34.92.68.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
34.92.68.172	attackspam	Jun 8 00:43:06 ns sshd[19360]: Connection from 34.92.68.172 port 50872 on 134.119.39.98 port 22 Jun 8 00:43:08 ns sshd[19360]: User r.r from 34.92.68.172 not allowed because not listed in AllowUsers Jun 8 00:43:08 ns sshd[19360]: Failed password for invalid user r.r from 34.92.68.172 port 50872 ssh2 Jun 8 00:43:08 ns sshd[19360]: Received disconnect from 34.92.68.172 port 50872:11: Bye Bye [preauth] Jun 8 00:43:08 ns sshd[19360]: Disconnected from 34.92.68.172 port 50872 [preauth] Jun 8 00:56:11 ns sshd[22257]: Connection from 34.92.68.172 port 39376 on 134.119.39.98 port 22 Jun 8 00:56:13 ns sshd[22257]: User r.r from 34.92.68.172 not allowed because not listed in AllowUsers Jun 8 00:56:13 ns sshd[22257]: Failed password for invalid user r.r from 34.92.68.172 port 39376 ssh2 Jun 8 00:56:13 ns sshd[22257]: Received disconnect from 34.92.68.172 port 39376:11: Bye Bye [preauth] Jun 8 00:56:13 ns sshd[22257]: Disconnected from 34.92.68.172 port 39376 [preauth] Ju........ -------------------------------	2020-06-10 06:12:41
34.92.68.172	attack	Jun 9 06:51:31 nextcloud sshd\[27602\]: Invalid user shclient from 34.92.68.172 Jun 9 06:51:31 nextcloud sshd\[27602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.92.68.172 Jun 9 06:51:33 nextcloud sshd\[27602\]: Failed password for invalid user shclient from 34.92.68.172 port 53762 ssh2	2020-06-09 14:35:09

Type

Details

Datetime

34.92.68.172

attackspam

Jun  8 00:43:06 ns sshd[19360]: Connection from 34.92.68.172 port 50872 on 134.119.39.98 port 22
Jun  8 00:43:08 ns sshd[19360]: User r.r from 34.92.68.172 not allowed because not listed in AllowUsers
Jun  8 00:43:08 ns sshd[19360]: Failed password for invalid user r.r from 34.92.68.172 port 50872 ssh2
Jun  8 00:43:08 ns sshd[19360]: Received disconnect from 34.92.68.172 port 50872:11: Bye Bye [preauth]
Jun  8 00:43:08 ns sshd[19360]: Disconnected from 34.92.68.172 port 50872 [preauth]
Jun  8 00:56:11 ns sshd[22257]: Connection from 34.92.68.172 port 39376 on 134.119.39.98 port 22
Jun  8 00:56:13 ns sshd[22257]: User r.r from 34.92.68.172 not allowed because not listed in AllowUsers
Jun  8 00:56:13 ns sshd[22257]: Failed password for invalid user r.r from 34.92.68.172 port 39376 ssh2
Jun  8 00:56:13 ns sshd[22257]: Received disconnect from 34.92.68.172 port 39376:11: Bye Bye [preauth]
Jun  8 00:56:13 ns sshd[22257]: Disconnected from 34.92.68.172 port 39376 [preauth]
Ju........
-------------------------------

2020-06-10 06:12:41

34.92.68.172

attack

Jun  9 06:51:31 nextcloud sshd\[27602\]: Invalid user shclient from 34.92.68.172
Jun  9 06:51:31 nextcloud sshd\[27602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.92.68.172
Jun  9 06:51:33 nextcloud sshd\[27602\]: Failed password for invalid user shclient from 34.92.68.172 port 53762 ssh2

2020-06-09 14:35:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.92.68.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;34.92.68.72.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 09:58:36 CST 2025
;; MSG SIZE  rcvd: 104

Host info

72.68.92.34.in-addr.arpa domain name pointer 72.68.92.34.bc.googleusercontent.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.68.92.34.in-addr.arpa	name = 72.68.92.34.bc.googleusercontent.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.55.206.241	attack	Oct 17 15:07:08 server sshd\[25365\]: Invalid user admin from 45.55.206.241 port 58487 Oct 17 15:07:08 server sshd\[25365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.206.241 Oct 17 15:07:10 server sshd\[25365\]: Failed password for invalid user admin from 45.55.206.241 port 58487 ssh2 Oct 17 15:11:09 server sshd\[11542\]: User root from 45.55.206.241 not allowed because listed in DenyUsers Oct 17 15:11:09 server sshd\[11542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.206.241 user=root	2019-10-18 00:42:27
132.232.93.195	attack	Oct 17 01:34:37 eddieflores sshd\[8181\]: Invalid user pussy69 from 132.232.93.195 Oct 17 01:34:37 eddieflores sshd\[8181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.93.195 Oct 17 01:34:39 eddieflores sshd\[8181\]: Failed password for invalid user pussy69 from 132.232.93.195 port 49816 ssh2 Oct 17 01:40:18 eddieflores sshd\[8682\]: Invalid user opq from 132.232.93.195 Oct 17 01:40:18 eddieflores sshd\[8682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.93.195	2019-10-18 00:09:29
221.162.255.66	attackbots	Oct 17 16:57:42 XXX sshd[17975]: Invalid user ofsaa from 221.162.255.66 port 49208	2019-10-18 00:04:37
171.244.51.114	attackspam	Oct 17 03:18:48 auw2 sshd\[13444\]: Invalid user wsxcde32 from 171.244.51.114 Oct 17 03:18:48 auw2 sshd\[13444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.51.114 Oct 17 03:18:50 auw2 sshd\[13444\]: Failed password for invalid user wsxcde32 from 171.244.51.114 port 33650 ssh2 Oct 17 03:25:50 auw2 sshd\[13954\]: Invalid user speedway from 171.244.51.114 Oct 17 03:25:50 auw2 sshd\[13954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.51.114	2019-10-18 00:34:09
88.202.190.155	attackbots	firewall-block, port(s): 993/tcp	2019-10-18 00:12:41
106.13.67.127	attackspambots	Invalid user amk from 106.13.67.127 port 39168	2019-10-18 00:36:40
35.237.22.39	attack	firewall-block, port(s): 9306/tcp	2019-10-18 00:22:06
42.179.33.207	attackspambots	firewall-block, port(s): 23/tcp	2019-10-18 00:16:56
23.236.73.90	attack	firewall-block, port(s): 1433/tcp	2019-10-18 00:23:53
5.39.218.206	attackspambots	Unauthorised access (Oct 17) SRC=5.39.218.206 LEN=40 TTL=243 ID=60125 TCP DPT=3389 WINDOW=1024 SYN	2019-10-18 00:28:22
51.38.232.93	attackbotsspam	Oct 17 15:47:15 MK-Soft-VM5 sshd[29601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.93 Oct 17 15:47:17 MK-Soft-VM5 sshd[29601]: Failed password for invalid user qd from 51.38.232.93 port 57374 ssh2 ...	2019-10-18 00:29:49
114.43.38.69	attackspambots	Unauthorised access (Oct 17) SRC=114.43.38.69 LEN=40 PREC=0x20 TTL=51 ID=13485 TCP DPT=23 WINDOW=60903 SYN	2019-10-18 00:27:39
35.195.238.142	attack	Oct 17 17:18:24 MainVPS sshd[8385]: Invalid user PASSWORDs1 from 35.195.238.142 port 45638 Oct 17 17:18:24 MainVPS sshd[8385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.195.238.142 Oct 17 17:18:24 MainVPS sshd[8385]: Invalid user PASSWORDs1 from 35.195.238.142 port 45638 Oct 17 17:18:27 MainVPS sshd[8385]: Failed password for invalid user PASSWORDs1 from 35.195.238.142 port 45638 ssh2 Oct 17 17:22:09 MainVPS sshd[8642]: Invalid user backup@123 from 35.195.238.142 port 56162 ...	2019-10-18 00:09:04
46.101.103.207	attackspam	Triggered by Fail2Ban at Vostok web server	2019-10-18 00:42:03
183.150.237.18	attackbotsspam	fail2ban honeypot	2019-10-18 00:22:57

Recently Reported IPs

23.217.250.238	115.70.186.79	116.22.247.102	213.247.154.70
80.40.201.33	65.234.78.148	245.204.190.177	76.159.105.185
55.178.194.0	38.72.40.158	203.69.69.62	84.230.105.118
146.12.18.105	174.110.227.85	28.33.189.131	177.122.97.171
235.120.104.159	169.119.109.58	211.252.9.165	146.35.101.123