80.52.199.93 - IPInfo

Basic Info

City: Warsaw

Region: Mazovia

Country: Poland

Internet Service Provider: Orange Polska Spolka Akcyjna

Hostname: unknown

Organization: Orange Polska Spolka Akcyjna

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 8 09:18:54 server sshd\[3586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root Nov 8 09:18:56 server sshd\[3586\]: Failed password for root from 80.52.199.93 port 43408 ssh2 Nov 8 09:22:38 server sshd\[4665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root Nov 8 09:22:40 server sshd\[4665\]: Failed password for root from 80.52.199.93 port 53728 ssh2 Nov 8 09:26:18 server sshd\[5728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=mail ...	2019-11-08 18:13:41
attack	Oct 19 10:57:55 eddieflores sshd\[615\]: Invalid user smallcock from 80.52.199.93 Oct 19 10:57:55 eddieflores sshd\[615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl Oct 19 10:57:57 eddieflores sshd\[615\]: Failed password for invalid user smallcock from 80.52.199.93 port 58528 ssh2 Oct 19 11:01:45 eddieflores sshd\[1001\]: Invalid user QWEasd!@\#1234 from 80.52.199.93 Oct 19 11:01:45 eddieflores sshd\[1001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl	2019-10-20 05:56:48
attack	Oct 8 06:29:52 microserver sshd[27917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 user=root Oct 8 06:29:54 microserver sshd[27917]: Failed password for root from 80.52.199.93 port 44984 ssh2 Oct 8 06:34:02 microserver sshd[28531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 user=root Oct 8 06:34:04 microserver sshd[28531]: Failed password for root from 80.52.199.93 port 57054 ssh2 Oct 8 06:38:06 microserver sshd[29112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 user=root Oct 19 14:22:10 microserver sshd[10528]: Invalid user phill from 80.52.199.93 port 36306 Oct 19 14:22:10 microserver sshd[10528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Oct 19 14:22:12 microserver sshd[10528]: Failed password for invalid user phill from 80.52.199.93 port 36306 ssh2 Oct 19 14:28:05 micr	2019-10-19 20:48:42
attackspam	Oct 15 06:42:00 site3 sshd\[13509\]: Invalid user 1234 from 80.52.199.93 Oct 15 06:42:00 site3 sshd\[13509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Oct 15 06:42:02 site3 sshd\[13509\]: Failed password for invalid user 1234 from 80.52.199.93 port 58718 ssh2 Oct 15 06:45:55 site3 sshd\[13594\]: Invalid user thchen!@\# from 80.52.199.93 Oct 15 06:45:55 site3 sshd\[13594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 ...	2019-10-15 17:58:46
attack	Oct 12 19:25:09 php1 sshd\[11264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root Oct 12 19:25:11 php1 sshd\[11264\]: Failed password for root from 80.52.199.93 port 51912 ssh2 Oct 12 19:29:42 php1 sshd\[11638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root Oct 12 19:29:44 php1 sshd\[11638\]: Failed password for root from 80.52.199.93 port 38822 ssh2 Oct 12 19:33:38 php1 sshd\[12109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root	2019-10-13 14:54:47
attackbotsspam	Jun 25 13:55:28 dallas01 sshd[24132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Jun 25 13:55:30 dallas01 sshd[24132]: Failed password for invalid user can from 80.52.199.93 port 59236 ssh2 Jun 25 13:57:20 dallas01 sshd[24365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93	2019-10-09 01:04:34
attackbotsspam	Oct 7 13:43:59 km20725 sshd\[26798\]: Invalid user Admin\#2017 from 80.52.199.93Oct 7 13:44:00 km20725 sshd\[26798\]: Failed password for invalid user Admin\#2017 from 80.52.199.93 port 52236 ssh2Oct 7 13:48:22 km20725 sshd\[27137\]: Invalid user password!23QweAsd from 80.52.199.93Oct 7 13:48:24 km20725 sshd\[27137\]: Failed password for invalid user password!23QweAsd from 80.52.199.93 port 36016 ssh2 ...	2019-10-07 20:16:43
attackspam	Oct 6 18:45:27 kapalua sshd\[11127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root Oct 6 18:45:29 kapalua sshd\[11127\]: Failed password for root from 80.52.199.93 port 53706 ssh2 Oct 6 18:49:32 kapalua sshd\[11480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root Oct 6 18:49:33 kapalua sshd\[11480\]: Failed password for root from 80.52.199.93 port 37112 ssh2 Oct 6 18:53:34 kapalua sshd\[11815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gwt93.internetdsl.tpnet.pl user=root	2019-10-07 13:17:09
attackbots	Oct 2 05:36:02 TORMINT sshd\[24223\]: Invalid user lollipop from 80.52.199.93 Oct 2 05:36:02 TORMINT sshd\[24223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Oct 2 05:36:04 TORMINT sshd\[24223\]: Failed password for invalid user lollipop from 80.52.199.93 port 50602 ssh2 ...	2019-10-02 19:27:43
attackspam	Sep 25 09:31:06 saschabauer sshd[23509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Sep 25 09:31:08 saschabauer sshd[23509]: Failed password for invalid user fk from 80.52.199.93 port 37148 ssh2	2019-09-25 16:02:50
attackspambots	2019-09-23T13:14:06.221588abusebot.cloudsearch.cf sshd\[17722\]: Invalid user guest from 80.52.199.93 port 45622	2019-09-23 21:40:18
attackbots	$f2bV_matches	2019-09-23 04:41:25
attackbotsspam	Sep 2 20:40:42 debian sshd\[24752\]: Invalid user webster123 from 80.52.199.93 port 55604 Sep 2 20:40:42 debian sshd\[24752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 ...	2019-09-03 03:52:53
attackspam	Automatic report	2019-08-22 07:26:09
attack	Aug 16 07:42:28 web8 sshd\[10027\]: Invalid user network from 80.52.199.93 Aug 16 07:42:28 web8 sshd\[10027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Aug 16 07:42:29 web8 sshd\[10027\]: Failed password for invalid user network from 80.52.199.93 port 48122 ssh2 Aug 16 07:47:48 web8 sshd\[12576\]: Invalid user georges from 80.52.199.93 Aug 16 07:47:48 web8 sshd\[12576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93	2019-08-16 20:18:07
attack	Aug 16 03:02:21 web8 sshd\[27302\]: Invalid user narendra from 80.52.199.93 Aug 16 03:02:21 web8 sshd\[27302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Aug 16 03:02:24 web8 sshd\[27302\]: Failed password for invalid user narendra from 80.52.199.93 port 42662 ssh2 Aug 16 03:07:51 web8 sshd\[30156\]: Invalid user vinay from 80.52.199.93 Aug 16 03:07:51 web8 sshd\[30156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93	2019-08-16 11:09:57
attack	Aug 14 06:05:44 MK-Soft-Root2 sshd\[29506\]: Invalid user pm from 80.52.199.93 port 50036 Aug 14 06:05:44 MK-Soft-Root2 sshd\[29506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Aug 14 06:05:47 MK-Soft-Root2 sshd\[29506\]: Failed password for invalid user pm from 80.52.199.93 port 50036 ssh2 ...	2019-08-14 12:33:49
attackbots	$f2bV_matches	2019-08-05 15:35:59
attack	Automatic report - Banned IP Access	2019-07-31 20:41:08
attackspam	Invalid user iraf from 80.52.199.93 port 32822 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93 Failed password for invalid user iraf from 80.52.199.93 port 32822 ssh2 Invalid user anonymous from 80.52.199.93 port 58758 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.52.199.93	2019-07-20 03:53:18
attackbots	Triggered by Fail2Ban	2019-07-10 11:15:38
attack	Triggered by Fail2Ban	2019-07-02 20:34:53
attack	Invalid user ubuntu from 80.52.199.93 port 37306	2019-06-26 09:45:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.52.199.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12508
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.52.199.93.			IN	A

;; AUTHORITY SECTION:
.			2072	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040400 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 01:44:28 +08 2019
;; MSG SIZE  rcvd: 116

Host info

93.199.52.80.in-addr.arpa domain name pointer gwt93.internetdsl.tpnet.pl.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
93.199.52.80.in-addr.arpa	name = gwt93.internetdsl.tpnet.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.211.105.202	attackspambots	2019-11-28T14:22:20.108170beta postfix/smtpd[8780]: NOQUEUE: reject: RCPT from 186-211-105-202.gegnet.com.br[186.211.105.202]: 554 5.7.1 Service unavailable; Client host [186.211.105.202] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/186.211.105.202 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<111.com> ...	2019-11-29 06:29:58
185.220.101.6	attackspambots	Automatic report - Banned IP Access	2019-11-29 06:33:24
45.117.81.117	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-11-29 06:45:17
70.35.194.160	attackbots	smtp attack	2019-11-29 06:07:49
81.22.45.85	attackbotsspam	11/28/2019-17:35:54.150372 81.22.45.85 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-29 06:42:27
202.205.160.242	attack	Nov 29 02:36:23 webhost01 sshd[9444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.205.160.242 Nov 29 02:36:25 webhost01 sshd[9444]: Failed password for invalid user tomcat from 202.205.160.242 port 44558 ssh2 ...	2019-11-29 06:07:11
81.0.120.26	attackbotsspam	81.0.120.26 - - \[28/Nov/2019:15:44:17 +0100\] "POST /wp-login.php HTTP/1.0" 200 4520 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 81.0.120.26 - - \[28/Nov/2019:15:44:18 +0100\] "POST /wp-login.php HTTP/1.0" 200 4320 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 81.0.120.26 - - \[28/Nov/2019:15:44:18 +0100\] "POST /wp-login.php HTTP/1.0" 200 4336 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-29 06:10:09
77.42.75.139	attack	Automatic report - Port Scan Attack	2019-11-29 06:27:54
47.90.78.105	attackbotsspam	xmlrpc attack	2019-11-29 06:31:29
37.29.83.173	attackspambots	Unauthorised access (Nov 28) SRC=37.29.83.173 LEN=52 TTL=115 ID=22195 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-29 06:42:50
94.23.48.112	attackbotsspam	Time: Thu Nov 28 10:33:02 2019 -0500 IP: 94.23.48.112 (FR/France/ns344539.ip-94-23-48.eu) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2019-11-29 06:10:21
192.81.210.176	attack	Automatic report - XMLRPC Attack	2019-11-29 06:47:26
95.173.179.118	attackspam	fail2ban honeypot	2019-11-29 06:42:03
190.27.171.234	attackbots	3389BruteforceFW21	2019-11-29 06:19:14
218.92.0.181	attackbots	Nov 28 21:46:33 v22018086721571380 sshd[12917]: Failed password for root from 218.92.0.181 port 65011 ssh2 Nov 28 21:46:38 v22018086721571380 sshd[12917]: error: maximum authentication attempts exceeded for root from 218.92.0.181 port 65011 ssh2 [preauth]	2019-11-29 06:46:59

Recently Reported IPs

94.13.104.204	144.217.165.223	91.210.224.198	188.253.2.8
91.134.16.250	45.252.250.110	5.39.92.185	213.213.194.116
165.22.138.75	91.236.116.214	202.134.145.143	86.105.50.97
125.62.178.185	69.90.223.232	185.156.177.44	193.112.28.150
118.193.31.182	202.46.29.43	93.90.204.115	159.89.13.0