213.136.35.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.136.35.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55301
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;213.136.35.21.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 01:37:52 CST 2022
;; MSG SIZE  rcvd: 106

Host info

21.35.136.213.in-addr.arpa domain name pointer h-213-136-35-21.NA.cust.bahnhof.se.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.35.136.213.in-addr.arpa	name = h-213-136-35-21.NA.cust.bahnhof.se.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.50.149.3	attackbotsspam	Apr 24 07:57:29 websrv1.aknwsrv.net postfix/smtpd[669142]: warning: unknown[185.50.149.3]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 24 07:57:29 websrv1.aknwsrv.net postfix/smtpd[669142]: lost connection after AUTH from unknown[185.50.149.3] Apr 24 07:57:36 websrv1.aknwsrv.net postfix/smtpd[669142]: lost connection after AUTH from unknown[185.50.149.3] Apr 24 07:57:44 websrv1.aknwsrv.net postfix/smtpd[669142]: lost connection after AUTH from unknown[185.50.149.3] Apr 24 07:57:52 websrv1.aknwsrv.net postfix/smtpd[669142]: warning: unknown[185.50.149.3]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-24 14:13:30
95.48.54.106	attackbotsspam	Apr 23 20:11:06 wbs sshd\[3440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=iwc106.internetdsl.tpnet.pl user=root Apr 23 20:11:09 wbs sshd\[3440\]: Failed password for root from 95.48.54.106 port 47052 ssh2 Apr 23 20:15:20 wbs sshd\[3920\]: Invalid user fm from 95.48.54.106 Apr 23 20:15:20 wbs sshd\[3920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=iwc106.internetdsl.tpnet.pl Apr 23 20:15:22 wbs sshd\[3920\]: Failed password for invalid user fm from 95.48.54.106 port 60102 ssh2	2020-04-24 14:35:10
176.109.227.207	attackspam	" "	2020-04-24 14:23:26
99.183.144.132	attackspam	Invalid user zookeeper from 99.183.144.132 port 39364	2020-04-24 14:10:02
139.199.59.31	attackspam	detected by Fail2Ban	2020-04-24 13:56:55
114.119.166.77	attack	[Fri Apr 24 10:54:36.075678 2020] [:error] [pid 28555:tid 139817673848576] [client 114.119.166.77:24396] [client 114.119.166.77] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/meteorologi/list-all-categories/3999-galeri-kegiatan/galeri-kegiatan-tahun-2019/09-galeri-kegiatan-bulan-september-tahun-2019/555557526-galeri-kegiatan-bmkg-stasiun-klimatologi-malang-periode-9-13-september-2019"] [unique_id "XqJi-CujBF ...	2020-04-24 14:40:00
203.99.62.158	attack	Apr 24 06:14:30 sso sshd[24433]: Failed password for root from 203.99.62.158 port 58921 ssh2 ...	2020-04-24 14:05:50
142.44.185.242	attack	Invalid user ubuntu from 142.44.185.242 port 51396	2020-04-24 14:21:47
201.149.20.162	attack	Apr 24 08:01:29 ns381471 sshd[6470]: Failed password for root from 201.149.20.162 port 40760 ssh2	2020-04-24 14:12:05
185.204.118.116	attackbots	Apr 24 07:26:49 vmd48417 sshd[14158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.204.118.116	2020-04-24 14:35:33
103.84.63.5	attackspam	fail2ban	2020-04-24 14:01:09
139.217.96.76	attack	Apr 24 06:52:40 ovpn sshd\[24862\]: Invalid user ftpuser from 139.217.96.76 Apr 24 06:52:40 ovpn sshd\[24862\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.96.76 Apr 24 06:52:41 ovpn sshd\[24862\]: Failed password for invalid user ftpuser from 139.217.96.76 port 35038 ssh2 Apr 24 07:16:45 ovpn sshd\[30492\]: Invalid user pr from 139.217.96.76 Apr 24 07:16:45 ovpn sshd\[30492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.96.76	2020-04-24 14:03:57
222.186.173.180	attackbots	Apr 24 08:12:04 mail sshd[17884]: Failed password for root from 222.186.173.180 port 15986 ssh2 Apr 24 08:12:18 mail sshd[17884]: error: maximum authentication attempts exceeded for root from 222.186.173.180 port 15986 ssh2 [preauth] Apr 24 08:12:24 mail sshd[17963]: Failed password for root from 222.186.173.180 port 32916 ssh2	2020-04-24 14:16:19
106.52.19.71	attackbotsspam	Invalid user test from 106.52.19.71 port 57732	2020-04-24 14:23:57
139.99.149.9	attackspambots	Unauthorized access to SSH at 24/Apr/2020:06:13:14 +0000.	2020-04-24 14:24:59

Recently Reported IPs

213.136.72.233	213.136.73.79	213.136.69.97	213.136.74.129
213.136.74.140	213.136.74.70	213.136.74.218	213.136.76.164
213.136.68.28	213.136.75.39	213.136.76.68	213.136.79.90
213.136.81.209	213.136.82.10	213.136.82.29	213.136.80.191
213.136.79.233	213.136.84.228	213.136.86.6	213.136.86.45