112.16.80.154 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Mobile Communications Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Brute force blocker - service: proftpd1 - aantal: 115 - Sat Apr 21 04:05:14 2018	2020-03-09 02:22:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.16.80.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41347
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.16.80.154.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030801 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 02:22:10 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 154.80.16.112.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 154.80.16.112.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.38.145.253	attackspam	Jun 22 23:47:03 blackbee postfix/smtpd\[1020\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: authentication failure Jun 22 23:47:54 blackbee postfix/smtpd\[1020\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: authentication failure Jun 22 23:48:41 blackbee postfix/smtpd\[1020\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: authentication failure Jun 22 23:49:25 blackbee postfix/smtpd\[1058\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: authentication failure Jun 22 23:50:10 blackbee postfix/smtpd\[1058\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: authentication failure ...	2020-06-23 06:59:48
182.190.4.53	attackspam	CMS (WordPress or Joomla) login attempt.	2020-06-23 07:03:43
218.92.0.173	attackspambots	2020-06-22T23:08:54.221710shield sshd\[30280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root 2020-06-22T23:08:55.732821shield sshd\[30280\]: Failed password for root from 218.92.0.173 port 44576 ssh2 2020-06-22T23:08:58.732981shield sshd\[30280\]: Failed password for root from 218.92.0.173 port 44576 ssh2 2020-06-22T23:09:02.143389shield sshd\[30280\]: Failed password for root from 218.92.0.173 port 44576 ssh2 2020-06-22T23:09:05.102198shield sshd\[30280\]: Failed password for root from 218.92.0.173 port 44576 ssh2	2020-06-23 07:11:43
148.101.223.117	attackbots	445/tcp 445/tcp [2020-06-22]2pkt	2020-06-23 07:12:29
113.162.181.110	attackbots	445/tcp [2020-06-22]1pkt	2020-06-23 06:58:39
37.187.7.95	attack	2020-06-22T20:30:03.141171shield sshd\[29292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ks3372588.kimsufi.com user=root 2020-06-22T20:30:05.223011shield sshd\[29292\]: Failed password for root from 37.187.7.95 port 43883 ssh2 2020-06-22T20:35:25.701024shield sshd\[30163\]: Invalid user wuwu from 37.187.7.95 port 44542 2020-06-22T20:35:25.703740shield sshd\[30163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ks3372588.kimsufi.com 2020-06-22T20:35:26.986950shield sshd\[30163\]: Failed password for invalid user wuwu from 37.187.7.95 port 44542 ssh2	2020-06-23 07:00:43
141.98.80.150	attackbots	Jun 23 00:58:26 srv01 postfix/smtpd\[5580\]: warning: unknown\[141.98.80.150\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 00:58:43 srv01 postfix/smtpd\[26446\]: warning: unknown\[141.98.80.150\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 01:01:48 srv01 postfix/smtpd\[26446\]: warning: unknown\[141.98.80.150\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 01:02:07 srv01 postfix/smtpd\[13604\]: warning: unknown\[141.98.80.150\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 01:06:50 srv01 postfix/smtpd\[7855\]: warning: unknown\[141.98.80.150\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-23 07:15:18
129.204.226.91	attack	Jun 23 01:00:47 plex sshd[30749]: Invalid user tommy from 129.204.226.91 port 44842	2020-06-23 07:17:22
207.154.234.102	attackbots	959. On Jun 22 2020 experienced a Brute Force SSH login attempt -> 5 unique times by 207.154.234.102.	2020-06-23 06:51:24
114.224.148.92	attackbots	Invalid user vah from 114.224.148.92 port 52646	2020-06-23 07:06:59
36.68.242.12	attackspambots	37215/tcp [2020-06-22]1pkt	2020-06-23 06:57:16
109.93.243.150	attackspambots	8080/tcp [2020-06-22]1pkt	2020-06-23 07:22:01
200.152.70.14	attack	445/tcp 445/tcp [2020-06-22]2pkt	2020-06-23 07:21:07
118.191.0.7	attack	Attempted connection to port 25065.	2020-06-23 06:58:12
163.172.154.178	attack	Jun 23 01:40:13 lukav-desktop sshd\[13534\]: Invalid user yamazaki from 163.172.154.178 Jun 23 01:40:13 lukav-desktop sshd\[13534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.154.178 Jun 23 01:40:15 lukav-desktop sshd\[13534\]: Failed password for invalid user yamazaki from 163.172.154.178 port 54406 ssh2 Jun 23 01:43:03 lukav-desktop sshd\[13572\]: Invalid user testuser from 163.172.154.178 Jun 23 01:43:03 lukav-desktop sshd\[13572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.154.178	2020-06-23 06:58:55

Recently Reported IPs

203.70.219.189	223.206.238.63	122.227.203.38	111.59.124.151
61.156.215.196	188.208.121.79	223.206.246.136	82.116.32.94
242.204.139.207	166.70.28.201	165.22.8.208	14.189.38.67
89.46.12.28	77.40.77.221	183.82.142.26	175.13.109.143
125.214.58.154	196.132.157.41	201.210.181.111	114.249.216.199