92.50.45.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran, Islamic Republic of

Internet Service Provider: Sefroyek Pardaz Engineering Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Absender hat Spam-Falle ausgel?st	2019-10-17 14:21:54
attackspam	Unauthorized IMAP connection attempt	2019-09-21 06:49:53

Comments on same subnet:

IP	Type	Details	Datetime
92.50.45.244	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-08 00:30:49
92.50.45.244	attackbots	Unauthorized connection attempt from IP address 92.50.45.244 on Port 445(SMB)	2020-03-05 21:30:32

Whois info:

Dig info:


; <<>> DiG 9.10.6 <<>> 92.50.45.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 51159
;; flags: qr aa rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.50.45.74.			IN	A

;; ANSWER SECTION:
92.50.45.74.		0	IN	A	92.50.45.74

;; Query time: 1 msec
;; SERVER: 192.168.31.1#53(192.168.31.1)
;; WHEN: Sat Sep 21 06:50:17 CST 2019
;; MSG SIZE  rcvd: 56

Host info

Host 74.45.50.92.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.45.50.92.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.165.2.239	attack	Lines containing failures of 89.165.2.239 Oct 6 13:49:25 hwd04 sshd[8146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=r.r Oct 6 13:49:27 hwd04 sshd[8146]: Failed password for r.r from 89.165.2.239 port 47881 ssh2 Oct 6 13:49:27 hwd04 sshd[8146]: Received disconnect from 89.165.2.239 port 47881:11: Bye Bye [preauth] Oct 6 13:49:27 hwd04 sshd[8146]: Disconnected from authenticating user r.r 89.165.2.239 port 47881 [preauth] Oct 6 14:16:39 hwd04 sshd[9591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.165.2.239 user=r.r Oct 6 14:16:41 hwd04 sshd[9591]: Failed password for r.r from 89.165.2.239 port 60693 ssh2 Oct 6 14:16:41 hwd04 sshd[9591]: Received disconnect from 89.165.2.239 port 60693:11: Bye Bye [preauth] Oct 6 14:16:41 hwd04 sshd[9591]: Disconnected from authenticating user r.r 89.165.2.239 port 60693 [preauth] Oct 6 14:20:17 hwd04 sshd[9736]: pam_u........ ------------------------------	2019-10-07 15:52:56
5.135.108.140	attackspambots	Oct 7 09:47:24 meumeu sshd[31450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.108.140 Oct 7 09:47:26 meumeu sshd[31450]: Failed password for invalid user Turkey@123 from 5.135.108.140 port 44509 ssh2 Oct 7 09:50:43 meumeu sshd[31929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.108.140 ...	2019-10-07 15:55:01
180.249.41.242	attackspam	Unauthorised access (Oct 7) SRC=180.249.41.242 LEN=52 TTL=115 ID=27960 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-07 15:42:48
181.120.254.64	attack	3389BruteforceFW21	2019-10-07 16:09:39
193.112.143.141	attack	Oct 6 18:53:30 wbs sshd\[22320\]: Invalid user P@\$\$WORD123!@\# from 193.112.143.141 Oct 6 18:53:30 wbs sshd\[22320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.141 Oct 6 18:53:32 wbs sshd\[22320\]: Failed password for invalid user P@\$\$WORD123!@\# from 193.112.143.141 port 39250 ssh2 Oct 6 18:57:39 wbs sshd\[22734\]: Invalid user Welcome\#123 from 193.112.143.141 Oct 6 18:57:39 wbs sshd\[22734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.141	2019-10-07 15:45:57
14.187.46.73	attackbots	Oct 7 05:49:03 [munged] sshd[7069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.187.46.73	2019-10-07 15:52:41
132.148.42.109	attackbots	B: Abusive content scan (200)	2019-10-07 16:09:57
178.128.93.125	attackbotsspam	Oct 7 07:21:07 localhost sshd\[99954\]: Invalid user Circus123 from 178.128.93.125 port 49556 Oct 7 07:21:07 localhost sshd\[99954\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.93.125 Oct 7 07:21:08 localhost sshd\[99954\]: Failed password for invalid user Circus123 from 178.128.93.125 port 49556 ssh2 Oct 7 07:25:29 localhost sshd\[100047\]: Invalid user Parola@2016 from 178.128.93.125 port 41409 Oct 7 07:25:29 localhost sshd\[100047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.93.125 ...	2019-10-07 16:01:57
222.186.180.17	attackbots	Oct 7 09:52:25 tux-35-217 sshd\[32688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Oct 7 09:52:27 tux-35-217 sshd\[32688\]: Failed password for root from 222.186.180.17 port 46468 ssh2 Oct 7 09:52:31 tux-35-217 sshd\[32688\]: Failed password for root from 222.186.180.17 port 46468 ssh2 Oct 7 09:52:36 tux-35-217 sshd\[32688\]: Failed password for root from 222.186.180.17 port 46468 ssh2 ...	2019-10-07 15:57:25
27.210.214.67	attackspam	Unauthorised access (Oct 7) SRC=27.210.214.67 LEN=40 TTL=49 ID=64577 TCP DPT=8080 WINDOW=43809 SYN Unauthorised access (Oct 6) SRC=27.210.214.67 LEN=40 TTL=49 ID=36333 TCP DPT=8080 WINDOW=28735 SYN Unauthorised access (Oct 6) SRC=27.210.214.67 LEN=40 TTL=49 ID=38470 TCP DPT=8080 WINDOW=28735 SYN Unauthorised access (Oct 6) SRC=27.210.214.67 LEN=40 TTL=49 ID=45430 TCP DPT=8080 WINDOW=43809 SYN	2019-10-07 15:33:20
103.59.179.30	attack	WordPress wp-login brute force :: 103.59.179.30 0.128 BYPASS [07/Oct/2019:15:12:54 1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-07 16:05:11
162.247.74.7	attackspambots	Oct 7 04:28:16 thevastnessof sshd[6355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.7 ...	2019-10-07 15:51:00
193.112.219.176	attackspambots	2019-10-06T17:09:31.2420011495-001 sshd\[27300\]: Failed password for invalid user Renault2016 from 193.112.219.176 port 60452 ssh2 2019-10-06T17:13:04.7324861495-001 sshd\[27578\]: Invalid user p4$$w0rd123!@\# from 193.112.219.176 port 37760 2019-10-06T17:13:04.7357421495-001 sshd\[27578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 2019-10-06T17:13:06.5165261495-001 sshd\[27578\]: Failed password for invalid user p4$$w0rd123!@\# from 193.112.219.176 port 37760 ssh2 2019-10-06T17:16:41.8285851495-001 sshd\[27787\]: Invalid user Problem-123 from 193.112.219.176 port 43302 2019-10-06T17:16:41.8353451495-001 sshd\[27787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 ...	2019-10-07 15:56:15
218.92.0.204	attackbotsspam	Oct 7 09:49:38 vpn01 sshd[9256]: Failed password for root from 218.92.0.204 port 29366 ssh2 ...	2019-10-07 16:10:25
212.237.23.252	attackbotsspam	Oct 7 09:46:34 vps647732 sshd[2372]: Failed password for root from 212.237.23.252 port 41526 ssh2 ...	2019-10-07 15:58:38

Recently Reported IPs

86.67.248.234	38.220.44.236	10.187.43.156	241.144.143.193
145.202.40.9	136.37.86.3	18.100.145.41	211.232.192.56
117.199.175.76	146.9.125.217	114.147.67.232	79.216.159.113
2.29.28.204	140.88.135.57	156.177.41.152	4.7.46.241
218.0.209.235	134.209.85.29	73.198.70.148	193.37.70.7