112.80.138.201

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.138.90	attack	Unauthorized connection attempt detected from IP address 112.80.138.90 to port 1022 [T]	2020-05-20 10:22:53
112.80.138.255	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.255 to port 3389 [J]	2020-03-02 21:35:30
112.80.138.109	attackspam	Unauthorized connection attempt detected from IP address 112.80.138.109 to port 80 [J]	2020-01-19 14:19:47
112.80.138.223	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.223 to port 2095	2019-12-31 08:57:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.138.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.138.201.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:08:54 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 201.138.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 201.138.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.59.133.122	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-04 22:46:08,555 INFO [amun_request_handler] PortScan Detected on Port: 445 (5.59.133.122)	2019-07-05 08:25:32
157.230.123.70	attackspambots	Jul 5 02:37:43 hosting sshd[8030]: Invalid user oj from 157.230.123.70 port 46416 ...	2019-07-05 08:33:45
163.47.36.210	attack	Jul 5 01:51:40 s64-1 sshd[28600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.36.210 Jul 5 01:51:42 s64-1 sshd[28600]: Failed password for invalid user diana from 163.47.36.210 port 31788 ssh2 Jul 5 01:54:13 s64-1 sshd[28608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.47.36.210 ...	2019-07-05 08:40:20
178.62.42.112	attackspam	Unauthorised access (Jul 5) SRC=178.62.42.112 LEN=40 TTL=247 ID=21717 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jul 4) SRC=178.62.42.112 LEN=40 TTL=247 ID=10156 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jul 2) SRC=178.62.42.112 LEN=40 TTL=247 ID=55100 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jul 2) SRC=178.62.42.112 LEN=40 TTL=247 ID=56297 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jul 1) SRC=178.62.42.112 LEN=40 TTL=247 ID=54920 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jun 30) SRC=178.62.42.112 LEN=40 TTL=247 ID=45341 TCP DPT=3389 WINDOW=1024 SYN	2019-07-05 08:22:17
14.225.3.37	attack	04.07.2019 22:56:38 Connection to port 23 blocked by firewall	2019-07-05 08:21:45
113.161.166.16	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-04 22:38:55,532 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.161.166.16)	2019-07-05 08:37:35
51.254.140.108	attackbots	Jul 5 02:11:06 lnxweb62 sshd[26316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.140.108	2019-07-05 08:40:54
153.122.22.168	attackspam	2019-07-04T23:28:26.066781abusebot-8.cloudsearch.cf sshd\[8236\]: Invalid user systempilot from 153.122.22.168 port 49726	2019-07-05 08:03:41
172.105.71.59	attackbotsspam	HARP phishing From: Lower.My.Bills [mailto:farfetch@email.vnfu651rt.com] Unsolicited bulk spam - li2027-59.members.linode.com, Linode - 172.105.71.59 Spam link u11375183.ct.sendgrid.net = 167.89.123.16, SendGrid Permitted sender domain sendgrid.net = 167.89.123.54, SendGrid Header: Message ID omp.email.farfetch.com = 199.7.206.186, Responsys Inc Header: Unsubscribe email.farfetch.com = 162.223.232.96, Responsys Inc Spam link http://46.101.208.238 = DigitalOcean	2019-07-05 08:30:58
46.99.158.235	attackspambots	Unauthorised access (Jul 5) SRC=46.99.158.235 LEN=40 TTL=242 ID=46731 TCP DPT=445 WINDOW=1024 SYN	2019-07-05 08:13:37
125.161.128.130	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 15:26:27,090 INFO [shellcode_manager] (125.161.128.130) no match, writing hexdump (db0e2ad281acde720e815abc3c9a415a :2144533) - MS17010 (EternalBlue)	2019-07-05 08:06:00
36.72.46.67	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-04 22:50:56,943 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.72.46.67)	2019-07-05 08:22:39
212.83.153.170	attackspam	\[2019-07-04 19:58:38\] NOTICE\[13443\] chan_sip.c: Registration from '\' failed for '212.83.153.170:57815' - Wrong password \[2019-07-04 19:58:38\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-04T19:58:38.079-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="647",SessionID="0x7f02f8352a28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.153.170/57815",Challenge="0ca3f626",ReceivedChallenge="0ca3f626",ReceivedHash="2ba13f68e9256e1707c6b448b23de62f" \[2019-07-04 19:58:50\] NOTICE\[13443\] chan_sip.c: Registration from '\' failed for '212.83.153.170:59882' - Wrong password \[2019-07-04 19:58:50\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-04T19:58:50.637-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="647",SessionID="0x7f02f8740ce8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83	2019-07-05 08:12:31
186.5.36.172	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-04 22:52:17,827 INFO [amun_request_handler] PortScan Detected on Port: 445 (186.5.36.172)	2019-07-05 08:19:40
123.20.1.0	attackspam	Automatic report - SSH Brute-Force Attack	2019-07-05 08:45:15

Recently Reported IPs

112.80.138.160	112.80.138.186	112.80.138.205	112.80.138.207
112.80.138.215	112.80.138.241	112.80.138.229	112.80.138.31
112.80.138.44	112.80.138.45	112.80.138.55	112.80.138.52
112.80.138.58	112.80.138.61	112.80.138.73	112.80.138.97
112.80.138.74	112.80.138.78	112.80.139.106	112.80.139.117