0.0.0.81 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Reserved

Internet Service Provider: Broadcast RFC1700

Hostname: unknown

Organization: unknown

Usage Type: Reserved

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	pfaffenroth-photographie.de 2404:f080:1101:320:150:95:108:81 \[11/Sep/2019:09:56:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 6694 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" pfaffenroth-photographie.de 2404:f080:1101:320:150:95:108:81 \[11/Sep/2019:09:56:12 +0200\] "POST /wp-login.php HTTP/1.1" 200 6705 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-11 18:10:42

Type

Details

Datetime

attackbots

pfaffenroth-photographie.de 2404:f080:1101:320:150:95:108:81 \[11/Sep/2019:09:56:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 6694 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
pfaffenroth-photographie.de 2404:f080:1101:320:150:95:108:81 \[11/Sep/2019:09:56:12 +0200\] "POST /wp-login.php HTTP/1.1" 200 6705 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"

2019-09-11 18:10:42

Comments on same subnet:

IP	Type	Details	Datetime
0.0.0.193	attackspam	Fail2Ban Ban Triggered	2020-02-21 00:19:57
0.0.0.4	attack	chaangnoi.com 2a00:ab00:203:b::4 \[03/Nov/2019:06:51:34 +0100\] "POST /xmlrpc.php HTTP/1.1" 301 445 "-" "WordPress/4.5.15\; https://evparg.ru" chaangnoifulda.de 2a00:ab00:203:b::4 \[03/Nov/2019:06:51:34 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4248 "-" "WordPress/4.5.15\; https://evparg.ru"	2019-11-03 17:30:14
0.0.0.32	attackspam	www.goldgier.de 2a06:dd00:1:4::32 \[29/Oct/2019:04:48:45 +0100\] "POST /wp-login.php HTTP/1.1" 200 6202 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.goldgier.de 2a06:dd00:1:4::32 \[29/Oct/2019:04:48:46 +0100\] "POST /wp-login.php HTTP/1.1" 200 6197 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-29 17:30:23
0.0.0.27	attackbots	abcdata-sys.de:80 2a02:4780:1:8::27 - - \[28/Oct/2019:12:51:29 +0100\] "POST /xmlrpc.php HTTP/1.1" 301 441 "-" "WordPress/4.7.11\; http://claudiaservicios.online" www.goldgier.de 2a02:4780:1:8::27 \[28/Oct/2019:12:51:29 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4484 "-" "WordPress/4.7.11\; http://claudiaservicios.online"	2019-10-28 23:02:28
0.0.0.22	attackspambots	abasicmove.de 2a00:d680:10:50::22 \[18/Oct/2019:21:53:31 +0200\] "POST /wp-login.php HTTP/1.1" 200 5761 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" abasicmove.de 2a00:d680:10:50::22 \[18/Oct/2019:21:53:31 +0200\] "POST /wp-login.php HTTP/1.1" 200 5560 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-19 04:14:06
0.0.0.44	attackbotsspam	www.ft-1848-basketball.de 2a00:d0c0:200:0:b9:1a:9c:44 \[18/Oct/2019:13:33:16 +0200\] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 2a00:d0c0:200:0:b9:1a:9c:44 \[18/Oct/2019:13:33:16 +0200\] "POST /wp-login.php HTTP/1.1" 200 2143 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-19 03:04:17
0.0.0.67	attackbots	miraniessen.de 2a02:408:7722:1:77:222:62:67 \[09/Sep/2019:06:38:19 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" miraniessen.de 2a02:408:7722:1:77:222:62:67 \[09/Sep/2019:06:38:20 +0200\] "POST /wp-login.php HTTP/1.1" 200 5976 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-09 15:36:08
0.0.0.63	attack	masters-of-media.de 2404:f080:1101:318:150:95:105:63 \[09/Sep/2019:06:39:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 5855 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" masters-of-media.de 2404:f080:1101:318:150:95:105:63 \[09/Sep/2019:06:39:10 +0200\] "POST /wp-login.php HTTP/1.1" 200 5854 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-09 14:57:40
0.0.0.77	attackbotsspam	masters-of-media.de 2a06:dd00:1:4:1::77 \[21/Jun/2019:06:36:25 +0200\] "POST /wp-login.php HTTP/1.1" 200 5856 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" masters-of-media.de 2a06:dd00:1:4:1::77 \[21/Jun/2019:06:36:26 +0200\] "POST /wp-login.php HTTP/1.1" 200 5811 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-06-21 17:19:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 0.0.0.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20953
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;0.0.0.81.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091100 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 11 18:10:37 CST 2019
;; MSG SIZE  rcvd: 112

Host info

Host 81.0.0.0.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 81.0.0.0.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
219.240.99.110	attackspam	Aug 6 05:16:00 localhost sshd[59078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.240.99.110 user=root Aug 6 05:16:02 localhost sshd[59078]: Failed password for root from 219.240.99.110 port 35834 ssh2 Aug 6 05:20:28 localhost sshd[59454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.240.99.110 user=root Aug 6 05:20:30 localhost sshd[59454]: Failed password for root from 219.240.99.110 port 45996 ssh2 Aug 6 05:24:55 localhost sshd[59800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.240.99.110 user=root Aug 6 05:24:57 localhost sshd[59800]: Failed password for root from 219.240.99.110 port 56164 ssh2 ...	2020-08-06 13:39:29
35.189.123.190	attackbotsspam	Aug 2 20:53:02 cumulus sshd[32613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.189.123.190 user=r.r Aug 2 20:53:03 cumulus sshd[32613]: Failed password for r.r from 35.189.123.190 port 43264 ssh2 Aug 2 20:53:03 cumulus sshd[32613]: Received disconnect from 35.189.123.190 port 43264:11: Bye Bye [preauth] Aug 2 20:53:03 cumulus sshd[32613]: Disconnected from 35.189.123.190 port 43264 [preauth] Aug 2 21:01:24 cumulus sshd[1061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.189.123.190 user=r.r Aug 2 21:01:26 cumulus sshd[1061]: Failed password for r.r from 35.189.123.190 port 39024 ssh2 Aug 2 21:01:26 cumulus sshd[1061]: Received disconnect from 35.189.123.190 port 39024:11: Bye Bye [preauth] Aug 2 21:01:26 cumulus sshd[1061]: Disconnected from 35.189.123.190 port 39024 [preauth] Aug 2 21:05:11 cumulus sshd[1520]: pam_unix(sshd:auth): authentication failure; logname= ui........ -------------------------------	2020-08-06 13:53:31
85.234.117.151	attackbots	Aug 5 18:49:02 auw2 sshd\[20324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.234.117.151 user=root Aug 5 18:49:03 auw2 sshd\[20324\]: Failed password for root from 85.234.117.151 port 56686 ssh2 Aug 5 18:53:39 auw2 sshd\[20678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.234.117.151 user=root Aug 5 18:53:41 auw2 sshd\[20678\]: Failed password for root from 85.234.117.151 port 34076 ssh2 Aug 5 18:58:22 auw2 sshd\[21107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.234.117.151 user=root	2020-08-06 13:22:30
180.191.188.60	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-06 13:35:16
167.71.52.241	attack	Port Scan detected from 167.71.52.241 (DE/Germany/Hesse/Frankfurt am Main/-). 4 hits in the last 155 seconds	2020-08-06 13:28:08
217.182.242.13	attackbotsspam	Spam detected 2020.08.06 07:24:52 blocked until 2020.09.25 00:27:39 by HoneyPot	2020-08-06 13:44:20
142.93.52.3	attackbotsspam	Aug 6 02:09:31 firewall sshd[10490]: Failed password for root from 142.93.52.3 port 51364 ssh2 Aug 6 02:13:18 firewall sshd[10609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.52.3 user=root Aug 6 02:13:20 firewall sshd[10609]: Failed password for root from 142.93.52.3 port 34064 ssh2 ...	2020-08-06 13:22:04
70.45.133.188	attackbots	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-08-06 13:31:55
139.155.86.130	attackspam	Aug 6 07:45:22 buvik sshd[8951]: Failed password for root from 139.155.86.130 port 58958 ssh2 Aug 6 07:49:57 buvik sshd[9464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.86.130 user=root Aug 6 07:49:58 buvik sshd[9464]: Failed password for root from 139.155.86.130 port 55240 ssh2 ...	2020-08-06 13:54:45
218.92.0.148	attackspambots	Aug 6 05:51:42 localhost sshd[61909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Aug 6 05:51:43 localhost sshd[61909]: Failed password for root from 218.92.0.148 port 10532 ssh2 Aug 6 05:51:47 localhost sshd[61909]: Failed password for root from 218.92.0.148 port 10532 ssh2 Aug 6 05:51:42 localhost sshd[61909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Aug 6 05:51:43 localhost sshd[61909]: Failed password for root from 218.92.0.148 port 10532 ssh2 Aug 6 05:51:47 localhost sshd[61909]: Failed password for root from 218.92.0.148 port 10532 ssh2 Aug 6 05:51:42 localhost sshd[61909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Aug 6 05:51:43 localhost sshd[61909]: Failed password for root from 218.92.0.148 port 10532 ssh2 Aug 6 05:51:47 localhost sshd[61909]: Failed password fo ...	2020-08-06 13:51:58
128.199.87.167	attackbots	Aug 6 07:37:25 PorscheCustomer sshd[16327]: Failed password for root from 128.199.87.167 port 54204 ssh2 Aug 6 07:41:40 PorscheCustomer sshd[16574]: Failed password for root from 128.199.87.167 port 33614 ssh2 ...	2020-08-06 13:55:31
123.31.43.40	attackbots	CF RAY ID: 5be1c4082878c3a4 IP Class: noRecord URI: /wp-login.php	2020-08-06 13:22:49
71.91.79.43	attackbotsspam	" "	2020-08-06 13:42:53
217.107.219.61	attack	(ftpd) Failed FTP login from 217.107.219.61 (RU/Russia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 6 08:24:27 ir1 pure-ftpd: (?@217.107.219.61) [WARNING] Authentication failed for user [inpars]	2020-08-06 13:14:46
192.35.168.92	attack	Aug 6 07:25:00 [-] [-]: client @0x7f8bfc11e830 192.35.168.92#59046 (c.afekv.com): query (cache) 'c.afekv.com/A/IN' denied	2020-08-06 13:34:38

Recently Reported IPs

77.239.216.100	66.249.65.204	222.186.31.145	49.69.209.16
91.188.245.233	210.81.163.28	50.186.57.20	193.93.193.67
129.225.96.184	124.56.31.203	172.105.0.111	86.105.195.93
179.48.163.115	45.79.58.151	124.165.224.158	190.204.150.196
63.166.94.126	27.97.81.168	15.188.70.213	211.53.128.215