80.104.2.39 - IPInfo

Basic Info

City: Pavia

Region: Lombardy

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: Telecom Italia

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
80.104.201.188	attack	Unauthorized connection attempt detected from IP address 80.104.201.188 to port 5555 [J]	2020-01-16 07:44:25
80.104.21.68	attackbots	Port Scan	2019-10-24 00:33:42
80.104.202.234	attack	Brute force attempt	2019-07-23 16:29:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.104.2.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16651
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.104.2.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073002 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 04:06:35 CST 2019
;; MSG SIZE  rcvd: 115

Host info

39.2.104.80.in-addr.arpa domain name pointer host39-2-dynamic.104-80-r.retail.telecomitalia.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
39.2.104.80.in-addr.arpa	name = host39-2-dynamic.104-80-r.retail.telecomitalia.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.248.168.221	attackspambots	Apr 24 16:12:34 debian-2gb-nbg1-2 kernel: \[9996498.813676\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.168.221 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=16165 PROTO=TCP SPT=59822 DPT=7832 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-24 22:18:41
51.89.136.104	attackspambots	Apr 24 13:19:37 roki-contabo sshd\[2802\]: Invalid user jason1 from 51.89.136.104 Apr 24 13:19:37 roki-contabo sshd\[2802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.136.104 Apr 24 13:19:38 roki-contabo sshd\[2802\]: Failed password for invalid user jason1 from 51.89.136.104 port 44222 ssh2 Apr 24 14:07:44 roki-contabo sshd\[3329\]: Invalid user eldad from 51.89.136.104 Apr 24 14:07:44 roki-contabo sshd\[3329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.136.104 ...	2020-04-24 22:24:38
109.70.189.241	attackbots	RDP brute force attack detected by fail2ban	2020-04-24 22:29:54
94.177.232.23	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 89 - port: 89 proto: TCP cat: Misc Attack	2020-04-24 22:51:43
49.234.61.180	attackspam	Apr 24 16:15:28 legacy sshd[27229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.61.180 Apr 24 16:15:30 legacy sshd[27229]: Failed password for invalid user maurice from 49.234.61.180 port 54040 ssh2 Apr 24 16:18:17 legacy sshd[27301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.61.180 ...	2020-04-24 22:35:22
222.186.31.83	attackbots	Apr 24 16:38:42 roki-contabo sshd\[6203\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Apr 24 16:38:44 roki-contabo sshd\[6203\]: Failed password for root from 222.186.31.83 port 48304 ssh2 Apr 24 16:38:51 roki-contabo sshd\[6206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Apr 24 16:38:52 roki-contabo sshd\[6206\]: Failed password for root from 222.186.31.83 port 19698 ssh2 Apr 24 16:38:58 roki-contabo sshd\[6212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root ...	2020-04-24 22:43:45
51.178.52.56	attack	Apr 24 16:10:48 server sshd[4856]: Failed password for root from 51.178.52.56 port 45178 ssh2 Apr 24 16:14:52 server sshd[5128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.52.56 Apr 24 16:14:55 server sshd[5128]: Failed password for invalid user titanic from 51.178.52.56 port 57898 ssh2 ...	2020-04-24 22:15:14
114.113.124.108	attackspam	srv01 Mass scanning activity detected Target: 80(http) ..	2020-04-24 22:13:05
139.59.172.149	attackspambots	Automatic report - XMLRPC Attack	2020-04-24 22:32:09
107.172.225.13	attackbots	1,37-05/04 [bc02/m55] PostRequest-Spammer scoring: berlin	2020-04-24 22:07:36
88.32.154.37	attack	Apr 24 14:34:54 plex sshd[21870]: Invalid user azure from 88.32.154.37 port 63971	2020-04-24 22:52:04
91.231.113.113	attackbots	$f2bV_matches	2020-04-24 22:10:11
75.31.93.181	attack	2020-04-24T12:40:00.586990shield sshd\[4638\]: Invalid user hera from 75.31.93.181 port 12138 2020-04-24T12:40:00.590688shield sshd\[4638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.31.93.181 2020-04-24T12:40:02.851476shield sshd\[4638\]: Failed password for invalid user hera from 75.31.93.181 port 12138 ssh2 2020-04-24T12:45:14.288096shield sshd\[5486\]: Invalid user svenserver from 75.31.93.181 port 27646 2020-04-24T12:45:14.291586shield sshd\[5486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.31.93.181	2020-04-24 22:33:13
113.140.80.174	attackspambots	Apr 24 21:12:00 webhost01 sshd[7610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.140.80.174 Apr 24 21:12:02 webhost01 sshd[7610]: Failed password for invalid user burrero from 113.140.80.174 port 30589 ssh2 ...	2020-04-24 22:30:38
94.242.54.22	attackspambots	WebFormToEmail Comment SPAM	2020-04-24 22:50:22

Recently Reported IPs

49.234.179.127	170.94.53.11	96.138.64.159	74.21.138.211
220.58.94.42	149.24.71.8	147.235.142.75	192.87.9.31
106.110.147.74	114.109.95.232	14.52.76.104	140.207.112.196
60.50.125.157	51.75.121.21	222.223.188.246	8.106.144.111
49.81.93.12	173.126.255.99	110.146.194.63	119.51.82.102