City: unknown
Region: unknown
Country: Russian Federation (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 92.55.237.224 | attackbotsspam | Brute force attempt |
2020-09-09 20:01:37 |
| 92.55.237.224 | attackbots | Brute force attempt |
2020-09-09 13:58:43 |
| 92.55.237.224 | attackbotsspam | Brute force attempt |
2020-09-09 06:10:53 |
| 92.55.237.224 | attackbotsspam | Aug 27 04:37:58 mail.srvfarm.net postfix/smtps/smtpd[1331136]: warning: unknown[92.55.237.224]: SASL PLAIN authentication failed: Aug 27 04:37:58 mail.srvfarm.net postfix/smtps/smtpd[1331136]: lost connection after AUTH from unknown[92.55.237.224] Aug 27 04:38:47 mail.srvfarm.net postfix/smtps/smtpd[1314660]: warning: unknown[92.55.237.224]: SASL PLAIN authentication failed: Aug 27 04:38:47 mail.srvfarm.net postfix/smtps/smtpd[1314660]: lost connection after AUTH from unknown[92.55.237.224] Aug 27 04:47:14 mail.srvfarm.net postfix/smtps/smtpd[1335343]: warning: unknown[92.55.237.224]: SASL PLAIN authentication failed: |
2020-08-28 09:19:00 |
| 92.55.237.253 | attackspam | Unauthorized connection attempt
IP: 92.55.237.253
Ports affected
Message Submission (587)
Abuse Confidence rating 22%
ASN Details
AS42739 Hawe Telekom Sp. z.o.o.
Poland (PL)
CIDR 92.55.192.0/18
Log Date: 10/08/2020 8:13:55 PM UTC |
2020-08-11 06:27:17 |
| 92.55.237.151 | attackspam | Email SMTP authentication failure |
2020-07-27 06:14:28 |
| 92.55.237.205 | attack | failed_logins |
2020-07-10 16:39:16 |
| 92.55.237.42 | attackspam | Jun 18 10:16:47 mail.srvfarm.net postfix/smtps/smtpd[1383076]: warning: unknown[92.55.237.42]: SASL PLAIN authentication failed: Jun 18 10:16:47 mail.srvfarm.net postfix/smtps/smtpd[1383076]: lost connection after AUTH from unknown[92.55.237.42] Jun 18 10:17:54 mail.srvfarm.net postfix/smtps/smtpd[1383077]: warning: unknown[92.55.237.42]: SASL PLAIN authentication failed: Jun 18 10:17:54 mail.srvfarm.net postfix/smtps/smtpd[1383077]: lost connection after AUTH from unknown[92.55.237.42] Jun 18 10:23:37 mail.srvfarm.net postfix/smtps/smtpd[1383114]: warning: unknown[92.55.237.42]: SASL PLAIN authentication failed: |
2020-06-19 04:37:01 |
| 92.55.237.181 | attack | Jun 18 11:59:43 mail.srvfarm.net postfix/smtps/smtpd[1428297]: warning: unknown[92.55.237.181]: SASL PLAIN authentication failed: Jun 18 11:59:43 mail.srvfarm.net postfix/smtps/smtpd[1428297]: lost connection after AUTH from unknown[92.55.237.181] Jun 18 12:00:21 mail.srvfarm.net postfix/smtps/smtpd[1427308]: warning: unknown[92.55.237.181]: SASL PLAIN authentication failed: Jun 18 12:00:21 mail.srvfarm.net postfix/smtps/smtpd[1427308]: lost connection after AUTH from unknown[92.55.237.181] Jun 18 12:01:53 mail.srvfarm.net postfix/smtps/smtpd[1442968]: warning: unknown[92.55.237.181]: SASL PLAIN authentication failed: |
2020-06-19 01:54:37 |
| 92.55.251.69 | attack | Jun 13 22:52:02 mail.srvfarm.net postfix/smtpd[1294829]: warning: unknown[92.55.251.69]: SASL PLAIN authentication failed: Jun 13 22:52:02 mail.srvfarm.net postfix/smtpd[1294829]: lost connection after AUTH from unknown[92.55.251.69] Jun 13 22:52:15 mail.srvfarm.net postfix/smtpd[1294827]: warning: unknown[92.55.251.69]: SASL PLAIN authentication failed: Jun 13 22:52:15 mail.srvfarm.net postfix/smtpd[1294827]: lost connection after AUTH from unknown[92.55.251.69] Jun 13 22:55:49 mail.srvfarm.net postfix/smtps/smtpd[1296537]: lost connection after CONNECT from unknown[92.55.251.69] |
2020-06-14 08:37:43 |
| 92.55.237.71 | attackspambots | Jun 8 05:06:36 mail.srvfarm.net postfix/smtps/smtpd[653854]: warning: unknown[92.55.237.71]: SASL PLAIN authentication failed: Jun 8 05:06:36 mail.srvfarm.net postfix/smtps/smtpd[653854]: lost connection after AUTH from unknown[92.55.237.71] Jun 8 05:10:29 mail.srvfarm.net postfix/smtps/smtpd[652507]: warning: unknown[92.55.237.71]: SASL PLAIN authentication failed: Jun 8 05:10:29 mail.srvfarm.net postfix/smtps/smtpd[652507]: lost connection after AUTH from unknown[92.55.237.71] Jun 8 05:15:08 mail.srvfarm.net postfix/smtps/smtpd[652501]: warning: unknown[92.55.237.71]: SASL PLAIN authentication failed: |
2020-06-08 18:46:45 |
| 92.55.237.15 | attackspambots | Jun 4 13:48:26 mail.srvfarm.net postfix/smtps/smtpd[2497770]: warning: unknown[92.55.237.15]: SASL PLAIN authentication failed: Jun 4 13:48:26 mail.srvfarm.net postfix/smtps/smtpd[2497770]: lost connection after AUTH from unknown[92.55.237.15] Jun 4 13:52:06 mail.srvfarm.net postfix/smtps/smtpd[2497782]: warning: unknown[92.55.237.15]: SASL PLAIN authentication failed: Jun 4 13:52:06 mail.srvfarm.net postfix/smtps/smtpd[2497782]: lost connection after AUTH from unknown[92.55.237.15] Jun 4 13:55:39 mail.srvfarm.net postfix/smtps/smtpd[2498108]: warning: unknown[92.55.237.15]: SASL PLAIN authentication failed: |
2020-06-05 03:15:37 |
| 92.55.237.170 | attackspam | Jun 4 13:52:51 mail.srvfarm.net postfix/smtps/smtpd[2498063]: warning: unknown[92.55.237.170]: SASL PLAIN authentication failed: Jun 4 13:52:51 mail.srvfarm.net postfix/smtps/smtpd[2498063]: lost connection after AUTH from unknown[92.55.237.170] Jun 4 13:53:11 mail.srvfarm.net postfix/smtps/smtpd[2499237]: warning: unknown[92.55.237.170]: SASL PLAIN authentication failed: Jun 4 13:53:11 mail.srvfarm.net postfix/smtps/smtpd[2499237]: lost connection after AUTH from unknown[92.55.237.170] Jun 4 14:02:06 mail.srvfarm.net postfix/smtps/smtpd[2515932]: warning: unknown[92.55.237.170]: SASL PLAIN authentication failed: |
2020-06-05 01:23:37 |
| 92.55.29.165 | attackbotsspam | Mail sent to address hacked/leaked from Last.fm |
2019-08-12 10:24:34 |
| 92.55.29.165 | attackspambots | Autoban 92.55.29.165 AUTH/CONNECT |
2019-08-05 07:44:37 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.55.2.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21899
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;92.55.2.46. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012200 1800 900 604800 86400
;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 00:36:02 CST 2025
;; MSG SIZE rcvd: 103Host 46.2.55.92.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 46.2.55.92.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 178.128.238.248 | attackspam | Dec 25 12:34:14 sd-53420 sshd\[13141\]: Invalid user rokiah from 178.128.238.248 Dec 25 12:34:14 sd-53420 sshd\[13141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.238.248 Dec 25 12:34:16 sd-53420 sshd\[13141\]: Failed password for invalid user rokiah from 178.128.238.248 port 43776 ssh2 Dec 25 12:35:55 sd-53420 sshd\[13743\]: Invalid user merg from 178.128.238.248 Dec 25 12:35:55 sd-53420 sshd\[13743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.238.248 ... |
2019-12-25 19:40:39 |
| 200.77.186.195 | attackbots | email spam |
2019-12-25 19:42:36 |
| 178.220.81.36 | attack | proto=tcp . spt=42085 . dpt=25 . (Found on Dark List de Dec 25) (201) |
2019-12-25 19:56:27 |
| 139.59.56.121 | attackspam | Dec 25 09:49:31 l02a sshd[12704]: Invalid user test from 139.59.56.121 Dec 25 09:49:31 l02a sshd[12704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.56.121 Dec 25 09:49:31 l02a sshd[12704]: Invalid user test from 139.59.56.121 Dec 25 09:49:33 l02a sshd[12704]: Failed password for invalid user test from 139.59.56.121 port 42684 ssh2 |
2019-12-25 20:08:17 |
| 218.92.0.157 | attackspambots | --- report --- Dec 25 08:50:11 sshd: Connection from 218.92.0.157 port 31494 |
2019-12-25 20:17:11 |
| 167.99.164.211 | attackbotsspam | $f2bV_matches_ltvn |
2019-12-25 20:20:31 |
| 129.211.1.224 | attackspambots | SSH auth scanning - multiple failed logins |
2019-12-25 20:18:45 |
| 185.156.73.64 | attackspam | 12/25/2019-06:40:31.038424 185.156.73.64 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-12-25 19:50:00 |
| 113.4.139.130 | attackspam | Scanning |
2019-12-25 19:44:46 |
| 1.10.193.176 | attack | Unauthorized connection attempt detected from IP address 1.10.193.176 to port 445 |
2019-12-25 19:55:24 |
| 157.230.153.75 | attackspambots | Automatic report - Banned IP Access |
2019-12-25 20:02:19 |
| 200.166.197.34 | attackbotsspam | Dec 25 07:46:43 ws19vmsma01 sshd[7581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.166.197.34 Dec 25 07:46:45 ws19vmsma01 sshd[7581]: Failed password for invalid user noby from 200.166.197.34 port 36776 ssh2 ... |
2019-12-25 20:20:00 |
| 59.51.65.17 | attackspam | Invalid user yoyo from 59.51.65.17 port 50674 |
2019-12-25 19:56:16 |
| 222.186.169.194 | attack | Dec 25 12:54:04 MK-Soft-VM5 sshd[4573]: Failed password for root from 222.186.169.194 port 32072 ssh2 Dec 25 12:54:09 MK-Soft-VM5 sshd[4573]: Failed password for root from 222.186.169.194 port 32072 ssh2 ... |
2019-12-25 20:03:17 |
| 119.112.84.251 | attackbots | Scanning |
2019-12-25 20:16:12 |