112.80.138.227

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.138.90	attack	Unauthorized connection attempt detected from IP address 112.80.138.90 to port 1022 [T]	2020-05-20 10:22:53
112.80.138.255	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.255 to port 3389 [J]	2020-03-02 21:35:30
112.80.138.109	attackspam	Unauthorized connection attempt detected from IP address 112.80.138.109 to port 80 [J]	2020-01-19 14:19:47
112.80.138.223	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.223 to port 2095	2019-12-31 08:57:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.138.227
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.138.227.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 12:00:12 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 227.138.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 227.138.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.220.53.217	attack	Mar 28 23:55:02 legacy sshd[11214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.220.53.217 Mar 28 23:55:05 legacy sshd[11214]: Failed password for invalid user enter from 91.220.53.217 port 50496 ssh2 Mar 28 23:59:14 legacy sshd[11423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.220.53.217 ...	2020-03-29 09:32:57
51.83.69.200	attackbots	Invalid user yth from 51.83.69.200 port 48878	2020-03-29 09:34:45
178.234.34.46	attackbots	DATE:2020-03-28 22:58:53,IP:178.234.34.46,MATCHES:11,PORT:ssh	2020-03-29 09:13:49
203.130.242.68	attackbotsspam	Mar 29 00:13:00 eventyay sshd[24015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.242.68 Mar 29 00:13:02 eventyay sshd[24015]: Failed password for invalid user qmp from 203.130.242.68 port 50303 ssh2 Mar 29 00:17:24 eventyay sshd[24124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.242.68 ...	2020-03-29 09:10:48
64.227.25.173	attack	Mar 28 23:40:23 mout sshd[31419]: Invalid user xzt from 64.227.25.173 port 54774	2020-03-29 09:19:37
219.147.74.48	attack	Invalid user sysadmin from 219.147.74.48 port 54622	2020-03-29 09:32:31
94.23.203.37	attackspambots	Mar 29 05:41:42 gw1 sshd[18283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.203.37 Mar 29 05:41:45 gw1 sshd[18283]: Failed password for invalid user git from 94.23.203.37 port 59670 ssh2 ...	2020-03-29 08:58:41
68.187.222.170	attack	$f2bV_matches	2020-03-29 09:30:54
74.78.82.1	attackbotsspam	23/tcp [2020-03-28]1pkt	2020-03-29 08:57:49
69.229.6.7	attack	Invalid user houy from 69.229.6.7 port 34526	2020-03-29 09:16:59
203.172.66.222	attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-03-29 09:25:39
115.146.126.209	attackspambots	SSH-BruteForce	2020-03-29 09:15:34
78.159.99.53	attack	Mar 29 04:08:52 www sshd\[2166\]: Invalid user quj from 78.159.99.53Mar 29 04:08:54 www sshd\[2166\]: Failed password for invalid user quj from 78.159.99.53 port 36890 ssh2Mar 29 04:12:35 www sshd\[2302\]: Invalid user cq from 78.159.99.53 ...	2020-03-29 09:28:23
2001:1be0:1000:167:b880:432f:c3d3:bb81	attackbots	[SatMar2822:33:20.2253452020][:error][pid12429:tid47557897647872][client2001:1be0:1000:167:b880:432f:c3d3:bb81:57941][client2001:1be0:1000:167:b880:432f:c3d3:bb81]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:mo\(\?:rfeusfuckingscanner\\|siac1$\\|internet$\?:-exprorer\\|ninja$\\|s\\\\\\\\.t\\\\\\\\.a\\\\\\\\.l\\\\\\\\.k\\\\\\\\.e\\\\\\\\.r\\\\\\\\.\\|kenjinspider\\|neuralbot/\\|obot\\|shell_exec\\|if\\\\\\\\$\\|r00t\\|intelium\\|cybeye\\|\\\\\\\\bcaptch\\|\^apitool\$$"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"303"][id"330082"][rev"4"][msg"Atomicorp.comWAFRules:KnownExploitUserAgent"][severity"CRITICAL"][hostname"startappsa.ch"][uri"/"][unique_id"Xn-CoG73nq5OWtYz7HblZQAAAJc"][SatMar2822:33:42.4018972020][:error][pid12429:tid47557889242880][client2001:1be0:1000:167:b880:432f:c3d3:bb81:58358][client2001:1be0:1000:167:b880:432f:c3d3:bb81]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\(\?:mo\(\?:rfeusfuckingscanner\\|	2020-03-29 09:22:58
186.215.202.11	attack	Automatic report - Banned IP Access	2020-03-29 09:02:42

Recently Reported IPs

112.80.138.47	112.80.38.178	112.80.138.38	112.80.196.113
112.85.64.154	112.84.43.5	112.80.139.134	112.80.137.172
112.85.64.171	112.87.118.95	112.80.139.209	112.85.65.23
112.86.51.102	112.85.65.172	112.80.139.58	112.91.107.56
112.91.150.235	112.9.122.44	112.93.92.198	112.9.22.178