80.158.20.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: T-Systems International GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-10-28 05:14:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.158.20.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42916
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.158.20.19.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102701 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 05:14:47 CST 2019
;; MSG SIZE  rcvd: 116

Host info

19.20.158.80.in-addr.arpa domain name pointer ecs-80-158-20-19.reverse.open-telekom-cloud.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.20.158.80.in-addr.arpa	name = ecs-80-158-20-19.reverse.open-telekom-cloud.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.19.190.208	attack	Triggered: repeated knocking on closed ports.	2019-12-11 15:05:05
192.227.210.138	attackbotsspam	Dec 11 07:24:37 MK-Soft-Root1 sshd[1418]: Failed password for root from 192.227.210.138 port 58150 ssh2 ...	2019-12-11 15:02:53
203.195.178.83	attackspam	Dec 11 01:29:43 Tower sshd[19845]: Connection from 203.195.178.83 port 7875 on 192.168.10.220 port 22 Dec 11 01:29:46 Tower sshd[19845]: Invalid user bahti from 203.195.178.83 port 7875 Dec 11 01:29:46 Tower sshd[19845]: error: Could not get shadow information for NOUSER Dec 11 01:29:46 Tower sshd[19845]: Failed password for invalid user bahti from 203.195.178.83 port 7875 ssh2 Dec 11 01:29:47 Tower sshd[19845]: Received disconnect from 203.195.178.83 port 7875:11: Bye Bye [preauth] Dec 11 01:29:47 Tower sshd[19845]: Disconnected from invalid user bahti 203.195.178.83 port 7875 [preauth]	2019-12-11 14:52:14
171.106.200.94	attack	Unauthorized connection attempt detected from IP address 171.106.200.94 to port 23	2019-12-11 14:54:58
103.22.250.194	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-11 15:14:47
71.175.42.59	attack	Invalid user hiralal from 71.175.42.59 port 51752 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.175.42.59 Failed password for invalid user hiralal from 71.175.42.59 port 51752 ssh2 Invalid user maurits from 71.175.42.59 port 34504 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.175.42.59	2019-12-11 15:17:17
220.85.104.202	attackbots	Dec 11 11:27:13 gw1 sshd[1435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.85.104.202 Dec 11 11:27:15 gw1 sshd[1435]: Failed password for invalid user jaenen from 220.85.104.202 port 30922 ssh2 ...	2019-12-11 14:28:31
80.82.65.74	attackbotsspam	Fail2Ban Ban Triggered	2019-12-11 14:58:24
111.231.233.243	attackbots	Dec 10 20:24:01 php1 sshd\[21472\]: Invalid user sauncho from 111.231.233.243 Dec 10 20:24:01 php1 sshd\[21472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.233.243 Dec 10 20:24:03 php1 sshd\[21472\]: Failed password for invalid user sauncho from 111.231.233.243 port 57228 ssh2 Dec 10 20:30:29 php1 sshd\[22370\]: Invalid user dolgov from 111.231.233.243 Dec 10 20:30:29 php1 sshd\[22370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.233.243	2019-12-11 14:48:10
103.92.104.235	attackbotsspam	detected by Fail2Ban	2019-12-11 15:14:13
123.148.218.191	attackspam	xmlrpc attack	2019-12-11 15:10:41
178.62.19.13	attackspambots	Dec 11 07:24:24 loxhost sshd\[28987\]: Invalid user teresanict from 178.62.19.13 port 43202 Dec 11 07:24:24 loxhost sshd\[28987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.19.13 Dec 11 07:24:26 loxhost sshd\[28987\]: Failed password for invalid user teresanict from 178.62.19.13 port 43202 ssh2 Dec 11 07:30:09 loxhost sshd\[29169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.19.13 user=root Dec 11 07:30:11 loxhost sshd\[29169\]: Failed password for root from 178.62.19.13 port 52578 ssh2 ...	2019-12-11 14:54:44
59.144.124.247	attackbots	Unauthorized connection attempt detected from IP address 59.144.124.247 to port 445	2019-12-11 14:49:33
118.24.201.168	attack	Invalid user user1 from 118.24.201.168 port 54776 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.201.168 Failed password for invalid user user1 from 118.24.201.168 port 54776 ssh2 Invalid user tracee from 118.24.201.168 port 58158 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.201.168	2019-12-11 14:47:50
218.92.0.179	attackbots	Dec 11 07:26:47 dev0-dcde-rnet sshd[4514]: Failed password for root from 218.92.0.179 port 29304 ssh2 Dec 11 07:27:01 dev0-dcde-rnet sshd[4514]: error: maximum authentication attempts exceeded for root from 218.92.0.179 port 29304 ssh2 [preauth] Dec 11 07:27:10 dev0-dcde-rnet sshd[4538]: Failed password for root from 218.92.0.179 port 6314 ssh2	2019-12-11 14:29:01

Recently Reported IPs

122.175.14.41	93.189.202.100	185.120.38.106	96.91.9.145
117.160.138.79	178.140.47.172	123.207.90.4	46.174.115.14
195.181.12.134	177.191.154.155	139.47.67.125	94.42.177.8
74.208.12.196	54.244.168.55	45.67.14.165	90.203.54.127
106.118.199.204	213.135.158.144	182.74.31.182	92.207.211.120