94.66.56.87 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Otenet

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	2019-06-21 13:31:08 1heHl4-00037t-Kb SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:60054 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 13:31:16 1heHlC-000382-4X SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:55921 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 13:31:23 1heHlJ-00038O-9n SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:42157 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2019-10-24 20:33:45

Type

Details

Datetime

attackbotsspam

2019-06-21 13:31:08 1heHl4-00037t-Kb SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:60054 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-06-21 13:31:16 1heHlC-000382-4X SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:55921 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-06-21 13:31:23 1heHlJ-00038O-9n SMTP connection from ppp-94-66-56-87.home.otenet.gr \[94.66.56.87\]:42157 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2019-10-24 20:33:45

Comments on same subnet:

IP	Type	Details	Datetime
94.66.56.67	attackbots	Automatic report - Port Scan	2019-11-24 09:55:15
94.66.56.52	attack	Autoban 94.66.56.52 AUTH/CONNECT	2019-11-05 05:09:35
94.66.56.21	attackbotsspam	Lines containing failures of 94.66.56.21 Oct 30 04:44:27 shared03 postfix/smtpd[27536]: connect from ppp-94-66-56-21.home.otenet.gr[94.66.56.21] Oct 30 04:44:36 shared03 policyd-spf[29686]: prepend Received-SPF: Softfail (mailfrom) identhostnamey=mailfrom; client-ip=94.66.56.21; helo=cret64.static.otenet.gr; envelope-from=x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.66.56.21	2019-10-30 16:39:42
94.66.56.215	attack	2019-10-21 x@x 2019-10-21 21:40:41 unexpected disconnection while reading SMTP command from ppp-94-66-56-215.home.otenet.gr [94.66.56.215]:58633 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.66.56.215	2019-10-22 06:22:44
94.66.56.250	attackspam	Jul 28 07:45:59 our-server-hostname postfix/smtpd[18322]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 07:46:06 our-server-hostname postfix/smtpd[18322]: lost connection after DATA from unknown[94.66.56.250] Jul 28 07:46:06 our-server-hostname postfix/smtpd[18322]: disconnect from unknown[94.66.56.250] Jul 28 08:18:14 our-server-hostname postfix/smtpd[11331]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 08:18:27 our-server-hostname postfix/smtpd[11331]: lost connection after DATA from unknown[94.66.56.250] Jul 28 08:18:27 our-server-hostname postfix/smtpd[11331]: disconnect from unknown[94.66.56.250] Jul 28 20:37:41 our-server-hostname postfix/smtpd[12648]: connect from unknown[94.66.56.250] Jul x@x Jul x@x Jul 28 20:37:47 our-server-hostname postfix/smtpd[12648]: lost connection after DATA from unknown[94.66.56.250] Jul 28 20:37:47 our-server-hostname postfix/smtpd[12648]: disconnect from unknown[94.66.56.250] Jul 28 20:42:44 our-server-hostna........ -------------------------------	2019-07-29 01:01:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.66.56.87
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33987
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.66.56.87.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102400 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 20:33:39 CST 2019
;; MSG SIZE  rcvd: 115

Host info

87.56.66.94.in-addr.arpa domain name pointer ppp-94-66-56-87.home.otenet.gr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
87.56.66.94.in-addr.arpa	name = ppp-94-66-56-87.home.otenet.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.13.29	attackbotsspam	2020-05-29T16:47:38.470761xentho-1 sshd[882783]: Invalid user nickollas from 117.50.13.29 port 46112 2020-05-29T16:47:40.555239xentho-1 sshd[882783]: Failed password for invalid user nickollas from 117.50.13.29 port 46112 ssh2 2020-05-29T16:49:07.672808xentho-1 sshd[882842]: Invalid user ftp_boot from 117.50.13.29 port 60404 2020-05-29T16:49:07.680253xentho-1 sshd[882842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 2020-05-29T16:49:07.672808xentho-1 sshd[882842]: Invalid user ftp_boot from 117.50.13.29 port 60404 2020-05-29T16:49:09.639112xentho-1 sshd[882842]: Failed password for invalid user ftp_boot from 117.50.13.29 port 60404 ssh2 2020-05-29T16:50:34.691586xentho-1 sshd[882867]: Invalid user Administrator from 117.50.13.29 port 46464 2020-05-29T16:50:34.697090xentho-1 sshd[882867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 2020-05-29T16:50:34.691586xentho-1 sshd[882 ...	2020-05-30 05:24:27
201.209.39.172	attackspam	Port probing on unauthorized port 445	2020-05-30 05:28:22
144.217.42.212	attackspambots	2020-05-29T22:49:26.425082vps773228.ovh.net sshd[2890]: Invalid user postgres from 144.217.42.212 port 37381 2020-05-29T22:49:26.441924vps773228.ovh.net sshd[2890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip212.ip-144-217-42.net 2020-05-29T22:49:26.425082vps773228.ovh.net sshd[2890]: Invalid user postgres from 144.217.42.212 port 37381 2020-05-29T22:49:28.685048vps773228.ovh.net sshd[2890]: Failed password for invalid user postgres from 144.217.42.212 port 37381 ssh2 2020-05-29T22:52:56.076590vps773228.ovh.net sshd[2979]: Invalid user butter from 144.217.42.212 port 39061 ...	2020-05-30 05:19:38
104.237.252.28	attack	2020-05-29T22:23:30.168107vps773228.ovh.net sshd[2250]: Failed password for root from 104.237.252.28 port 36088 ssh2 2020-05-29T22:36:55.735512vps773228.ovh.net sshd[2576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.237.252.28 user=root 2020-05-29T22:36:58.204330vps773228.ovh.net sshd[2576]: Failed password for root from 104.237.252.28 port 42732 ssh2 2020-05-29T22:50:25.184787vps773228.ovh.net sshd[2939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.237.252.28 user=root 2020-05-29T22:50:27.182319vps773228.ovh.net sshd[2939]: Failed password for root from 104.237.252.28 port 49392 ssh2 ...	2020-05-30 05:32:46
106.12.215.118	attackbots	" "	2020-05-30 05:39:45
222.186.42.136	attackbotsspam	May 29 23:26:55 ArkNodeAT sshd\[31987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root May 29 23:26:57 ArkNodeAT sshd\[31987\]: Failed password for root from 222.186.42.136 port 55757 ssh2 May 29 23:27:03 ArkNodeAT sshd\[31996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root	2020-05-30 05:30:46
104.155.213.9	attackbotsspam	Invalid user admin from 104.155.213.9 port 37184	2020-05-30 05:18:33
218.92.0.168	attackspambots	May 29 23:28:02 amit sshd\[17289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root May 29 23:28:05 amit sshd\[17289\]: Failed password for root from 218.92.0.168 port 2287 ssh2 May 29 23:28:23 amit sshd\[17309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root ...	2020-05-30 05:36:48
222.186.31.83	attack	May 29 17:12:55 plusreed sshd[14305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root May 29 17:12:58 plusreed sshd[14305]: Failed password for root from 222.186.31.83 port 30629 ssh2 ...	2020-05-30 05:21:58
31.209.21.17	attackspam	$f2bV_matches	2020-05-30 05:28:38
162.243.139.143	attackspam	firewall-block, port(s): 1400/tcp	2020-05-30 05:42:12
51.75.30.199	attack	2020-05-29T21:01:35.048358shield sshd\[28199\]: Invalid user desadm from 51.75.30.199 port 42953 2020-05-29T21:01:35.052014shield sshd\[28199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.ip-51-75-30.eu 2020-05-29T21:01:36.704639shield sshd\[28199\]: Failed password for invalid user desadm from 51.75.30.199 port 42953 ssh2 2020-05-29T21:05:18.927224shield sshd\[28896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.ip-51-75-30.eu user=root 2020-05-29T21:05:21.529092shield sshd\[28896\]: Failed password for root from 51.75.30.199 port 45411 ssh2	2020-05-30 05:19:06
111.93.235.74	attackspam	$f2bV_matches	2020-05-30 05:34:14
142.93.14.42	attack	port scan and connect, tcp 23 (telnet)	2020-05-30 05:24:07
116.104.253.56	attackbots	firewall-block, port(s): 8082/tcp	2020-05-30 05:47:53

Recently Reported IPs

180.208.58.219	94.63.214.208	94.63.33.119	94.63.2.144
34.199.70.85	94.62.150.222	94.62.118.37	202.37.39.154
45.14.148.95	58.154.48.145	99.231.105.229	73.67.242.233
12.19.30.41	101.210.206.81	107.225.113.203	135.180.77.62
159.190.125.27	94.61.100.138	23.152.253.94	31.222.124.230