202.47.80.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Departemen Perindustrian Republik Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Government

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	PostgreSQL port 5432	2019-11-02 20:49:53

Comments on same subnet:

IP	Type	Details	Datetime
202.47.80.65	attack	Jun 27 01:03:40 MK-Soft-Root1 sshd\[31779\]: Invalid user support from 202.47.80.65 port 40588 Jun 27 01:03:40 MK-Soft-Root1 sshd\[31779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.47.80.65 Jun 27 01:03:43 MK-Soft-Root1 sshd\[31779\]: Failed password for invalid user support from 202.47.80.65 port 40588 ssh2 ...	2019-06-27 07:16:23

Type

Details

Datetime

202.47.80.65

attack

Jun 27 01:03:40 MK-Soft-Root1 sshd\[31779\]: Invalid user support from 202.47.80.65 port 40588
Jun 27 01:03:40 MK-Soft-Root1 sshd\[31779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.47.80.65
Jun 27 01:03:43 MK-Soft-Root1 sshd\[31779\]: Failed password for invalid user support from 202.47.80.65 port 40588 ssh2
...

2019-06-27 07:16:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.47.80.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48835
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.47.80.92.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110200 1800 900 604800 86400

;; Query time: 288 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 20:49:47 CST 2019
;; MSG SIZE  rcvd: 116

Host info

92.80.47.202.in-addr.arpa domain name pointer siki.kemenperin.go.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
92.80.47.202.in-addr.arpa	name = siki.kemenperin.go.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.146.178	attack	Unauthorized connection attempt detected from IP address 68.183.146.178 to port 2220 [J]	2020-01-27 20:45:25
18.144.16.119	attack	masters-of-media.de 18.144.16.119 [27/Jan/2020:11:22:46 +0100] "POST /wp-login.php HTTP/1.1" 200 6458 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" masters-of-media.de 18.144.16.119 [27/Jan/2020:11:22:47 +0100] "POST /xmlrpc.php HTTP/1.1" 200 4070 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-01-27 21:19:37
101.51.2.170	attack	14:13:33 warning denied winbox/dude connect from 101.51.2.170 14:13:33 warning denied winbox/dude connect from 101.51.2.170 14:13:34 warning denied winbox/dude connect from 101.51.2.170 14:13:34 warning denied winbox/dude connect from 101.51.2.170 14:13:35 warning denied winbox/dude connect from 101.51.2.170 14:13:35 warning denied winbox/dude connect from 101.51.2.170 14:13:36 warning denied winbox/dude connect from 101.51.2.170 14:13:36 warning denied winbox/dude connect from 101.51.2.170 14:13:36 warning denied winbox/dude connect from 101.51.2.170 14:13:36 warning denied winbox/dude connect from 101.51.2.170	2020-01-27 21:18:38
218.56.155.106	attack	'IP reached maximum auth failures for a one day block'	2020-01-27 21:06:16
170.106.37.4	attackbotsspam	Unauthorized connection attempt detected from IP address 170.106.37.4 to port 8480 [J]	2020-01-27 20:59:00
188.166.234.227	attack	Jan 27 13:46:18 OPSO sshd\[7941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.234.227 user=root Jan 27 13:46:20 OPSO sshd\[7941\]: Failed password for root from 188.166.234.227 port 54342 ssh2 Jan 27 13:49:17 OPSO sshd\[8534\]: Invalid user 4 from 188.166.234.227 port 49774 Jan 27 13:49:17 OPSO sshd\[8534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.234.227 Jan 27 13:49:18 OPSO sshd\[8534\]: Failed password for invalid user 4 from 188.166.234.227 port 49774 ssh2	2020-01-27 21:08:05
103.55.145.107	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-27 21:08:39
103.126.49.26	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-27 20:43:42
167.172.232.103	attack	Unauthorized connection attempt detected from IP address 167.172.232.103 to port 2220 [J]	2020-01-27 21:04:48
223.206.232.17	attackbots	1580118861 - 01/27/2020 10:54:21 Host: 223.206.232.17/223.206.232.17 Port: 445 TCP Blocked	2020-01-27 21:14:43
118.97.98.204	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-27 20:57:33
84.91.128.47	attackbotsspam	Unauthorized connection attempt detected from IP address 84.91.128.47 to port 2220 [J]	2020-01-27 21:10:44
95.57.102.33	attackspambots	Honeypot attack, port: 445, PTR: 95.57.102.33.megaline.telecom.kz.	2020-01-27 20:54:37
103.92.226.10	attackbotsspam	Honeypot attack, port: 445, PTR: host-226-10.arkadata.co.id.	2020-01-27 21:24:20
1.204.207.22	attack	Honeypot attack, port: 135, PTR: PTR record not found	2020-01-27 21:19:58

Recently Reported IPs

98.147.144.224	254.63.156.193	225.171.161.249	133.149.10.126
8.17.52.210	177.189.252.143	53.86.196.66	84.11.102.196
36.214.198.186	30.35.208.232	56.101.250.150	137.5.180.245
216.2.139.131	100.107.170.179	245.96.51.18	40.75.38.251
86.47.248.114	6.212.153.57	86.121.48.125	173.22.89.35