112.80.138.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.138.90	attack	Unauthorized connection attempt detected from IP address 112.80.138.90 to port 1022 [T]	2020-05-20 10:22:53
112.80.138.255	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.255 to port 3389 [J]	2020-03-02 21:35:30
112.80.138.109	attackspam	Unauthorized connection attempt detected from IP address 112.80.138.109 to port 80 [J]	2020-01-19 14:19:47
112.80.138.223	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.223 to port 2095	2019-12-31 08:57:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.138.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41081
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.138.45.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:08:57 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 45.138.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.138.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.96.159.71	attackbots	Time: Thu Aug 27 21:05:28 2020 +0000 IP: 119.96.159.71 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 27 20:34:49 pv-14-ams2 sshd[29629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.159.71 user=root Aug 27 20:34:51 pv-14-ams2 sshd[29629]: Failed password for root from 119.96.159.71 port 35396 ssh2 Aug 27 20:48:09 pv-14-ams2 sshd[7893]: Invalid user www from 119.96.159.71 port 58968 Aug 27 20:48:10 pv-14-ams2 sshd[7893]: Failed password for invalid user www from 119.96.159.71 port 58968 ssh2 Aug 27 21:05:22 pv-14-ams2 sshd[31100]: Invalid user scheduler from 119.96.159.71 port 35000	2020-08-28 07:33:43
185.234.219.11	attack	Aug 27 20:14:21 web01.agentur-b-2.de postfix/smtpd[2619775]: warning: unknown[185.234.219.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 20:14:21 web01.agentur-b-2.de postfix/smtpd[2619775]: lost connection after AUTH from unknown[185.234.219.11] Aug 27 20:14:29 web01.agentur-b-2.de postfix/smtpd[2635419]: warning: unknown[185.234.219.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 20:14:29 web01.agentur-b-2.de postfix/smtpd[2635419]: lost connection after AUTH from unknown[185.234.219.11] Aug 27 20:14:55 web01.agentur-b-2.de postfix/smtpd[2636588]: warning: unknown[185.234.219.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 07:21:44
191.53.194.112	attack	Aug 27 05:58:34 mail.srvfarm.net postfix/smtps/smtpd[1364784]: warning: unknown[191.53.194.112]: SASL PLAIN authentication failed: Aug 27 05:58:35 mail.srvfarm.net postfix/smtps/smtpd[1364784]: lost connection after AUTH from unknown[191.53.194.112] Aug 27 06:00:22 mail.srvfarm.net postfix/smtps/smtpd[1362632]: warning: unknown[191.53.194.112]: SASL PLAIN authentication failed: Aug 27 06:00:22 mail.srvfarm.net postfix/smtps/smtpd[1362632]: lost connection after AUTH from unknown[191.53.194.112] Aug 27 06:00:35 mail.srvfarm.net postfix/smtps/smtpd[1362912]: warning: unknown[191.53.194.112]: SASL PLAIN authentication failed:	2020-08-28 07:20:20
103.237.58.180	attack	Aug 27 06:00:17 mail.srvfarm.net postfix/smtpd[1362762]: warning: unknown[103.237.58.180]: SASL PLAIN authentication failed: Aug 27 06:00:17 mail.srvfarm.net postfix/smtpd[1362762]: lost connection after AUTH from unknown[103.237.58.180] Aug 27 06:05:53 mail.srvfarm.net postfix/smtps/smtpd[1365298]: warning: unknown[103.237.58.180]: SASL PLAIN authentication failed: Aug 27 06:05:54 mail.srvfarm.net postfix/smtps/smtpd[1365298]: lost connection after AUTH from unknown[103.237.58.180] Aug 27 06:08:28 mail.srvfarm.net postfix/smtps/smtpd[1365300]: warning: unknown[103.237.58.180]: SASL PLAIN authentication failed:	2020-08-28 07:12:26
122.51.18.119	attackspam	Aug 28 00:10:02 h1745522 sshd[27934]: Invalid user untu from 122.51.18.119 port 49964 Aug 28 00:10:02 h1745522 sshd[27934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.18.119 Aug 28 00:10:02 h1745522 sshd[27934]: Invalid user untu from 122.51.18.119 port 49964 Aug 28 00:10:04 h1745522 sshd[27934]: Failed password for invalid user untu from 122.51.18.119 port 49964 ssh2 Aug 28 00:13:25 h1745522 sshd[29370]: Invalid user vpnuser from 122.51.18.119 port 46422 Aug 28 00:13:25 h1745522 sshd[29370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.18.119 Aug 28 00:13:25 h1745522 sshd[29370]: Invalid user vpnuser from 122.51.18.119 port 46422 Aug 28 00:13:26 h1745522 sshd[29370]: Failed password for invalid user vpnuser from 122.51.18.119 port 46422 ssh2 Aug 28 00:16:44 h1745522 sshd[32281]: Invalid user dados from 122.51.18.119 port 42864 ...	2020-08-28 07:11:53
49.234.16.16	attackbotsspam	Invalid user chat from 49.234.16.16 port 36698	2020-08-28 07:03:06
217.61.104.25	attack	Trolling for resource vulnerabilities	2020-08-28 06:56:11
213.195.222.60	attackspam	Aug 27 06:13:14 mail.srvfarm.net postfix/smtps/smtpd[1382760]: warning: unknown[213.195.222.60]: SASL PLAIN authentication failed: Aug 27 06:13:14 mail.srvfarm.net postfix/smtps/smtpd[1382760]: lost connection after AUTH from unknown[213.195.222.60] Aug 27 06:13:57 mail.srvfarm.net postfix/smtps/smtpd[1382766]: warning: unknown[213.195.222.60]: SASL PLAIN authentication failed: Aug 27 06:13:57 mail.srvfarm.net postfix/smtps/smtpd[1382766]: lost connection after AUTH from unknown[213.195.222.60] Aug 27 06:15:11 mail.srvfarm.net postfix/smtps/smtpd[1382747]: warning: unknown[213.195.222.60]: SASL PLAIN authentication failed:	2020-08-28 07:03:58
190.228.41.137	attack	Aug 27 05:56:44 mail.srvfarm.net postfix/smtps/smtpd[1366628]: warning: host137.190-228-41.telecom.net.ar[190.228.41.137]: SASL PLAIN authentication failed: Aug 27 05:56:45 mail.srvfarm.net postfix/smtps/smtpd[1366628]: lost connection after AUTH from host137.190-228-41.telecom.net.ar[190.228.41.137] Aug 27 05:59:18 mail.srvfarm.net postfix/smtpd[1362765]: warning: host137.190-228-41.telecom.net.ar[190.228.41.137]: SASL PLAIN authentication failed: Aug 27 05:59:19 mail.srvfarm.net postfix/smtpd[1362765]: lost connection after AUTH from host137.190-228-41.telecom.net.ar[190.228.41.137] Aug 27 06:04:16 mail.srvfarm.net postfix/smtps/smtpd[1365300]: warning: host137.190-228-41.telecom.net.ar[190.228.41.137]: SASL PLAIN authentication failed:	2020-08-28 07:21:16
172.82.239.22	attackspam	Aug 27 19:30:53 mail.srvfarm.net postfix/smtpd[1703066]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:32:05 mail.srvfarm.net postfix/smtpd[1703120]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:33:27 mail.srvfarm.net postfix/smtpd[1703301]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:34:23 mail.srvfarm.net postfix/smtpd[1703121]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Aug 27 19:34:30 mail.srvfarm.net postfix/smtpd[1702147]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22]	2020-08-28 07:31:19
111.93.71.219	attack	2020-08-27T21:19:01.754911shield sshd\[21874\]: Invalid user deploy from 111.93.71.219 port 60682 2020-08-27T21:19:01.794423shield sshd\[21874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219 2020-08-27T21:19:03.749817shield sshd\[21874\]: Failed password for invalid user deploy from 111.93.71.219 port 60682 ssh2 2020-08-27T21:22:58.973378shield sshd\[23106\]: Invalid user demo from 111.93.71.219 port 35226 2020-08-27T21:22:59.024381shield sshd\[23106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219	2020-08-28 07:02:19
197.51.154.68	attackspambots	Port probing on unauthorized port 445	2020-08-28 07:00:28
51.158.145.216	attackbots	/test/wp-login.php	2020-08-28 07:01:08
187.95.57.68	attackspam	Aug 27 06:02:23 mail.srvfarm.net postfix/smtps/smtpd[1364785]: warning: 187-95-57-68.vianet.net.br[187.95.57.68]: SASL PLAIN authentication failed: Aug 27 06:02:23 mail.srvfarm.net postfix/smtps/smtpd[1364785]: lost connection after AUTH from 187-95-57-68.vianet.net.br[187.95.57.68] Aug 27 06:05:28 mail.srvfarm.net postfix/smtpd[1379990]: warning: 187-95-57-68.vianet.net.br[187.95.57.68]: SASL PLAIN authentication failed: Aug 27 06:05:28 mail.srvfarm.net postfix/smtpd[1379990]: lost connection after AUTH from 187-95-57-68.vianet.net.br[187.95.57.68] Aug 27 06:11:42 mail.srvfarm.net postfix/smtpd[1379985]: warning: 187-95-57-68.vianet.net.br[187.95.57.68]: SASL PLAIN authentication failed: Aug 27 06:11:42 mail.srvfarm.net postfix/smtpd[1379985]: lost connection after AUTH from 187-95-57-68.vianet.net.br[187.95.57.68]	2020-08-28 07:07:35
193.169.254.105	attack	Aug 27 20:19:39 websrv1.aknwsrv.net postfix/smtpd[399320]: warning: unknown[193.169.254.105]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 20:19:39 websrv1.aknwsrv.net postfix/smtpd[399320]: lost connection after AUTH from unknown[193.169.254.105] Aug 27 20:22:33 websrv1.aknwsrv.net postfix/smtpd[399590]: warning: unknown[193.169.254.105]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 20:22:33 websrv1.aknwsrv.net postfix/smtpd[399590]: lost connection after AUTH from unknown[193.169.254.105] Aug 27 20:25:24 websrv1.aknwsrv.net postfix/smtpd[399741]: warning: unknown[193.169.254.105]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 07:25:57

Recently Reported IPs

112.80.138.44	112.80.138.55	112.80.138.52	112.80.138.58
112.80.138.61	112.80.138.73	112.80.138.97	112.80.138.74
112.80.138.78	112.80.139.106	112.80.139.117	112.80.139.128
112.80.139.133	112.80.139.144	112.80.139.130	112.80.139.146
112.80.139.155	112.94.252.50	112.94.252.56	112.94.252.53