Check an IP Address, Domain Name, Subnet, or ASN

92.113.146.150 was found in our database!

$ whois 92.113.146.150

country·🇩🇰 Denmark

city·Nørre Åby

isp·Webdock.io ApS

asn·AS44803

network·Standard

$ sikker risk 92.113.146.150scoring →

confidence

90%Very High

first_seen·Mar 1, 2026

last_seen·4d ago

first_reported·Mar 12, 2026

last_reported·8d ago

sessions·16

events·16

reports·1

$ sikker protocols 92.113.146.150

HTTP

8 / 8 / 1r

TELNET

6 / 6

HTTPS

2 / 2

$ sikker summary 92.113.146.150

92.113.146.150 has a threat confidence score of 90%. This IP address from Denmark (AS44803, Webdock.io ApS) has been observed in 16 honeypot sessions and reported 1 times targeting HTTP, TELNET, HTTPS protocols. Detected attack patterns include telnet shell escalation with busybox execution attempt. First observed on March 1, 2026, most recently active March 17, 2026.

$ sikker behaviors 92.113.146.150catalog →

highTelnet Shell Escalation With Busybox Execution Attempt5x

Telnet session exhibiting privilege escalation and shell breakout commands (enable, system, shell, sh) followed by execution of /bin/busybox with a non-standard or arbitrary applet name. The sequence indicates an attempt to escape restricted CLI environments and execute a staged or randomly named payload via BusyBox. The presence of an unknown BusyBox applet strongly suggests automated bot deployment logic rather than legitimate administrative activity.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 92.113.146.150

http_method_get62 telnet_command_sh6 telnet_command_shell6 telnet_command_system6 telnet_busybox_unknown_applet_invocation6 telnet_command_enable5 http_path_bad_request1

$ sikker reports 92.113.146.150submit →

Showing 1 of 1 report from 1 contributor

Reporter	Date	Category	Protocol	Comment
User	Mar 12, 2026, 15:28	Brute Force	HTTP	SikkerGuard: 2 blocked packets

$ sikker related 92.113.146.150

🇩🇰·More threats fromDenmark→AS·More threats fromWebdock.io ApS→HTTP·More threats targetingHTTP→TELN·More threats targetingTELNET→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
45.148.29.196	46%	7
45.148.30.161	75%	18
92.113.149.155	48%	3
193.180.212.163	88%	26
92.113.144.66	64%	8

IP Address	Confidence	Events
45.129.56.131	27%	6
85.203.47.240	47%	24
157.97.120.5	18%	5
85.203.47.230	28%	1
84.238.92.245	39%	148