92.55.124.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Macedonia, The Former Yugoslav Republic of

Internet Service Provider: NEOTEL DOO export-import Skopje

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	DATE:2020-02-10 05:48:27, IP:92.55.124.64, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-10 20:05:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.55.124.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4154
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.55.124.64.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021000 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 20:05:06 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 64.124.55.92.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 64.124.55.92.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.233.102	attackbotsspam	Dec 19 06:43:19 sd-53420 sshd\[883\]: User root from 106.13.233.102 not allowed because none of user's groups are listed in AllowGroups Dec 19 06:43:19 sd-53420 sshd\[883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.233.102 user=root Dec 19 06:43:21 sd-53420 sshd\[883\]: Failed password for invalid user root from 106.13.233.102 port 36754 ssh2 Dec 19 06:49:24 sd-53420 sshd\[3186\]: Invalid user kiyosawa from 106.13.233.102 Dec 19 06:49:24 sd-53420 sshd\[3186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.233.102 ...	2019-12-19 14:02:48
122.51.94.206	attackbotsspam	--- report --- Dec 19 02:59:42 sshd: Connection from 122.51.94.206 port 33158 Dec 19 02:59:46 sshd: Failed password for root from 122.51.94.206 port 33158 ssh2 Dec 19 02:59:47 sshd: Received disconnect from 122.51.94.206: 11: Bye Bye [preauth]	2019-12-19 14:05:37
45.82.153.84	attackbotsspam	2019-12-19 06:54:05 dovecot_login authenticator failed for \(\[45.82.153.84\]\) \[45.82.153.84\]: 535 Incorrect authentication data \(set_id=support@nophost.com\) 2019-12-19 06:54:14 dovecot_login authenticator failed for \(\[45.82.153.84\]\) \[45.82.153.84\]: 535 Incorrect authentication data 2019-12-19 06:54:25 dovecot_login authenticator failed for \(\[45.82.153.84\]\) \[45.82.153.84\]: 535 Incorrect authentication data 2019-12-19 06:54:32 dovecot_login authenticator failed for \(\[45.82.153.84\]\) \[45.82.153.84\]: 535 Incorrect authentication data 2019-12-19 06:54:45 dovecot_login authenticator failed for \(\[45.82.153.84\]\) \[45.82.153.84\]: 535 Incorrect authentication data	2019-12-19 13:59:20
171.224.181.132	attackbots	Unauthorised access (Dec 19) SRC=171.224.181.132 LEN=52 TTL=105 ID=5135 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 19) SRC=171.224.181.132 LEN=52 TTL=105 ID=3782 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-19 14:24:37
43.255.84.14	attackspam	Dec 19 04:40:02 goofy sshd\[16353\]: Invalid user kd from 43.255.84.14 Dec 19 04:40:02 goofy sshd\[16353\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.255.84.14 Dec 19 04:40:04 goofy sshd\[16353\]: Failed password for invalid user kd from 43.255.84.14 port 14276 ssh2 Dec 19 04:54:42 goofy sshd\[16988\]: Invalid user shima from 43.255.84.14 Dec 19 04:54:42 goofy sshd\[16988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.255.84.14	2019-12-19 14:26:14
134.209.63.140	attack	Dec 19 00:42:30 plusreed sshd[24510]: Invalid user public from 134.209.63.140 ...	2019-12-19 14:03:41
50.239.143.100	attack	2019-12-19T05:47:30.056803 sshd[28376]: Invalid user kulik from 50.239.143.100 port 50806 2019-12-19T05:47:30.071006 sshd[28376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 2019-12-19T05:47:30.056803 sshd[28376]: Invalid user kulik from 50.239.143.100 port 50806 2019-12-19T05:47:32.043933 sshd[28376]: Failed password for invalid user kulik from 50.239.143.100 port 50806 ssh2 2019-12-19T05:54:37.409108 sshd[28510]: Invalid user nc from 50.239.143.100 port 55762 ...	2019-12-19 14:28:50
190.60.213.172	attackspam	Honeypot attack, port: 23, PTR: 172.213.60.190.host.ifxnetworks.com.	2019-12-19 14:27:56
185.44.69.8	attack	Automatic report - Banned IP Access	2019-12-19 14:03:23
218.92.0.145	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-12-19 13:55:11
120.27.192.152	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-19 14:00:31
222.186.175.169	attackspam	Dec 19 05:48:21 marvibiene sshd[63095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 19 05:48:24 marvibiene sshd[63095]: Failed password for root from 222.186.175.169 port 51930 ssh2 Dec 19 05:48:27 marvibiene sshd[63095]: Failed password for root from 222.186.175.169 port 51930 ssh2 Dec 19 05:48:21 marvibiene sshd[63095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 19 05:48:24 marvibiene sshd[63095]: Failed password for root from 222.186.175.169 port 51930 ssh2 Dec 19 05:48:27 marvibiene sshd[63095]: Failed password for root from 222.186.175.169 port 51930 ssh2 ...	2019-12-19 13:50:55
196.202.102.106	attack	Automatic report - Port Scan Attack	2019-12-19 13:54:21
106.13.47.252	attackbots	Dec 19 01:07:04 linuxvps sshd\[3648\]: Invalid user krishnaswamy from 106.13.47.252 Dec 19 01:07:04 linuxvps sshd\[3648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.252 Dec 19 01:07:06 linuxvps sshd\[3648\]: Failed password for invalid user krishnaswamy from 106.13.47.252 port 34622 ssh2 Dec 19 01:14:19 linuxvps sshd\[8579\]: Invalid user home from 106.13.47.252 Dec 19 01:14:19 linuxvps sshd\[8579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.252	2019-12-19 14:15:59
78.100.18.81	attack	Dec 19 07:10:43 OPSO sshd\[8183\]: Invalid user anita from 78.100.18.81 port 58374 Dec 19 07:10:43 OPSO sshd\[8183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.100.18.81 Dec 19 07:10:46 OPSO sshd\[8183\]: Failed password for invalid user anita from 78.100.18.81 port 58374 ssh2 Dec 19 07:15:58 OPSO sshd\[9199\]: Invalid user dimension from 78.100.18.81 port 57819 Dec 19 07:15:58 OPSO sshd\[9199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.100.18.81	2019-12-19 14:16:11

Recently Reported IPs

202.69.1.220	46.19.70.179	188.29.3.61	63.198.72.52
202.34.112.173	12.44.82.10	178.133.31.65	192.13.204.112
66.236.91.154	243.39.147.231	208.227.224.167	105.212.95.241
202.97.235.9	220.228.237.61	189.46.215.187	55.191.180.171
120.70.100.88	202.53.82.82	116.98.166.151	84.42.13.57