112.80.136.104

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.136.135	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.135 to port 8088	2020-06-01 00:45:42
112.80.136.245	attack	Unauthorized connection attempt detected from IP address 112.80.136.245 to port 3389 [J]	2020-03-02 21:35:54
112.80.136.176	attack	Unauthorized connection attempt detected from IP address 112.80.136.176 to port 8081 [J]	2020-03-02 18:41:32
112.80.136.214	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.136.214 to port 9999 [T]	2020-01-10 09:22:18
112.80.136.219	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.219 to port 8118	2020-01-02 21:21:29
112.80.136.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543405f8ef3b6cfe \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:33:44
112.80.136.8	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.136.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59399
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.136.104.			IN	A

;; AUTHORITY SECTION:
.			199	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:33:06 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 104.136.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.136.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.54.20.26	attackspam	Dec 11 20:22:41 php1 sshd\[12614\]: Invalid user caffey from 106.54.20.26 Dec 11 20:22:41 php1 sshd\[12614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.20.26 Dec 11 20:22:42 php1 sshd\[12614\]: Failed password for invalid user caffey from 106.54.20.26 port 34044 ssh2 Dec 11 20:29:45 php1 sshd\[13367\]: Invalid user hu from 106.54.20.26 Dec 11 20:29:45 php1 sshd\[13367\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.20.26	2019-12-12 15:22:42
193.112.54.36	attack	Dec 12 07:33:16 h2177944 sshd\[27696\]: Invalid user zhouh from 193.112.54.36 port 33370 Dec 12 07:33:16 h2177944 sshd\[27696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.54.36 Dec 12 07:33:19 h2177944 sshd\[27696\]: Failed password for invalid user zhouh from 193.112.54.36 port 33370 ssh2 Dec 12 07:42:32 h2177944 sshd\[28126\]: Invalid user fleurs from 193.112.54.36 port 57946 ...	2019-12-12 15:23:52
158.69.223.91	attack	Dec 11 21:11:35 kapalua sshd\[24773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-158-69-223.net user=root Dec 11 21:11:38 kapalua sshd\[24773\]: Failed password for root from 158.69.223.91 port 34849 ssh2 Dec 11 21:16:56 kapalua sshd\[25317\]: Invalid user vanderheiden from 158.69.223.91 Dec 11 21:16:56 kapalua sshd\[25317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-158-69-223.net Dec 11 21:16:58 kapalua sshd\[25317\]: Failed password for invalid user vanderheiden from 158.69.223.91 port 39043 ssh2	2019-12-12 15:19:06
106.54.10.188	attack	Dec 12 02:28:02 linuxvps sshd\[26138\]: Invalid user test from 106.54.10.188 Dec 12 02:28:02 linuxvps sshd\[26138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.10.188 Dec 12 02:28:03 linuxvps sshd\[26138\]: Failed password for invalid user test from 106.54.10.188 port 41818 ssh2 Dec 12 02:35:38 linuxvps sshd\[30795\]: Invalid user milk from 106.54.10.188 Dec 12 02:35:38 linuxvps sshd\[30795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.10.188	2019-12-12 15:45:18
35.228.188.244	attack	2019-12-12T07:30:33.052446host3.slimhost.com.ua sshd[1872396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.188.228.35.bc.googleusercontent.com user=sshd 2019-12-12T07:30:35.003225host3.slimhost.com.ua sshd[1872396]: Failed password for sshd from 35.228.188.244 port 46454 ssh2 2019-12-12T07:38:15.702498host3.slimhost.com.ua sshd[1874579]: Invalid user dyment from 35.228.188.244 port 46800 2019-12-12T07:38:15.707424host3.slimhost.com.ua sshd[1874579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.188.228.35.bc.googleusercontent.com 2019-12-12T07:38:15.702498host3.slimhost.com.ua sshd[1874579]: Invalid user dyment from 35.228.188.244 port 46800 2019-12-12T07:38:17.081853host3.slimhost.com.ua sshd[1874579]: Failed password for invalid user dyment from 35.228.188.244 port 46800 ssh2 2019-12-12T07:44:13.770471host3.slimhost.com.ua sshd[1876341]: Invalid user siteadmin from 35.228.188.244 port 55458 ...	2019-12-12 15:43:33
51.38.178.226	attackspam	Dec 12 08:30:16 legacy sshd[22564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.178.226 Dec 12 08:30:17 legacy sshd[22564]: Failed password for invalid user juile from 51.38.178.226 port 49716 ssh2 Dec 12 08:36:19 legacy sshd[22845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.178.226 ...	2019-12-12 15:43:05
51.255.161.25	attack	Dec 12 07:29:47 MK-Soft-VM5 sshd[7567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.161.25 Dec 12 07:29:49 MK-Soft-VM5 sshd[7567]: Failed password for invalid user wwwrun from 51.255.161.25 port 33468 ssh2 ...	2019-12-12 15:19:26
222.186.175.161	attackbotsspam	--- report --- Dec 12 03:40:11 sshd: Connection from 222.186.175.161 port 45132 Dec 12 03:40:18 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Dec 12 03:40:20 sshd: Failed password for root from 222.186.175.161 port 45132 ssh2 Dec 12 03:40:21 sshd: Received disconnect from 222.186.175.161: 11: [preauth]	2019-12-12 15:11:42
61.158.167.175	attack	REQUESTED PAGE: /tags.php	2019-12-12 15:10:20
27.20.110.205	attack	Dec 12 07:20:16 mxgate1 postfix/postscreen[27043]: CONNECT from [27.20.110.205]:2328 to [176.31.12.44]:25 Dec 12 07:20:16 mxgate1 postfix/dnsblog[27056]: addr 27.20.110.205 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 12 07:20:16 mxgate1 postfix/dnsblog[27058]: addr 27.20.110.205 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 12 07:20:22 mxgate1 postfix/postscreen[27043]: DNSBL rank 3 for [27.20.110.205]:2328 Dec x@x Dec 12 07:20:23 mxgate1 postfix/postscreen[27043]: HANGUP after 1 from [27.20.110.205]:2328 in tests after SMTP handshake Dec 12 07:20:23 mxgate1 postfix/postscreen[27043]: DISCONNECT [27.20.110.205]:2328 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.20.110.205	2019-12-12 15:11:09
158.69.192.35	attackbots	Dec 12 07:12:45 web8 sshd\[22834\]: Invalid user wracher from 158.69.192.35 Dec 12 07:12:45 web8 sshd\[22834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.192.35 Dec 12 07:12:46 web8 sshd\[22834\]: Failed password for invalid user wracher from 158.69.192.35 port 47304 ssh2 Dec 12 07:18:10 web8 sshd\[25480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.192.35 user=root Dec 12 07:18:12 web8 sshd\[25480\]: Failed password for root from 158.69.192.35 port 55756 ssh2	2019-12-12 15:28:32
149.202.180.143	attackbotsspam	Dec 11 20:55:37 web1 sshd\[8788\]: Invalid user khu from 149.202.180.143 Dec 11 20:55:37 web1 sshd\[8788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.180.143 Dec 11 20:55:39 web1 sshd\[8788\]: Failed password for invalid user khu from 149.202.180.143 port 53156 ssh2 Dec 11 21:00:41 web1 sshd\[9302\]: Invalid user nyam from 149.202.180.143 Dec 11 21:00:41 web1 sshd\[9302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.180.143	2019-12-12 15:17:53
103.255.232.25	attackbots	Dec 12 07:29:44 mc1 kernel: \[291020.283612\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=103.255.232.25 DST=159.69.205.51 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=22277 DF PROTO=TCP SPT=63814 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 12 07:29:47 mc1 kernel: \[291023.287957\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=103.255.232.25 DST=159.69.205.51 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=26717 DF PROTO=TCP SPT=63814 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 12 07:29:53 mc1 kernel: \[291029.293888\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=103.255.232.25 DST=159.69.205.51 LEN=48 TOS=0x00 PREC=0x00 TTL=112 ID=3658 DF PROTO=TCP SPT=63814 DPT=1433 WINDOW=65535 RES=0x00 SYN URGP=0 ...	2019-12-12 15:16:20
182.176.97.49	attackspambots	Dec 12 07:29:49 amit sshd\[1800\]: Invalid user admin from 182.176.97.49 Dec 12 07:29:49 amit sshd\[1800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.176.97.49 Dec 12 07:29:52 amit sshd\[1800\]: Failed password for invalid user admin from 182.176.97.49 port 56228 ssh2 ...	2019-12-12 15:14:02
45.55.243.124	attack	2019-12-12T07:24:09.877547struts4.enskede.local sshd\[17002\]: Invalid user mysql from 45.55.243.124 port 54792 2019-12-12T07:24:09.884891struts4.enskede.local sshd\[17002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 2019-12-12T07:24:13.232962struts4.enskede.local sshd\[17002\]: Failed password for invalid user mysql from 45.55.243.124 port 54792 ssh2 2019-12-12T07:29:11.801526struts4.enskede.local sshd\[17015\]: Invalid user tyridal from 45.55.243.124 port 34920 2019-12-12T07:29:11.809137struts4.enskede.local sshd\[17015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.243.124 ...	2019-12-12 15:29:02

Recently Reported IPs

112.78.133.49	112.80.136.148	112.80.136.143	112.80.127.113
112.78.128.242	112.8.32.85	112.80.136.153	112.80.136.155
112.80.136.181	112.80.136.204	112.80.136.197	112.8.41.166
112.80.136.203	112.8.220.28	112.80.136.218	112.80.136.212
112.80.136.202	112.80.136.210	112.80.136.211	112.80.136.234