136.243.107.52

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Hetzner Online AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Honeypot attack, port: 445, PTR: static.52.107.243.136.clients.your-server.de.	2020-01-31 06:31:20

Comments on same subnet:

IP	Type	Details	Datetime
136.243.107.105	attack	fail2ban honeypot	2019-08-15 16:11:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.243.107.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50827
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;136.243.107.52.			IN	A

;; AUTHORITY SECTION:
.			197	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013003 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 06:31:17 CST 2020
;; MSG SIZE  rcvd: 118

Host info

52.107.243.136.in-addr.arpa domain name pointer static.52.107.243.136.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.107.243.136.in-addr.arpa	name = static.52.107.243.136.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.251.67.220	attack	RDP brute forcing (r)	2020-09-10 22:52:49
174.243.80.164	attackspambots	Brute forcing email accounts	2020-09-10 22:43:08
111.230.210.229	attack	Sep 10 09:03:25 root sshd[26612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.210.229 Sep 10 09:15:47 root sshd[7027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.210.229 ...	2020-09-10 22:49:14
46.101.103.207	attack	Sep 10 16:09:34 host2 sshd[720248]: Failed password for root from 46.101.103.207 port 46358 ssh2 Sep 10 16:12:15 host2 sshd[720858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.103.207 user=root Sep 10 16:12:18 host2 sshd[720858]: Failed password for root from 46.101.103.207 port 36438 ssh2 Sep 10 16:12:15 host2 sshd[720858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.103.207 user=root Sep 10 16:12:18 host2 sshd[720858]: Failed password for root from 46.101.103.207 port 36438 ssh2 ...	2020-09-10 23:08:24
191.232.193.0	attackbots	Sep 10 10:33:41 santamaria sshd\[31386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.193.0 user=root Sep 10 10:33:43 santamaria sshd\[31386\]: Failed password for root from 191.232.193.0 port 47892 ssh2 Sep 10 10:42:57 santamaria sshd\[31537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.193.0 user=root ...	2020-09-10 23:09:50
198.245.61.217	attackspambots	198.245.61.217 - - [10/Sep/2020:04:11:30 -0600] "GET /wp-login.php HTTP/1.1" 301 462 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-10 23:03:29
118.89.153.180	attackspam	Sep 10 11:16:23 buvik sshd[6255]: Invalid user contador from 118.89.153.180 Sep 10 11:16:23 buvik sshd[6255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.153.180 Sep 10 11:16:24 buvik sshd[6255]: Failed password for invalid user contador from 118.89.153.180 port 48222 ssh2 ...	2020-09-10 22:52:32
107.170.131.23	attackspam	...	2020-09-10 22:44:35
49.235.192.71	attackspam	2020-09-09T16:54:42.191663www1-sb.mstrade.org sshd[1659]: Invalid user informix1 from 49.235.192.71 port 59592 2020-09-09T16:54:42.199424www1-sb.mstrade.org sshd[1659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.192.71 2020-09-09T16:54:42.191663www1-sb.mstrade.org sshd[1659]: Invalid user informix1 from 49.235.192.71 port 59592 2020-09-09T16:54:44.111309www1-sb.mstrade.org sshd[1659]: Failed password for invalid user informix1 from 49.235.192.71 port 59592 ssh2 2020-09-09T16:55:17.097970www1-sb.mstrade.org sshd[1695]: Invalid user proxy1 from 49.235.192.71 port 35592 ...	2020-09-10 22:57:04
220.249.112.148	attackspam	Sep 10 17:08:03 santamaria sshd\[3726\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.249.112.148 user=root Sep 10 17:08:06 santamaria sshd\[3726\]: Failed password for root from 220.249.112.148 port 49202 ssh2 Sep 10 17:11:00 santamaria sshd\[3815\]: Invalid user hadoop from 220.249.112.148 ...	2020-09-10 23:11:24
175.192.191.226	attackbotsspam	2020-09-10T01:50:31.696035server.mjenks.net sshd[414913]: Failed password for invalid user greg from 175.192.191.226 port 37112 ssh2 2020-09-10T01:52:58.428940server.mjenks.net sshd[415179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.192.191.226 user=root 2020-09-10T01:53:00.103636server.mjenks.net sshd[415179]: Failed password for root from 175.192.191.226 port 55342 ssh2 2020-09-10T01:55:25.888722server.mjenks.net sshd[415496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.192.191.226 user=root 2020-09-10T01:55:28.411381server.mjenks.net sshd[415496]: Failed password for root from 175.192.191.226 port 45332 ssh2 ...	2020-09-10 23:28:38
111.229.79.169	attack	Failed password for root from 111.229.79.169 port 37026 ssh2	2020-09-10 23:02:57
61.177.172.54	attackspambots	Sep 10 16:06:12 ns308116 sshd[19164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.54 user=root Sep 10 16:06:13 ns308116 sshd[19164]: Failed password for root from 61.177.172.54 port 46514 ssh2 Sep 10 16:06:17 ns308116 sshd[19164]: Failed password for root from 61.177.172.54 port 46514 ssh2 Sep 10 16:06:21 ns308116 sshd[19164]: Failed password for root from 61.177.172.54 port 46514 ssh2 Sep 10 16:06:24 ns308116 sshd[19164]: Failed password for root from 61.177.172.54 port 46514 ssh2 ...	2020-09-10 23:15:36
122.163.63.98	attack	Bruteforce detected by fail2ban	2020-09-10 23:21:27
198.245.61.79	attack	Attempts: 1 - Scan for/ attempted low level server resources/ entrance - {2020-08-28T17:54:16+02:00 GET /admin/ HTTP/1.1 #...truncated}	2020-09-10 23:09:17

Recently Reported IPs

118.98.236.103	198.225.60.72	11.226.26.46	167.172.31.204
5.52.197.236	27.66.37.104	119.236.252.147	39.96.24.238
163.158.14.176	94.29.126.234	177.37.104.165	115.135.221.248
154.124.50.40	62.179.58.26	202.164.208.19	214.89.134.52
254.130.148.2	44.226.205.117	101.61.168.116	50.18.209.31