80.2.249.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United Kingdom of Great Britain and Northern Ireland (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.2.249.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13289
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;80.2.249.66.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030800 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 08 21:37:44 CST 2025
;; MSG SIZE  rcvd: 104

Host info

66.249.2.80.in-addr.arpa domain name pointer lewi-29-b2-v4wan-167945-cust2369.vm4.cable.virginm.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.249.2.80.in-addr.arpa	name = lewi-29-b2-v4wan-167945-cust2369.vm4.cable.virginm.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.171.152.131	attack	Brute force attack stopped by firewall	2020-10-08 03:21:36
94.101.95.240	attackspambots	94.101.95.240 - - [07/Oct/2020:20:52:39 +0200] "POST /xmlrpc.php HTTP/1.1" 403 20471 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.101.95.240 - - [07/Oct/2020:20:56:20 +0200] "POST /xmlrpc.php HTTP/1.1" 403 616 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-08 03:38:52
129.226.62.150	attackspam	Oct 7 18:44:05 db sshd[11170]: User root from 129.226.62.150 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-08 03:26:19
104.131.249.57	attackspambots	Oct 7 19:24:31 scw-tender-jepsen sshd[1417]: Failed password for root from 104.131.249.57 port 41919 ssh2	2020-10-08 03:52:56
93.15.41.61	attackbots	...	2020-10-08 03:46:22
141.98.85.204	attack	suspicious query, attemp SQL injection log:/aero/meteo_aero.php?lang=en&recherche=LTFH%27%29+AND+1%3D1+UNION+ALL+SELECT+1%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name+FROM+information_schema.tables+WHERE+2%3E1--%2F%2A%2A%2F%3B+EXEC+xp_cmdshell%28%27cat+..%2F..%2F..%2Fetc%2Fpasswd%27%29%23	2020-10-08 03:51:21
185.165.190.34	attack	" "	2020-10-08 03:22:27
51.255.170.64	attackspambots	Automatic report - Banned IP Access	2020-10-08 03:31:33
177.67.109.207	attackspambots	SSH Bruteforce Attempt on Honeypot	2020-10-08 03:38:30
192.35.169.44	attack	TCP (SYN) 192.35.169.44:55273 -> port 12208, len 44	2020-10-08 03:43:46
122.70.178.5	attackspam	TCP (SYN) 122.70.178.5:47136 -> port 1433, len 44	2020-10-08 03:23:07
134.122.112.119	attackspambots	Oct 7 17:52:10 vlre-nyc-1 sshd\[17709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.119 user=root Oct 7 17:52:12 vlre-nyc-1 sshd\[17709\]: Failed password for root from 134.122.112.119 port 33178 ssh2 Oct 7 17:56:37 vlre-nyc-1 sshd\[17880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.119 user=root Oct 7 17:56:39 vlre-nyc-1 sshd\[17880\]: Failed password for root from 134.122.112.119 port 39160 ssh2 Oct 7 18:00:43 vlre-nyc-1 sshd\[18030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.119 user=root ...	2020-10-08 03:35:47
113.67.158.44	attackspambots	Lines containing failures of 113.67.158.44 Oct 5 09:45:22 smtp-out sshd[25057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.67.158.44 user=r.r Oct 5 09:45:24 smtp-out sshd[25057]: Failed password for r.r from 113.67.158.44 port 1695 ssh2 Oct 5 09:45:26 smtp-out sshd[25057]: Received disconnect from 113.67.158.44 port 1695:11: Bye Bye [preauth] Oct 5 09:45:26 smtp-out sshd[25057]: Disconnected from authenticating user r.r 113.67.158.44 port 1695 [preauth] Oct 5 09:56:39 smtp-out sshd[25437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.67.158.44 user=r.r Oct 5 09:56:41 smtp-out sshd[25437]: Failed password for r.r from 113.67.158.44 port 3549 ssh2 Oct 5 09:56:42 smtp-out sshd[25437]: Received disconnect from 113.67.158.44 port 3549:11: Bye Bye [preauth] Oct 5 09:56:42 smtp-out sshd[25437]: Disconnected from authenticating user r.r 113.67.158.44 port 3549 [preauth] Oct ........ ------------------------------	2020-10-08 03:19:47
176.32.34.102	attackbots	Port Scan: UDP/1900	2020-10-08 03:18:41
37.49.225.199	attackbotsspam	2020-10-07 19:20:04 SMTP protocol error in "AUTH LOGIN" H=(User) [37.49.225.199] AUTH command used when not advertised 2020-10-07 19:21:58 SMTP protocol error in "AUTH LOGIN" H=(User) [37.49.225.199] AUTH command used when not advertised 2020-10-07 19:23:56 SMTP protocol error in "AUTH LOGIN" H=(User) [37.49.225.199] AUTH command used when not advertised ...	2020-10-08 03:24:29

Recently Reported IPs

193.10.34.249	211.202.215.112	142.52.122.27	227.10.17.163
254.220.164.199	14.216.131.73	14.71.148.108	77.204.126.9
52.228.237.75	253.195.150.126	230.112.71.121	142.226.231.51
116.20.73.221	247.125.122.129	52.201.83.214	6.32.83.62
235.167.146.242	90.82.70.5	223.5.191.247	46.223.229.247