112.85.131.30 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.85.131.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.85.131.30.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030200 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 02 13:23:36 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 30.131.85.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 30.131.85.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.29.230.21	attackbots	Unauthorized connection attempt detected from IP address 202.29.230.21 to port 2220 [J]	2020-02-01 10:28:29
195.93.190.64	attackbots	Unauthorized connection attempt from IP address 195.93.190.64 on Port 445(SMB)	2020-02-01 10:37:03
24.67.25.191	attackspambots	Automatic report - Port Scan Attack	2020-02-01 10:57:06
183.181.168.131	attack	Automatic report - SSH Brute-Force Attack	2020-02-01 10:39:27
109.94.179.49	attackspambots	Unauthorized connection attempt detected from IP address 109.94.179.49 to port 139	2020-02-01 10:41:25
139.59.90.31	attack	Unauthorized connection attempt detected from IP address 139.59.90.31 to port 2220 [J]	2020-02-01 10:16:13
190.25.189.242	attackspambots	Unauthorized connection attempt from IP address 190.25.189.242 on Port 445(SMB)	2020-02-01 10:34:05
3.10.208.56	attackspam	Time: Fri Jan 31 16:11:41 2020 -0500 IP: 3.10.208.56 (GB/United Kingdom/ec2-3-10-208-56.eu-west-2.compute.amazonaws.com) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block	2020-02-01 10:51:15
35.178.204.115	attack	Time: Fri Jan 31 18:11:09 2020 -0300 IP: 35.178.204.115 (GB/United Kingdom/ec2-35-178-204-115.eu-west-2.compute.amazonaws.com) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block	2020-02-01 10:48:30
13.73.159.163	attack	[SatFeb0101:09:42.6533802020][:error][pid32360:tid47092635195136][client13.73.159.163:59998][client13.73.159.163]ModSecurity:Accessdeniedwithcode403$phase2$.File"/tmp/20200201-010942-XjTBxewwATcLkB3zyHf4MgAAAQs-file-x2Pryc"rejectedbytheapproverscript"/etc/cxs/cxscgi.sh":0[file"/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"][line"7"][id"1010101"][msg"ConfigServerExploitScanner$cxs$triggered"][severity"CRITICAL"][hostname"ponzellini.ch"][uri"/wp-admin/admin-post.php"][unique_id"XjTBxewwATcLkB3zyHf4MgAAAQs"]	2020-02-01 10:53:01
132.232.108.149	attackbotsspam	Unauthorized connection attempt detected from IP address 132.232.108.149 to port 2220 [J]	2020-02-01 10:52:44
58.33.31.82	attack	Invalid user ondrea from 58.33.31.82 port 32768	2020-02-01 10:27:26
212.156.221.69	attackspambots	Unauthorized connection attempt detected from IP address 212.156.221.69 to port 2220 [J]	2020-02-01 10:35:32
45.228.232.13	attackbots	Unauthorized connection attempt from IP address 45.228.232.13 on Port 445(SMB)	2020-02-01 10:56:45
54.206.19.43	attackspam	[FriJan3121:49:49.7055332020][:error][pid12190:tid47392766236416][client54.206.19.43:40910][client54.206.19.43]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"www.casaplusticino.ch"][uri"/.env"][unique_id"XjSS7RZ2LVVmbSpBd99nHQAAAAM"][FriJan3122:30:10.5819102020][:error][pid12039:tid47392787248896][client54.206.19.43:46606][client54.206.19.43]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\	2020-02-01 10:55:39

Recently Reported IPs

112.85.131.28	112.85.131.34	112.85.131.36	112.85.131.38
112.85.131.40	112.85.131.42	112.85.131.44	112.85.131.46
112.85.131.48	112.85.131.5	112.85.131.50	112.85.131.52
112.85.131.55	112.85.131.56	112.85.131.58	112.85.131.6
112.85.131.60	112.85.131.62	112.85.131.64	112.85.131.67