213.21.53.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Sattel Corporation Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	$f2bV_matches	2020-05-04 12:48:11
attackbots	Apr 26 19:33:16 hosting sshd[30264]: Invalid user kirin from 213.21.53.2 port 39145 ...	2020-04-27 01:27:07
attackspambots	Apr 19 16:24:15 sshd\[29909\]: User root from 213.21.53.2 not allowed because not listed in AllowUsersApr 19 16:24:17 sshd\[29909\]: Failed password for invalid user root from 213.21.53.2 port 55688 ssh2 ...	2020-04-19 23:44:52
attackbots	$f2bV_matches	2020-02-17 08:56:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.21.53.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57131
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.21.53.2.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 264 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 08:56:40 CST 2020
;; MSG SIZE  rcvd: 115

Host info

2.53.21.213.in-addr.arpa domain name pointer 2.53.21.213.at-home.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.53.21.213.in-addr.arpa	name = 2.53.21.213.at-home.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.223.101.58	attackspam	[munged]::443 222.223.101.58 - - [10/Oct/2019:22:04:08 +0200] "POST /[munged]: HTTP/1.1" 200 8165 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.223.101.58 - - [10/Oct/2019:22:04:09 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.223.101.58 - - [10/Oct/2019:22:04:11 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.223.101.58 - - [10/Oct/2019:22:04:12 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.223.101.58 - - [10/Oct/2019:22:04:13 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.223.101.58 - - [10/Oct/2019:22:	2019-10-11 08:14:36
46.45.160.75	attack	Automatic report - Banned IP Access	2019-10-11 12:16:38
179.232.1.252	attackbotsspam	Triggered by Fail2Ban at Vostok web server	2019-10-11 12:21:40
49.88.112.114	attack	Oct 10 14:11:05 web1 sshd\[31870\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 10 14:11:07 web1 sshd\[31870\]: Failed password for root from 49.88.112.114 port 39318 ssh2 Oct 10 14:14:22 web1 sshd\[32124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Oct 10 14:14:24 web1 sshd\[32124\]: Failed password for root from 49.88.112.114 port 64539 ssh2 Oct 10 14:19:28 web1 sshd\[32531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-10-11 08:20:55
150.242.213.189	attack	Oct 11 06:18:27 legacy sshd[22468]: Failed password for root from 150.242.213.189 port 49898 ssh2 Oct 11 06:22:26 legacy sshd[22529]: Failed password for root from 150.242.213.189 port 54844 ssh2 ...	2019-10-11 12:33:08
139.198.122.76	attackspambots	Oct 11 06:50:54 www2 sshd\[10359\]: Failed password for root from 139.198.122.76 port 37552 ssh2Oct 11 06:55:17 www2 sshd\[11078\]: Failed password for root from 139.198.122.76 port 43878 ssh2Oct 11 06:59:42 www2 sshd\[11382\]: Failed password for root from 139.198.122.76 port 50206 ssh2 ...	2019-10-11 12:01:54
89.248.174.214	attackspam	" "	2019-10-11 12:02:42
151.80.173.36	attack	Oct 11 10:55:50 webhost01 sshd[4383]: Failed password for root from 151.80.173.36 port 36936 ssh2 ...	2019-10-11 12:03:17
162.247.74.202	attack	Automatic report - XMLRPC Attack	2019-10-11 12:09:56
122.199.225.53	attackbotsspam	Oct 11 05:59:08 core sshd[2540]: Invalid user 123Windows from 122.199.225.53 port 53278 Oct 11 05:59:10 core sshd[2540]: Failed password for invalid user 123Windows from 122.199.225.53 port 53278 ssh2 ...	2019-10-11 12:13:27
85.136.47.215	attackspam	2019-10-10T23:58:49.719208shield sshd\[13383\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.136.47.215.dyn.user.ono.com user=root 2019-10-10T23:58:51.975804shield sshd\[13383\]: Failed password for root from 85.136.47.215 port 38696 ssh2 2019-10-11T00:03:10.837074shield sshd\[13942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.136.47.215.dyn.user.ono.com user=root 2019-10-11T00:03:12.928514shield sshd\[13942\]: Failed password for root from 85.136.47.215 port 51602 ssh2 2019-10-11T00:07:29.150517shield sshd\[14371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.136.47.215.dyn.user.ono.com user=root	2019-10-11 08:21:23
118.89.192.39	attack	Oct 11 06:54:01 www5 sshd\[3789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.192.39 user=root Oct 11 06:54:03 www5 sshd\[3789\]: Failed password for root from 118.89.192.39 port 35508 ssh2 Oct 11 06:58:14 www5 sshd\[4635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.192.39 user=root ...	2019-10-11 12:35:03
180.176.213.215	attack	" "	2019-10-11 12:02:58
218.156.38.185	attack	" "	2019-10-11 12:00:02
14.142.12.242	attack	Oct 10 20:04:28 unicornsoft sshd\[7412\]: User root from 14.142.12.242 not allowed because not listed in AllowUsers Oct 10 20:04:28 unicornsoft sshd\[7412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.12.242 user=root Oct 10 20:04:31 unicornsoft sshd\[7412\]: Failed password for invalid user root from 14.142.12.242 port 34216 ssh2	2019-10-11 08:12:03

Recently Reported IPs

117.94.28.122	27.66.125.32	189.208.61.87	179.125.245.158
178.121.248.88	49.85.99.87	167.172.171.234	49.85.75.105
93.113.133.100	73.106.190.121	114.233.111.223	49.71.128.115
54.109.66.136	85.137.55.83	117.94.176.249	118.211.224.16
158.45.226.85	182.110.242.35	178.245.152.57	195.19.63.199