2.214.116.164 - IPInfo

Basic Info

City: Hamburg

Region: Hamburg

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.214.116.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6260
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.214.116.164.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023020600 1800 900 604800 86400

;; Query time: 210 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 06 16:58:34 CST 2023
;; MSG SIZE  rcvd: 106

Host info

164.116.214.2.in-addr.arpa domain name pointer dynamic-002-214-116-164.2.214.pool.telefonica.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.116.214.2.in-addr.arpa	name = dynamic-002-214-116-164.2.214.pool.telefonica.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
73.206.43.165	attack	Draytek Vigor Remote Command Execution Vulnerability, PTR: c-73-206-43-165.hsd1.tx.comcast.net.	2020-04-16 15:42:59
213.180.203.1	attack	[Thu Apr 16 10:52:43.481831 2020] [:error] [pid 26533:tid 140327401670400] [client 213.180.203.1:52924] [client 213.180.203.1] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XpfWiwgMfcwBi0GyvasHrgAABOw"] ...	2020-04-16 15:06:50
36.155.113.40	attackspam	Apr 16 06:56:03 sshgateway sshd\[7313\]: Invalid user zui from 36.155.113.40 Apr 16 06:56:03 sshgateway sshd\[7313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.40 Apr 16 06:56:05 sshgateway sshd\[7313\]: Failed password for invalid user zui from 36.155.113.40 port 38118 ssh2	2020-04-16 15:19:49
179.124.34.9	attack	Apr 16 06:40:09 pi sshd[3961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.124.34.9 Apr 16 06:40:10 pi sshd[3961]: Failed password for invalid user cguarini from 179.124.34.9 port 48042 ssh2	2020-04-16 15:22:48
106.13.66.103	attackspambots	$f2bV_matches	2020-04-16 15:08:49
128.199.245.33	attackspam	128.199.245.33 - - [16/Apr/2020:05:52:30 +0200] "GET /wp-login.php HTTP/1.1" 200 6463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.245.33 - - [16/Apr/2020:05:52:34 +0200] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.245.33 - - [16/Apr/2020:05:52:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-16 15:14:30
5.135.152.97	attackbots	Apr 16 07:55:10 v22018086721571380 sshd[24268]: Failed password for invalid user ba from 5.135.152.97 port 43436 ssh2 Apr 16 08:01:23 v22018086721571380 sshd[31728]: Failed password for invalid user b2 from 5.135.152.97 port 50190 ssh2	2020-04-16 15:32:29
104.239.248.11	attackspambots	Apr 16 06:30:00 host5 sshd[17306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.239.248.11 user=root Apr 16 06:30:02 host5 sshd[17306]: Failed password for root from 104.239.248.11 port 59400 ssh2 ...	2020-04-16 15:09:20
46.101.40.21	attackbots	Invalid user android from 46.101.40.21 port 48886	2020-04-16 15:26:37
213.246.58.146	attack	" "	2020-04-16 15:50:09
66.231.22.18	attack	<6 unauthorized SSH connections	2020-04-16 15:52:23
198.71.236.83	attackspambots	xmlrpc attack	2020-04-16 15:35:37
61.42.20.128	attackbots	SSH Brute-Forcing (server1)	2020-04-16 15:51:22
110.49.71.249	attack	SSH invalid-user multiple login attempts	2020-04-16 15:49:23
95.243.136.198	attackbots	$f2bV_matches	2020-04-16 15:46:22

Recently Reported IPs

2.216.102.219	2.236.219.99	2.217.141.128	2.27.164.142
2.227.231.231	2.255.57.176	2.26.185.216	2.223.140.167
2.250.190.95	2.217.88.183	2.232.135.97	2.251.157.127
45.66.230.156	2.23.242.239	178.23.190.252	2.246.94.194
95.24.249.134	95.24.167.239	95.174.46.119	95.99.250.122