170.80.21.130 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Guatemala

Internet Service Provider: Blue Consulting Group S. A.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	1433/tcp 445/tcp... [2019-08-29/10-30]10pkt,2pt.(tcp)	2019-10-30 15:00:28
attack	445/tcp 445/tcp 445/tcp [2019-07-05/15]3pkt	2019-07-16 08:04:01

Comments on same subnet:

IP	Type	Details	Datetime
170.80.21.133	attack	445/tcp 1433/tcp... [2020-03-13/05-02]5pkt,2pt.(tcp)	2020-05-03 06:01:07
170.80.21.133	attackbots	firewall-block, port(s): 1433/tcp	2020-03-02 00:12:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 170.80.21.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7600
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;170.80.21.130.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 16 08:03:56 CST 2019
;; MSG SIZE  rcvd: 117

Host info

130.21.80.170.in-addr.arpa domain name pointer 21.130.blue.net.gt.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
130.21.80.170.in-addr.arpa	name = 21.130.blue.net.gt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.190.14	attackspambots	Jun 23 15:45:43 dignus sshd[27255]: Failed password for root from 222.186.190.14 port 37378 ssh2 Jun 23 15:45:45 dignus sshd[27280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root Jun 23 15:45:47 dignus sshd[27280]: Failed password for root from 222.186.190.14 port 22220 ssh2 Jun 23 15:45:54 dignus sshd[27292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root Jun 23 15:45:56 dignus sshd[27292]: Failed password for root from 222.186.190.14 port 53787 ssh2 ...	2020-06-24 06:49:59
188.86.147.45	attack	Automatic report - Port Scan Attack	2020-06-24 06:46:26
222.186.173.154	attackspam	Jun 24 00:51:39 abendstille sshd\[7683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Jun 24 00:51:41 abendstille sshd\[7683\]: Failed password for root from 222.186.173.154 port 62994 ssh2 Jun 24 00:51:44 abendstille sshd\[7683\]: Failed password for root from 222.186.173.154 port 62994 ssh2 Jun 24 00:51:47 abendstille sshd\[7683\]: Failed password for root from 222.186.173.154 port 62994 ssh2 Jun 24 00:51:51 abendstille sshd\[7683\]: Failed password for root from 222.186.173.154 port 62994 ssh2 ...	2020-06-24 06:57:25
106.12.175.226	attackbotsspam	Jun 24 01:05:01 meumeu sshd[1273663]: Invalid user don from 106.12.175.226 port 37050 Jun 24 01:05:01 meumeu sshd[1273663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.175.226 Jun 24 01:05:01 meumeu sshd[1273663]: Invalid user don from 106.12.175.226 port 37050 Jun 24 01:05:03 meumeu sshd[1273663]: Failed password for invalid user don from 106.12.175.226 port 37050 ssh2 Jun 24 01:06:44 meumeu sshd[1273728]: Invalid user zxl from 106.12.175.226 port 36562 Jun 24 01:06:44 meumeu sshd[1273728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.175.226 Jun 24 01:06:44 meumeu sshd[1273728]: Invalid user zxl from 106.12.175.226 port 36562 Jun 24 01:06:46 meumeu sshd[1273728]: Failed password for invalid user zxl from 106.12.175.226 port 36562 ssh2 Jun 24 01:08:31 meumeu sshd[1273765]: Invalid user oracle from 106.12.175.226 port 35326 ...	2020-06-24 07:15:43
207.154.215.119	attackspambots	Jun 23 23:41:53 home sshd[25208]: Failed password for root from 207.154.215.119 port 43498 ssh2 Jun 23 23:46:23 home sshd[25631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.215.119 Jun 23 23:46:25 home sshd[25631]: Failed password for invalid user sentry from 207.154.215.119 port 43360 ssh2 ...	2020-06-24 07:08:46
171.220.243.213	attack	Jun 23 22:28:40 ns382633 sshd\[25614\]: Invalid user rsyncd from 171.220.243.213 port 54582 Jun 23 22:28:40 ns382633 sshd\[25614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.220.243.213 Jun 23 22:28:41 ns382633 sshd\[25614\]: Failed password for invalid user rsyncd from 171.220.243.213 port 54582 ssh2 Jun 23 22:32:27 ns382633 sshd\[26390\]: Invalid user cuser from 171.220.243.213 port 53946 Jun 23 22:32:27 ns382633 sshd\[26390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.220.243.213	2020-06-24 07:09:48
200.41.188.82	attackbots	Unauthorized connection attempt from IP address 200.41.188.82 on Port 445(SMB)	2020-06-24 07:01:32
210.10.208.238	attack	Jun 23 22:32:18 srv sshd[1705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.10.208.238	2020-06-24 07:20:10
106.245.228.122	attackbots	124. On Jun 23 2020 experienced a Brute Force SSH login attempt -> 41 unique times by 106.245.228.122.	2020-06-24 06:47:09
68.183.169.251	attackspambots	Port Scan detected from 68.183.169.251 (US/United States/California/Santa Clara/-). 4 hits in the last 180 seconds	2020-06-24 06:59:36
222.186.175.183	attack	Jun 24 01:08:02 home sshd[5790]: Failed password for root from 222.186.175.183 port 44210 ssh2 Jun 24 01:08:14 home sshd[5790]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 44210 ssh2 [preauth] Jun 24 01:08:20 home sshd[5810]: Failed password for root from 222.186.175.183 port 58530 ssh2 ...	2020-06-24 07:11:47
77.241.18.2	attackspam	Unauthorized connection attempt from IP address 77.241.18.2 on Port 445(SMB)	2020-06-24 06:49:23
157.41.188.161	attack	Unauthorized connection attempt from IP address 157.41.188.161 on Port 445(SMB)	2020-06-24 07:03:15
54.37.86.192	attackbotsspam	Jun 24 00:35:25 pornomens sshd\[1527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.86.192 user=root Jun 24 00:35:27 pornomens sshd\[1527\]: Failed password for root from 54.37.86.192 port 43588 ssh2 Jun 24 00:38:22 pornomens sshd\[1571\]: Invalid user rose from 54.37.86.192 port 43146 Jun 24 00:38:22 pornomens sshd\[1571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.86.192 ...	2020-06-24 07:00:22
185.82.213.6	attack	Invalid user bsnl from 185.82.213.6 port 33834	2020-06-24 07:15:32

Recently Reported IPs

17.43.216.183	113.176.7.225	156.220.240.234	157.47.249.34
21.13.32.126	193.148.14.200	63.85.162.49	186.226.36.57
136.4.37.3	97.149.207.161	144.66.20.32	129.9.109.65
75.253.91.49	198.240.27.148	31.16.169.31	73.40.221.153
229.114.5.147	137.212.244.231	104.248.4.156	27.64.128.127