92.62.72.252 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: Saimanet Telecomunications

Hostname: unknown

Organization: Saimanet Telecomunications

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	spam	2020-01-22 18:12:19
attack	postfix (unknown user, SPF fail or relay access denied)	2019-10-05 13:51:46
attackspambots	proto=tcp . spt=50205 . dpt=25 . (listed on Github Combined on 4 lists ) (519)	2019-07-07 06:45:29

Comments on same subnet:

IP	Type	Details	Datetime
92.62.72.201	attackspambots	Unauthorized connection attempt detected from IP address 92.62.72.201 to port 8080 [T]	2020-08-16 03:14:09

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.62.72.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59044
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.62.72.252.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 10 16:49:40 +08 2019
;; MSG SIZE  rcvd: 116

Host info

252.72.62.92.in-addr.arpa domain name pointer 92-62-72-252.saimanet.kg.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
252.72.62.92.in-addr.arpa	name = 92-62-72-252.saimanet.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.71.144.122	attackbotsspam	Unauthorised access (Oct 17) SRC=182.71.144.122 LEN=52 TTL=120 ID=12548 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-18 06:33:45
201.174.184.2	attackspambots	Nov 20 17:46:48 odroid64 sshd\[17383\]: Invalid user afirouz from 201.174.184.2 Nov 20 17:46:48 odroid64 sshd\[17383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.174.184.2 Nov 20 17:46:49 odroid64 sshd\[17383\]: Failed password for invalid user afirouz from 201.174.184.2 port 48885 ssh2 ...	2019-10-18 06:42:51
81.22.45.65	attackbotsspam	Oct 18 00:38:33 mc1 kernel: \[2638279.363853\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=29180 PROTO=TCP SPT=42765 DPT=15998 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 00:45:27 mc1 kernel: \[2638693.257201\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=35639 PROTO=TCP SPT=42765 DPT=15540 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 00:47:54 mc1 kernel: \[2638840.663776\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=37898 PROTO=TCP SPT=42765 DPT=16279 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-18 06:54:42
159.255.152.161	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/159.255.152.161/ IT - 1H : (102) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN47927 IP : 159.255.152.161 CIDR : 159.255.152.0/22 PREFIX COUNT : 5 UNIQUE IP COUNT : 8192 WYKRYTE ATAKI Z ASN47927 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 DateTime : 2019-10-17 21:50:22 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 06:45:14
164.52.152.248	attackspam	Unauthorised access (Oct 17) SRC=164.52.152.248 LEN=40 TOS=0x10 PREC=0x40 TTL=241 ID=34035 TCP DPT=1433 WINDOW=1024 SYN	2019-10-18 06:49:20
201.176.140.112	attackbots	Dec 24 02:52:12 odroid64 sshd\[12795\]: User root from 201.176.140.112 not allowed because not listed in AllowUsers Dec 24 02:52:12 odroid64 sshd\[12795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.176.140.112 user=root Dec 24 02:52:14 odroid64 sshd\[12795\]: Failed password for invalid user root from 201.176.140.112 port 48129 ssh2 ...	2019-10-18 06:40:23
51.38.95.12	attackbotsspam	Oct 17 23:48:29 server sshd\[27315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip12.ip-51-38-95.eu user=root Oct 17 23:48:30 server sshd\[27315\]: Failed password for root from 51.38.95.12 port 55504 ssh2 Oct 17 23:52:37 server sshd\[28522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip12.ip-51-38-95.eu user=root Oct 17 23:52:39 server sshd\[28522\]: Failed password for root from 51.38.95.12 port 41860 ssh2 Oct 17 23:56:06 server sshd\[29589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip12.ip-51-38-95.eu user=root ...	2019-10-18 06:49:38
222.231.33.233	attack	Oct 17 21:50:16 cp sshd[8445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.231.33.233	2019-10-18 06:50:50
191.232.51.23	attackspam	Oct 17 21:24:17 ip-172-31-1-72 sshd\[30415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.51.23 user=root Oct 17 21:24:19 ip-172-31-1-72 sshd\[30415\]: Failed password for root from 191.232.51.23 port 50126 ssh2 Oct 17 21:33:27 ip-172-31-1-72 sshd\[30565\]: Invalid user invoices from 191.232.51.23 Oct 17 21:33:27 ip-172-31-1-72 sshd\[30565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.51.23 Oct 17 21:33:29 ip-172-31-1-72 sshd\[30565\]: Failed password for invalid user invoices from 191.232.51.23 port 37556 ssh2	2019-10-18 06:29:33
201.163.180.183	attackspambots	Invalid user squid from 201.163.180.183 port 53290	2019-10-18 06:56:55
201.184.169.106	attackbots	May 25 11:39:48 odroid64 sshd\[2483\]: Invalid user guest from 201.184.169.106 May 25 11:39:48 odroid64 sshd\[2483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.169.106 May 25 11:39:50 odroid64 sshd\[2483\]: Failed password for invalid user guest from 201.184.169.106 port 36584 ssh2 May 29 12:45:08 odroid64 sshd\[18074\]: Invalid user httpd from 201.184.169.106 May 29 12:45:08 odroid64 sshd\[18074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.169.106 May 29 12:45:10 odroid64 sshd\[18074\]: Failed password for invalid user httpd from 201.184.169.106 port 34057 ssh2 Jun 6 12:01:28 odroid64 sshd\[19612\]: User root from 201.184.169.106 not allowed because not listed in AllowUsers Jun 6 12:01:28 odroid64 sshd\[19612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.169.106 user=root Jun 6 12:01:30 odroid64 sshd\[19612\]: Fai ...	2019-10-18 06:31:28
114.239.149.255	attackbots	Oct 17 21:32:01 smtp sshd[20832]: Invalid user user3 from 114.239.149.255 Oct 17 21:32:03 smtp sshd[20832]: Failed password for invalid user user3 from 114.239.149.255 port 33997 ssh2 Oct 17 21:34:14 smtp sshd[21127]: Invalid user parkyr from 114.239.149.255 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.239.149.255	2019-10-18 06:54:15
49.89.103.24	attackbots	Oct 17 21:38:34 smtp sshd[21751]: Failed password for r.r from 49.89.103.24 port 59158 ssh2 Oct 17 21:41:02 smtp sshd[22208]: Invalid user rq from 49.89.103.24 Oct 17 21:41:03 smtp sshd[22208]: Failed password for invalid user rq from 49.89.103.24 port 40570 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.89.103.24	2019-10-18 06:30:35
222.186.175.150	attackbotsspam	Oct 17 12:19:25 web1 sshd\[23800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Oct 17 12:19:27 web1 sshd\[23800\]: Failed password for root from 222.186.175.150 port 29964 ssh2 Oct 17 12:19:52 web1 sshd\[23837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Oct 17 12:19:54 web1 sshd\[23837\]: Failed password for root from 222.186.175.150 port 36392 ssh2 Oct 17 12:19:58 web1 sshd\[23837\]: Failed password for root from 222.186.175.150 port 36392 ssh2	2019-10-18 06:20:45
199.195.249.6	attackbotsspam	Oct 18 00:10:06 eventyay sshd[21869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.249.6 Oct 18 00:10:08 eventyay sshd[21869]: Failed password for invalid user nk from 199.195.249.6 port 42716 ssh2 Oct 18 00:14:02 eventyay sshd[21898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.249.6 ...	2019-10-18 06:27:23

Recently Reported IPs

176.193.71.59	84.55.94.38	114.99.7.58	109.105.176.158
77.39.9.14	198.55.51.7	111.223.38.26	182.76.69.2
113.172.101.57	180.179.196.84	171.221.199.65	128.110.153.91
92.46.214.6	39.40.100.177	210.210.10.70	81.183.33.68
116.111.54.65	60.250.83.62	219.128.77.87	192.99.214.142