92.55.124.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Macedonia, The Former Yugoslav Republic of

Internet Service Provider: NEOTEL DOO export-import Skopje

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	DATE:2020-02-10 05:48:27, IP:92.55.124.64, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-10 20:05:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.55.124.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4154
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.55.124.64.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021000 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 20:05:06 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 64.124.55.92.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 64.124.55.92.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.52.159	attackspam	Nov 6 13:10:10 [munged] sshd[29329]: Failed password for root from 106.13.52.159 port 49174 ssh2	2019-11-06 20:23:27
185.245.96.83	attackbotsspam	2019-11-06T01:05:29.506485WS-Zach sshd[1524842]: User root from 185.245.96.83 not allowed because none of user's groups are listed in AllowGroups 2019-11-06T01:05:29.525568WS-Zach sshd[1524842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.245.96.83 user=root 2019-11-06T01:05:29.506485WS-Zach sshd[1524842]: User root from 185.245.96.83 not allowed because none of user's groups are listed in AllowGroups 2019-11-06T01:05:31.586202WS-Zach sshd[1524842]: Failed password for invalid user root from 185.245.96.83 port 43626 ssh2 2019-11-06T01:22:36.650547WS-Zach sshd[1527018]: User root from 185.245.96.83 not allowed because none of user's groups are listed in AllowGroups ...	2019-11-06 20:35:09
93.39.104.224	attackbotsspam	Nov 6 14:04:27 server sshd\[32132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-39-104-224.ip75.fastwebnet.it user=root Nov 6 14:04:29 server sshd\[32132\]: Failed password for root from 93.39.104.224 port 53082 ssh2 Nov 6 14:13:02 server sshd\[1977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-39-104-224.ip75.fastwebnet.it user=root Nov 6 14:13:04 server sshd\[1977\]: Failed password for root from 93.39.104.224 port 44514 ssh2 Nov 6 14:16:33 server sshd\[2982\]: Invalid user sysop from 93.39.104.224 Nov 6 14:16:33 server sshd\[2982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-39-104-224.ip75.fastwebnet.it ...	2019-11-06 20:41:17
164.68.112.178	attackbotsspam	CloudCIX Reconnaissance Scan Detected, PTR: ip-178-112-68-164.static.contabo.net.	2019-11-06 20:16:06
106.13.23.141	attack	Nov 6 11:34:12 vps666546 sshd\[13766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.141 user=root Nov 6 11:34:13 vps666546 sshd\[13766\]: Failed password for root from 106.13.23.141 port 57542 ssh2 Nov 6 11:38:47 vps666546 sshd\[13832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.141 user=root Nov 6 11:38:49 vps666546 sshd\[13832\]: Failed password for root from 106.13.23.141 port 35690 ssh2 Nov 6 11:43:28 vps666546 sshd\[13994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.141 user=root ...	2019-11-06 20:13:19
212.86.102.214	attackbotsspam	[portscan] tcp/3389 [MS RDP] *(RWIN=1024)(11061245)	2019-11-06 20:17:56
5.54.154.63	attackbotsspam	Telnet Server BruteForce Attack	2019-11-06 20:34:49
222.186.175.216	attackspambots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Failed password for root from 222.186.175.216 port 29806 ssh2 Failed password for root from 222.186.175.216 port 29806 ssh2 Failed password for root from 222.186.175.216 port 29806 ssh2 Failed password for root from 222.186.175.216 port 29806 ssh2	2019-11-06 20:09:08
200.89.129.233	attack	email spam	2019-11-06 20:15:35
142.147.97.171	attackbots	Multiple tries to relay mail to martinlujan997@gmail.com	2019-11-06 20:09:25
193.70.81.201	attackbots	Nov 6 19:09:10 webhost01 sshd[22122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.81.201 Nov 6 19:09:12 webhost01 sshd[22122]: Failed password for invalid user johann from 193.70.81.201 port 33384 ssh2 ...	2019-11-06 20:21:21
103.111.86.241	attackspambots	ssh failed login	2019-11-06 20:42:53
79.137.217.226	attackspambots	[portscan] Port scan	2019-11-06 20:33:16
216.245.217.2	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: 2-217-245-216.static.reverse.lstn.net.	2019-11-06 20:45:59
37.187.195.209	attackbotsspam	Nov 6 09:31:48 ArkNodeAT sshd\[16533\]: Invalid user bx from 37.187.195.209 Nov 6 09:31:48 ArkNodeAT sshd\[16533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.195.209 Nov 6 09:31:51 ArkNodeAT sshd\[16533\]: Failed password for invalid user bx from 37.187.195.209 port 49676 ssh2	2019-11-06 20:13:34

Recently Reported IPs

202.69.1.220	46.19.70.179	188.29.3.61	63.198.72.52
202.34.112.173	12.44.82.10	178.133.31.65	192.13.204.112
66.236.91.154	243.39.147.231	208.227.224.167	105.212.95.241
202.97.235.9	220.228.237.61	189.46.215.187	55.191.180.171
120.70.100.88	202.53.82.82	116.98.166.151	84.42.13.57