80.82.69.121 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
80.82.69.130	attackbots	scans 3 times in preceeding hours on the ports (in chronological order) 30030 30074 30027 resulting in total of 33 scans from 80.82.64.0/20 block.	2020-05-22 01:32:15
80.82.69.130	attackbots	May 20 09:49:40 debian-2gb-nbg1-2 kernel: \[12219807.374803\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.69.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=57727 PROTO=TCP SPT=50683 DPT=30034 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-20 16:17:46
80.82.69.130	attackbots	TCP ports : 30143 / 30157	2020-05-17 05:01:38
80.82.69.130	attackspam	Multiport scan : 21 ports scanned 25018 25020 25033 25046 25050 25054 25059 25077 25081 25085 25088 25092 25100 25104 25111 25121 25127 25149 25166 25176 25190	2020-05-12 08:41:28
80.82.69.130	attackbotsspam	TCP (SYN) 80.82.69.130:54845 -> port 25098, len 44	2020-05-11 02:11:49
80.82.69.130	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 67 - port: 25133 proto: TCP cat: Misc Attack	2020-05-09 22:35:39
80.82.69.130	attack	05/06/2020-12:53:14.669050 80.82.69.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-07 03:04:46
80.82.69.130	attackbots	firewall-block, port(s): 25020/tcp, 25050/tcp, 25092/tcp, 25097/tcp, 25099/tcp, 25126/tcp, 25178/tcp	2020-05-06 14:33:23
80.82.69.130	attack	[MK-Root1] Blocked by UFW	2020-05-03 05:20:41
80.82.69.130	attackspam	Port scan(s) denied	2020-05-01 21:26:00
80.82.69.130	attackbotsspam	Scanning for open ports and vulnerable services: 34909,34912,34914,34925,34933,34943,34952,34957,34961,34964,34977,34978,34982,34985,34988,34989,34990	2020-04-30 15:00:47
80.82.69.130	attackspambots	Apr 27 00:14:52 debian-2gb-nbg1-2 kernel: \[10198225.924146\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.69.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=16347 PROTO=TCP SPT=52921 DPT=34916 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-27 06:19:42
80.82.69.130	attackspambots	04/25/2020-10:43:36.973333 80.82.69.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-25 22:49:41
80.82.69.129	attackspambots	" "	2020-04-21 04:41:24
80.82.69.249	attackbotsspam	Tried sshing with brute force.	2020-04-05 17:47:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.82.69.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24633
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;80.82.69.121.			IN	A

;; AUTHORITY SECTION:
.			123	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062800 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 29 01:02:57 CST 2022
;; MSG SIZE  rcvd: 105

Host info

121.69.82.80.in-addr.arpa domain name pointer no-reverse-dns-configured.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
121.69.82.80.in-addr.arpa	name = no-reverse-dns-configured.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.245.181.2	attackbotsspam	Apr 20 06:58:55 host sshd[62109]: Invalid user couchdb from 103.245.181.2 port 58568 ...	2020-04-20 16:08:11
111.229.43.153	attack	srv03 Mass scanning activity detected Target: 11321 ..	2020-04-20 15:39:16
104.131.190.193	attackspam	Invalid user li from 104.131.190.193 port 58137	2020-04-20 15:33:34
138.197.151.129	attack	2020-04-20T07:50:01.150539v22018076590370373 sshd[22776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.151.129 user=root 2020-04-20T07:50:03.204943v22018076590370373 sshd[22776]: Failed password for root from 138.197.151.129 port 56796 ssh2 2020-04-20T07:55:56.547277v22018076590370373 sshd[12409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.151.129 user=root 2020-04-20T07:55:58.335929v22018076590370373 sshd[12409]: Failed password for root from 138.197.151.129 port 47716 ssh2 2020-04-20T08:01:31.521703v22018076590370373 sshd[20359]: Invalid user wh from 138.197.151.129 port 38634 ...	2020-04-20 15:48:07
222.189.206.51	attackbotsspam	Automatic report - Banned IP Access	2020-04-20 15:38:16
51.75.206.210	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-20 15:48:49
45.32.76.94	attack	Apr 20 09:07:28 ns382633 sshd\[2905\]: Invalid user sftpuser from 45.32.76.94 port 48662 Apr 20 09:07:28 ns382633 sshd\[2905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.32.76.94 Apr 20 09:07:30 ns382633 sshd\[2905\]: Failed password for invalid user sftpuser from 45.32.76.94 port 48662 ssh2 Apr 20 09:15:57 ns382633 sshd\[4994\]: Invalid user kw from 45.32.76.94 port 47828 Apr 20 09:15:57 ns382633 sshd\[4994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.32.76.94	2020-04-20 15:31:20
198.108.66.96	attack	Unauthorized connection attempt from IP address 198.108.66.96 on Port 3306(MYSQL)	2020-04-20 16:10:35
5.188.66.49	attackbotsspam	$f2bV_matches	2020-04-20 16:09:35
103.145.12.24	attackspambots	[2020-04-20 01:16:41] NOTICE[1170][C-00002aa4] chan_sip.c: Call from '' (103.145.12.24:57642) to extension '01146520458214' rejected because extension not found in context 'public'. [2020-04-20 01:16:41] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-20T01:16:41.680-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146520458214",SessionID="0x7f6c0825cda8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.24/57642",ACLName="no_extension_match" [2020-04-20 01:16:45] NOTICE[1170][C-00002aa5] chan_sip.c: Call from '' (103.145.12.24:53258) to extension '01146462607510' rejected because extension not found in context 'public'. [2020-04-20 01:16:45] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-20T01:16:45.274-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146462607510",SessionID="0x7f6c082b17a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103. ...	2020-04-20 15:34:05
106.54.228.25	attack	ssh brute force	2020-04-20 15:52:33
83.48.101.184	attackbots	Apr 20 02:41:14 lanister sshd[2905]: Invalid user na from 83.48.101.184 Apr 20 02:41:14 lanister sshd[2905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.101.184 Apr 20 02:41:14 lanister sshd[2905]: Invalid user na from 83.48.101.184 Apr 20 02:41:16 lanister sshd[2905]: Failed password for invalid user na from 83.48.101.184 port 20970 ssh2	2020-04-20 15:49:29
220.133.95.68	attackspambots	<6 unauthorized SSH connections	2020-04-20 15:30:22
165.22.210.121	attackspambots	IN - - [19 Apr 2020:19:07:40 +0300] "POST wp-login.php HTTP 1.1" 200 4866 "-" "Mozilla 5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko 20100101 Firefox 62.0"	2020-04-20 15:49:46
200.89.159.190	attack	Apr 19 21:38:21 mockhub sshd[9538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.159.190 Apr 19 21:38:24 mockhub sshd[9538]: Failed password for invalid user testftp from 200.89.159.190 port 33782 ssh2 ...	2020-04-20 16:12:42

Recently Reported IPs

190.135.103.1	190.88.68.48	189.189.248.21	189.250.248.250
189.156.4.9	190.80.202.50	189.238.231.12	136.35.110.145
216.24.251.243	189.132.75.167	121.230.106.107	106.120.173.89
58.250.125.129	190.184.231.2	106.120.173.62	189.131.93.52
169.229.195.87	180.76.84.65	137.226.209.133	180.76.35.87