213.136.69.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Contabo GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	email spam	2019-12-19 18:45:38

Comments on same subnet:

IP	Type	Details	Datetime
213.136.69.96	attackspambots	F2B jail: sshd. Time: 2019-09-26 14:55:06, Reported by: VKReport	2019-09-26 23:38:53
213.136.69.96	attackbotsspam	Sep 16 19:41:53 ny01 sshd[1878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.69.96 Sep 16 19:41:55 ny01 sshd[1878]: Failed password for invalid user ed from 213.136.69.96 port 56912 ssh2 Sep 16 19:45:40 ny01 sshd[2560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.69.96	2019-09-17 11:24:23

Type

Details

Datetime

213.136.69.96

attackspambots

F2B jail: sshd. Time: 2019-09-26 14:55:06, Reported by: VKReport

2019-09-26 23:38:53

213.136.69.96

attackbotsspam

Sep 16 19:41:53 ny01 sshd[1878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.69.96
Sep 16 19:41:55 ny01 sshd[1878]: Failed password for invalid user ed from 213.136.69.96 port 56912 ssh2
Sep 16 19:45:40 ny01 sshd[2560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.69.96

2019-09-17 11:24:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.136.69.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29550
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.136.69.52.			IN	A

;; AUTHORITY SECTION:
.			434	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 18:45:35 CST 2019
;; MSG SIZE  rcvd: 117

Host info

52.69.136.213.in-addr.arpa domain name pointer mail.hightex24.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.69.136.213.in-addr.arpa	name = mail.hightex24.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.105.247.204	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:40:07
185.200.118.48	attackspambots	1080/tcp 3389/tcp 1194/udp... [2020-01-01/03-01]45pkt,3pt.(tcp),1pt.(udp)	2020-03-02 09:19:08
185.143.223.246	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 3389 proto: TCP cat: Misc Attack	2020-03-02 09:33:02
185.176.221.238	attackspambots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:21:36
108.174.196.84	spamattack	[2020/03/02 08:28:19] [108.174.196.84:2103-0] User photos@luxnetcorp.com.tw AUTH fails. [2020/03/02 08:28:20] [108.174.196.84:2098-0] User forums@luxnetcorp.com.tw AUTH fails. [2020/03/02 08:28:21] [108.174.196.84:2100-0] User forum@luxnetcorp.com.tw AUTH fails. [2020/03/02 08:28:22] [108.174.196.84:2095-0] User menu@luxnetcorp.com.tw AUTH fails. [2020/03/02 08:28:23] [108.174.196.84:2104-0] User test123@luxnetcorp.com.tw AUTH fails.	2020-03-02 09:08:57
185.46.16.213	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:37:06
185.209.0.32	attackspambots	03/01/2020-18:43:16.954363 185.209.0.32 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-03-02 09:16:19
185.82.176.51	attackspambots	Unauthorized connection attempt detected from IP address 185.82.176.51 to port 23 [J]	2020-03-02 09:35:15
184.105.139.67	attackspambots	Unauthorized connection attempt detected from IP address 184.105.139.67 to port 443 [J]	2020-03-02 09:43:35
185.176.27.102	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:24:24
185.175.93.78	attackbots	Mar 2 02:15:59 debian-2gb-nbg1-2 kernel: \[5370944.254839\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.78 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=26374 PROTO=TCP SPT=56275 DPT=39966 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-02 09:28:40
185.176.27.246	attackspambots	03/01/2020-20:06:53.556965 185.176.27.246 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-03-02 09:22:33
184.105.139.91	attackspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:41:49
183.230.165.133	attackspambots	ssh brute force	2020-03-02 09:44:55
185.176.27.166	attack	Mar 2 02:00:20 debian-2gb-nbg1-2 kernel: \[5370005.187458\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=64017 PROTO=TCP SPT=45877 DPT=63030 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-02 09:23:54

Recently Reported IPs

45.143.98.182	45.133.39.207	45.82.32.89	45.34.78.241
23.228.78.119	212.34.239.253	191.37.79.243	186.219.58.246
186.38.38.2	173.163.221.153	182.40.249.104	206.148.113.188
126.50.101.29	27.45.227.114	167.88.2.86	154.73.203.189
139.28.223.156	125.234.114.142	112.242.105.127	89.1.8.211