92.105.246.133

Basic Info

City: Geneva

Region: Geneva

Country: Switzerland

Internet Service Provider: Swisscom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.105.246.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39583
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.105.246.133.			IN	A

;; AUTHORITY SECTION:
.			406	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091202 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 08:40:28 CST 2020
;; MSG SIZE  rcvd: 118

Host info

133.246.105.92.in-addr.arpa domain name pointer 133.246.105.92.dynamic.wline.res.cust.swisscom.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
133.246.105.92.in-addr.arpa	name = 133.246.105.92.dynamic.wline.res.cust.swisscom.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.159.235.17	attackspambots	SSH brute force attempt	2020-04-16 19:43:24
188.166.34.129	attackbotsspam	Invalid user peter from 188.166.34.129 port 53528	2020-04-16 20:00:20
121.121.108.133	attackspambots	Automatic report - Port Scan Attack	2020-04-16 19:59:29
120.224.113.23	attackbots	Apr 16 07:20:06 sso sshd[2291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.224.113.23 Apr 16 07:20:09 sso sshd[2291]: Failed password for invalid user ovh from 120.224.113.23 port 2604 ssh2 ...	2020-04-16 19:38:42
202.162.211.34	attackbotsspam	Unauthorized connection attempt from IP address 202.162.211.34 on Port 445(SMB)	2020-04-16 20:10:46
64.225.115.188	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 52 - port: 29351 proto: TCP cat: Misc Attack	2020-04-16 19:54:19
190.12.66.27	attackspam	k+ssh-bruteforce	2020-04-16 19:47:24
45.248.71.169	attackspambots	Apr 16 05:11:07 web8 sshd\[2341\]: Invalid user vmail from 45.248.71.169 Apr 16 05:11:07 web8 sshd\[2341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.169 Apr 16 05:11:09 web8 sshd\[2341\]: Failed password for invalid user vmail from 45.248.71.169 port 53482 ssh2 Apr 16 05:15:52 web8 sshd\[4760\]: Invalid user vserver from 45.248.71.169 Apr 16 05:15:52 web8 sshd\[4760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.169	2020-04-16 19:48:14
191.215.146.161	attackbotsspam	Invalid user contador from 191.215.146.161 port 22753	2020-04-16 19:44:15
64.225.8.170	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 53 - port: 32412 proto: TCP cat: Misc Attack	2020-04-16 20:04:44
68.183.186.25	attackspambots	firewall-block, port(s): 27022/tcp	2020-04-16 19:33:31
178.154.200.6	attack	[Thu Apr 16 12:53:42.339223 2020] [:error] [pid 1438:tid 140331672659712] [client 178.154.200.6:46874] [client 178.154.200.6] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xpfy5nmg8WH53TAJLeEvCwAAALY"] ...	2020-04-16 20:11:15
115.79.207.146	attackspambots	115.79.207.146 - - \[16/Apr/2020:09:50:41 +0000\] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 115.79.207.146 - - \[16/Apr/2020:09:50:44 +0000\] "POST /wp-login.php HTTP/1.1" 200 1775 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-04-16 19:43:53
213.180.203.54	attack	[Thu Apr 16 15:30:28.395969 2020] [:error] [pid 10393:tid 139682520225536] [client 213.180.203.54:55244] [client 213.180.203.54] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XpgXpHPjFCWYSOBW67dR9AAAAFw"] ...	2020-04-16 19:40:23
188.166.232.14	attackspambots	Invalid user home from 188.166.232.14 port 34120	2020-04-16 20:13:03

Recently Reported IPs

24.198.92.108	66.153.54.82	202.79.131.179	180.163.162.250
118.183.89.10	217.0.93.253	78.217.23.79	67.124.247.247
86.44.99.140	189.211.199.59	46.241.191.143	54.175.192.68
2.128.152.211	90.74.189.71	50.82.54.203	166.138.246.131
64.226.229.203	154.105.141.101	123.49.12.109	181.61.123.86