116.203.92.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Hetzner Online AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	(mod_security) mod_security (id:949110) triggered by 116.203.92.70 (DE/Germany/static.70.92.203.116.clients.your-server.de): 10 in the last 3600 secs; ID: DAN	2020-05-31 06:52:19

Comments on same subnet:

IP	Type	Details	Datetime
116.203.92.6	attackspam	Jul 24 21:38:00 fv15 sshd[17535]: Failed password for invalid user musicbot from 116.203.92.6 port 37616 ssh2 Jul 24 21:38:00 fv15 sshd[17535]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth] Jul 24 21:42:13 fv15 sshd[24702]: Failed password for invalid user admin from 116.203.92.6 port 33208 ssh2 Jul 24 21:42:13 fv15 sshd[24702]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth] Jul 24 21:46:15 fv15 sshd[9031]: Failed password for invalid user ama from 116.203.92.6 port 57036 ssh2 Jul 24 21:46:15 fv15 sshd[9031]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth] Jul 24 21:50:20 fv15 sshd[6318]: Failed password for invalid user teamchostnamey from 116.203.92.6 port 52628 ssh2 Jul 24 21:50:20 fv15 sshd[6318]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth] Jul 24 21:54:35 fv15 sshd[28953]: Failed password for invalid user developer from 116.203.92.6 port 48230 ssh2 Jul 24 21:54:35 fv15 sshd[28953]: Received disconnect from ........ -------------------------------	2019-07-25 19:39:05

Type

Details

Datetime

116.203.92.6

attackspam

Jul 24 21:38:00 fv15 sshd[17535]: Failed password for invalid user musicbot from 116.203.92.6 port 37616 ssh2
Jul 24 21:38:00 fv15 sshd[17535]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth]
Jul 24 21:42:13 fv15 sshd[24702]: Failed password for invalid user admin from 116.203.92.6 port 33208 ssh2
Jul 24 21:42:13 fv15 sshd[24702]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth]
Jul 24 21:46:15 fv15 sshd[9031]: Failed password for invalid user ama from 116.203.92.6 port 57036 ssh2
Jul 24 21:46:15 fv15 sshd[9031]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth]
Jul 24 21:50:20 fv15 sshd[6318]: Failed password for invalid user teamchostnamey from 116.203.92.6 port 52628 ssh2
Jul 24 21:50:20 fv15 sshd[6318]: Received disconnect from 116.203.92.6: 11: Bye Bye [preauth]
Jul 24 21:54:35 fv15 sshd[28953]: Failed password for invalid user developer from 116.203.92.6 port 48230 ssh2
Jul 24 21:54:35 fv15 sshd[28953]: Received disconnect from ........
-------------------------------

2019-07-25 19:39:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.203.92.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61458
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.203.92.70.			IN	A

;; AUTHORITY SECTION:
.			533	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020053000 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 31 06:52:15 CST 2020
;; MSG SIZE  rcvd: 117

Host info

70.92.203.116.in-addr.arpa domain name pointer static.70.92.203.116.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.92.203.116.in-addr.arpa	name = static.70.92.203.116.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.114.3.105	attackspambots	Mar 4 20:33:21 lukav-desktop sshd\[13191\]: Invalid user minecraft from 167.114.3.105 Mar 4 20:33:21 lukav-desktop sshd\[13191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.3.105 Mar 4 20:33:23 lukav-desktop sshd\[13191\]: Failed password for invalid user minecraft from 167.114.3.105 port 39396 ssh2 Mar 4 20:41:24 lukav-desktop sshd\[13276\]: Invalid user dping from 167.114.3.105 Mar 4 20:41:24 lukav-desktop sshd\[13276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.3.105	2020-03-05 02:57:57
222.186.42.75	attackspambots	Mar 4 19:45:25 rotator sshd\[1466\]: Failed password for root from 222.186.42.75 port 18924 ssh2Mar 4 19:45:28 rotator sshd\[1466\]: Failed password for root from 222.186.42.75 port 18924 ssh2Mar 4 19:45:30 rotator sshd\[1466\]: Failed password for root from 222.186.42.75 port 18924 ssh2Mar 4 19:47:09 rotator sshd\[1482\]: Failed password for root from 222.186.42.75 port 15033 ssh2Mar 4 19:47:11 rotator sshd\[1482\]: Failed password for root from 222.186.42.75 port 15033 ssh2Mar 4 19:47:13 rotator sshd\[1482\]: Failed password for root from 222.186.42.75 port 15033 ssh2 ...	2020-03-05 02:51:26
212.64.127.106	attackspambots	Mar 4 18:39:54 vmd17057 sshd[26104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.127.106 Mar 4 18:39:56 vmd17057 sshd[26104]: Failed password for invalid user appimgr from 212.64.127.106 port 58109 ssh2 ...	2020-03-05 02:39:46
187.35.129.125	attackspambots	Mar 4 13:47:38 NPSTNNYC01T sshd[10654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.35.129.125 Mar 4 13:47:40 NPSTNNYC01T sshd[10654]: Failed password for invalid user thomas from 187.35.129.125 port 50114 ssh2 Mar 4 13:52:40 NPSTNNYC01T sshd[10852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.35.129.125 ...	2020-03-05 02:55:30
115.182.75.28	attackspambots	attempted connection to port 1433	2020-03-05 03:05:49
139.162.118.251	attackspam	firewall-block, port(s): 6379/tcp	2020-03-05 03:00:36
81.49.199.58	attackbots	Mar 4 08:31:01 eddieflores sshd\[1038\]: Invalid user test from 81.49.199.58 Mar 4 08:31:01 eddieflores sshd\[1038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-lil-1-368-58.w81-49.abo.wanadoo.fr Mar 4 08:31:02 eddieflores sshd\[1038\]: Failed password for invalid user test from 81.49.199.58 port 47284 ssh2 Mar 4 08:39:16 eddieflores sshd\[1711\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-lil-1-368-58.w81-49.abo.wanadoo.fr user=root Mar 4 08:39:18 eddieflores sshd\[1711\]: Failed password for root from 81.49.199.58 port 56534 ssh2	2020-03-05 02:46:12
121.144.71.40	attack	attempted connection to port 23	2020-03-05 03:03:01
106.13.1.245	attackbots	Mar 4 18:51:09 * sshd[31278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.1.245 Mar 4 18:51:11 * sshd[31278]: Failed password for invalid user arthur from 106.13.1.245 port 39528 ssh2	2020-03-05 02:25:36
117.132.147.252	attack	suspicious action Wed, 04 Mar 2020 10:33:54 -0300	2020-03-05 03:05:19
219.84.236.108	attackspam	$f2bV_matches	2020-03-05 02:32:06
117.135.115.70	attack	suspicious action Wed, 04 Mar 2020 10:34:10 -0300	2020-03-05 02:34:40
117.132.151.28	attackspam	suspicious action Wed, 04 Mar 2020 10:33:58 -0300	2020-03-05 02:58:28
219.233.49.39	attackbots	$f2bV_matches	2020-03-05 02:45:26
124.114.177.237	attackbotsspam	attempted connection to port 1433	2020-03-05 03:02:38

Recently Reported IPs

175.164.61.76	63.249.138.167	109.60.151.150	113.2.72.46
45.218.123.96	39.81.98.45	89.90.200.18	113.234.208.232
122.230.2.177	1.195.124.40	118.70.80.91	126.228.77.172
24.243.236.58	152.191.48.194	188.156.255.188	123.240.37.165
24.120.21.43	162.223.89.142	194.244.16.237	193.171.98.9