2c0f:f530::d00:112

Basic Info

City: unknown

Region: unknown

Country: Seychelles

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attacknormal	inetnum: 80.150.168.0 - 80.150.171.255 netname: DTAG-TRANSIT14 descr: Deutsche Telekom AG descr: for IP-Transit org: ORG-DTAG1-RIPE country: DE admin-c: DTIP tech-c: DTST status: ASSIGNED PA remarks: INFRA-AW mnt-by: DTAG-NIC created: 2010-12-09T12:27:25Z last-modified: 2014-06-19T08:59:54Z source: RIPE organisation: ORG-DTAG1-RIPE org-name: Deutsche Telekom AG org-type: OTHER address: Group Information Security, SDA/Abuse address: T-Online-Allee 1 address: DE 64295 Darmstadt remarks: abuse contact in case of Spam, hack attacks, illegal activity, violation, scans, probes, etc.	2020-12-18 16:15:33

Type

Details

Datetime

attacknormal

inetnum:        80.150.168.0 - 80.150.171.255
netname:        DTAG-TRANSIT14
descr:          Deutsche Telekom AG
descr:          for IP-Transit
org:            ORG-DTAG1-RIPE
country:        DE
admin-c:        DTIP
tech-c:         DTST
status:         ASSIGNED PA
remarks:        INFRA-AW
mnt-by:         DTAG-NIC
created:        2010-12-09T12:27:25Z
last-modified:  2014-06-19T08:59:54Z
source:         RIPE

organisation:   ORG-DTAG1-RIPE
org-name:       Deutsche Telekom AG
org-type:       OTHER
address:        Group Information Security, SDA/Abuse
address:        T-Online-Allee 1
address:        DE 64295 Darmstadt
remarks:        abuse contact in case of Spam,
                hack attacks, illegal activity,
                violation, scans, probes, etc.

2020-12-18 16:15:33

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2c0f:f530::d00:112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 11069
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2c0f:f530::d00:112.		IN	A

;; Query time: 2970 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 22 17:44:25 CST 2020
;; MSG SIZE  rcvd: 47

Host info

Host 2.1.1.0.0.0.d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.5.f.f.0.c.2.ip6.arpa not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.1.1.0.0.0.d.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.3.5.f.f.0.c.2.ip6.arpa: NXDOMAIN

Related comments:

IP	Type	Details	Datetime
107.170.48.143	attack	secondhandhall.d-a-n-i-e-l.de 107.170.48.143 \[17/Aug/2019:20:33:29 +0200\] "POST /wp-login.php HTTP/1.1" 200 1932 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" secondhandhall.d-a-n-i-e-l.de 107.170.48.143 \[17/Aug/2019:20:33:29 +0200\] "POST /wp-login.php HTTP/1.1" 200 1895 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-08-18 04:19:28
50.99.193.144	attack	Aug 17 08:32:58 php1 sshd\[30682\]: Invalid user admin from 50.99.193.144 Aug 17 08:32:58 php1 sshd\[30682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.99.193.144 Aug 17 08:33:00 php1 sshd\[30682\]: Failed password for invalid user admin from 50.99.193.144 port 34876 ssh2 Aug 17 08:33:03 php1 sshd\[30682\]: Failed password for invalid user admin from 50.99.193.144 port 34876 ssh2 Aug 17 08:33:06 php1 sshd\[30682\]: Failed password for invalid user admin from 50.99.193.144 port 34876 ssh2	2019-08-18 04:41:21
142.93.179.95	attack	Aug 17 10:21:22 lcprod sshd\[16919\]: Invalid user marcelo from 142.93.179.95 Aug 17 10:21:22 lcprod sshd\[16919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.179.95 Aug 17 10:21:24 lcprod sshd\[16919\]: Failed password for invalid user marcelo from 142.93.179.95 port 44342 ssh2 Aug 17 10:25:26 lcprod sshd\[17286\]: Invalid user yl from 142.93.179.95 Aug 17 10:25:26 lcprod sshd\[17286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.179.95	2019-08-18 04:35:39
59.49.233.24	attack	failed_logins	2019-08-18 05:03:28
159.203.13.4	attackbotsspam	Aug 17 16:26:17 TORMINT sshd\[2632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.13.4 user=root Aug 17 16:26:19 TORMINT sshd\[2632\]: Failed password for root from 159.203.13.4 port 34024 ssh2 Aug 17 16:30:17 TORMINT sshd\[3088\]: Invalid user squirrel from 159.203.13.4 Aug 17 16:30:17 TORMINT sshd\[3088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.13.4 ...	2019-08-18 04:35:18
91.121.110.97	attack	Aug 17 22:08:08 SilenceServices sshd[27722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.97 Aug 17 22:08:11 SilenceServices sshd[27722]: Failed password for invalid user karen from 91.121.110.97 port 37424 ssh2 Aug 17 22:11:59 SilenceServices sshd[30178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.97	2019-08-18 04:24:36
104.237.255.204	attackbotsspam	Brute force SMTP login attempted. ...	2019-08-18 04:54:24
104.236.246.16	attack	SSH Brute Force, server-1 sshd[5104]: Failed password for root from 104.236.246.16 port 55446 ssh2	2019-08-18 04:36:00
14.63.223.226	attackspambots	Aug 17 10:35:10 kapalua sshd\[10910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 user=root Aug 17 10:35:11 kapalua sshd\[10910\]: Failed password for root from 14.63.223.226 port 60650 ssh2 Aug 17 10:42:21 kapalua sshd\[11718\]: Invalid user oy from 14.63.223.226 Aug 17 10:42:21 kapalua sshd\[11718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 Aug 17 10:42:23 kapalua sshd\[11718\]: Failed password for invalid user oy from 14.63.223.226 port 51864 ssh2	2019-08-18 04:45:35
123.30.154.184	attackbots	SSH Brute-Force reported by Fail2Ban	2019-08-18 04:54:04
195.99.22.143	attack	Unauthorized connection attempt from IP address 195.99.22.143 on Port 445(SMB)	2019-08-18 04:55:35
162.248.4.46	attackspam	2019-08-17T19:59:29.854301hub.schaetter.us sshd\[17823\]: Invalid user hrd from 162.248.4.46 2019-08-17T19:59:29.891885hub.schaetter.us sshd\[17823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dredgeserv.info 2019-08-17T19:59:31.843257hub.schaetter.us sshd\[17823\]: Failed password for invalid user hrd from 162.248.4.46 port 50902 ssh2 2019-08-17T20:03:35.987803hub.schaetter.us sshd\[17857\]: Invalid user mariusz from 162.248.4.46 2019-08-17T20:03:36.023532hub.schaetter.us sshd\[17857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dredgeserv.info ...	2019-08-18 04:53:12
139.59.80.65	attackbots	Aug 17 23:19:05 pkdns2 sshd\[25827\]: Invalid user 123456 from 139.59.80.65Aug 17 23:19:08 pkdns2 sshd\[25827\]: Failed password for invalid user 123456 from 139.59.80.65 port 33694 ssh2Aug 17 23:23:53 pkdns2 sshd\[26073\]: Invalid user semenov from 139.59.80.65Aug 17 23:23:55 pkdns2 sshd\[26073\]: Failed password for invalid user semenov from 139.59.80.65 port 52568 ssh2Aug 17 23:28:48 pkdns2 sshd\[26309\]: Invalid user tps from 139.59.80.65Aug 17 23:28:50 pkdns2 sshd\[26309\]: Failed password for invalid user tps from 139.59.80.65 port 43222 ssh2 ...	2019-08-18 04:49:55
60.172.95.182	attackbotsspam	08/17/2019-14:33:21.230758 60.172.95.182 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 59	2019-08-18 04:27:10
46.98.76.151	attack	Unauthorized connection attempt from IP address 46.98.76.151 on Port 445(SMB)	2019-08-18 04:26:01

Recently Reported IPs

88.130.152.177	185.113.97.242	195.243.217.62	165.232.47.100
103.99.179.214	217.173.74.22	201.23.105.50	154.28.188.90
172.58.204.144	3.238.82.143	37.110.206.36	151.84.83.227
164.68.111.72	45.88.148.2	5.24.62.98	51.159.155.124
167.71.44.228	191.7.209.201	195.136.73.105	23.98.147.248