193.169.252.212

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: Fufo Studio

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Sep 3 09:52:25 mercury smtpd[1200]: 71c55265123430be smtp event=failed-command address=193.169.252.212 host=193.169.252.212 command="AUTH LOGIN" result="503 5.5.1 Invalid command: Command not supported" ...	2019-09-10 23:34:00
attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-01 00:47:11,294 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.252.212)	2019-09-01 10:02:23
attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-30 00:40:15,514 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.252.212)	2019-08-30 10:20:32
attack	Jul 28 22:46:25 debian postfix/smtpd\[6517\]: lost connection after AUTH from unknown\[193.169.252.212\] Jul 28 23:01:06 debian postfix/smtpd\[6859\]: lost connection after AUTH from unknown\[193.169.252.212\] ...	2019-07-29 12:31:41
attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-23 07:25:24,443 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.252.212)	2019-07-23 17:14:03
attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 21:19:27,458 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.252.212)	2019-07-21 07:21:29
attackspam	Jul 18 18:36:25 herz-der-gamer postfix/smtpd[1103]: warning: unknown[193.169.252.212]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 18 19:01:47 herz-der-gamer postfix/smtpd[3144]: warning: unknown[193.169.252.212]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-19 03:04:07
attackbotsspam	f2b trigger Multiple SASL failures	2019-07-17 07:03:28
attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-15 21:31:11,179 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.252.212)	2019-07-16 07:20:56
attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 04:24:36,198 INFO [amun_request_handler] PortScan Detected on Port: 25 (193.169.252.212)	2019-07-11 14:40:21
attackbots	Jul 7 23:49:03 imap dovecot[4280]: auth: ldap(testing@scream.dnet.hu,193.169.252.212): unknown user Jul 8 00:08:14 imap dovecot[4280]: auth: ldap(alex@scream.dnet.hu,193.169.252.212): unknown user Jul 8 00:27:32 imap dovecot[4280]: auth: ldap(ldap@scream.dnet.hu,193.169.252.212): unknown user Jul 8 00:47:00 imap dovecot[4280]: auth: ldap(adm@scream.dnet.hu,193.169.252.212): unknown user Jul 8 01:06:18 imap dovecot[4280]: auth: ldap(public@scream.dnet.hu,193.169.252.212): unknown user ...	2019-07-08 10:23:44

Comments on same subnet:

IP	Type	Details	Datetime
193.169.252.205	attack	2020-10-13 22:10:50 auth_plain authenticator failed for (95.216.137.45) [193.169.252.205]: 535 Incorrect authentication data (set_id=rpc) 2020-10-13 22:30:14 auth_plain authenticator failed for (95.216.137.45) [193.169.252.205]: 535 Incorrect authentication data (set_id=stone) ...	2020-10-14 04:55:15
193.169.252.205	attackspam	2020-10-13 14:24:22 auth_plain authenticator failed for (95.216.137.45) [193.169.252.205]: 535 Incorrect authentication data (set_id=tiger) 2020-10-13 14:43:42 auth_plain authenticator failed for (95.216.137.45) [193.169.252.205]: 535 Incorrect authentication data (set_id=training3) ...	2020-10-13 20:27:10
193.169.252.205	attack	Oct 2 23:19:18 hidden postfix/postscreen[4930]: DNSBL rank 3 for [193.169.252.205]:51669	2020-10-10 23:58:44
193.169.252.205	attackbotsspam	Oct 2 23:19:18 hidden postfix/postscreen[4930]: DNSBL rank 3 for [193.169.252.205]:51669	2020-10-10 15:47:12
193.169.252.206	attackspambots	2020-10-05T13:02:16.247784linuxbox-skyline auth[3684]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=arthur rhost=193.169.252.206 ...	2020-10-06 03:06:04
193.169.252.206	attackspam	2020-10-05T04:22:26.118905linuxbox-skyline auth[284145]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=deposit rhost=193.169.252.206 ...	2020-10-05 18:57:06
193.169.252.206	attack	Oct 4 20:22:14 heicom postfix/smtpd\[26816\]: warning: unknown\[193.169.252.206\]: SASL LOGIN authentication failed: authentication failure Oct 4 21:13:29 heicom postfix/smtpd\[27626\]: warning: unknown\[193.169.252.206\]: SASL LOGIN authentication failed: authentication failure ...	2020-10-05 03:33:20
193.169.252.206	attackbotsspam	2020-10-04T04:14:41.819401linuxbox-skyline auth[269530]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=amit rhost=193.169.252.206 ...	2020-10-04 19:21:17
193.169.252.37	attackspambots	hzb4 193.169.252.37 [03/Oct/2020:23:59:58 "-" "POST /wp-login.php 200 4612 193.169.252.37 [03/Oct/2020:23:59:59 "-" "POST /wp-login.php 200 4612 193.169.252.37 [03/Oct/2020:23:59:59 "-" "POST /wp-login.php 200 4612	2020-10-04 04:33:05
193.169.252.37	attackbots	2020/10/03 09:35:21 [error] 22863#22863: 5514135 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 193.169.252.37, server: _, request: "GET /wp-login.php HTTP/1.1", host: "waldatmen.com" 2020/10/03 09:35:21 [error] 22863#22863: 5514135 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 193.169.252.37, server: _, request: "GET //wp-login.php HTTP/1.1", host: "waldatmen.com"	2020-10-03 20:39:37
193.169.252.37	attack	PHI,WP GET /wp-login.php GET //wp-login.php	2020-10-03 06:47:25
193.169.252.37	attackspambots	Automatic report - Banned IP Access	2020-10-01 04:32:33
193.169.252.37	attack	Website login hacking attempts.	2020-09-30 20:44:56
193.169.252.37	attackspam	CMS (WordPress or Joomla) login attempt.	2020-09-30 13:13:12
193.169.252.210	attackspambots	Rude login attack (62 tries in 1d)	2020-09-30 08:22:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.169.252.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59826
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.169.252.212.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070701 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 10:23:37 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 212.252.169.193.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 212.252.169.193.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.148.19.153	attackspam	probes 6 times on the port 8080 8088 9200	2020-05-07 02:13:30
194.31.244.42	attackbotsspam	Port scan on 3 port(s): 8471 8473 8953	2020-05-07 02:01:32
141.98.10.61	attackbots	scans 9 times in preceeding hours on the ports (in chronological order) 55063 55065 55066 55068 55072 55077 55078 55079 55060	2020-05-07 01:56:59
147.203.238.18	attackbotsspam	Fail2Ban Ban Triggered	2020-05-07 01:54:43
77.247.108.77	attackspam	05/06/2020-13:56:44.869278 77.247.108.77 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 75	2020-05-07 02:18:59
206.189.128.215	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 20903 resulting in total of 7 scans from 206.189.0.0/16 block.	2020-05-07 02:28:37
83.97.20.232	attackspam	27017/tcp 9200/tcp... [2020-03-10/05-06]12pkt,2pt.(tcp)	2020-05-07 02:17:19
112.135.197.209	attackbots	scans 2 times in preceeding hours on the ports (in chronological order) 7322 7322	2020-05-07 02:14:33
192.241.233.163	attack	scans once in preceeding hours on the ports (in chronological order) 3306 resulting in total of 3 scans from 192.241.128.0/17 block.	2020-05-07 02:30:33
185.135.83.179	attackspambots	185.135.83.179 - - [06/May/2020:21:59:23 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-05-07 02:09:38
172.105.52.86	attack	scans once in preceeding hours on the ports (in chronological order) 5060 resulting in total of 4 scans from 172.104.0.0/15 block.	2020-05-07 02:10:29
185.200.118.49	attackbots	scans once in preceeding hours on the ports (in chronological order) 1080 resulting in total of 5 scans from 185.200.118.0/24 block.	2020-05-07 02:05:06
195.54.166.98	attackbots	scans once in preceeding hours on the ports (in chronological order) 3380 resulting in total of 4 scans from 195.54.166.0/23 block.	2020-05-07 02:29:33
162.254.193.6	attack	[DoS Attack: ACK Scan] from source: 162.254.193.6, port 443	2020-05-07 01:58:53
5.101.151.82	attackspambots	2020-05-06T19:27:19.405744mail.broermann.family sshd[10310]: Invalid user oracle from 5.101.151.82 port 53798 2020-05-06T19:27:21.538889mail.broermann.family sshd[10310]: Failed password for invalid user oracle from 5.101.151.82 port 53798 ssh2 2020-05-06T19:27:33.015469mail.broermann.family sshd[10317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.101.151.82 user=root 2020-05-06T19:27:34.926149mail.broermann.family sshd[10317]: Failed password for root from 5.101.151.82 port 57876 ssh2 2020-05-06T19:27:46.356414mail.broermann.family sshd[10321]: Invalid user postgres from 5.101.151.82 port 33700 ...	2020-05-07 02:00:04

Recently Reported IPs

210.51.6.66	49.35.54.130	198.71.61.20	172.93.104.250
153.37.152.49	156.202.102.122	67.207.92.243	141.101.69.69
103.67.196.14	175.3.132.101	178.154.246.128	142.193.30.127
75.103.66.28	103.40.109.221	188.59.190.17	49.248.21.114
103.45.251.8	187.163.154.28	113.103.245.156	181.65.155.73