92.252.54.113 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: EWE TEL GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	trying to access non-authorized port	2020-08-09 00:35:48

Comments on same subnet:

IP	Type	Details	Datetime
92.252.54.185	attackspam	Automatic report - Port Scan Attack	2020-08-05 16:52:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.252.54.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12245
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.252.54.113.			IN	A

;; AUTHORITY SECTION:
.			420	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080800 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 09 00:35:42 CST 2020
;; MSG SIZE  rcvd: 117

Host info

113.54.252.92.in-addr.arpa domain name pointer dyndsl-092-252-054-113.ewe-ip-backbone.de.

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
113.54.252.92.in-addr.arpa	name = dyndsl-092-252-054-113.ewe-ip-backbone.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
160.153.147.35	attackbots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-06-21 18:07:29
114.86.219.114	attack	$f2bV_matches	2020-06-21 18:39:28
104.248.122.148	attackspam	Jun 21 11:14:38 master sshd[3160]: Failed password for root from 104.248.122.148 port 52942 ssh2 Jun 21 11:34:32 master sshd[4193]: Failed password for root from 104.248.122.148 port 53356 ssh2 Jun 21 11:38:14 master sshd[4310]: Failed password for invalid user shimada from 104.248.122.148 port 55016 ssh2 Jun 21 11:41:53 master sshd[4501]: Failed password for invalid user eduardo2 from 104.248.122.148 port 56678 ssh2 Jun 21 11:45:06 master sshd[4641]: Failed password for invalid user area from 104.248.122.148 port 58340 ssh2 Jun 21 11:48:21 master sshd[4730]: Failed password for invalid user dodsserver from 104.248.122.148 port 60002 ssh2 Jun 21 11:51:34 master sshd[4868]: Failed password for invalid user wsd from 104.248.122.148 port 33432 ssh2 Jun 21 11:54:48 master sshd[4965]: Failed password for invalid user consul from 104.248.122.148 port 35094 ssh2 Jun 21 11:58:05 master sshd[5059]: Failed password for root from 104.248.122.148 port 36746 ssh2	2020-06-21 18:16:32
218.92.0.251	attack	Jun 21 12:07:16 santamaria sshd\[8432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.251 user=root Jun 21 12:07:17 santamaria sshd\[8432\]: Failed password for root from 218.92.0.251 port 61217 ssh2 Jun 21 12:07:33 santamaria sshd\[8434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.251 user=root ...	2020-06-21 18:12:35
140.143.228.18	attack	$f2bV_matches	2020-06-21 18:09:54
122.147.225.98	attackbots	20 attempts against mh-ssh on water	2020-06-21 18:38:42
106.54.208.123	attack	Invalid user pi from 106.54.208.123 port 36014	2020-06-21 18:12:18
176.31.31.185	attackbots	Invalid user ubuntu from 176.31.31.185 port 41845	2020-06-21 18:34:17
111.224.14.236	attack	Unauthorized connection attempt detected from IP address 111.224.14.236 to port 23	2020-06-21 18:22:02
134.119.192.227	attackbots	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-21 18:24:49
122.51.94.92	attackspam	Invalid user ajc from 122.51.94.92 port 37624	2020-06-21 18:30:38
210.16.187.206	attack	Invalid user boot from 210.16.187.206 port 45531	2020-06-21 18:38:02
46.38.145.4	attack	2020-06-21 10:12:08 auth_plain authenticator failed for (User) [46.38.145.4]: 535 Incorrect authentication data (set_id=domain@csmailer.org) 2020-06-21 10:12:51 auth_plain authenticator failed for (User) [46.38.145.4]: 535 Incorrect authentication data (set_id=mango@csmailer.org) 2020-06-21 10:13:34 auth_plain authenticator failed for (User) [46.38.145.4]: 535 Incorrect authentication data (set_id=edc@csmailer.org) 2020-06-21 10:14:17 auth_plain authenticator failed for (User) [46.38.145.4]: 535 Incorrect authentication data (set_id=prueba2@csmailer.org) 2020-06-21 10:15:01 auth_plain authenticator failed for (User) [46.38.145.4]: 535 Incorrect authentication data (set_id=ttc@csmailer.org) ...	2020-06-21 18:37:31
51.77.215.227	attackspam	Jun 21 03:19:01 Host-KLAX-C sshd[7954]: Disconnected from invalid user rosana 51.77.215.227 port 57412 [preauth] ...	2020-06-21 18:29:44
66.172.106.169	attackspam	(sshd) Failed SSH login from 66.172.106.169 (US/United States/66.172.106.169.nwinternet.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 21 05:51:32 amsweb01 sshd[18160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.172.106.169 user=admin Jun 21 05:51:34 amsweb01 sshd[18160]: Failed password for admin from 66.172.106.169 port 41053 ssh2 Jun 21 05:51:36 amsweb01 sshd[18163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.172.106.169 user=root Jun 21 05:51:38 amsweb01 sshd[18163]: Failed password for root from 66.172.106.169 port 41201 ssh2 Jun 21 05:51:40 amsweb01 sshd[18166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.172.106.169 user=admin	2020-06-21 18:00:38

Recently Reported IPs

158.39.9.18	43.54.81.193	214.224.81.28	3.63.153.249
28.168.32.54	45.119.59.167	100.60.180.60	111.72.194.156
161.97.91.103	177.22.46.19	49.205.242.63	112.119.159.25
54.201.44.23	2.59.235.194	171.214.147.35	32.154.139.85
121.122.119.40	84.247.206.53	35.69.136.231	104.71.23.42