Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Aruba S.p.A. - Cloud Services IT

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackspambots
2020-03-23T16:40:20.296991shield sshd\[21910\]: Invalid user redadmin from 80.211.2.150 port 39131
2020-03-23T16:40:20.305903shield sshd\[21910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
2020-03-23T16:40:22.628003shield sshd\[21910\]: Failed password for invalid user redadmin from 80.211.2.150 port 39131 ssh2
2020-03-23T16:45:08.772679shield sshd\[22603\]: Invalid user user1 from 80.211.2.150 port 47077
2020-03-23T16:45:08.780088shield sshd\[22603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
2020-03-24 02:04:29
attack
Mar 23 09:56:44 areeb-Workstation sshd[27831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150 
Mar 23 09:56:46 areeb-Workstation sshd[27831]: Failed password for invalid user student from 80.211.2.150 port 44635 ssh2
...
2020-03-23 13:12:09
attack
Mar 17 19:21:02 santamaria sshd\[29006\]: Invalid user ogpbot from 80.211.2.150
Mar 17 19:21:02 santamaria sshd\[29006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
Mar 17 19:21:04 santamaria sshd\[29006\]: Failed password for invalid user ogpbot from 80.211.2.150 port 50759 ssh2
...
2020-03-18 03:40:10
attackbotsspam
Mar  2 21:59:48 eddieflores sshd\[14258\]: Invalid user wenbo from 80.211.2.150
Mar  2 21:59:48 eddieflores sshd\[14258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
Mar  2 21:59:50 eddieflores sshd\[14258\]: Failed password for invalid user wenbo from 80.211.2.150 port 48308 ssh2
Mar  2 22:09:17 eddieflores sshd\[15026\]: Invalid user ftp from 80.211.2.150
Mar  2 22:09:17 eddieflores sshd\[15026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
2020-03-03 16:29:34
attackbots
Feb 14 14:13:00 game-panel sshd[2513]: Failed password for root from 80.211.2.150 port 47966 ssh2
Feb 14 14:15:46 game-panel sshd[2656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
Feb 14 14:15:48 game-panel sshd[2656]: Failed password for invalid user user from 80.211.2.150 port 60694 ssh2
2020-02-15 03:03:03
attackspam
Automatic report - SSH Brute-Force Attack
2020-02-09 01:23:55
attackbots
Jan 29 14:55:53 localhost sshd\[9187\]: Invalid user benazir from 80.211.2.150 port 45913
Jan 29 14:55:53 localhost sshd\[9187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
Jan 29 14:55:55 localhost sshd\[9187\]: Failed password for invalid user benazir from 80.211.2.150 port 45913 ssh2
2020-01-29 22:02:18
attack
Jan 24 20:50:46 hcbbdb sshd\[4225\]: Invalid user system from 80.211.2.150
Jan 24 20:50:46 hcbbdb sshd\[4225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
Jan 24 20:50:47 hcbbdb sshd\[4225\]: Failed password for invalid user system from 80.211.2.150 port 49669 ssh2
Jan 24 20:53:08 hcbbdb sshd\[4605\]: Invalid user test from 80.211.2.150
Jan 24 20:53:08 hcbbdb sshd\[4605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
2020-01-25 04:59:19
attackbots
Unauthorized connection attempt detected from IP address 80.211.2.150 to port 2220 [J]
2020-01-24 06:36:12
attack
Unauthorized connection attempt detected from IP address 80.211.2.150 to port 2220 [J]
2020-01-21 06:25:35
attackbots
SSH invalid-user multiple login attempts
2019-12-30 00:26:34
attackspam
SSH brute-force: detected 26 distinct usernames within a 24-hour window.
2019-12-22 16:38:18
attackbotsspam
Dec 18 07:47:07 wbs sshd\[32365\]: Invalid user fuck from 80.211.2.150
Dec 18 07:47:07 wbs sshd\[32365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
Dec 18 07:47:09 wbs sshd\[32365\]: Failed password for invalid user fuck from 80.211.2.150 port 35307 ssh2
Dec 18 07:52:14 wbs sshd\[339\]: Invalid user huangjm from 80.211.2.150
Dec 18 07:52:14 wbs sshd\[339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
2019-12-19 02:01:01
attackbots
Dec 11 16:45:08 mockhub sshd[22583]: Failed password for backup from 80.211.2.150 port 58264 ssh2
Dec 11 16:50:15 mockhub sshd[22859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.2.150
...
2019-12-12 08:53:10
Comments on same subnet:
IP Type Details Datetime
80.211.26.202 attackspam
Oct  1 02:28:25 host1 sshd[209116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.26.202  user=root
Oct  1 02:28:27 host1 sshd[209116]: Failed password for root from 80.211.26.202 port 48992 ssh2
Oct  1 02:33:20 host1 sshd[209423]: Invalid user prakash from 80.211.26.202 port 57146
Oct  1 02:33:20 host1 sshd[209423]: Invalid user prakash from 80.211.26.202 port 57146
...
2020-10-01 08:56:43
80.211.26.202 attackbotsspam
Invalid user Valhalla from 80.211.26.202 port 40506
2020-10-01 01:32:44
80.211.239.49 attackspambots
Aug 17 15:37:02 vm0 sshd[21545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.239.49
Aug 17 15:37:03 vm0 sshd[21545]: Failed password for invalid user jht from 80.211.239.49 port 53392 ssh2
...
2020-08-18 00:37:13
80.211.228.217 attack
fail2ban/Aug 16 14:19:46 h1962932 sshd[13573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.228.217  user=root
Aug 16 14:19:48 h1962932 sshd[13573]: Failed password for root from 80.211.228.217 port 48330 ssh2
Aug 16 14:25:47 h1962932 sshd[13744]: Invalid user oracle from 80.211.228.217 port 58726
Aug 16 14:25:47 h1962932 sshd[13744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.228.217
Aug 16 14:25:47 h1962932 sshd[13744]: Invalid user oracle from 80.211.228.217 port 58726
Aug 16 14:25:49 h1962932 sshd[13744]: Failed password for invalid user oracle from 80.211.228.217 port 58726 ssh2
2020-08-16 20:57:05
80.211.239.49 attackspam
Aug 11 13:51:19 rush sshd[15507]: Failed password for root from 80.211.239.49 port 56800 ssh2
Aug 11 13:53:32 rush sshd[15563]: Failed password for root from 80.211.239.49 port 57742 ssh2
...
2020-08-12 01:36:37
80.211.223.121 attackbotsspam
ssh intrusion attempt
2020-08-10 22:44:22
80.211.241.216 attackspam
web-1 [ssh] SSH Attack
2020-08-10 22:20:15
80.211.228.217 attackbots
$f2bV_matches
2020-08-09 00:46:46
80.211.246.93 attackspambots
reported through recidive - multiple failed attempts(SSH)
2020-08-06 19:06:50
80.211.239.49 attackspambots
Aug  1 23:28:46 eventyay sshd[6512]: Failed password for root from 80.211.239.49 port 35896 ssh2
Aug  1 23:30:46 eventyay sshd[6608]: Failed password for root from 80.211.239.49 port 34938 ssh2
...
2020-08-02 05:51:06
80.211.228.217 attackspambots
SSH Brute Force
2020-08-01 19:05:06
80.211.228.217 attackspambots
Jul 26 15:09:38 vpn01 sshd[3841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.228.217
Jul 26 15:09:40 vpn01 sshd[3841]: Failed password for invalid user mike from 80.211.228.217 port 57988 ssh2
...
2020-07-26 21:17:04
80.211.246.93 attack
20 attempts against mh-ssh on cloud
2020-07-21 21:44:10
80.211.239.49 attack
Jul 14 17:29:40 vps46666688 sshd[16490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.239.49
Jul 14 17:29:42 vps46666688 sshd[16490]: Failed password for invalid user uftp from 80.211.239.49 port 56282 ssh2
...
2020-07-15 05:30:57
80.211.228.217 attack
SSH Invalid Login
2020-07-14 08:39:23
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.211.2.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11240
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.211.2.150.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 192 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 08:53:07 CST 2019
;; MSG SIZE  rcvd: 116
Host info
150.2.211.80.in-addr.arpa domain name pointer host150-2-211-80.serverdedicati.aruba.it.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
150.2.211.80.in-addr.arpa	name = host150-2-211-80.serverdedicati.aruba.it.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
167.99.48.123 attack
k+ssh-bruteforce
2019-12-16 09:13:07
42.54.161.213 attack
Telnet/23 MH Probe, BF, Hack -
2019-12-16 08:55:58
187.209.232.219 attackspam
Telnet/23 MH Probe, BF, Hack -
2019-12-16 09:02:52
113.196.184.162 attack
Unauthorized connection attempt detected from IP address 113.196.184.162 to port 445
2019-12-16 13:03:39
188.166.54.199 attackbots
Dec 15 18:52:49 web1 sshd\[32633\]: Invalid user smpchen from 188.166.54.199
Dec 15 18:52:49 web1 sshd\[32633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.54.199
Dec 15 18:52:51 web1 sshd\[32633\]: Failed password for invalid user smpchen from 188.166.54.199 port 43636 ssh2
Dec 15 18:57:50 web1 sshd\[652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.54.199  user=root
Dec 15 18:57:52 web1 sshd\[652\]: Failed password for root from 188.166.54.199 port 46979 ssh2
2019-12-16 13:04:41
178.75.65.4 attackbotsspam
Telnet/23 MH Probe, BF, Hack -
2019-12-16 09:08:07
60.12.18.6 attackbots
Dec 16 01:45:01 debian-2gb-nbg1-2 kernel: \[109889.369804\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=60.12.18.6 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=99 ID=256 PROTO=TCP SPT=54783 DPT=8080 WINDOW=16384 RES=0x00 SYN URGP=0
2019-12-16 09:00:06
40.65.182.4 attack
Dec 15 18:51:49 auw2 sshd\[11481\]: Invalid user server from 40.65.182.4
Dec 15 18:51:49 auw2 sshd\[11481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.65.182.4
Dec 15 18:51:51 auw2 sshd\[11481\]: Failed password for invalid user server from 40.65.182.4 port 38698 ssh2
Dec 15 18:57:57 auw2 sshd\[12086\]: Invalid user espenson from 40.65.182.4
Dec 15 18:57:57 auw2 sshd\[12086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.65.182.4
2019-12-16 13:00:40
190.75.81.245 attack
port scan and connect, tcp 1433 (ms-sql-s)
2019-12-16 13:08:11
2600:3c00::f03c:92ff:fe3b:ba45 attack
3000/tcp 2086/tcp 8140/tcp...
[2019-11-03/12-15]40pkt,35pt.(tcp),1pt.(udp)
2019-12-16 09:06:49
85.117.89.143 attack
1576450096 - 12/15/2019 23:48:16 Host: 85.117.89.143/85.117.89.143 Port: 445 TCP Blocked
2019-12-16 08:53:42
180.246.34.125 attackspambots
Dec 15 14:18:43 web1 sshd\[4846\]: Invalid user test from 180.246.34.125
Dec 15 14:18:43 web1 sshd\[4846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.246.34.125
Dec 15 14:18:46 web1 sshd\[4846\]: Failed password for invalid user test from 180.246.34.125 port 40062 ssh2
Dec 15 14:28:18 web1 sshd\[5891\]: Invalid user ovwebusr from 180.246.34.125
Dec 15 14:28:18 web1 sshd\[5891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.246.34.125
2019-12-16 08:57:18
194.34.132.23 attackspambots
11211/tcp 37810/tcp
[2019-12-09/15]2pkt
2019-12-16 08:48:25
132.248.96.3 attackspambots
$f2bV_matches
2019-12-16 09:05:08
172.245.154.128 attack
RDP Brute-Force (Grieskirchen RZ1)
2019-12-16 13:05:49

Recently Reported IPs

70.155.34.100 50.137.164.96 103.70.145.215 159.103.205.79
102.247.69.26 155.0.159.128 108.60.129.95 6.221.97.189
83.121.219.136 122.51.233.63 220.118.103.48 103.37.81.154
222.88.111.74 193.35.50.248 196.127.89.35 82.137.255.109
72.18.200.92 177.130.110.87 85.209.3.144 27.157.90.167