96.80.109.161 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
96.80.109.30	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 96 - port: 60001 proto: TCP cat: Misc Attack	2020-06-21 07:57:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 96.80.109.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10542
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;96.80.109.161.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:30:57 CST 2022
;; MSG SIZE  rcvd: 106

Host info

161.109.80.96.in-addr.arpa domain name pointer 96-80-109-161-static.hfc.comcastbusiness.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.109.80.96.in-addr.arpa	name = 96-80-109-161-static.hfc.comcastbusiness.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.211.124.109	attackspam	Mar 10 15:32:22 ny01 sshd[7391]: Failed password for root from 129.211.124.109 port 42556 ssh2 Mar 10 15:36:15 ny01 sshd[8951]: Failed password for root from 129.211.124.109 port 59814 ssh2	2020-03-11 04:29:56
116.125.140.90	attack	[munged]::443 116.125.140.90 - - [10/Mar/2020:19:13:06 +0100] "POST /[munged]: HTTP/1.1" 200 6627 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:13:18 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:13:34 +0100] "POST /[munged]: HTTP/1.1" 200 6492 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:13:50 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:14:07 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:14:23 +0100] "POST /[munged]: HTTP/1.1" 200 6494 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:14:39 +0100] "POST /[munged]: HTTP/1.1" 200 6492 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:14:55 +0100] "POST /[munged]: HTTP/1.1" 200 6491 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:15:11 +0100] "POST /[munged]: HTTP/1.1" 200 6490 "-" "-" [munged]::443 116.125.140.90 - - [10/Mar/2020:19:15:27 +0100] "POST /[	2020-03-11 04:33:36
202.111.10.73	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-11 04:41:47
123.207.189.27	attackbots	2020-03-10T19:03:47.627700shield sshd\[5118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.189.27 user=root 2020-03-10T19:03:49.744968shield sshd\[5118\]: Failed password for root from 123.207.189.27 port 37614 ssh2 2020-03-10T19:07:43.751493shield sshd\[5792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.189.27 user=root 2020-03-10T19:07:46.601167shield sshd\[5792\]: Failed password for root from 123.207.189.27 port 41638 ssh2 2020-03-10T19:11:41.428995shield sshd\[6300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.189.27 user=root	2020-03-11 04:13:41
45.40.198.41	attackspambots	Mar 10 18:47:04 marvibiene sshd[8218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.198.41 user=root Mar 10 18:47:06 marvibiene sshd[8218]: Failed password for root from 45.40.198.41 port 55950 ssh2 Mar 10 18:52:13 marvibiene sshd[8265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.198.41 user=root Mar 10 18:52:14 marvibiene sshd[8265]: Failed password for root from 45.40.198.41 port 43815 ssh2 ...	2020-03-11 04:39:32
49.88.112.111	attackspam	Mar 11 01:24:36 gw1 sshd[7888]: Failed password for root from 49.88.112.111 port 27656 ssh2 ...	2020-03-11 04:48:33
126.86.24.54	attackbotsspam	Invalid user zufallslink1234 from 126.86.24.54 port 35484	2020-03-11 04:41:19
221.4.48.252	attack	Drupal Core Remote Code Execution Vulnerability	2020-03-11 04:39:52
185.53.88.42	attack	" "	2020-03-11 04:13:14
58.22.99.135	attack	invalid login attempt (fremnet)	2020-03-11 04:55:51
176.107.198.29	attackbotsspam	Automatic report - Port Scan Attack	2020-03-11 04:35:44
49.233.204.30	attackspam	Mar 10 19:15:19 sshd\[24862\]: User root from 49.233.204.30 not allowed because not listed in AllowUsersMar 10 19:15:21 sshd\[24862\]: Failed password for invalid user root from 49.233.204.30 port 36816 ssh2 ...	2020-03-11 04:45:02
37.49.227.109	attack	37.49.227.109 was recorded 5 times by 5 hosts attempting to connect to the following ports: 2362. Incident counter (4h, 24h, all-time): 5, 26, 2565	2020-03-11 04:56:05
120.39.2.37	attack	$f2bV_matches	2020-03-11 04:30:10
206.189.157.46	attackspam	Mar 10 20:30:18 * sshd[19209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.157.46 Mar 10 20:30:20 * sshd[19209]: Failed password for invalid user roetgener-platt from 206.189.157.46 port 35834 ssh2	2020-03-11 04:30:50

Recently Reported IPs

112.14.67.82	113.128.24.154	78.92.254.169	178.59.244.29
192.241.213.219	61.7.154.207	60.51.197.74	168.232.14.178
211.115.228.171	162.62.223.249	101.200.154.182	220.136.202.57
81.10.59.199	209.150.33.127	106.3.41.217	70.40.220.138
81.71.69.241	38.133.227.50	82.84.86.196	115.211.255.81