212.114.57.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: iS-Fun Internet Services GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Aug 27 21:25:12 vpn01 sshd\[27606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.53 user=root Aug 27 21:25:14 vpn01 sshd\[27606\]: Failed password for root from 212.114.57.53 port 40292 ssh2 Aug 27 21:38:18 vpn01 sshd\[27662\]: Invalid user a from 212.114.57.53	2019-08-28 05:31:06
attackbotsspam	Aug 17 20:31:07 vps691689 sshd[30534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.53 Aug 17 20:31:09 vps691689 sshd[30534]: Failed password for invalid user siva from 212.114.57.53 port 60914 ssh2 ...	2019-08-18 02:49:19
attackbots	Aug 12 00:56:13 *** sshd[24520]: Failed password for invalid user tobias from 212.114.57.53 port 42296 ssh2	2019-08-13 05:59:21
attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-08-07 05:31:52
attack	Aug 2 15:19:01 [munged] sshd[31542]: Invalid user heike from 212.114.57.53 port 45940 Aug 2 15:19:01 [munged] sshd[31542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.53	2019-08-02 23:39:07

Comments on same subnet:

IP	Type	Details	Datetime
212.114.57.33	attackspam	Jan 29 14:58:01 ms-srv sshd[56552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.33 Jan 29 14:58:03 ms-srv sshd[56552]: Failed password for invalid user teamspeak2 from 212.114.57.33 port 34040 ssh2	2020-03-09 04:26:31
212.114.57.33	attack	Jan 29 14:58:01 ms-srv sshd[56552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.33 Jan 29 14:58:03 ms-srv sshd[56552]: Failed password for invalid user teamspeak2 from 212.114.57.33 port 34040 ssh2	2020-02-15 23:54:43
212.114.57.71	attackbotsspam	Aug 31 10:28:00 lcdev sshd\[20178\]: Invalid user netdiag from 212.114.57.71 Aug 31 10:28:00 lcdev sshd\[20178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.71 Aug 31 10:28:03 lcdev sshd\[20178\]: Failed password for invalid user netdiag from 212.114.57.71 port 41258 ssh2 Aug 31 10:31:38 lcdev sshd\[20452\]: Invalid user dev2 from 212.114.57.71 Aug 31 10:31:38 lcdev sshd\[20452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.114.57.71	2019-09-01 04:47:49
212.114.57.61	attackspambots	Aug 12 21:53:59 server2 sshd\[3045\]: User root from 212.114.57.61 not allowed because not listed in AllowUsers Aug 12 21:53:59 server2 sshd\[3047\]: Invalid user admin from 212.114.57.61 Aug 12 21:54:02 server2 sshd\[3070\]: User root from 212.114.57.61 not allowed because not listed in AllowUsers Aug 12 21:54:02 server2 sshd\[3072\]: Invalid user admin from 212.114.57.61 Aug 12 21:54:02 server2 sshd\[3074\]: Invalid user user from 212.114.57.61 Aug 12 21:54:03 server2 sshd\[3076\]: Invalid user user from 212.114.57.61	2019-08-13 04:39:11
212.114.57.61	attack	Aug 12 03:45:34 pkdns2 sshd\[43460\]: Failed password for root from 212.114.57.61 port 60568 ssh2Aug 12 03:45:42 pkdns2 sshd\[43464\]: Invalid user admin from 212.114.57.61Aug 12 03:45:44 pkdns2 sshd\[43464\]: Failed password for invalid user admin from 212.114.57.61 port 35702 ssh2Aug 12 03:45:49 pkdns2 sshd\[43466\]: Failed password for root from 212.114.57.61 port 47038 ssh2Aug 12 03:45:50 pkdns2 sshd\[43468\]: Invalid user admin from 212.114.57.61Aug 12 03:45:52 pkdns2 sshd\[43468\]: Failed password for invalid user admin from 212.114.57.61 port 53132 ssh2Aug 12 03:45:52 pkdns2 sshd\[43470\]: Invalid user user from 212.114.57.61 ...	2019-08-12 09:15:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.114.57.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33084
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.114.57.53.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 17:07:22 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 53.57.114.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 53.57.114.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.165.238.65	attackbots	Aug 29 04:00:03 mail sshd\[31337\]: Failed password for invalid user support from 188.165.238.65 port 40502 ssh2 Aug 29 04:03:59 mail sshd\[32252\]: Invalid user tech from 188.165.238.65 port 58334 Aug 29 04:03:59 mail sshd\[32252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.238.65 Aug 29 04:04:01 mail sshd\[32252\]: Failed password for invalid user tech from 188.165.238.65 port 58334 ssh2 Aug 29 04:07:50 mail sshd\[32640\]: Invalid user banana from 188.165.238.65 port 47920 Aug 29 04:07:50 mail sshd\[32640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.238.65	2019-08-29 10:18:51
80.211.133.238	attackbotsspam	Aug 28 16:02:39 hiderm sshd\[22314\]: Invalid user ircd from 80.211.133.238 Aug 28 16:02:39 hiderm sshd\[22314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cultadv.cloud Aug 28 16:02:41 hiderm sshd\[22314\]: Failed password for invalid user ircd from 80.211.133.238 port 56890 ssh2 Aug 28 16:06:41 hiderm sshd\[22688\]: Invalid user test from 80.211.133.238 Aug 28 16:06:41 hiderm sshd\[22688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cultadv.cloud	2019-08-29 10:19:43
94.191.8.31	attackbots	Aug 29 02:46:54 plex sshd[12084]: Invalid user huaqi from 94.191.8.31 port 50414	2019-08-29 10:22:30
178.70.24.228	attack	2019-08-29T01:42:42.018211ldap.arvenenaske.de sshd[16345]: Connection from 178.70.24.228 port 42110 on 5.199.128.55 port 22 2019-08-29T01:42:42.504383ldap.arvenenaske.de sshd[16345]: Invalid user admin from 178.70.24.228 port 42110 2019-08-29T01:42:42.510369ldap.arvenenaske.de sshd[16345]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.70.24.228 user=admin 2019-08-29T01:42:42.511889ldap.arvenenaske.de sshd[16345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.70.24.228 2019-08-29T01:42:42.018211ldap.arvenenaske.de sshd[16345]: Connection from 178.70.24.228 port 42110 on 5.199.128.55 port 22 2019-08-29T01:42:42.504383ldap.arvenenaske.de sshd[16345]: Invalid user admin from 178.70.24.228 port 42110 2019-08-29T01:42:44.423373ldap.arvenenaske.de sshd[16345]: Failed password for invalid user admin from 178.70.24.228 port 42110 ssh2 2019-08-29T01:42:44.676391ldap.arvenenaske.de sshd[16345........ ------------------------------	2019-08-29 10:39:18
27.104.24.1	attack	Aug 28 23:51:18 MK-Soft-VM7 sshd\[9282\]: Invalid user admin from 27.104.24.1 port 52580 Aug 28 23:51:18 MK-Soft-VM7 sshd\[9282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.104.24.1 Aug 28 23:51:20 MK-Soft-VM7 sshd\[9282\]: Failed password for invalid user admin from 27.104.24.1 port 52580 ssh2 ...	2019-08-29 10:46:04
177.184.133.41	attackbots	Aug 29 02:09:53 www sshd\[15146\]: Invalid user u1 from 177.184.133.41 port 52900 ...	2019-08-29 10:53:30
106.13.97.16	attackbotsspam	Aug 29 04:14:24 eventyay sshd[4477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.16 Aug 29 04:14:26 eventyay sshd[4477]: Failed password for invalid user user1 from 106.13.97.16 port 55136 ssh2 Aug 29 04:19:52 eventyay sshd[5817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.97.16 ...	2019-08-29 10:35:37
222.186.52.86	attackbotsspam	Aug 28 16:20:29 kapalua sshd\[14233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.86 user=root Aug 28 16:20:31 kapalua sshd\[14233\]: Failed password for root from 222.186.52.86 port 22368 ssh2 Aug 28 16:20:33 kapalua sshd\[14233\]: Failed password for root from 222.186.52.86 port 22368 ssh2 Aug 28 16:20:36 kapalua sshd\[14233\]: Failed password for root from 222.186.52.86 port 22368 ssh2 Aug 28 16:21:25 kapalua sshd\[14343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.86 user=root	2019-08-29 10:26:22
35.222.137.80	attackbotsspam	Forbidden directory scan :: 2019/08/29 09:51:07 [error] 7635#7635: *182275 access forbidden by rule, client: 35.222.137.80, server: [censored_1], request: "GET /wp-content/uploads/wp-lister/wplister.log HTTP/1.1", host: "[censored_1]"	2019-08-29 10:54:56
119.179.105.250	attackspambots	Unauthorised access (Aug 29) SRC=119.179.105.250 LEN=40 TTL=49 ID=30566 TCP DPT=8080 WINDOW=56568 SYN Unauthorised access (Aug 28) SRC=119.179.105.250 LEN=40 TTL=49 ID=294 TCP DPT=8080 WINDOW=39006 SYN Unauthorised access (Aug 28) SRC=119.179.105.250 LEN=40 TTL=49 ID=63583 TCP DPT=8080 WINDOW=38568 SYN Unauthorised access (Aug 27) SRC=119.179.105.250 LEN=40 TTL=49 ID=63215 TCP DPT=8080 WINDOW=20836 SYN	2019-08-29 10:24:17
42.104.97.227	attackbots	Aug 29 04:21:39 vps691689 sshd[21970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.227 Aug 29 04:21:41 vps691689 sshd[21970]: Failed password for invalid user vagrant from 42.104.97.227 port 53193 ssh2 ...	2019-08-29 10:33:02
46.149.48.45	attackspambots	Invalid user terance from 46.149.48.45 port 49959	2019-08-29 11:03:40
195.9.32.22	attackspambots	Aug 29 05:36:55 yabzik sshd[23577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.9.32.22 Aug 29 05:36:56 yabzik sshd[23577]: Failed password for invalid user magda from 195.9.32.22 port 52821 ssh2 Aug 29 05:42:39 yabzik sshd[25799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.9.32.22	2019-08-29 10:52:58
124.93.18.202	attackbotsspam	Aug 29 03:47:08 vps691689 sshd[21060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.93.18.202 Aug 29 03:47:10 vps691689 sshd[21060]: Failed password for invalid user apache from 124.93.18.202 port 13041 ssh2 Aug 29 03:52:51 vps691689 sshd[21255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.93.18.202 ...	2019-08-29 10:29:40
122.116.128.232	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 22:22:51,010 INFO [amun_request_handler] PortScan Detected on Port: 445 (122.116.128.232)	2019-08-29 10:19:11

Recently Reported IPs

43.48.103.89	8.231.203.245	164.38.75.51	242.246.228.114
238.174.199.146	139.255.246.160	255.6.195.81	156.73.253.207
177.125.89.55	54.232.87.29	20.108.213.92	72.168.87.247
169.199.3.115	224.186.215.71	185.108.164.147	217.182.16.126
196.52.84.57	185.220.70.145	24.43.180.26	37.20.238.134