130.83.138.136

Basic Info

City: Darmstadt

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 130.83.138.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50659
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;130.83.138.136.			IN	A

;; AUTHORITY SECTION:
.			307	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022123000 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 30 17:58:54 CST 2022
;; MSG SIZE  rcvd: 107

Host info

136.138.83.130.in-addr.arpa domain name pointer FM-L207-2-136-3DD.fm.mw.tu-darmstadt.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
136.138.83.130.in-addr.arpa	name = FM-L207-2-136-3DD.fm.mw.tu-darmstadt.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.52.98	attack	2020-04-19T10:48:17.734214struts4.enskede.local sshd\[14950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.98 user=root 2020-04-19T10:48:20.552433struts4.enskede.local sshd\[14950\]: Failed password for root from 106.12.52.98 port 38776 ssh2 2020-04-19T10:52:32.164733struts4.enskede.local sshd\[15057\]: Invalid user pc from 106.12.52.98 port 59178 2020-04-19T10:52:32.170840struts4.enskede.local sshd\[15057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.98 2020-04-19T10:52:34.996840struts4.enskede.local sshd\[15057\]: Failed password for invalid user pc from 106.12.52.98 port 59178 ssh2 ...	2020-04-19 18:44:39
166.111.152.230	attack	2020-04-18 UTC: (19x) - admin(3x),centos,ij,kd,ll,mr,postgres,pv,root(3x),rv,test2,test3,tester,ts3server,yq	2020-04-19 18:24:49
194.26.29.212	attackspam	Apr 19 12:21:49 debian-2gb-nbg1-2 kernel: \[9550677.209970\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.212 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=33542 PROTO=TCP SPT=58013 DPT=2562 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-19 18:32:21
13.235.162.188	attack	Apr 19 04:41:53 Tower sshd[35670]: Connection from 13.235.162.188 port 60246 on 192.168.10.220 port 22 rdomain "" Apr 19 04:41:55 Tower sshd[35670]: Invalid user nagios from 13.235.162.188 port 60246 Apr 19 04:41:55 Tower sshd[35670]: error: Could not get shadow information for NOUSER Apr 19 04:41:55 Tower sshd[35670]: Failed password for invalid user nagios from 13.235.162.188 port 60246 ssh2 Apr 19 04:41:56 Tower sshd[35670]: Received disconnect from 13.235.162.188 port 60246:11: Bye Bye [preauth] Apr 19 04:41:56 Tower sshd[35670]: Disconnected from invalid user nagios 13.235.162.188 port 60246 [preauth]	2020-04-19 18:14:52
45.88.13.66	attack	SSHD brute force attack detected by fail2ban	2020-04-19 18:27:24
17.58.101.180	attack	[19/Apr/2020:05:49:09 +0200] Web-Request: "GET /apple-app-site-association", User-Agent: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/600.2.5 (KHTML, like Gecko) Version/8.0.2 Safari/600.2.5 (Applebot/0.1; +http://www.apple.com/go/applebot)"	2020-04-19 18:29:09
173.13.195.115	attack	Apr 18 20:48:57 pixelmemory postfix/smtpd[30893]: NOQUEUE: reject: RCPT from 173-13-195-115-WashingtonDC.hfc.comcastbusiness.net[173.13.195.115]: 554 5.7.1 Service unavailable; Client host [173.13.195.115] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from=<> to= proto=ESMTP helo= ...	2020-04-19 18:37:13
106.12.30.229	attackspam	$f2bV_matches	2020-04-19 18:39:44
218.92.0.172	attack	Apr 19 12:06:53 ift sshd\[16266\]: Failed password for root from 218.92.0.172 port 41924 ssh2Apr 19 12:07:20 ift sshd\[16271\]: Failed password for root from 218.92.0.172 port 20968 ssh2Apr 19 12:07:36 ift sshd\[16271\]: Failed password for root from 218.92.0.172 port 20968 ssh2Apr 19 12:07:39 ift sshd\[16271\]: Failed password for root from 218.92.0.172 port 20968 ssh2Apr 19 12:07:48 ift sshd\[16365\]: Failed password for root from 218.92.0.172 port 60051 ssh2 ...	2020-04-19 18:15:50
208.113.153.203	attack	Trolling for resource vulnerabilities	2020-04-19 18:42:32
117.86.9.160	attack	Relay mail to 1761573796@qq.com	2020-04-19 18:10:10
134.209.220.69	attack	Apr 19 10:15:33 *** sshd[25376]: Invalid user ftpuser from 134.209.220.69	2020-04-19 18:21:43
104.154.239.199	attackbots	SSH login attempts.	2020-04-19 18:40:55
151.80.41.64	attackbots	$f2bV_matches	2020-04-19 18:23:04
218.92.0.192	attackbots	Apr 19 12:02:03 dcd-gentoo sshd[10756]: User root from 218.92.0.192 not allowed because none of user's groups are listed in AllowGroups Apr 19 12:02:06 dcd-gentoo sshd[10756]: error: PAM: Authentication failure for illegal user root from 218.92.0.192 Apr 19 12:02:03 dcd-gentoo sshd[10756]: User root from 218.92.0.192 not allowed because none of user's groups are listed in AllowGroups Apr 19 12:02:06 dcd-gentoo sshd[10756]: error: PAM: Authentication failure for illegal user root from 218.92.0.192 Apr 19 12:02:03 dcd-gentoo sshd[10756]: User root from 218.92.0.192 not allowed because none of user's groups are listed in AllowGroups Apr 19 12:02:06 dcd-gentoo sshd[10756]: error: PAM: Authentication failure for illegal user root from 218.92.0.192 Apr 19 12:02:06 dcd-gentoo sshd[10756]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.192 port 16473 ssh2 ...	2020-04-19 18:27:58

Recently Reported IPs

130.85.252.162	130.27.251.97	130.21.97.196	130.131.168.30
130.197.192.24	130.175.73.237	130.165.238.61	13.29.143.94
13.234.143.135	129.8.116.229	13.105.249.200	129.24.154.248
129.197.218.69	128.79.30.5	128.75.118.53	128.57.75.177
128.162.218.215	127.68.193.31	127.30.74.178	127.26.19.4