112.80.138.7 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.138.90	attack	Unauthorized connection attempt detected from IP address 112.80.138.90 to port 1022 [T]	2020-05-20 10:22:53
112.80.138.255	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.255 to port 3389 [J]	2020-03-02 21:35:30
112.80.138.109	attackspam	Unauthorized connection attempt detected from IP address 112.80.138.109 to port 80 [J]	2020-01-19 14:19:47
112.80.138.223	attackbots	Unauthorized connection attempt detected from IP address 112.80.138.223 to port 2095	2019-12-31 08:57:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.138.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31013
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.138.7.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:41:27 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 7.138.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.138.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.241.134.34	attack	2020-10-10T18:32:29.705953yoshi.linuxbox.ninja sshd[1476196]: Invalid user vcsa1 from 218.241.134.34 port 31100 2020-10-10T18:32:32.150855yoshi.linuxbox.ninja sshd[1476196]: Failed password for invalid user vcsa1 from 218.241.134.34 port 31100 ssh2 2020-10-10T18:34:23.287166yoshi.linuxbox.ninja sshd[1477381]: Invalid user google from 218.241.134.34 port 43820 ...	2020-10-11 15:44:31
85.97.128.64	attackbots	1602367440 - 10/11/2020 00:04:00 Host: 85.97.128.64/85.97.128.64 Port: 445 TCP Blocked	2020-10-11 16:06:40
152.136.143.44	attackbots	(sshd) Failed SSH login from 152.136.143.44 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 22:54:39 server2 sshd[3648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.143.44 user=root Oct 10 22:54:41 server2 sshd[3648]: Failed password for root from 152.136.143.44 port 33104 ssh2 Oct 10 22:58:55 server2 sshd[5797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.143.44 user=root Oct 10 22:58:57 server2 sshd[5797]: Failed password for root from 152.136.143.44 port 55286 ssh2 Oct 10 23:02:02 server2 sshd[7490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.143.44 user=root	2020-10-11 15:29:57
120.239.196.94	attack	Oct 10 23:19:01 propaganda sshd[101169]: Connection from 120.239.196.94 port 53553 on 10.0.0.161 port 22 rdomain "" Oct 10 23:19:01 propaganda sshd[101169]: Connection closed by 120.239.196.94 port 53553 [preauth]	2020-10-11 16:06:13
114.67.169.63	attackspambots	[f2b] sshd bruteforce, retries: 1	2020-10-11 15:48:11
35.235.96.109	attackspambots	Attempts to probe web pages for vulnerable PHP or other applications	2020-10-11 15:32:03
178.209.124.226	attack	Icarus honeypot on github	2020-10-11 15:33:26
104.148.61.175	attackbots	Oct 10 22:45:59 SRV001 postfix/smtpd[15262]: NOQUEUE: reject: RCPT from unknown[104.148.61.175]: 554 5.7.1 : Relay access denied; from= to= proto=SMTP helo= ...	2020-10-11 15:36:06
61.177.172.142	attack	2020-10-11T07:48:39.412641abusebot-7.cloudsearch.cf sshd[6906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.142 user=root 2020-10-11T07:48:41.089518abusebot-7.cloudsearch.cf sshd[6906]: Failed password for root from 61.177.172.142 port 31301 ssh2 2020-10-11T07:48:44.406250abusebot-7.cloudsearch.cf sshd[6906]: Failed password for root from 61.177.172.142 port 31301 ssh2 2020-10-11T07:48:39.412641abusebot-7.cloudsearch.cf sshd[6906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.142 user=root 2020-10-11T07:48:41.089518abusebot-7.cloudsearch.cf sshd[6906]: Failed password for root from 61.177.172.142 port 31301 ssh2 2020-10-11T07:48:44.406250abusebot-7.cloudsearch.cf sshd[6906]: Failed password for root from 61.177.172.142 port 31301 ssh2 2020-10-11T07:48:39.412641abusebot-7.cloudsearch.cf sshd[6906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser ...	2020-10-11 15:58:37
142.44.218.192	attackbots	Oct 11 08:40:46 h2779839 sshd[21886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.218.192 user=root Oct 11 08:40:47 h2779839 sshd[21886]: Failed password for root from 142.44.218.192 port 60224 ssh2 Oct 11 08:45:13 h2779839 sshd[21950]: Invalid user tomcat from 142.44.218.192 port 37230 Oct 11 08:45:13 h2779839 sshd[21950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.218.192 Oct 11 08:45:13 h2779839 sshd[21950]: Invalid user tomcat from 142.44.218.192 port 37230 Oct 11 08:45:16 h2779839 sshd[21950]: Failed password for invalid user tomcat from 142.44.218.192 port 37230 ssh2 Oct 11 08:49:39 h2779839 sshd[22008]: Invalid user samir from 142.44.218.192 port 42390 Oct 11 08:49:39 h2779839 sshd[22008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.218.192 Oct 11 08:49:39 h2779839 sshd[22008]: Invalid user samir from 142.44.218.192 port 42390 ...	2020-10-11 15:39:37
112.85.42.88	attackspambots	Oct 11 09:43:10 ip106 sshd[23643]: Failed password for root from 112.85.42.88 port 36277 ssh2 Oct 11 09:43:14 ip106 sshd[23643]: Failed password for root from 112.85.42.88 port 36277 ssh2 ...	2020-10-11 15:54:09
183.81.13.152	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-11 15:45:02
188.166.213.172	attackspam	Bruteforce detected by fail2ban	2020-10-11 15:29:32
184.105.247.244	attack	Tried our host z.	2020-10-11 15:53:42
61.216.161.223	attack	Unauthorised access (Oct 10) SRC=61.216.161.223 LEN=40 TTL=45 ID=55733 TCP DPT=23 WINDOW=50122 SYN	2020-10-11 15:30:40

Recently Reported IPs

112.80.138.174	112.80.139.175	112.80.138.216	112.80.139.137
112.80.139.18	112.80.139.2	112.80.139.217	112.80.139.81
112.80.139.97	112.80.139.27	112.80.139.84	112.81.103.169
112.83.117.85	112.85.10.22	112.85.121.2	112.85.65.69
112.94.101.170	112.85.22.221	112.94.101.125	112.94.101.44