213.254.129.52

Basic Info

City: Antalya

Region: Antalya

Country: Turkey

Internet Service Provider: Superonline Iletisim Hizmetleri A.S.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-24 02:54:00

Comments on same subnet:

IP	Type	Details	Datetime
213.254.129.55	attackbots	Unauthorized connection attempt detected from IP address 213.254.129.55 to port 82	2020-01-05 06:32:54
213.254.129.55	attackspambots	Unauthorized connection attempt detected from IP address 213.254.129.55 to port 8080	2019-12-30 03:19:30
213.254.129.160	attackspambots	Automatic report - Port Scan Attack	2019-09-03 15:38:13
213.254.129.133	attackbots	RDPBruteCAu	2019-08-10 15:37:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.254.129.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29292
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.254.129.52.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102301 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 02:53:56 CST 2019
;; MSG SIZE  rcvd: 118

Host info

52.129.254.213.in-addr.arpa domain name pointer host-213-254-129-52.reverse.superonline.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.129.254.213.in-addr.arpa	name = host-213-254-129-52.reverse.superonline.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.85.243.46	attackbotsspam	ylmf-pc	2019-08-19 03:50:28
138.122.37.92	attack	failed_logins	2019-08-19 03:49:39
35.234.123.233	attackbots	2019-08-18T12:59:14Z - RDP login failed multiple times. (35.234.123.233)	2019-08-19 03:48:17
92.63.194.239	attackbotsspam	RDP Bruteforce	2019-08-19 03:39:49
118.25.96.30	attackspam	Aug 18 10:14:17 aat-srv002 sshd[22439]: Failed password for irc from 118.25.96.30 port 31880 ssh2 Aug 18 10:16:40 aat-srv002 sshd[22483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.96.30 Aug 18 10:16:42 aat-srv002 sshd[22483]: Failed password for invalid user postgres from 118.25.96.30 port 52300 ssh2 Aug 18 10:19:13 aat-srv002 sshd[22578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.96.30 ...	2019-08-19 03:31:52
115.29.5.66	attack	Aug 18 13:59:31 ms-srv sshd[17089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.5.66 user=root Aug 18 13:59:33 ms-srv sshd[17089]: Failed password for invalid user root from 115.29.5.66 port 42244 ssh2	2019-08-19 03:30:27
91.121.211.34	attackbotsspam	Aug 18 10:47:35 xtremcommunity sshd\[24527\]: Invalid user connect from 91.121.211.34 port 47162 Aug 18 10:47:35 xtremcommunity sshd\[24527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.34 Aug 18 10:47:37 xtremcommunity sshd\[24527\]: Failed password for invalid user connect from 91.121.211.34 port 47162 ssh2 Aug 18 10:51:33 xtremcommunity sshd\[24639\]: Invalid user public from 91.121.211.34 port 35726 Aug 18 10:51:33 xtremcommunity sshd\[24639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.34 ...	2019-08-19 03:29:49
167.71.126.240	attack	Aug 18 09:06:56 sachi sshd\[13227\]: Invalid user server from 167.71.126.240 Aug 18 09:06:56 sachi sshd\[13227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.126.240 Aug 18 09:06:58 sachi sshd\[13227\]: Failed password for invalid user server from 167.71.126.240 port 34644 ssh2 Aug 18 09:11:24 sachi sshd\[13739\]: Invalid user cyril from 167.71.126.240 Aug 18 09:11:24 sachi sshd\[13739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.126.240	2019-08-19 03:15:05
185.234.219.90	attackspambots	Aug 18 19:49:37 mail postfix/smtpd\[5880\]: warning: unknown\[185.234.219.90\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 18 20:00:30 mail postfix/smtpd\[6222\]: warning: unknown\[185.234.219.90\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 18 20:11:33 mail postfix/smtpd\[6646\]: warning: unknown\[185.234.219.90\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 18 20:44:48 mail postfix/smtpd\[7556\]: warning: unknown\[185.234.219.90\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-19 03:32:56
212.107.200.194	attackbotsspam	[portscan] Port scan	2019-08-19 03:28:35
188.254.0.113	attackbotsspam	Aug 18 21:13:59 eventyay sshd[20239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.113 Aug 18 21:14:01 eventyay sshd[20239]: Failed password for invalid user dark from 188.254.0.113 port 50436 ssh2 Aug 18 21:18:28 eventyay sshd[20290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.113 ...	2019-08-19 03:23:34
47.188.154.94	attackbots	2019-08-18T18:56:04.649084hub.schaetter.us sshd\[29580\]: Invalid user user from 47.188.154.94 2019-08-18T18:56:04.700343hub.schaetter.us sshd\[29580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.188.154.94 2019-08-18T18:56:06.474421hub.schaetter.us sshd\[29580\]: Failed password for invalid user user from 47.188.154.94 port 36828 ssh2 2019-08-18T19:01:35.469977hub.schaetter.us sshd\[29643\]: Invalid user cloud from 47.188.154.94 2019-08-18T19:01:35.503239hub.schaetter.us sshd\[29643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.188.154.94 ...	2019-08-19 03:24:43
125.123.94.110	attackbotsspam	Aug 18 14:59:45 s64-1 sshd[26796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.123.94.110 Aug 18 14:59:46 s64-1 sshd[26796]: Failed password for invalid user admin from 125.123.94.110 port 38196 ssh2 Aug 18 14:59:49 s64-1 sshd[26796]: Failed password for invalid user admin from 125.123.94.110 port 38196 ssh2 Aug 18 14:59:50 s64-1 sshd[26796]: Failed password for invalid user admin from 125.123.94.110 port 38196 ssh2 ...	2019-08-19 03:17:54
77.85.201.189	attackbotsspam	08/18/2019-11:08:37.039005 77.85.201.189 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 76	2019-08-19 03:41:19
124.127.133.158	attackspambots	Aug 18 09:14:01 lcdev sshd\[29737\]: Invalid user camera from 124.127.133.158 Aug 18 09:14:01 lcdev sshd\[29737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.127.133.158 Aug 18 09:14:03 lcdev sshd\[29737\]: Failed password for invalid user camera from 124.127.133.158 port 44764 ssh2 Aug 18 09:18:37 lcdev sshd\[30214\]: Invalid user st from 124.127.133.158 Aug 18 09:18:37 lcdev sshd\[30214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.127.133.158	2019-08-19 03:26:35

Recently Reported IPs

91.235.225.43	73.139.96.223	120.91.72.67	51.89.125.75
83.50.42.101	70.253.88.190	79.189.144.126	100.218.60.30
88.191.200.33	216.36.7.63	143.90.137.28	42.114.243.135
193.252.12.231	200.174.210.96	149.156.36.77	41.121.160.158
179.223.34.131	54.155.225.15	93.156.79.48	189.120.57.67