188.2.20.54 - IPInfo

Basic Info

City: Novi Sad

Region: Vojvodina

Country: Serbia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 188.2.20.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21025
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;188.2.20.54.			IN	A

;; AUTHORITY SECTION:
.			124	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022122601 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 27 13:26:49 CST 2022
;; MSG SIZE  rcvd: 104

Host info

54.20.2.188.in-addr.arpa domain name pointer cable-188-2-20-54.dynamic.sbb.rs.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.20.2.188.in-addr.arpa	name = cable-188-2-20-54.dynamic.sbb.rs.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
66.249.79.90	attackbotsspam	Automatic report - Banned IP Access	2020-09-30 20:10:08
190.246.152.221	attackspam	Sep 29 22:23:17 kunden sshd[7789]: Address 190.246.152.221 maps to 221-152-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 29 22:23:17 kunden sshd[7789]: Invalid user lisa1 from 190.246.152.221 Sep 29 22:23:17 kunden sshd[7789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.152.221 Sep 29 22:23:19 kunden sshd[7789]: Failed password for invalid user lisa1 from 190.246.152.221 port 57462 ssh2 Sep 29 22:23:19 kunden sshd[7789]: Received disconnect from 190.246.152.221: 11: Bye Bye [preauth] Sep 29 22:30:33 kunden sshd[14968]: Address 190.246.152.221 maps to 221-152-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 29 22:30:33 kunden sshd[14968]: Invalid user han from 190.246.152.221 Sep 29 22:30:33 kunden sshd[14968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.152.221 S........ -------------------------------	2020-09-30 19:06:51
220.132.168.28	attack	SSH Scan	2020-09-30 19:05:27
111.93.186.18	attackspam	Unauthorized connection attempt from IP address 111.93.186.18 on Port 445(SMB)	2020-09-30 19:35:07
51.79.142.79	attack	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-30 19:34:02
123.16.70.144	attack	Attempted Email Sync. Password Hacking/Probing.	2020-09-30 19:13:56
104.248.66.115	attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-30 19:35:49
2a02:c205:2011:3497::1	attackbots	2a02:c205:2011:3497::1 - - [30/Sep/2020:02:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2863 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 2a02:c205:2011:3497::1 - - [30/Sep/2020:02:42:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2813 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 2a02:c205:2011:3497::1 - - [30/Sep/2020:02:42:50 +0100] "POST /wp-login.php HTTP/1.1" 200 2844 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 19:31:26
209.97.180.47	attackspam	209.97.180.47 - - [30/Sep/2020:03:22:14 +0100] "POST /wp-login.php HTTP/1.1" 200 2604 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 209.97.180.47 - - [30/Sep/2020:03:22:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2528 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 209.97.180.47 - - [30/Sep/2020:03:22:25 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 20:04:14
193.112.139.159	attackspambots	Invalid user cpd from 193.112.139.159 port 59330	2020-09-30 20:10:37
111.72.197.38	attackspambots	Sep 30 00:22:17 srv01 postfix/smtpd\[11533\]: warning: unknown\[111.72.197.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 00:29:08 srv01 postfix/smtpd\[11634\]: warning: unknown\[111.72.197.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 00:29:20 srv01 postfix/smtpd\[11634\]: warning: unknown\[111.72.197.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 00:29:36 srv01 postfix/smtpd\[11634\]: warning: unknown\[111.72.197.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 30 00:29:54 srv01 postfix/smtpd\[11634\]: warning: unknown\[111.72.197.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-30 19:08:22
167.248.133.17	attackbots	TCP (SYN) 167.248.133.17:22760 -> port 587, len 44	2020-09-30 20:14:22
69.229.6.31	attackbots	Sep 30 10:52:40 sip sshd[18813]: Invalid user amssys from 69.229.6.31 port 37066 Sep 30 10:52:42 sip sshd[18813]: Failed password for invalid user amssys from 69.229.6.31 port 37066 ssh2 Sep 30 10:58:57 sip sshd[20091]: Invalid user travel from 69.229.6.31 port 46436 ...	2020-09-30 19:14:13
5.8.179.52	attack	Unauthorized connection attempt from IP address 5.8.179.52 on Port 445(SMB)	2020-09-30 19:36:59
103.139.212.208	attackspambots	[H1.VM10] Blocked by UFW	2020-09-30 19:18:22

Recently Reported IPs

189.174.15.57	188.155.82.22	187.7.43.230	187.22.48.190
187.119.183.45	186.64.240.13	186.19.242.25	186.150.133.219
186.157.162.99	62.77.160.86	255.162.172.232	246.64.118.192
217.89.147.111	46.2.129.174	185.60.29.2	185.61.246.213
37.66.89.92	211.203.64.18	193.25.240.89	210.226.9.182