91.192.10.53 - IPInfo

Basic Info

City: Klingenberg Am Main

Region: Bayern

Country: Germany

Internet Service Provider: ITP-Solutions UG & Co. KG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=guest	2020-09-20 22:37:52
attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=guest	2020-09-20 14:28:21
attackbots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=guest	2020-09-20 06:28:04
attackspambots	Sep 3 11:15:57 santamaria sshd\[28838\]: Invalid user nagios from 91.192.10.53 Sep 3 11:15:57 santamaria sshd\[28838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.192.10.53 Sep 3 11:15:59 santamaria sshd\[28838\]: Failed password for invalid user nagios from 91.192.10.53 port 42271 ssh2 ...	2020-09-03 21:07:43
attackspambots	Sep 3 04:36:11 ns381471 sshd[24979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.192.10.53 Sep 3 04:36:13 ns381471 sshd[24979]: Failed password for invalid user anna from 91.192.10.53 port 50768 ssh2	2020-09-03 12:50:46
attack	2020-09-02T21:04:12+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-03 05:08:56

Comments on same subnet:

IP	Type	Details	Datetime
91.192.10.119	attackspambots	Unauthorized connection attempt detected from IP address 91.192.10.119 to port 23	2020-08-03 18:32:00
91.192.10.129	attackspam	Unauthorized connection attempt detected from IP address 91.192.10.129 to port 23	2020-07-29 16:45:42
91.192.10.111	attackbots	Port scan denied	2020-07-14 02:59:14
91.192.10.130	attack	37215/tcp 37215/tcp [2020-06-21/24]2pkt	2020-06-25 06:14:09
91.192.10.147	attackbots	Telnetd brute force attack detected by fail2ban	2020-06-24 14:30:43
91.192.10.126	attackbotsspam	Attempted connection to port 11211.	2020-06-20 22:17:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.192.10.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43040
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.192.10.53.			IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090201 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 03 05:08:53 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 53.10.192.91.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.10.192.91.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.43.37.69	attackbotsspam	Telnetd brute force attack detected by fail2ban	2020-02-15 22:33:53
222.186.175.150	attackspam	Feb 15 15:00:55 vpn01 sshd[8250]: Failed password for root from 222.186.175.150 port 46412 ssh2 Feb 15 15:00:58 vpn01 sshd[8250]: Failed password for root from 222.186.175.150 port 46412 ssh2 ...	2020-02-15 22:18:06
212.64.23.30	attackspam	Nov 30 09:51:26 ms-srv sshd[4988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.23.30 Nov 30 09:51:28 ms-srv sshd[4988]: Failed password for invalid user peralez from 212.64.23.30 port 51034 ssh2	2020-02-15 21:56:39
5.196.227.244	attackbots	Feb 15 04:21:33 hpm sshd\[1719\]: Invalid user admin from 5.196.227.244 Feb 15 04:21:33 hpm sshd\[1719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.ip-5-196-227.eu Feb 15 04:21:35 hpm sshd\[1719\]: Failed password for invalid user admin from 5.196.227.244 port 41142 ssh2 Feb 15 04:27:09 hpm sshd\[2357\]: Invalid user thx1138 from 5.196.227.244 Feb 15 04:27:09 hpm sshd\[2357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.ip-5-196-227.eu	2020-02-15 22:29:54
198.199.100.5	attackbotsspam	Feb 14 21:17:51 web9 sshd\[22282\]: Invalid user dtp from 198.199.100.5 Feb 14 21:17:51 web9 sshd\[22282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.100.5 Feb 14 21:17:53 web9 sshd\[22282\]: Failed password for invalid user dtp from 198.199.100.5 port 48169 ssh2 Feb 14 21:19:58 web9 sshd\[22608\]: Invalid user vg from 198.199.100.5 Feb 14 21:19:58 web9 sshd\[22608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.100.5	2020-02-15 21:54:00
212.64.109.31	attack	Oct 19 23:33:36 ms-srv sshd[22523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.109.31 Oct 19 23:33:37 ms-srv sshd[22523]: Failed password for invalid user teste from 212.64.109.31 port 44926 ssh2	2020-02-15 22:04:00
212.64.101.105	attack	Jan 7 22:26:48 ms-srv sshd[64344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.101.105 Jan 7 22:26:50 ms-srv sshd[64344]: Failed password for invalid user ams from 212.64.101.105 port 48584 ssh2	2020-02-15 22:05:09
212.64.19.123	attack	Oct 10 09:17:25 ms-srv sshd[27884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.19.123 user=root Oct 10 09:17:27 ms-srv sshd[27884]: Failed password for invalid user root from 212.64.19.123 port 52372 ssh2	2020-02-15 21:57:07
106.13.95.27	attackbotsspam	Feb 15 13:53:55 localhost sshd\[15554\]: Invalid user ts3server from 106.13.95.27 port 45902 Feb 15 13:53:55 localhost sshd\[15554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.95.27 Feb 15 13:53:58 localhost sshd\[15554\]: Failed password for invalid user ts3server from 106.13.95.27 port 45902 ssh2 ...	2020-02-15 22:15:48
212.47.253.178	attackbots	Jan 11 16:34:55 ms-srv sshd[47467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.253.178 Jan 11 16:34:57 ms-srv sshd[47467]: Failed password for invalid user akhan from 212.47.253.178 port 35874 ssh2	2020-02-15 22:21:43
187.170.232.5	attack	20/2/15@08:53:49: FAIL: Alarm-Network address from=187.170.232.5 20/2/15@08:53:49: FAIL: Alarm-Network address from=187.170.232.5 ...	2020-02-15 22:27:55
178.60.197.1	attackbotsspam	Feb 15 14:44:29 roki sshd[3840]: Invalid user choopa from 178.60.197.1 Feb 15 14:44:29 roki sshd[3840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.60.197.1 Feb 15 14:44:31 roki sshd[3840]: Failed password for invalid user choopa from 178.60.197.1 port 27115 ssh2 Feb 15 14:53:57 roki sshd[5839]: Invalid user joseph from 178.60.197.1 Feb 15 14:53:57 roki sshd[5839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.60.197.1 ...	2020-02-15 22:15:10
212.64.109.175	attackspam	Dec 29 18:32:46 ms-srv sshd[21796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.109.175 Dec 29 18:32:48 ms-srv sshd[21796]: Failed password for invalid user cui from 212.64.109.175 port 41160 ssh2	2020-02-15 22:03:43
212.47.229.4	attackspam	Feb 9 02:20:58 ms-srv sshd[50577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.229.4 Feb 9 02:20:59 ms-srv sshd[50577]: Failed password for invalid user PlcmSpIp from 212.47.229.4 port 42120 ssh2	2020-02-15 22:30:15
171.234.113.36	attack	Port probing on unauthorized port 81	2020-02-15 22:09:34

Recently Reported IPs

65.19.15.155	130.110.101.84	40.6.100.67	173.188.87.44
39.169.172.11	34.233.57.3	128.16.140.6	37.94.70.242
223.205.251.89	27.54.54.64	83.235.174.95	103.173.125.251
190.200.94.36	192.241.227.149	76.184.229.147	40.84.156.241
165.22.32.60	184.54.51.74	37.187.54.143	112.197.139.91