92.55.189.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
92.55.189.115	attackbotsspam	445/tcp 445/tcp [2020-10-02]2pkt	2020-10-04 07:52:44
92.55.189.115	attackbotsspam	445/tcp 445/tcp [2020-10-02]2pkt	2020-10-04 00:13:27
92.55.189.115	attackbots	445/tcp 445/tcp [2020-10-02]2pkt	2020-10-03 15:58:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.55.189.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;92.55.189.149.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 08:14:55 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 149.189.55.92.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.189.55.92.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.127.59.229	attackbotsspam	(sshd) Failed SSH login from 179.127.59.229 (BR/Brazil/SÃ£o Paulo/Bauru/179-127-59-229.static.ultrawave.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 2 12:44:54 atlas sshd[27056]: Invalid user admin from 179.127.59.229 port 40502 Sep 2 12:44:56 atlas sshd[27056]: Failed password for invalid user admin from 179.127.59.229 port 40502 ssh2 Sep 2 12:44:58 atlas sshd[27066]: Invalid user admin from 179.127.59.229 port 40584 Sep 2 12:45:00 atlas sshd[27066]: Failed password for invalid user admin from 179.127.59.229 port 40584 ssh2 Sep 2 12:45:01 atlas sshd[27077]: Invalid user admin from 179.127.59.229 port 40685	2020-09-03 08:20:00
111.161.74.117	attackbots	(sshd) Failed SSH login from 111.161.74.117 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 2 19:42:10 server5 sshd[12384]: Invalid user sergey from 111.161.74.117 Sep 2 19:42:10 server5 sshd[12384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.117 Sep 2 19:42:12 server5 sshd[12384]: Failed password for invalid user sergey from 111.161.74.117 port 45705 ssh2 Sep 2 19:44:48 server5 sshd[14304]: Invalid user tomcat from 111.161.74.117 Sep 2 19:44:48 server5 sshd[14304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.117	2020-09-03 07:58:25
121.135.65.116	attack	Attempted connection to port 23.	2020-09-03 07:57:59
211.253.133.48	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-03 08:16:28
50.62.208.86	attackbots	50.62.208.86 - - [02/Sep/2020:17:28:24 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 50.62.208.86 - - [02/Sep/2020:17:45:01 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 50.62.208.86 - - [02/Sep/2020:17:45:01 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-09-03 08:31:56
190.202.0.234	attackbotsspam	Unauthorized connection attempt from IP address 190.202.0.234 on Port 445(SMB)	2020-09-03 08:00:40
45.6.72.17	attackspambots	Ssh brute force	2020-09-03 08:27:23
222.186.30.35	attackbots	Sep 3 02:10:27 host sshd[17567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Sep 3 02:10:29 host sshd[17567]: Failed password for root from 222.186.30.35 port 38172 ssh2 ...	2020-09-03 08:15:48
59.125.70.209	attackspam	20/9/2@12:44:45: FAIL: Alarm-Telnet address from=59.125.70.209 20/9/2@12:44:45: FAIL: Alarm-Telnet address from=59.125.70.209 ...	2020-09-03 08:36:55
124.207.165.138	attackbotsspam	SSH Brute Force	2020-09-03 08:22:53
59.124.6.166	attack	Invalid user monte from 59.124.6.166 port 38254	2020-09-03 08:30:51
186.206.129.160	attackbotsspam	SSH brute force	2020-09-03 08:09:02
186.95.210.106	attackbotsspam	186.95.210.106 - - \[02/Sep/2020:19:45:16 +0300\] "POST /xmlrpc.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 \(Windows NT 6.2\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/28.0.1467.0 Safari/537.36" "-" 186.95.210.106 - - \[02/Sep/2020:19:45:29 +0300\] "POST /wordpress/xmlrpc.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 \(Windows NT 6.2\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/28.0.1467.0 Safari/537.36" "-" ...	2020-09-03 08:01:21
115.159.153.180	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-03 08:10:04
187.107.67.41	attackbots	Sep 3 02:09:19 buvik sshd[13284]: Failed password for invalid user postmaster from 187.107.67.41 port 45448 ssh2 Sep 3 02:14:11 buvik sshd[14014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.107.67.41 user=root Sep 3 02:14:13 buvik sshd[14014]: Failed password for root from 187.107.67.41 port 50924 ssh2 ...	2020-09-03 08:25:23

Recently Reported IPs

161.35.216.140	40.122.230.141	40.107.21.92	23.108.43.92
195.209.186.178	5.235.245.146	123.11.37.133	27.45.10.250
142.196.226.113	124.88.55.57	45.71.203.126	113.236.161.117
105.112.130.227	190.110.111.157	190.180.154.86	182.232.35.220
201.123.220.191	1.173.222.25	181.41.207.228	117.111.1.247