217.80.48.201 - IPInfo

Basic Info

City: Meitingen

Region: Bayern

Country: Germany

Internet Service Provider: Telekom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 217.80.48.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;217.80.48.201.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091400 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 14 17:40:39 CST 2022
;; MSG SIZE  rcvd: 106

Host info

201.48.80.217.in-addr.arpa domain name pointer pd95030c9.dip0.t-ipconnect.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
201.48.80.217.in-addr.arpa	name = pd95030c9.dip0.t-ipconnect.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.112.214.117	attackspam	Unauthorised access (Dec 3) SRC=112.112.214.117 LEN=40 TTL=51 ID=19875 TCP DPT=8080 WINDOW=65426 SYN Unauthorised access (Dec 2) SRC=112.112.214.117 LEN=40 TTL=51 ID=40846 TCP DPT=8080 WINDOW=65426 SYN Unauthorised access (Dec 2) SRC=112.112.214.117 LEN=40 TTL=51 ID=44733 TCP DPT=8080 WINDOW=65426 SYN Unauthorised access (Dec 2) SRC=112.112.214.117 LEN=40 TTL=51 ID=417 TCP DPT=8080 WINDOW=65426 SYN	2019-12-03 20:09:37
207.180.217.207	attack	Dec 3 05:33:04 firewall sshd[32553]: Invalid user cortier from 207.180.217.207 Dec 3 05:33:05 firewall sshd[32553]: Failed password for invalid user cortier from 207.180.217.207 port 41292 ssh2 Dec 3 05:38:58 firewall sshd[32703]: Invalid user ef from 207.180.217.207 ...	2019-12-03 20:23:01
178.62.236.68	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-12-03 20:27:02
103.221.252.46	attackspam	Dec 3 10:27:38 server sshd\[13257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.252.46 user=root Dec 3 10:27:39 server sshd\[13257\]: Failed password for root from 103.221.252.46 port 33712 ssh2 Dec 3 10:38:47 server sshd\[16164\]: Invalid user M from 103.221.252.46 Dec 3 10:38:47 server sshd\[16164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.252.46 Dec 3 10:38:50 server sshd\[16164\]: Failed password for invalid user M from 103.221.252.46 port 33158 ssh2 ...	2019-12-03 20:10:33
61.175.121.76	attack	Dec 3 02:27:15 tdfoods sshd\[9042\]: Invalid user marg from 61.175.121.76 Dec 3 02:27:15 tdfoods sshd\[9042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.175.121.76 Dec 3 02:27:17 tdfoods sshd\[9042\]: Failed password for invalid user marg from 61.175.121.76 port 22356 ssh2 Dec 3 02:35:30 tdfoods sshd\[9807\]: Invalid user moores from 61.175.121.76 Dec 3 02:35:30 tdfoods sshd\[9807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.175.121.76	2019-12-03 20:37:00
171.221.210.228	attack	Dec 3 11:58:54 sauna sshd[232118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.221.210.228 Dec 3 11:58:56 sauna sshd[232118]: Failed password for invalid user admin from 171.221.210.228 port 60299 ssh2 ...	2019-12-03 20:20:57
185.143.223.152	attackspam	2019-12-03T13:03:37.263522+01:00 lumpi kernel: [664574.340265] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.152 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=61672 PROTO=TCP SPT=59319 DPT=10681 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-03 20:35:57
167.160.160.148	attackspam	Dec 2 06:42:00 sanyalnet-cloud-vps2 sshd[24490]: Connection from 167.160.160.148 port 39596 on 45.62.253.138 port 22 Dec 2 06:42:01 sanyalnet-cloud-vps2 sshd[24490]: Address 167.160.160.148 maps to 167.160.160.148.static.quadranet.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 2 06:42:01 sanyalnet-cloud-vps2 sshd[24490]: User apache from 167.160.160.148 not allowed because not listed in AllowUsers Dec 2 06:42:01 sanyalnet-cloud-vps2 sshd[24490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.160.160.148 user=apache Dec 2 06:42:03 sanyalnet-cloud-vps2 sshd[24490]: Failed password for invalid user apache from 167.160.160.148 port 39596 ssh2 Dec 2 06:42:03 sanyalnet-cloud-vps2 sshd[24490]: Received disconnect from 167.160.160.148 port 39596:11: Bye Bye [preauth] Dec 2 06:42:03 sanyalnet-cloud-vps2 sshd[24490]: Disconnected from 167.160.160.148 port 39596 [preauth] ........ ----------------------------------------------- https	2019-12-03 20:08:07
106.75.240.46	attack	Dec 3 12:36:23 vpn01 sshd[32468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.240.46 Dec 3 12:36:25 vpn01 sshd[32468]: Failed password for invalid user mafia from 106.75.240.46 port 53058 ssh2 ...	2019-12-03 20:35:39
218.92.0.148	attackspam	2019-12-03T12:11:48.131478hub.schaetter.us sshd\[17457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root 2019-12-03T12:11:50.004832hub.schaetter.us sshd\[17457\]: Failed password for root from 218.92.0.148 port 63482 ssh2 2019-12-03T12:12:01.075318hub.schaetter.us sshd\[17457\]: Failed password for root from 218.92.0.148 port 63482 ssh2 2019-12-03T12:12:04.758864hub.schaetter.us sshd\[17457\]: Failed password for root from 218.92.0.148 port 63482 ssh2 2019-12-03T12:12:07.515947hub.schaetter.us sshd\[17457\]: Failed password for root from 218.92.0.148 port 63482 ssh2 ...	2019-12-03 20:18:56
107.174.14.75	attack	SS5,WP GET /CLAIM-NEW-GROUNDS/wp-login.php	2019-12-03 20:16:46
129.204.210.40	attackbots	Dec 2 20:16:53 hanapaa sshd\[6361\]: Invalid user brother from 129.204.210.40 Dec 2 20:16:53 hanapaa sshd\[6361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.210.40 Dec 2 20:16:55 hanapaa sshd\[6361\]: Failed password for invalid user brother from 129.204.210.40 port 46940 ssh2 Dec 2 20:24:11 hanapaa sshd\[7045\]: Invalid user password from 129.204.210.40 Dec 2 20:24:11 hanapaa sshd\[7045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.210.40	2019-12-03 20:31:09
187.19.6.156	attack	Portscan or hack attempt detected by psad/fwsnort	2019-12-03 20:47:10
80.211.94.183	attack	fail2ban	2019-12-03 20:33:56
49.234.12.123	attack	Dec 3 12:23:33 vpn01 sshd[32271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.12.123 Dec 3 12:23:35 vpn01 sshd[32271]: Failed password for invalid user bast from 49.234.12.123 port 35800 ssh2 ...	2019-12-03 20:17:29

Recently Reported IPs

152.251.1.163	152.246.42.136	189.190.209.210	43.139.16.249
77.105.17.13	190.89.38.49	64.224.255.173	170.106.188.14
20.89.60.252	255.157.31.163	154.61.143.238	45.242.27.192
212.46.210.226	137.184.57.10	31.6.21.68	31.6.11.8
128.90.117.155	128.90.145.73	180.254.124.127	185.104.241.154