213.136.83.55 - IPInfo

Basic Info

City: Nuremberg

Region: Bavaria

Country: Germany

Internet Service Provider: Contabo GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	02/22/2020-05:50:53.019059 213.136.83.55 Protocol: 6 ET POLICY Cleartext WordPress Login	2020-02-22 15:39:53
attackbots	02/21/2020-22:30:57.494714 213.136.83.55 Protocol: 6 ET POLICY Cleartext WordPress Login	2020-02-22 06:39:51
attackbots	Masscan Port Scanning Tool PA	2019-11-06 01:42:40

Type

Details

Datetime

attackspambots

02/22/2020-05:50:53.019059 213.136.83.55 Protocol: 6 ET POLICY Cleartext WordPress Login

2020-02-22 15:39:53

attackbots

02/21/2020-22:30:57.494714 213.136.83.55 Protocol: 6 ET POLICY Cleartext WordPress Login

2020-02-22 06:39:51

attackbots

Masscan Port Scanning Tool PA

2019-11-06 01:42:40

Comments on same subnet:

IP	Type	Details	Datetime
213.136.83.212	attack	2020-08-04T09:59:13.306503shield sshd\[29928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi410824.contaboserver.net user=root 2020-08-04T09:59:15.497839shield sshd\[29928\]: Failed password for root from 213.136.83.212 port 60650 ssh2 2020-08-04T10:03:11.686824shield sshd\[30311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi410824.contaboserver.net user=root 2020-08-04T10:03:14.212207shield sshd\[30311\]: Failed password for root from 213.136.83.212 port 43906 ssh2 2020-08-04T10:07:04.199531shield sshd\[30796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi410824.contaboserver.net user=root	2020-08-04 18:18:22
213.136.83.212	attackbotsspam	Invalid user hewenlong from 213.136.83.212 port 48556	2020-07-30 14:37:34
213.136.83.212	attackspam	Jul 25 07:40:31 sticky sshd\[22765\]: Invalid user admin from 213.136.83.212 port 48860 Jul 25 07:40:31 sticky sshd\[22765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.83.212 Jul 25 07:40:33 sticky sshd\[22765\]: Failed password for invalid user admin from 213.136.83.212 port 48860 ssh2 Jul 25 07:44:39 sticky sshd\[22783\]: Invalid user suchy from 213.136.83.212 port 34504 Jul 25 07:44:39 sticky sshd\[22783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.83.212	2020-07-25 13:48:31
213.136.83.212	attackspam	Jul 18 06:33:12 zooi sshd[27196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.83.212 Jul 18 06:33:14 zooi sshd[27196]: Failed password for invalid user mq from 213.136.83.212 port 52322 ssh2 ...	2020-07-18 12:58:09
213.136.83.14	attack	Jan 1 22:53:01 ovpn sshd[6861]: Did not receive identification string from 213.136.83.14 Jan 1 22:55:06 ovpn sshd[7444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.83.14 user=r.r Jan 1 22:55:09 ovpn sshd[7444]: Failed password for r.r from 213.136.83.14 port 36722 ssh2 Jan 1 22:55:09 ovpn sshd[7444]: Received disconnect from 213.136.83.14 port 36722:11: Normal Shutdown, Thank you for playing [preauth] Jan 1 22:55:09 ovpn sshd[7444]: Disconnected from 213.136.83.14 port 36722 [preauth] Jan 1 22:57:27 ovpn sshd[8019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.83.14 user=r.r Jan 1 22:57:29 ovpn sshd[8019]: Failed password for r.r from 213.136.83.14 port 45778 ssh2 Jan 1 22:57:29 ovpn sshd[8019]: Received disconnect from 213.136.83.14 port 45778:11: Normal Shutdown, Thank you for playing [preauth] Jan 1 22:57:29 ovpn sshd[8019]: Disconnected from 213.136.83.1........ ------------------------------	2020-01-03 18:38:13
213.136.83.130	attack	Nov 13 06:26:51 itv-usvr-01 sshd[20281]: Invalid user yury from 213.136.83.130 Nov 13 06:26:51 itv-usvr-01 sshd[20281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.83.130 Nov 13 06:26:51 itv-usvr-01 sshd[20281]: Invalid user yury from 213.136.83.130 Nov 13 06:26:53 itv-usvr-01 sshd[20281]: Failed password for invalid user yury from 213.136.83.130 port 34310 ssh2 Nov 13 06:30:07 itv-usvr-01 sshd[20434]: Invalid user nymoen from 213.136.83.130	2019-11-16 07:16:36
213.136.83.130	attack	Automatic report - SSH Brute-Force Attack	2019-11-13 19:53:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.136.83.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30388
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.136.83.55.			IN	A

;; AUTHORITY SECTION:
.			300	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110501 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 06 01:42:37 CST 2019
;; MSG SIZE  rcvd: 117

Host info

55.83.136.213.in-addr.arpa domain name pointer vmi193741.contaboserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.83.136.213.in-addr.arpa	name = vmi193741.contaboserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.22.85	attack	Sep 1 02:19:45 ncomp sshd[31555]: Invalid user gr from 68.183.22.85 port 51474 Sep 1 02:19:45 ncomp sshd[31555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.85 Sep 1 02:19:45 ncomp sshd[31555]: Invalid user gr from 68.183.22.85 port 51474 Sep 1 02:19:46 ncomp sshd[31555]: Failed password for invalid user gr from 68.183.22.85 port 51474 ssh2	2020-09-01 08:42:30
81.177.140.71	attackbots	xmlrpc attack	2020-09-01 08:45:54
124.127.42.42	attackbots	2020-09-01T00:47:49.760524lavrinenko.info sshd[1726]: Invalid user itadmin from 124.127.42.42 port 37390 2020-09-01T00:47:49.766524lavrinenko.info sshd[1726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.127.42.42 2020-09-01T00:47:49.760524lavrinenko.info sshd[1726]: Invalid user itadmin from 124.127.42.42 port 37390 2020-09-01T00:47:51.458929lavrinenko.info sshd[1726]: Failed password for invalid user itadmin from 124.127.42.42 port 37390 ssh2 2020-09-01T00:51:09.605231lavrinenko.info sshd[1856]: Invalid user ftpuser from 124.127.42.42 port 52394 ...	2020-09-01 08:32:57
189.90.114.37	attackspam	Sep 1 01:06:35 pkdns2 sshd\[60988\]: Invalid user pokus from 189.90.114.37Sep 1 01:06:37 pkdns2 sshd\[60988\]: Failed password for invalid user pokus from 189.90.114.37 port 45889 ssh2Sep 1 01:11:03 pkdns2 sshd\[61173\]: Invalid user test5 from 189.90.114.37Sep 1 01:11:05 pkdns2 sshd\[61173\]: Failed password for invalid user test5 from 189.90.114.37 port 13793 ssh2Sep 1 01:15:26 pkdns2 sshd\[61391\]: Invalid user uftp from 189.90.114.37Sep 1 01:15:28 pkdns2 sshd\[61391\]: Failed password for invalid user uftp from 189.90.114.37 port 62465 ssh2 ...	2020-09-01 08:27:03
160.153.147.155	attack	Automatic report - XMLRPC Attack	2020-09-01 08:32:43
14.189.22.210	attack	1598908074 - 08/31/2020 23:07:54 Host: 14.189.22.210/14.189.22.210 Port: 445 TCP Blocked ...	2020-09-01 08:57:25
103.4.71.218	attackbotsspam	ssh brute force	2020-09-01 08:39:34
162.247.74.27	attackbots	SSH brute-force attempt	2020-09-01 08:41:43
151.235.188.216	attackbotsspam	DATE:2020-08-31 23:07:31, IP:151.235.188.216, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-01 08:39:16
193.227.16.160	attack	Sep 1 01:32:32 vm0 sshd[14304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.227.16.160 Sep 1 01:32:34 vm0 sshd[14304]: Failed password for invalid user irene from 193.227.16.160 port 60608 ssh2 ...	2020-09-01 08:38:41
37.49.225.147	attackspam	2020-09-01 03:21:31 auth_plain authenticator failed for (User) [37.49.225.147]: 535 Incorrect authentication data (set_id=sales@lavrinenko.info,) 2020-09-01 03:26:47 auth_plain authenticator failed for (User) [37.49.225.147]: 535 Incorrect authentication data (set_id=info@lavrinenko.info,) ...	2020-09-01 08:28:42
212.64.68.71	attackspam	SSH Brute-Force. Ports scanning.	2020-09-01 08:21:37
162.142.125.25	attackbots	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	2020-09-01 08:42:02
186.182.42.74	attackbotsspam	Automatic report - XMLRPC Attack	2020-09-01 08:26:11
24.65.73.68	attackspam	Sep 1 00:08:23 fabrik01 sshd\[21514\]: Invalid user admin from 24.65.73.68Sep 1 00:08:25 fabrik01 sshd\[21514\]: Failed password for invalid user admin from 24.65.73.68 port 52967 ssh2Sep 1 00:08:27 fabrik01 sshd\[21524\]: Invalid user admin from 24.65.73.68Sep 1 00:08:28 fabrik01 sshd\[21524\]: Failed password for invalid user admin from 24.65.73.68 port 53126 ssh2Sep 1 00:08:30 fabrik01 sshd\[21526\]: Invalid user admin from 24.65.73.68Sep 1 00:08:32 fabrik01 sshd\[21526\]: Failed password for invalid user admin from 24.65.73.68 port 53685 ssh2 ...	2020-09-01 08:31:08

Recently Reported IPs

217.112.128.48	61.21.80.216	3.121.188.242	193.219.128.10
79.137.24.142	199.164.150.84	159.203.201.139	112.161.241.30
210.68.41.184	151.74.147.213	193.150.113.5	141.8.143.182
36.233.89.87	188.116.186.130	104.211.67.107	91.165.211.133
71.87.7.226	185.154.73.59	165.22.81.128	179.99.43.105