92.53.104.212 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: TimeWeb Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 4001/tcp	2020-01-11 06:57:39
attackbots	Multiport scan 143 ports : 123 234 444(x2) 999 1000 1112 1124 1223 1231 1314 1337 1589 1978(x2) 1979 1986 2005 2017 2133 2150 2204 2222 2310 2327(x2) 2864 3030 3100 3131 3144 3232 3304 3313 3316 3341 3352(x2) 3360 3368 3382 3385 3400 3401(x3) 3411 3466 3499 3500 3558 3589(x2) 3777 3789 3846(x2) 3900 3989 4009 4015 4063 4101(x2) 4124 4150 4211(x2) 4223 4334 4487 4541(x2) 4545 4560 4577 4590 4657 4900 4998 5006 5011 5047 5051 5141 5169 5233 5234 5327 5505 5555 5586 5656 5905(x2) 6006 6034 6238 6262 6265 6266 6387 6542 6560 6725 6827 6933 6988 7023 7060 7070 7250 7279 7778 7979 8001 8030 8043 8083(x2) 8389 8817 8890(x2) 9010 9021 9099 9100 9825 10007 10009 10101 10151 11005 11111 11986 12345 20020 21000(x2) 21111 21543 27000 33800 33806(x2) 33856 33865 33874 33878 33894 34389(x2) 40000 42389 48000 49999 50100 50123 61389(x2)	2020-01-11 03:15:14
attackbotsspam	firewall-block, port(s): 123/tcp	2019-12-02 07:31:51
attackspambots	Multiport scan : 30 ports scanned 234 999 1124 2204 2864 3100 3232 3411 3558 5011 5051 5586 6266 6387 6542 7250 7279 7778 8043 9099 9825 10007 20020 21111 21543 27000 33874 33878 42389 50123	2019-11-21 08:56:00
attackspambots	45000/tcp 49389/tcp 61389/tcp... [2019-10-11/11-01]103pkt,43pt.(tcp)	2019-11-02 08:08:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.53.104.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.53.104.212.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110102 1800 900 604800 86400

;; Query time: 410 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 08:07:57 CST 2019
;; MSG SIZE  rcvd: 117

Host info

212.104.53.92.in-addr.arpa domain name pointer vds-cd46153.timeweb.ru.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
212.104.53.92.in-addr.arpa	name = vds-cd46153.timeweb.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.192.197.204	attack	Invalid user user1 from 159.192.197.204 port 49826	2019-10-27 02:19:12
106.54.203.232	attackspambots	$f2bV_matches	2019-10-27 02:04:12
203.146.170.167	attack	Invalid user admin from 203.146.170.167 port 37124	2019-10-27 01:52:36
106.12.190.104	attackspam	Oct 26 19:54:59 vps647732 sshd[20005]: Failed password for root from 106.12.190.104 port 35100 ssh2 ...	2019-10-27 02:06:39
179.232.1.254	attackspam	Invalid user amax from 179.232.1.254 port 33968	2019-10-27 01:56:52
85.167.56.111	attackbotsspam	Oct 26 06:24:29 hpm sshd\[2749\]: Invalid user user11 from 85.167.56.111 Oct 26 06:24:29 hpm sshd\[2749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0020a400-1637.bb.online.no Oct 26 06:24:31 hpm sshd\[2749\]: Failed password for invalid user user11 from 85.167.56.111 port 38168 ssh2 Oct 26 06:31:08 hpm sshd\[4046\]: Invalid user fenggerenge from 85.167.56.111 Oct 26 06:31:08 hpm sshd\[4046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ti0020a400-1637.bb.online.no	2019-10-27 02:09:40
39.68.3.68	attackbots	Oct 26 19:42:56 arianus sshd\[19951\]: Unable to negotiate with 39.68.3.68 port 8243: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ...	2019-10-27 02:12:50
62.28.34.125	attackbots	Oct 26 19:41:12 ArkNodeAT sshd\[509\]: Invalid user teamspeak from 62.28.34.125 Oct 26 19:41:12 ArkNodeAT sshd\[509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.28.34.125 Oct 26 19:41:14 ArkNodeAT sshd\[509\]: Failed password for invalid user teamspeak from 62.28.34.125 port 35111 ssh2	2019-10-27 02:10:26
154.120.226.102	attack	Invalid user User from 154.120.226.102 port 51900	2019-10-27 01:59:19
157.230.42.76	attackbotsspam	Invalid user server from 157.230.42.76 port 48081	2019-10-27 01:59:03
51.83.46.16	attackspambots	Oct 26 07:29:56 auw2 sshd\[2489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=16.ip-51-83-46.eu user=root Oct 26 07:29:58 auw2 sshd\[2489\]: Failed password for root from 51.83.46.16 port 57298 ssh2 Oct 26 07:33:12 auw2 sshd\[2768\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=16.ip-51-83-46.eu user=root Oct 26 07:33:14 auw2 sshd\[2768\]: Failed password for root from 51.83.46.16 port 38030 ssh2 Oct 26 07:36:39 auw2 sshd\[3036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=16.ip-51-83-46.eu user=root	2019-10-27 01:45:02
178.128.121.188	attackbots	Oct 26 15:58:41 sauna sshd[244561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.121.188 Oct 26 15:58:43 sauna sshd[244561]: Failed password for invalid user yona from 178.128.121.188 port 38728 ssh2 ...	2019-10-27 02:17:15
106.12.13.143	attackspambots	ssh failed login	2019-10-27 02:07:26
45.77.237.242	attackbots	Invalid user user from 45.77.237.242 port 36913	2019-10-27 01:47:42
179.108.126.114	attackbots	Invalid user admin from 179.108.126.114 port 53598	2019-10-27 01:57:21

Recently Reported IPs

166.149.50.13	34.219.243.212	141.116.133.224	64.160.193.18
204.154.184.155	90.20.251.167	176.53.222.145	254.231.32.165
20.32.0.161	244.62.199.71	20.61.107.191	151.251.8.23
64.170.209.86	77.196.191.144	140.46.96.213	58.187.168.124
186.128.157.92	193.249.214.35	11.15.93.123	167.166.119.161