213.66.135.231

Basic Info

City: Helsingborg

Region: Skåne

Country: Sweden

Internet Service Provider: Telia Network Services

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	May 9 04:35:44 debian-2gb-nbg1-2 kernel: \[11250622.336034\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.66.135.231 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=49612 PROTO=TCP SPT=25499 DPT=23 WINDOW=33720 RES=0x00 SYN URGP=0	2020-05-10 00:42:39
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 22:12:40
attackbotsspam	Unauthorized connection attempt detected from IP address 213.66.135.231 to port 23 [J]	2020-01-19 16:21:45
attackspam	Unauthorized connection attempt detected from IP address 213.66.135.231 to port 23	2019-12-30 04:14:55

Comments on same subnet:

IP	Type	Details	Datetime
213.66.135.39	attackbotsspam	Honeypot attack, port: 5555, PTR: 213-66-135-39-no2212.tbcn.telia.com.	2020-04-13 00:55:17
213.66.135.39	attackbotsspam	Unauthorized connection attempt detected from IP address 213.66.135.39 to port 5555	2020-01-06 03:38:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.66.135.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48971
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.66.135.231.			IN	A

;; AUTHORITY SECTION:
.			321	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122901 1800 900 604800 86400

;; Query time: 932 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 04:14:52 CST 2019
;; MSG SIZE  rcvd: 118

Host info

231.135.66.213.in-addr.arpa domain name pointer 213-66-135-231-no2212.tbcn.telia.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
231.135.66.213.in-addr.arpa	name = 213-66-135-231-no2212.tbcn.telia.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.126.214.50	attack	1596533261 - 08/04/2020 11:27:41 Host: 115.126.214.50/115.126.214.50 Port: 23 TCP Blocked ...	2020-08-04 18:26:45
171.103.78.42	attackspam	(smtpauth) Failed SMTP AUTH login from 171.103.78.42 (TH/Thailand/171-103-78-42.static.asianet.co.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-04 13:57:40 plain authenticator failed for 171-103-78-42.static.asianet.co.th (panahospital.com) [171.103.78.42]: 535 Incorrect authentication data (set_id=f.mehran@safanicu.com)	2020-08-04 18:19:44
112.85.42.176	attackbotsspam	Blocked by jail recidive	2020-08-04 18:38:16
64.227.37.93	attack	2020-08-04T11:23:31.253866n23.at sshd[1928372]: Failed password for root from 64.227.37.93 port 35180 ssh2 2020-08-04T11:27:15.014698n23.at sshd[1931605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.37.93 user=root 2020-08-04T11:27:16.749113n23.at sshd[1931605]: Failed password for root from 64.227.37.93 port 47720 ssh2 ...	2020-08-04 18:43:47
206.189.3.176	attackspam	2020-08-04T11:28:43.829741n23.at sshd[1932708]: Failed password for root from 206.189.3.176 port 54150 ssh2 2020-08-04T11:32:55.099586n23.at sshd[1936417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.3.176 user=root 2020-08-04T11:32:56.979612n23.at sshd[1936417]: Failed password for root from 206.189.3.176 port 37232 ssh2 ...	2020-08-04 18:51:00
85.172.174.5	attackspambots	2020-08-04T11:38:46.474357centos sshd[12821]: Failed password for root from 85.172.174.5 port 43252 ssh2 2020-08-04T11:42:54.795020centos sshd[13048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.172.174.5 user=root 2020-08-04T11:42:57.241968centos sshd[13048]: Failed password for root from 85.172.174.5 port 52970 ssh2 ...	2020-08-04 18:24:01
112.85.42.237	attackspam	Aug 4 05:48:51 NPSTNNYC01T sshd[11277]: Failed password for root from 112.85.42.237 port 28492 ssh2 Aug 4 05:48:53 NPSTNNYC01T sshd[11277]: Failed password for root from 112.85.42.237 port 28492 ssh2 Aug 4 05:48:55 NPSTNNYC01T sshd[11277]: Failed password for root from 112.85.42.237 port 28492 ssh2 ...	2020-08-04 18:28:22
45.129.33.16	attack	Aug 4 12:08:33 debian-2gb-nbg1-2 kernel: \[18794179.572617\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.129.33.16 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=10632 PROTO=TCP SPT=52366 DPT=16188 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-04 18:22:31
165.22.34.222	attack	Aug 4 11:27:08 b-vps wordpress(gpfans.cz)[1796]: Authentication attempt for unknown user buchtic from 165.22.34.222 ...	2020-08-04 18:49:53
104.198.16.231	attackbots	Aug 4 12:30:36 vps647732 sshd[12587]: Failed password for root from 104.198.16.231 port 33790 ssh2 ...	2020-08-04 18:45:27
205.185.119.117	attackbotsspam	TCP port : 23	2020-08-04 18:15:51
177.105.35.51	attack	Aug 4 00:21:02 php1 sshd\[28433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.105.35.51 user=root Aug 4 00:21:04 php1 sshd\[28433\]: Failed password for root from 177.105.35.51 port 37224 ssh2 Aug 4 00:25:01 php1 sshd\[28736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.105.35.51 user=root Aug 4 00:25:03 php1 sshd\[28736\]: Failed password for root from 177.105.35.51 port 34416 ssh2 Aug 4 00:29:09 php1 sshd\[29050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.105.35.51 user=root	2020-08-04 18:37:58
66.70.142.214	attackspambots	2020-08-04T12:21:55.956207vps751288.ovh.net sshd\[17484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.142.214 user=root 2020-08-04T12:21:58.447735vps751288.ovh.net sshd\[17484\]: Failed password for root from 66.70.142.214 port 52668 ssh2 2020-08-04T12:25:23.781350vps751288.ovh.net sshd\[17532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.142.214 user=root 2020-08-04T12:25:25.495041vps751288.ovh.net sshd\[17532\]: Failed password for root from 66.70.142.214 port 41970 ssh2 2020-08-04T12:28:55.896579vps751288.ovh.net sshd\[17572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.142.214 user=root	2020-08-04 18:36:07
51.158.20.200	attackspam	2020-08-04T04:59:11.1071101495-001 sshd[10508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.20.200 user=root 2020-08-04T04:59:12.4602281495-001 sshd[10508]: Failed password for root from 51.158.20.200 port 52923 ssh2 2020-08-04T05:02:52.7655091495-001 sshd[10778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.20.200 user=root 2020-08-04T05:02:54.4597371495-001 sshd[10778]: Failed password for root from 51.158.20.200 port 44901 ssh2 2020-08-04T05:06:41.6487351495-001 sshd[10991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.20.200 user=root 2020-08-04T05:06:43.7796091495-001 sshd[10991]: Failed password for root from 51.158.20.200 port 24132 ssh2 ...	2020-08-04 18:27:27
138.197.130.138	attackspam	Aug 4 11:17:58 abendstille sshd\[5651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.130.138 user=root Aug 4 11:18:01 abendstille sshd\[5651\]: Failed password for root from 138.197.130.138 port 57802 ssh2 Aug 4 11:22:35 abendstille sshd\[9924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.130.138 user=root Aug 4 11:22:37 abendstille sshd\[9924\]: Failed password for root from 138.197.130.138 port 41574 ssh2 Aug 4 11:27:18 abendstille sshd\[14848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.130.138 user=root ...	2020-08-04 18:41:57

Recently Reported IPs

173.91.122.28	23.118.211.47	150.182.236.222	110.35.190.159
159.115.148.199	14.28.95.198	3.241.13.34	37.157.101.63
191.25.154.2	152.231.40.0	217.217.217.105	2.63.24.141
2.132.95.106	189.146.74.231	86.145.3.238	189.110.24.203
206.45.21.108	189.69.191.35	63.177.117.253	192.250.99.124