164.28.92.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.28.92.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65504
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.28.92.34.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021601 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 02:40:52 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 34.92.28.164.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.92.28.164.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.249.224	attack	leo_www	2020-08-22 12:34:57
139.155.146.60	attackbots	Aug 22 06:07:56 fhem-rasp sshd[31050]: Invalid user vegeta from 139.155.146.60 port 37520 ...	2020-08-22 12:34:24
180.101.221.152	attackspambots	Aug 22 06:47:02 pkdns2 sshd\[56876\]: Invalid user test1 from 180.101.221.152Aug 22 06:47:04 pkdns2 sshd\[56876\]: Failed password for invalid user test1 from 180.101.221.152 port 48020 ssh2Aug 22 06:51:20 pkdns2 sshd\[57062\]: Invalid user vision from 180.101.221.152Aug 22 06:51:22 pkdns2 sshd\[57062\]: Failed password for invalid user vision from 180.101.221.152 port 44052 ssh2Aug 22 06:55:25 pkdns2 sshd\[57231\]: Invalid user lcm from 180.101.221.152Aug 22 06:55:26 pkdns2 sshd\[57231\]: Failed password for invalid user lcm from 180.101.221.152 port 40078 ssh2 ...	2020-08-22 12:39:28
144.34.202.244	attackspambots	Aug 22 05:49:28 ns382633 sshd\[9477\]: Invalid user ubuntu from 144.34.202.244 port 36590 Aug 22 05:49:28 ns382633 sshd\[9477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.202.244 Aug 22 05:49:30 ns382633 sshd\[9477\]: Failed password for invalid user ubuntu from 144.34.202.244 port 36590 ssh2 Aug 22 05:55:11 ns382633 sshd\[10801\]: Invalid user ubuntu from 144.34.202.244 port 39790 Aug 22 05:55:11 ns382633 sshd\[10801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.202.244	2020-08-22 12:54:18
180.167.225.118	attackspam	Aug 22 04:13:37 XXXXXX sshd[15152]: Invalid user imp from 180.167.225.118 port 38314	2020-08-22 13:00:08
179.191.65.214	attackbots	Aug 21 18:22:18 php1 sshd\[20263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.191.65.214 user=root Aug 21 18:22:20 php1 sshd\[20263\]: Failed password for root from 179.191.65.214 port 33354 ssh2 Aug 21 18:28:22 php1 sshd\[20739\]: Invalid user earl from 179.191.65.214 Aug 21 18:28:22 php1 sshd\[20739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.191.65.214 Aug 21 18:28:24 php1 sshd\[20739\]: Failed password for invalid user earl from 179.191.65.214 port 38706 ssh2	2020-08-22 12:34:04
182.61.164.198	attackspambots	Aug 22 04:31:50 marvibiene sshd[8136]: Invalid user tomcat from 182.61.164.198 port 46250 Aug 22 04:31:50 marvibiene sshd[8136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.164.198 Aug 22 04:31:50 marvibiene sshd[8136]: Invalid user tomcat from 182.61.164.198 port 46250 Aug 22 04:31:52 marvibiene sshd[8136]: Failed password for invalid user tomcat from 182.61.164.198 port 46250 ssh2	2020-08-22 12:35:39
106.54.127.159	attack	Aug 22 05:37:26 havingfunrightnow sshd[7408]: Failed password for root from 106.54.127.159 port 46268 ssh2 Aug 22 05:55:06 havingfunrightnow sshd[7925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.127.159 Aug 22 05:55:08 havingfunrightnow sshd[7925]: Failed password for invalid user cym from 106.54.127.159 port 47812 ssh2 ...	2020-08-22 12:58:19
95.179.254.125	attackspambots	[Sat Aug 22 10:55:43.652770 2020] [:error] [pid 27484:tid 140338257721088] [client 95.179.254.125:63297] [client 95.179.254.125] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "python-requests" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "147"] [id "913101"] [msg "Found User-Agent associated with scripting/generic HTTP client"] [data "Matched Data: python-requests found within REQUEST_HEADERS:User-Agent: python-requests/2.24.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scripting"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/SCRIPTING"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "103.27.207.197"] [uri "/"] [unique_id "X0CXPzJgMfTEPDOJi73ybgAAAh0"] ...	2020-08-22 12:30:54
222.186.175.216	attackspambots	Aug 22 04:38:36 localhost sshd[54502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Aug 22 04:38:37 localhost sshd[54502]: Failed password for root from 222.186.175.216 port 60276 ssh2 Aug 22 04:38:42 localhost sshd[54502]: Failed password for root from 222.186.175.216 port 60276 ssh2 Aug 22 04:38:36 localhost sshd[54502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Aug 22 04:38:37 localhost sshd[54502]: Failed password for root from 222.186.175.216 port 60276 ssh2 Aug 22 04:38:42 localhost sshd[54502]: Failed password for root from 222.186.175.216 port 60276 ssh2 Aug 22 04:38:36 localhost sshd[54502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Aug 22 04:38:37 localhost sshd[54502]: Failed password for root from 222.186.175.216 port 60276 ssh2 Aug 22 04:38:42 localhost sshd[54 ...	2020-08-22 12:47:11
173.208.130.202	attack	[Sat Aug 22 11:29:13.147541 2020] [:error] [pid 27869:tid 140338257721088] [client 173.208.130.202:46072] [client 173.208.130.202] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "MJ12bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: MJ12bot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; mj12bot/v1.4.8; http://mj12bot.com/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "X0CfGRxx7PBPkgyOSd0AvgAAAZY"] ...	2020-08-22 12:45:06
104.248.124.109	attack	104.248.124.109 - - [22/Aug/2020:05:10:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [22/Aug/2020:05:10:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.124.109 - - [22/Aug/2020:05:10:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-22 13:01:24
120.14.18.182	attackbotsspam	Unauthorised access (Aug 22) SRC=120.14.18.182 LEN=40 TTL=46 ID=33053 TCP DPT=8080 WINDOW=13796 SYN Unauthorised access (Aug 21) SRC=120.14.18.182 LEN=40 TTL=46 ID=27181 TCP DPT=8080 WINDOW=11503 SYN Unauthorised access (Aug 19) SRC=120.14.18.182 LEN=40 TTL=46 ID=1378 TCP DPT=8080 WINDOW=13796 SYN Unauthorised access (Aug 18) SRC=120.14.18.182 LEN=40 TTL=46 ID=63844 TCP DPT=8080 WINDOW=11503 SYN Unauthorised access (Aug 17) SRC=120.14.18.182 LEN=40 TTL=46 ID=63525 TCP DPT=8080 WINDOW=11503 SYN	2020-08-22 12:51:03
49.231.166.197	attack	2020-08-22T04:27:47.804192shield sshd\[30055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.166.197 user=root 2020-08-22T04:27:49.189718shield sshd\[30055\]: Failed password for root from 49.231.166.197 port 33146 ssh2 2020-08-22T04:32:15.169129shield sshd\[31365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.166.197 user=root 2020-08-22T04:32:17.680823shield sshd\[31365\]: Failed password for root from 49.231.166.197 port 40338 ssh2 2020-08-22T04:36:38.691779shield sshd\[32634\]: Invalid user webmaster from 49.231.166.197 port 47518	2020-08-22 12:52:22
218.92.0.204	attack	Aug 22 04:02:57 vlre-nyc-1 sshd\[16417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root Aug 22 04:02:59 vlre-nyc-1 sshd\[16417\]: Failed password for root from 218.92.0.204 port 20428 ssh2 Aug 22 04:04:17 vlre-nyc-1 sshd\[16442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root Aug 22 04:04:18 vlre-nyc-1 sshd\[16442\]: Failed password for root from 218.92.0.204 port 33389 ssh2 Aug 22 04:04:20 vlre-nyc-1 sshd\[16442\]: Failed password for root from 218.92.0.204 port 33389 ssh2 ...	2020-08-22 12:33:29

Recently Reported IPs

127.194.161.183	252.60.254.238	3.121.127.0	22.199.91.117
139.3.29.118	239.133.148.160	170.148.184.215	55.198.173.3
212.149.190.188	97.101.140.138	204.159.6.7	48.108.206.153
39.147.140.82	246.70.33.220	68.97.71.18	176.51.182.193
54.204.94.113	127.237.9.134	46.194.243.172	53.59.39.146