136.243.57.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: Hetzner Online GmbH

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
136.243.57.68	attack	TCP Port Scanning	2020-07-27 03:34:35

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.243.57.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5115
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;136.243.57.80.			IN	A

;; AUTHORITY SECTION:
.			1119	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 04 09:31:58 +08 2019
;; MSG SIZE  rcvd: 117

Host info

80.57.243.136.in-addr.arpa domain name pointer s20.newtags.com.sa.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
80.57.243.136.in-addr.arpa	name = s20.newtags.com.sa.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.134.179.52	attack	firewall-block, port(s): 290/tcp, 295/tcp, 330/tcp, 350/tcp, 380/tcp, 3940/tcp, 9678/tcp, 13334/tcp, 28889/tcp, 29596/tcp, 29899/tcp, 34041/tcp, 34243/tcp, 44647/tcp, 46768/tcp, 46970/tcp, 47374/tcp, 47576/tcp, 48283/tcp, 48788/tcp, 52728/tcp, 56162/tcp, 63632/tcp	2020-03-08 06:47:56
115.29.7.45	attackbots	Mar 7 21:31:13 vps sshd\[17060\]: Invalid user ftpuser from 115.29.7.45 Mar 7 23:10:04 vps sshd\[19289\]: Invalid user ftpuser from 115.29.7.45 ...	2020-03-08 06:43:23
45.134.179.57	attackspambots	firewall-block, port(s): 33604/tcp, 33611/tcp, 33612/tcp, 33619/tcp, 33620/tcp, 33629/tcp, 33646/tcp, 33647/tcp, 33654/tcp, 33662/tcp, 33669/tcp, 33678/tcp, 33688/tcp, 33693/tcp, 33695/tcp, 33696/tcp, 33705/tcp, 33706/tcp, 33710/tcp, 33712/tcp, 33713/tcp, 33721/tcp, 33722/tcp, 33728/tcp, 33747/tcp, 33750/tcp, 33753/tcp, 33754/tcp, 33761/tcp, 33762/tcp, 33766/tcp, 33768/tcp, 33769/tcp, 33773/tcp, 33779/tcp, 33780/tcp, 33785/tcp, 33786/tcp, 33787/tcp, 33801/tcp, 33806/tcp, 33810/tcp, 33812/tcp, 33813/tcp, 33816/tcp, 33818/tcp, 33821/tcp, 33826/tcp, 33827/tcp, 33828/tcp, 33831/tcp, 33835/tcp, 33842/tcp, 33848/tcp, 33853/tcp, 33875/tcp, 33876/tcp, 33888/tcp, 33896/tcp	2020-03-08 06:46:41
222.186.175.23	attackbotsspam	2020-03-07T23:23:01.443328scmdmz1 sshd[26321]: Failed password for root from 222.186.175.23 port 57846 ssh2 2020-03-07T23:23:04.233403scmdmz1 sshd[26321]: Failed password for root from 222.186.175.23 port 57846 ssh2 2020-03-07T23:23:06.767864scmdmz1 sshd[26321]: Failed password for root from 222.186.175.23 port 57846 ssh2 ...	2020-03-08 06:34:42
138.197.221.114	attackbots	Mar 7 12:20:34 hpm sshd\[24814\]: Invalid user bs from 138.197.221.114 Mar 7 12:20:34 hpm sshd\[24814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.221.114 Mar 7 12:20:35 hpm sshd\[24814\]: Failed password for invalid user bs from 138.197.221.114 port 59304 ssh2 Mar 7 12:25:59 hpm sshd\[25217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.221.114 user=root Mar 7 12:26:01 hpm sshd\[25217\]: Failed password for root from 138.197.221.114 port 49840 ssh2	2020-03-08 06:35:15
222.186.180.142	attack	Mar 8 00:21:45 server2 sshd\[19787\]: User root from 222.186.180.142 not allowed because not listed in AllowUsers Mar 8 00:22:08 server2 sshd\[19815\]: User root from 222.186.180.142 not allowed because not listed in AllowUsers Mar 8 00:27:37 server2 sshd\[20191\]: User root from 222.186.180.142 not allowed because not listed in AllowUsers Mar 8 00:27:45 server2 sshd\[20195\]: User root from 222.186.180.142 not allowed because not listed in AllowUsers Mar 8 00:27:45 server2 sshd\[20197\]: User root from 222.186.180.142 not allowed because not listed in AllowUsers Mar 8 00:27:53 server2 sshd\[20203\]: User root from 222.186.180.142 not allowed because not listed in AllowUsers	2020-03-08 06:31:00
176.165.48.246	attackspam	fail2ban	2020-03-08 06:24:55
218.195.117.34	attack	Portscan or hack attempt detected by psad/fwsnort	2020-03-08 06:22:52
183.80.230.208	attackbotsspam	Sat Mar 7 15:10:44 2020 - Child process 400129 handling connection Sat Mar 7 15:10:44 2020 - New connection from: 183.80.230.208:54663 Sat Mar 7 15:10:44 2020 - Sending data to client: [Login: ] Sat Mar 7 15:11:15 2020 - Child aborting Sat Mar 7 15:11:15 2020 - Reporting IP address: 183.80.230.208 - mflag: 0	2020-03-08 06:29:51
220.133.147.244	attackspambots	Mar 7 22:10:03 system,error,critical: login failure for user admin from 220.133.147.244 via telnet Mar 7 22:10:04 system,error,critical: login failure for user root from 220.133.147.244 via telnet Mar 7 22:10:06 system,error,critical: login failure for user root from 220.133.147.244 via telnet Mar 7 22:10:09 system,error,critical: login failure for user root from 220.133.147.244 via telnet Mar 7 22:10:10 system,error,critical: login failure for user Administrator from 220.133.147.244 via telnet Mar 7 22:10:12 system,error,critical: login failure for user supervisor from 220.133.147.244 via telnet Mar 7 22:10:15 system,error,critical: login failure for user admin1 from 220.133.147.244 via telnet Mar 7 22:10:16 system,error,critical: login failure for user root from 220.133.147.244 via telnet Mar 7 22:10:18 system,error,critical: login failure for user root from 220.133.147.244 via telnet Mar 7 22:10:21 system,error,critical: login failure for user root from 220.133.147.244 via telnet	2020-03-08 06:32:08
139.162.72.191	attackspambots	firewall-block, port(s): 3127/tcp	2020-03-08 06:33:11
185.176.27.122	attack	firewall-block, port(s): 3430/tcp, 3434/tcp, 3455/tcp, 3459/tcp, 3485/tcp, 3497/tcp	2020-03-08 06:29:26
94.102.56.215	attack	94.102.56.215 was recorded 20 times by 11 hosts attempting to connect to the following ports: 10633,10285,10009. Incident counter (4h, 24h, all-time): 20, 125, 6999	2020-03-08 06:36:02
1.213.195.155	attackspam	Brute-force attempt banned	2020-03-08 06:47:44
60.190.248.11	attackbots	60.190.248.11 was recorded 31 times by 1 hosts attempting to connect to the following ports: 631,808,873,902,21,23,25,1720,37,1723,1911,1962,110,3306,119,3460,5060,5353,177,5432,179,5489,389,5900,6001,445,6379,502,8000,515. Incident counter (4h, 24h, all-time): 31, 31, 242	2020-03-08 06:16:34

Recently Reported IPs

104.248.167.200	220.167.141.58	218.237.235.37	46.177.185.55
190.128.159.118	140.143.204.146	187.0.160.130	202.39.65.15
61.131.207.66	195.154.60.218	163.47.147.209	185.229.243.52
121.162.200.73	218.102.214.117	149.202.13.38	111.172.38.214
67.213.75.130	62.69.130.5	73.129.11.75	192.99.68.115