2a09:80c0:24::47

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Technische Universitaet Muenchen

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5435bcba7cdb6455 \| WAF_Rule_ID: 100001 \| WAF_Kind: firewall \| CF_Action: drop \| Country: DE \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: skk.moe \| User-Agent: \| CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 07:18:56

Type

Details

Datetime

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 5435bcba7cdb6455 | WAF_Rule_ID: 100001 | WAF_Kind: firewall | CF_Action: drop | Country: DE | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: skk.moe | User-Agent:  | CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 07:18:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2a09:80c0:24::47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42717
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2a09:80c0:24::47.		IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Thu Dec 12 07:21:49 CST 2019
;; MSG SIZE  rcvd: 120

Host info

7.4.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.2.0.0.0.c.0.8.9.0.a.2.ip6.arpa domain name pointer one06.cm.in.tum.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
7.4.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.2.0.0.0.c.0.8.9.0.a.2.ip6.arpa	name = one06.cm.in.tum.de.

Authoritative answers can be found from:

Related comments:

IP	Type	Details	Datetime
161.117.185.222	attackspambots	1579795763 - 01/23/2020 23:09:23 Host: 161.117.185.222/161.117.185.222 Port: 6379 TCP Blocked ...	2020-01-24 01:23:15
202.109.189.155	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-24 00:55:07
153.176.58.180	attackspam	Unauthorized connection attempt detected from IP address 153.176.58.180 to port 2220 [J]	2020-01-24 01:32:36
103.38.15.19	attack	Cluster member 192.168.0.31 (-) said, DENY 103.38.15.19, Reason:[(imapd) Failed IMAP login from 103.38.15.19 (IN/India/dwan.co.in.15.38.103.in-addr.arpa): 1 in the last 3600 secs]	2020-01-24 01:29:30
59.160.116.206	attackbotsspam	Very low quality (reply to GMail) 419/phishing.	2020-01-24 01:21:33
139.199.164.21	attack	Jan 23 18:11:37 OPSO sshd\[29391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.164.21 user=root Jan 23 18:11:38 OPSO sshd\[29391\]: Failed password for root from 139.199.164.21 port 35078 ssh2 Jan 23 18:16:46 OPSO sshd\[30651\]: Invalid user joshua from 139.199.164.21 port 58104 Jan 23 18:16:46 OPSO sshd\[30651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.164.21 Jan 23 18:16:49 OPSO sshd\[30651\]: Failed password for invalid user joshua from 139.199.164.21 port 58104 ssh2	2020-01-24 01:33:08
104.206.128.34	attackbotsspam	8444/tcp 9595/tcp 161/udp... [2019-11-28/2020-01-23]40pkt,11pt.(tcp),1pt.(udp)	2020-01-24 00:45:53
217.112.128.216	attack	Jan 23 17:09:41 server postfix/smtpd[18704]: NOQUEUE: reject: RCPT from wave.zilanco.com[217.112.128.216]: 554 5.7.1 Service unavailable; Client host [217.112.128.216] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL461503 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-01-24 01:14:01
39.98.241.242	attackspambots	Unauthorized connection attempt detected from IP address 39.98.241.242 to port 3306 [J]	2020-01-24 01:13:31
195.181.60.108	attack	firewall-block, port(s): 8080/tcp	2020-01-24 00:42:31
37.97.183.181	attack	Very low quality (reply to GMail) 419/phishing.	2020-01-24 01:30:29
178.128.221.162	attack	Unauthorized connection attempt detected from IP address 178.128.221.162 to port 2220 [J]	2020-01-24 01:21:55
171.244.5.77	attackbots	Jan 23 18:16:41 mout sshd[20966]: Invalid user lian from 171.244.5.77 port 50092	2020-01-24 01:24:33
185.175.93.3	attackspambots	firewall-block, port(s): 14856/tcp	2020-01-24 00:45:16
185.142.236.35	attack	Unauthorized connection attempt detected from IP address 185.142.236.35 to port 4022 [J]	2020-01-24 00:47:24

Recently Reported IPs

220.184.98.65	220.181.51.81	176.134.238.115	183.250.214.56
183.185.20.239	175.184.164.89	175.152.31.238	175.42.0.203
171.94.174.41	171.37.36.67	171.34.178.72	171.22.255.62
150.255.6.148	124.235.138.233	124.235.138.126	124.88.113.95
124.88.112.145	123.191.140.32	123.160.172.147	123.145.39.53