92.53.54.212 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Macedonia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
92.53.54.199	attackspam	2019-09-16 12:46:33 1i9oWc-0002WI-Fq SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:21787 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 12:47:23 1i9oXQ-0002YB-Q8 SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:21965 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 12:47:54 1i9oXt-0002Yr-4o SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:22072 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 05:11:44

Type

Details

Datetime

92.53.54.199

attackspam

2019-09-16 12:46:33 1i9oWc-0002WI-Fq SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:21787 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-09-16 12:47:23 1i9oXQ-0002YB-Q8 SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:21965 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-09-16 12:47:54 1i9oXt-0002Yr-4o SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:22072 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-01-28 05:11:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.53.54.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20668
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;92.53.54.212.			IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 18:33:23 CST 2022
;; MSG SIZE  rcvd: 105

Host info

212.54.53.92.in-addr.arpa domain name pointer ctel-92-53-54-212.cabletel.com.mk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
212.54.53.92.in-addr.arpa	name = ctel-92-53-54-212.cabletel.com.mk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.38.160.4	attackbots	Feb 9 00:30:32 plusreed sshd[29743]: Invalid user iww from 54.38.160.4 ...	2020-02-09 13:33:04
133.130.123.76	attack	Feb 9 02:31:12 dedicated sshd[15765]: Invalid user mqw from 133.130.123.76 port 58956	2020-02-09 10:58:23
111.229.79.17	attackspambots	Feb 9 05:59:06 MK-Soft-Root2 sshd[22373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.79.17 Feb 9 05:59:08 MK-Soft-Root2 sshd[22373]: Failed password for invalid user mam from 111.229.79.17 port 58844 ssh2 ...	2020-02-09 13:07:10
187.109.221.38	attackspambots	Unauthorized connection attempt from IP address 187.109.221.38 on Port 445(SMB)	2020-02-09 11:04:16
111.229.1.8	attackbotsspam	20 attempts against mh-misbehave-ban on comet	2020-02-09 13:02:49
194.26.29.114	attackspam	Fail2Ban Ban Triggered	2020-02-09 13:10:31
78.108.38.158	attack	(From aiman8997@gmail.com) Вeautiful womеn for sех in уour town USА: http://evmpnwz.royaltravelonline.best/25c3865	2020-02-09 13:17:20
125.164.235.132	attack	Automatic report - Port Scan Attack	2020-02-09 11:04:49
120.132.3.65	attackbots	Feb 9 05:17:41 h2177944 kernel: \[4419899.514726\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=233 ID=51738 PROTO=TCP SPT=48809 DPT=6000 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 05:17:41 h2177944 kernel: \[4419899.514741\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=233 ID=51738 PROTO=TCP SPT=48809 DPT=6000 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 05:42:11 h2177944 kernel: \[4421369.371980\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=33461 PROTO=TCP SPT=54643 DPT=8998 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 05:42:11 h2177944 kernel: \[4421369.371994\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=33461 PROTO=TCP SPT=54643 DPT=8998 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 05:59:11 h2177944 kernel: \[4422388.933159\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=	2020-02-09 13:05:06
217.182.252.63	attack	Feb 8 18:56:16 hpm sshd\[17384\]: Invalid user swy from 217.182.252.63 Feb 8 18:56:16 hpm sshd\[17384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.ip-217-182-252.eu Feb 8 18:56:18 hpm sshd\[17384\]: Failed password for invalid user swy from 217.182.252.63 port 48716 ssh2 Feb 8 18:59:07 hpm sshd\[17678\]: Invalid user hyp from 217.182.252.63 Feb 8 18:59:07 hpm sshd\[17678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.ip-217-182-252.eu	2020-02-09 13:06:28
203.130.242.68	attackbots	Feb 7 06:34:20 host sshd[7871]: reveeclipse mapping checking getaddrinfo for txxxxxxx4.techscape.co.id [203.130.242.68] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 7 06:34:20 host sshd[7871]: Invalid user qly from 203.130.242.68 Feb 7 06:34:20 host sshd[7871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.242.68 Feb 7 06:34:21 host sshd[7871]: Failed password for invalid user qly from 203.130.242.68 port 47326 ssh2 Feb 7 06:34:22 host sshd[7871]: Received disconnect from 203.130.242.68: 11: Bye Bye [preauth] Feb 7 06:55:14 host sshd[5658]: reveeclipse mapping checking getaddrinfo for txxxxxxx4.techscape.co.id [203.130.242.68] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 7 06:55:14 host sshd[5658]: Invalid user mrv from 203.130.242.68 Feb 7 06:55:14 host sshd[5658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.242.68 Feb 7 06:55:16 host sshd[5658]: Failed password for i........ -------------------------------	2020-02-09 11:00:38
182.61.28.191	attackbots	Feb 9 05:56:36 silence02 sshd[29156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.28.191 Feb 9 05:56:38 silence02 sshd[29156]: Failed password for invalid user qcu from 182.61.28.191 port 41446 ssh2 Feb 9 05:59:13 silence02 sshd[29327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.28.191	2020-02-09 13:04:38
36.81.4.228	attackspam	Port scan on 2 port(s): 21 1433	2020-02-09 10:57:21
36.48.167.37	attackbots	Port probing on unauthorized port 1433	2020-02-09 13:33:26
139.219.0.29	attack	Feb 9 01:41:05 ovpn sshd\[15370\]: Invalid user jce from 139.219.0.29 Feb 9 01:41:05 ovpn sshd\[15370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Feb 9 01:41:07 ovpn sshd\[15370\]: Failed password for invalid user jce from 139.219.0.29 port 36204 ssh2 Feb 9 01:45:14 ovpn sshd\[16497\]: Invalid user qvv from 139.219.0.29 Feb 9 01:45:14 ovpn sshd\[16497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29	2020-02-09 11:02:01

Recently Reported IPs

92.53.35.14	92.53.50.12	92.54.240.234	92.54.243.91
92.50.206.24	92.53.36.114	92.55.191.46	92.59.203.15
92.60.20.118	92.60.228.214	92.60.40.198	92.6.144.153
92.6.234.84	92.60.225.172	92.60.91.182	92.63.110.250
92.69.64.191	92.64.6.141	92.78.125.64	92.8.144.200