80.158.20.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: T-Systems International GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-10-28 05:14:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.158.20.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42916
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.158.20.19.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102701 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 05:14:47 CST 2019
;; MSG SIZE  rcvd: 116

Host info

19.20.158.80.in-addr.arpa domain name pointer ecs-80-158-20-19.reverse.open-telekom-cloud.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.20.158.80.in-addr.arpa	name = ecs-80-158-20-19.reverse.open-telekom-cloud.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.250.79.7	attackbotsspam	15 Failures SSH Logins w/ invalid user	2019-09-01 02:52:38
51.15.51.2	attackspambots	Aug 31 15:57:07 server sshd\[565\]: Invalid user net from 51.15.51.2 port 36712 Aug 31 15:57:07 server sshd\[565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.51.2 Aug 31 15:57:10 server sshd\[565\]: Failed password for invalid user net from 51.15.51.2 port 36712 ssh2 Aug 31 16:01:25 server sshd\[17432\]: Invalid user webmaster from 51.15.51.2 port 52846 Aug 31 16:01:25 server sshd\[17432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.51.2	2019-09-01 02:07:33
42.112.185.242	attackspambots	Aug 31 18:05:49 flomail sshd[12233]: Invalid user support from 42.112.185.242 Aug 31 18:05:55 flomail sshd[12241]: Invalid user admin from 42.112.185.242 Aug 31 18:06:15 flomail sshd[12279]: Invalid user ubnt from 42.112.185.242	2019-09-01 02:12:29
103.92.85.202	attackspam	Aug 31 14:07:51 mail sshd\[24911\]: Invalid user andrei from 103.92.85.202 port 40500 Aug 31 14:07:51 mail sshd\[24911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.85.202 ...	2019-09-01 01:55:44
179.236.50.4	attack	31.08.2019 12:49:56 Connection to port 53 blocked by firewall	2019-09-01 01:57:05
61.183.35.91	attack	Aug 27 05:42:59 itv-usvr-01 sshd[3570]: Invalid user sysadmin from 61.183.35.91 Aug 27 05:42:59 itv-usvr-01 sshd[3570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.35.91 Aug 27 05:42:59 itv-usvr-01 sshd[3570]: Invalid user sysadmin from 61.183.35.91 Aug 27 05:43:01 itv-usvr-01 sshd[3570]: Failed password for invalid user sysadmin from 61.183.35.91 port 2455 ssh2 Aug 27 05:42:59 itv-usvr-01 sshd[3570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.35.91 Aug 27 05:42:59 itv-usvr-01 sshd[3570]: Invalid user sysadmin from 61.183.35.91 Aug 27 05:43:01 itv-usvr-01 sshd[3570]: Failed password for invalid user sysadmin from 61.183.35.91 port 2455 ssh2 Aug 27 05:43:04 itv-usvr-01 sshd[3570]: Failed password for invalid user sysadmin from 61.183.35.91 port 2455 ssh2	2019-09-01 02:12:51
75.49.249.16	attackspambots	Aug 31 20:24:57 legacy sshd[4885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Aug 31 20:24:59 legacy sshd[4885]: Failed password for invalid user weblogic from 75.49.249.16 port 55368 ssh2 Aug 31 20:29:13 legacy sshd[5000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 ...	2019-09-01 02:47:12
59.1.116.20	attackbots	2019-09-01T00:22:03.547066enmeeting.mahidol.ac.th sshd\[5425\]: User root from 59.1.116.20 not allowed because not listed in AllowUsers 2019-09-01T00:22:03.669978enmeeting.mahidol.ac.th sshd\[5425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.1.116.20 user=root 2019-09-01T00:22:05.829378enmeeting.mahidol.ac.th sshd\[5425\]: Failed password for invalid user root from 59.1.116.20 port 38724 ssh2 ...	2019-09-01 02:44:50
62.165.244.54	attackbots	Invalid user cod from 62.165.244.54 port 56701	2019-09-01 01:58:30
174.127.241.94	attack	Aug 31 05:10:21 web9 sshd\[5458\]: Invalid user austin from 174.127.241.94 Aug 31 05:10:21 web9 sshd\[5458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.127.241.94 Aug 31 05:10:23 web9 sshd\[5458\]: Failed password for invalid user austin from 174.127.241.94 port 54996 ssh2 Aug 31 05:15:02 web9 sshd\[6310\]: Invalid user exam from 174.127.241.94 Aug 31 05:15:02 web9 sshd\[6310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.127.241.94	2019-09-01 02:39:50
54.37.233.20	attackspambots	Invalid user edgar from 54.37.233.20 port 46486	2019-09-01 02:14:53
185.211.245.198	attack	Aug 31 19:28:31 relay postfix/smtpd\[3897\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 31 19:28:41 relay postfix/smtpd\[3886\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 31 19:31:32 relay postfix/smtpd\[27206\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 31 19:31:39 relay postfix/smtpd\[2330\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 31 19:41:29 relay postfix/smtpd\[2330\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-01 02:10:27
142.93.198.86	attackbots	Aug 31 07:46:10 php1 sshd\[25811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.198.86 user=root Aug 31 07:46:13 php1 sshd\[25811\]: Failed password for root from 142.93.198.86 port 37612 ssh2 Aug 31 07:51:02 php1 sshd\[26886\]: Invalid user gl from 142.93.198.86 Aug 31 07:51:02 php1 sshd\[26886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.198.86 Aug 31 07:51:05 php1 sshd\[26886\]: Failed password for invalid user gl from 142.93.198.86 port 52928 ssh2	2019-09-01 02:33:45
149.202.95.126	attack	xmlrpc attack	2019-09-01 02:41:53
211.252.84.191	attackbotsspam	2019-08-31T14:41:53.609995abusebot-2.cloudsearch.cf sshd\[14945\]: Invalid user user9 from 211.252.84.191 port 56218	2019-09-01 02:41:17

Recently Reported IPs

122.175.14.41	93.189.202.100	185.120.38.106	96.91.9.145
117.160.138.79	178.140.47.172	123.207.90.4	46.174.115.14
195.181.12.134	177.191.154.155	139.47.67.125	94.42.177.8
74.208.12.196	54.244.168.55	45.67.14.165	90.203.54.127
106.118.199.204	213.135.158.144	182.74.31.182	92.207.211.120