17.80.114.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 17.80.114.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55696
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;17.80.114.141.			IN	A

;; AUTHORITY SECTION:
.			460	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023060100 1800 900 604800 86400

;; Query time: 415 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 01 14:11:24 CST 2023
;; MSG SIZE  rcvd: 106

Host info

Host 141.114.80.17.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.114.80.17.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.72.212.159	attackspam	148.72.212.159 - - \[20/Sep/2020:03:15:48 +0200\] "POST /wp-login.php HTTP/1.1" 200 11220 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 148.72.212.159 - - \[20/Sep/2020:03:48:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 11220 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2020-09-21 02:23:16
49.234.80.94	attackspam	Sep 20 17:59:06 plex-server sshd[2887424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.80.94 user=root Sep 20 17:59:08 plex-server sshd[2887424]: Failed password for root from 49.234.80.94 port 54058 ssh2 Sep 20 18:01:51 plex-server sshd[2888533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.80.94 user=root Sep 20 18:01:53 plex-server sshd[2888533]: Failed password for root from 49.234.80.94 port 55740 ssh2 Sep 20 18:04:22 plex-server sshd[2889555]: Invalid user wp from 49.234.80.94 port 57388 ...	2020-09-21 02:18:50
118.193.33.186	attackspam	Sep 20 13:59:51 plex-server sshd[2774864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.33.186 Sep 20 13:59:51 plex-server sshd[2774864]: Invalid user jenkins from 118.193.33.186 port 33188 Sep 20 13:59:53 plex-server sshd[2774864]: Failed password for invalid user jenkins from 118.193.33.186 port 33188 ssh2 Sep 20 14:04:08 plex-server sshd[2776604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.33.186 user=root Sep 20 14:04:11 plex-server sshd[2776604]: Failed password for root from 118.193.33.186 port 43686 ssh2 ...	2020-09-21 02:33:17
184.105.139.78	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-21 02:38:30
145.239.82.87	attackbotsspam	145.239.82.87 (PL/Poland/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 12:10:43 server sshd[27960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.46.166 user=root Sep 20 12:10:45 server sshd[27960]: Failed password for root from 104.131.46.166 port 53612 ssh2 Sep 20 12:24:48 server sshd[29436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.146 user=root Sep 20 12:13:41 server sshd[28381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.7.189 user=root Sep 20 12:13:43 server sshd[28381]: Failed password for root from 172.245.7.189 port 38432 ssh2 Sep 20 12:11:54 server sshd[28154]: Failed password for root from 145.239.82.87 port 35381 ssh2 IP Addresses Blocked: 104.131.46.166 (US/United States/-) 185.220.101.146 (DE/Germany/-) 172.245.7.189 (US/United States/-)	2020-09-21 02:45:34
137.74.132.175	attackspambots	Time: Sun Sep 20 17:21:27 2020 +0000 IP: 137.74.132.175 (BE/Belgium/ip175.ip-137-74-132.eu) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 20 16:55:49 48-1 sshd[84438]: Failed password for root from 137.74.132.175 port 41598 ssh2 Sep 20 17:10:29 48-1 sshd[85096]: Failed password for root from 137.74.132.175 port 60030 ssh2 Sep 20 17:14:09 48-1 sshd[85240]: Failed password for root from 137.74.132.175 port 42552 ssh2 Sep 20 17:17:42 48-1 sshd[85439]: Failed password for root from 137.74.132.175 port 53302 ssh2 Sep 20 17:21:24 48-1 sshd[85602]: Invalid user debian from 137.74.132.175 port 35836	2020-09-21 02:29:20
111.20.200.22	attackspam	(smtpauth) Failed SMTP AUTH login from 111.20.200.22 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-09-20 07:36:28 dovecot_login authenticator failed for (socialequityfoundation.com) [111.20.200.22]:60974: 535 Incorrect authentication data (set_id=nologin) 2020-09-20 07:36:58 dovecot_login authenticator failed for (socialequityfoundation.com) [111.20.200.22]:36444: 535 Incorrect authentication data (set_id=postmaster@socialequityfoundation.com) 2020-09-20 07:37:29 dovecot_login authenticator failed for (socialequityfoundation.com) [111.20.200.22]:39420: 535 Incorrect authentication data (set_id=postmaster) 2020-09-20 07:41:18 dovecot_login authenticator failed for (hotelrosaritoinn.info) [111.20.200.22]:38008: 535 Incorrect authentication data (set_id=nologin) 2020-09-20 07:41:48 dovecot_login authenticator failed for (hotelrosaritoinn.info) [111.20.200.22]:40866: 535 Incorrect authentication data (set_id=postmaster@hotelrosaritoinn.info)	2020-09-21 02:22:30
134.122.26.76	attackspam	Invalid user deployer from 134.122.26.76 port 35156	2020-09-21 02:27:29
51.68.251.202	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 02:31:54
81.30.144.119	attackspam	Scanned 1 times in the last 24 hours on port 22	2020-09-21 02:51:07
201.1.173.138	attack	Listed on zen-spamhaus also barracudaCentral and dnsbl-sorbs / proto=6 . srcport=20052 . dstport=8080 . (2280)	2020-09-21 02:42:05
160.153.154.5	attack	Automatic report - Banned IP Access	2020-09-21 02:27:43
184.105.247.204	attack	Port scan denied	2020-09-21 02:49:28
167.172.98.198	attack	Sep 20 22:10:16 gw1 sshd[19450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.98.198 Sep 20 22:10:18 gw1 sshd[19450]: Failed password for invalid user admin from 167.172.98.198 port 34062 ssh2 ...	2020-09-21 02:26:48
206.189.22.230	attackspam	2020-09-19T08:04:55.878391hostname sshd[61109]: Failed password for root from 206.189.22.230 port 59196 ssh2 ...	2020-09-21 02:28:27

Recently Reported IPs

14.115.68.11	134.35.254.222	75.12.13.176	109.195.189.224
245.174.242.9	109.194.33.163	48.179.195.38	171.100.146.41
123.118.4.66	146.99.3.47	113.40.56.35	128.116.144.72
27.98.5.131	34.122.49.202	133.62.135.183	141.22.34.233
234.180.120.226	20.39.153.96	204.117.178.253	125.171.103.7