94.67.64.131 - IPInfo

Basic Info

City: Thessaloniki

Region: Central Macedonia

Country: Greece

Internet Service Provider: unknown

Hostname: unknown

Organization: OTEnet S.A.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.67.64.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15777
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.67.64.131.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081502 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 03:35:01 CST 2019
;; MSG SIZE  rcvd: 116

Host info

131.64.67.94.in-addr.arpa domain name pointer ppp-94-67-64-131.home.otenet.gr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.64.67.94.in-addr.arpa	name = ppp-94-67-64-131.home.otenet.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.178.168.101	attackbotsspam	Attempted connection to port 1433.	2020-04-07 20:33:46
122.114.157.7	attackspam	Apr 7 10:31:16 ns382633 sshd\[4840\]: Invalid user node from 122.114.157.7 port 54796 Apr 7 10:31:16 ns382633 sshd\[4840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.157.7 Apr 7 10:31:18 ns382633 sshd\[4840\]: Failed password for invalid user node from 122.114.157.7 port 54796 ssh2 Apr 7 10:59:01 ns382633 sshd\[12920\]: Invalid user es from 122.114.157.7 port 45360 Apr 7 10:59:01 ns382633 sshd\[12920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.157.7	2020-04-07 20:40:18
113.254.34.5	attackbots	Honeypot attack, port: 5555, PTR: 5-34-254-113-on-nets.com.	2020-04-07 20:55:41
200.233.140.65	attackbotsspam	DATE:2020-04-07 07:53:07, IP:200.233.140.65, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-07 20:33:24
111.204.10.230	attack	Attempted connection to port 1433.	2020-04-07 20:50:58
92.63.194.105	attack	Unauthorized connection attempt detected from IP address 92.63.194.105 to port 3128	2020-04-07 20:28:53
175.140.138.193	attackbotsspam	Apr 7 14:46:18 localhost sshd\[23617\]: Invalid user test from 175.140.138.193 Apr 7 14:46:18 localhost sshd\[23617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.140.138.193 Apr 7 14:46:20 localhost sshd\[23617\]: Failed password for invalid user test from 175.140.138.193 port 26485 ssh2 Apr 7 14:51:30 localhost sshd\[23950\]: Invalid user app from 175.140.138.193 Apr 7 14:51:30 localhost sshd\[23950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.140.138.193 ...	2020-04-07 20:53:18
51.91.255.147	attackspambots	Apr 7 14:42:32 ns382633 sshd\[7750\]: Invalid user mathew from 51.91.255.147 port 56626 Apr 7 14:42:32 ns382633 sshd\[7750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.255.147 Apr 7 14:42:33 ns382633 sshd\[7750\]: Failed password for invalid user mathew from 51.91.255.147 port 56626 ssh2 Apr 7 14:51:29 ns382633 sshd\[9688\]: Invalid user www from 51.91.255.147 port 44854 Apr 7 14:51:29 ns382633 sshd\[9688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.255.147	2020-04-07 20:53:48
112.217.225.59	attackspambots	2020-04-07T12:47:51.776542shield sshd\[12062\]: Invalid user sftp from 112.217.225.59 port 60645 2020-04-07T12:47:51.780414shield sshd\[12062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.225.59 2020-04-07T12:47:54.376693shield sshd\[12062\]: Failed password for invalid user sftp from 112.217.225.59 port 60645 ssh2 2020-04-07T12:51:26.124921shield sshd\[13261\]: Invalid user user from 112.217.225.59 port 60132 2020-04-07T12:51:26.128584shield sshd\[13261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.225.59	2020-04-07 20:58:03
43.242.74.39	attackspam	Apr 7 04:25:52 Tower sshd[18104]: Connection from 43.242.74.39 port 42144 on 192.168.10.220 port 22 rdomain "" Apr 7 04:25:56 Tower sshd[18104]: Invalid user testftp from 43.242.74.39 port 42144 Apr 7 04:25:56 Tower sshd[18104]: error: Could not get shadow information for NOUSER Apr 7 04:25:56 Tower sshd[18104]: Failed password for invalid user testftp from 43.242.74.39 port 42144 ssh2 Apr 7 04:25:56 Tower sshd[18104]: Received disconnect from 43.242.74.39 port 42144:11: Bye Bye [preauth] Apr 7 04:25:56 Tower sshd[18104]: Disconnected from invalid user testftp 43.242.74.39 port 42144 [preauth]	2020-04-07 20:14:22
106.12.199.143	attackbots	2020-04-07T05:45:55.125698 sshd[28627]: Invalid user cron from 106.12.199.143 port 50008 2020-04-07T05:45:55.140545 sshd[28627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.199.143 2020-04-07T05:45:55.125698 sshd[28627]: Invalid user cron from 106.12.199.143 port 50008 2020-04-07T05:45:57.856548 sshd[28627]: Failed password for invalid user cron from 106.12.199.143 port 50008 ssh2 ...	2020-04-07 20:24:29
84.236.185.247	attack	Apr 7 05:45:22 exim[17619]: [1\29] 1jLfAw-0004aB-Dw H=(tmoorecpa.com) [84.236.185.247] F= rejected after DATA: This message scored 103.5 spam points.	2020-04-07 20:18:20
45.143.220.213	attack	Apr 7 14:51:30 debian-2gb-nbg1-2 kernel: \[8522911.804036\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.213 DST=195.201.40.59 LEN=434 TOS=0x00 PREC=0x00 TTL=54 ID=48692 DF PROTO=UDP SPT=13137 DPT=5060 LEN=414	2020-04-07 20:54:05
201.35.67.18	attackbots	port 23	2020-04-07 20:38:27
80.82.77.33	attack	scans once in preceeding hours on the ports (in chronological order) 4800 resulting in total of 44 scans from 80.82.64.0/20 block.	2020-04-07 20:26:53

Recently Reported IPs

12.46.155.194	112.64.89.4	112.190.247.250	61.0.85.207
94.191.43.58	149.33.21.223	68.42.36.67	62.14.98.152
32.9.40.11	83.254.232.231	56.53.27.79	177.157.240.57
36.4.177.59	23.28.179.32	90.156.141.229	99.100.168.140
47.27.185.29	106.33.104.237	182.180.255.88	4.28.86.37