20.52.34.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	2369 ssh attempts over 24 hour period.	2020-09-06 03:23:01
attackbots	2369 ssh attempts over 24 hour period.	2020-09-05 18:58:29

Comments on same subnet:

IP	Type	Details	Datetime
20.52.34.10	attackbotsspam	Jul 15 21:36:03 rancher-0 sshd[347418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.52.34.10 user=root Jul 15 21:36:06 rancher-0 sshd[347418]: Failed password for root from 20.52.34.10 port 40377 ssh2 ...	2020-07-16 03:53:13
20.52.34.10	attackspam	Jul 15 07:42:19 vps46666688 sshd[28133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.52.34.10 Jul 15 07:42:21 vps46666688 sshd[28133]: Failed password for invalid user admin from 20.52.34.10 port 10976 ssh2 ...	2020-07-15 19:58:46
20.52.34.10	attackbotsspam	Unauthorized SSH login attempts	2020-07-15 17:25:01
20.52.34.10	attack	Jul 14 09:38:31 r.ca sshd[22297]: Failed password for invalid user pickleball from 20.52.34.10 port 19219 ssh2	2020-07-15 01:10:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.52.34.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56713
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;20.52.34.80.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090500 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 05 18:58:25 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 80.34.52.20.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.34.52.20.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.72.95	attackspambots	$f2bV_matches	2020-03-25 06:31:11
93.186.254.22	attack	Mar 24 23:10:43 vps691689 sshd[15892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.186.254.22 Mar 24 23:10:45 vps691689 sshd[15892]: Failed password for invalid user tv from 93.186.254.22 port 41074 ssh2 Mar 24 23:16:18 vps691689 sshd[16014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.186.254.22 ...	2020-03-25 06:27:13
110.164.189.53	attack	Mar 24 23:58:32 localhost sshd\[24141\]: Invalid user jarvia from 110.164.189.53 port 35036 Mar 24 23:58:32 localhost sshd\[24141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.164.189.53 Mar 24 23:58:34 localhost sshd\[24141\]: Failed password for invalid user jarvia from 110.164.189.53 port 35036 ssh2	2020-03-25 07:02:21
185.173.35.37	attackbotsspam	9042/tcp 22/tcp 5060/udp... [2020-01-25/03-24]53pkt,37pt.(tcp),5pt.(udp),1tp.(icmp)	2020-03-25 06:34:12
106.12.88.95	attack	Mar 24 23:20:54 santamaria sshd\[5169\]: Invalid user lg from 106.12.88.95 Mar 24 23:20:54 santamaria sshd\[5169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.95 Mar 24 23:20:56 santamaria sshd\[5169\]: Failed password for invalid user lg from 106.12.88.95 port 45112 ssh2 ...	2020-03-25 06:25:23
140.143.189.177	attack	SSH Invalid Login	2020-03-25 07:01:32
78.128.113.72	attackbots	Mar 24 22:25:15 blackbee postfix/smtpd\[14289\]: warning: unknown\[78.128.113.72\]: SASL LOGIN authentication failed: authentication failure Mar 24 22:25:18 blackbee postfix/smtpd\[14288\]: warning: unknown\[78.128.113.72\]: SASL LOGIN authentication failed: authentication failure Mar 24 22:29:50 blackbee postfix/smtpd\[14288\]: warning: unknown\[78.128.113.72\]: SASL LOGIN authentication failed: authentication failure Mar 24 22:29:54 blackbee postfix/smtpd\[14288\]: warning: unknown\[78.128.113.72\]: SASL LOGIN authentication failed: authentication failure Mar 24 22:31:55 blackbee postfix/smtpd\[14288\]: warning: unknown\[78.128.113.72\]: SASL LOGIN authentication failed: authentication failure ...	2020-03-25 06:32:29
49.233.153.71	attackbotsspam	SSH Invalid Login	2020-03-25 06:52:39
85.25.40.83	attack	Email Subject: 'Sky Ticket'	2020-03-25 06:59:03
142.44.243.190	attackbotsspam	Mar 24 21:46:17 sshd\[17456\]: User root from 190.ip-142-44-243.net not allowed because not listed in AllowUsersMar 24 21:46:19 sshd\[17456\]: Failed password for invalid user root from 142.44.243.190 port 55782 ssh2 ...	2020-03-25 06:49:38
168.234.50.2	attackbots	Unauthorized connection attempt detected from IP address 168.234.50.2 to port 445	2020-03-25 06:45:52
182.72.104.106	attackspam	Fail2Ban Ban Triggered (2)	2020-03-25 06:42:23
180.166.114.14	attack	Mar 24 15:24:13 firewall sshd[1182]: Invalid user seiko from 180.166.114.14 Mar 24 15:24:14 firewall sshd[1182]: Failed password for invalid user seiko from 180.166.114.14 port 38464 ssh2 Mar 24 15:28:05 firewall sshd[1500]: Invalid user iz from 180.166.114.14 ...	2020-03-25 06:24:19
206.189.45.234	attackspam	Mar 24 18:56:43 game-panel sshd[19512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.45.234 Mar 24 18:56:45 game-panel sshd[19512]: Failed password for invalid user user from 206.189.45.234 port 43370 ssh2 Mar 24 19:00:11 game-panel sshd[19653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.45.234	2020-03-25 06:49:54
92.222.89.7	attack	2020-03-24T19:07:36.486424shield sshd\[11843\]: Invalid user cop from 92.222.89.7 port 39300 2020-03-24T19:07:36.494648shield sshd\[11843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=7.ip-92-222-89.eu 2020-03-24T19:07:38.736972shield sshd\[11843\]: Failed password for invalid user cop from 92.222.89.7 port 39300 ssh2 2020-03-24T19:10:36.219184shield sshd\[12455\]: Invalid user nee from 92.222.89.7 port 56400 2020-03-24T19:10:36.228387shield sshd\[12455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=7.ip-92-222-89.eu	2020-03-25 06:43:09

Recently Reported IPs

181.66.195.106	14.162.129.50	200.93.65.233	117.196.129.97
158.217.52.238	200.125.216.223	181.118.66.173	71.105.48.7
60.53.209.95	187.163.35.52	52.142.164.243	41.94.22.6
63.135.90.71	61.216.140.180	142.62.245.133	13.36.117.172
37.204.193.30	103.29.204.66	218.4.202.186	203.87.133.178