22 11:03:55 sachi sshd\[9910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.254.222 Aug 22 11:03:57 sachi sshd\[9910\]: Failed password for invalid user git from 104.248.254.222 port 48216 ssh2 Aug 22 11:08:03 sachi sshd\[10292\]: Invalid user last from 104.248.254.222 Aug 22 11:08:03 sachi sshd\[10292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.254.222	2019-08-23 08:24:12
191.53.59.7	attack	Try access to SMTP/POP/IMAP server.	2019-08-23 09:02:32
157.230.88.60	attack	Aug 23 03:39:16 srv-4 sshd\[6733\]: Invalid user test from 157.230.88.60 Aug 23 03:39:16 srv-4 sshd\[6733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.88.60 Aug 23 03:39:18 srv-4 sshd\[6733\]: Failed password for invalid user test from 157.230.88.60 port 34054 ssh2 ...	2019-08-23 08:47:47
51.75.147.100	attack	Aug 23 01:38:37 ns3110291 sshd\[6957\]: Invalid user ami from 51.75.147.100 Aug 23 01:38:39 ns3110291 sshd\[6957\]: Failed password for invalid user ami from 51.75.147.100 port 57698 ssh2 Aug 23 01:42:20 ns3110291 sshd\[7325\]: Invalid user vbox from 51.75.147.100 Aug 23 01:42:23 ns3110291 sshd\[7325\]: Failed password for invalid user vbox from 51.75.147.100 port 33864 ssh2 Aug 23 01:45:59 ns3110291 sshd\[7713\]: Invalid user george from 51.75.147.100 ...	2019-08-23 08:22:23

Recently Reported IPs

49.247.213.18	222.65.109.85	67.229.237.46	183.128.241.208
197.157.151.178	198.2.175.16	130.185.74.195	92.249.138.248
149.72.38.64	175.24.117.57	171.232.248.132	152.32.165.88
77.46.222.73	66.35.114.76	220.189.70.206	201.230.120.6
173.15.85.9	148.105.12.135	221.120.41.195	185.102.219.170