112.80.136.154

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.136.135	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.135 to port 8088	2020-06-01 00:45:42
112.80.136.245	attack	Unauthorized connection attempt detected from IP address 112.80.136.245 to port 3389 [J]	2020-03-02 21:35:54
112.80.136.176	attack	Unauthorized connection attempt detected from IP address 112.80.136.176 to port 8081 [J]	2020-03-02 18:41:32
112.80.136.214	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.136.214 to port 9999 [T]	2020-01-10 09:22:18
112.80.136.219	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.219 to port 8118	2020-01-02 21:21:29
112.80.136.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543405f8ef3b6cfe \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:33:44
112.80.136.8	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.136.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23667
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.136.154.			IN	A

;; AUTHORITY SECTION:
.			112	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 03:10:25 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 154.136.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.136.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.82.70	attack	Nov 26 07:26:38 amit sshd\[7879\]: Invalid user admin from 106.12.82.70 Nov 26 07:26:38 amit sshd\[7879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.82.70 Nov 26 07:26:40 amit sshd\[7879\]: Failed password for invalid user admin from 106.12.82.70 port 44536 ssh2 ...	2019-11-26 17:21:12
46.38.144.57	attack	Nov 26 10:09:04 webserver postfix/smtpd\[24652\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 10:09:51 webserver postfix/smtpd\[24652\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 10:10:38 webserver postfix/smtpd\[24652\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 10:11:24 webserver postfix/smtpd\[24652\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 26 10:12:11 webserver postfix/smtpd\[24652\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-26 17:14:42
218.92.0.156	attackspam	2019-11-26T08:56:56.633657hub.schaetter.us sshd\[22814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root 2019-11-26T08:56:58.557764hub.schaetter.us sshd\[22814\]: Failed password for root from 218.92.0.156 port 7908 ssh2 2019-11-26T08:57:01.780171hub.schaetter.us sshd\[22814\]: Failed password for root from 218.92.0.156 port 7908 ssh2 2019-11-26T08:57:04.748907hub.schaetter.us sshd\[22814\]: Failed password for root from 218.92.0.156 port 7908 ssh2 2019-11-26T08:57:08.794242hub.schaetter.us sshd\[22814\]: Failed password for root from 218.92.0.156 port 7908 ssh2 ...	2019-11-26 16:58:20
139.59.14.239	attack	Automatic report - SSH Brute-Force Attack	2019-11-26 17:22:56
36.66.156.125	attack	SSH invalid-user multiple login attempts	2019-11-26 17:23:53
113.21.116.29	attack	(imapd) Failed IMAP login from 113.21.116.29 (NC/New Caledonia/host-113-21-116-29.canl.nc): 1 in the last 3600 secs	2019-11-26 16:59:51
112.85.42.178	attack	Nov 26 09:40:14 jane sshd[14189]: Failed password for root from 112.85.42.178 port 43204 ssh2 Nov 26 09:40:18 jane sshd[14189]: Failed password for root from 112.85.42.178 port 43204 ssh2 ...	2019-11-26 16:56:51
106.54.121.34	attack	Nov 26 06:57:23 h2812830 sshd[16957]: Invalid user fritschi from 106.54.121.34 port 45276 Nov 26 06:57:23 h2812830 sshd[16957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.34 Nov 26 06:57:23 h2812830 sshd[16957]: Invalid user fritschi from 106.54.121.34 port 45276 Nov 26 06:57:24 h2812830 sshd[16957]: Failed password for invalid user fritschi from 106.54.121.34 port 45276 ssh2 Nov 26 07:27:28 h2812830 sshd[18992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.34 user=mysql Nov 26 07:27:30 h2812830 sshd[18992]: Failed password for mysql from 106.54.121.34 port 48260 ssh2 ...	2019-11-26 16:52:30
106.12.15.235	attackspambots	Nov 26 03:00:49 * sshd[23615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.15.235 user=r.r Nov 26 03:00:52 * sshd[23615]: Failed password for r.r from 106.12.15.235 port 38298 ssh2 Nov 26 03:00:52 * sshd[23615]: Received disconnect from 106.12.15.235: 11: Bye Bye [preauth] Nov 26 03:40:21 * sshd[29720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.15.235 user=r.r Nov 26 03:40:23 * sshd[29720]: Failed password for r.r from 106.12.15.235 port 55282 ssh2 Nov 26 03:40:24 * sshd[29720]: Received disconnect from 106.12.15.235: 11: Bye Bye [preauth] Nov 26 03:47:48 * sshd[30525]: Invalid user mail3user from 106.12.15.235 Nov 26 03:47:48 * sshd[30525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.15.235 Nov 26 03:47:49 *** sshd[30525]: Failed password for invalid user mail3user from 106.12.15.235 port 33002 ssh........ -------------------------------	2019-11-26 17:03:26
172.105.192.195	attackbotsspam	" "	2019-11-26 17:14:57
35.206.156.221	attackspambots	Nov 26 07:45:40 fwservlet sshd[2259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.206.156.221 user=r.r Nov 26 07:45:42 fwservlet sshd[2259]: Failed password for r.r from 35.206.156.221 port 52600 ssh2 Nov 26 07:45:42 fwservlet sshd[2259]: Received disconnect from 35.206.156.221 port 52600:11: Bye Bye [preauth] Nov 26 07:45:42 fwservlet sshd[2259]: Disconnected from 35.206.156.221 port 52600 [preauth] Nov 26 08:26:22 fwservlet sshd[3050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.206.156.221 user=mail Nov 26 08:26:24 fwservlet sshd[3050]: Failed password for mail from 35.206.156.221 port 34866 ssh2 Nov 26 08:26:24 fwservlet sshd[3050]: Received disconnect from 35.206.156.221 port 34866:11: Bye Bye [preauth] Nov 26 08:26:24 fwservlet sshd[3050]: Disconnected from 35.206.156.221 port 34866 [preauth] Nov 26 08:32:27 fwservlet sshd[3194]: pam_unix(sshd:auth): authentication fail........ -------------------------------	2019-11-26 17:29:02
149.56.46.220	attack	Nov 26 03:49:04 linuxvps sshd\[6031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.46.220 user=root Nov 26 03:49:06 linuxvps sshd\[6031\]: Failed password for root from 149.56.46.220 port 58610 ssh2 Nov 26 03:55:22 linuxvps sshd\[9888\]: Invalid user farlay from 149.56.46.220 Nov 26 03:55:22 linuxvps sshd\[9888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.46.220 Nov 26 03:55:25 linuxvps sshd\[9888\]: Failed password for invalid user farlay from 149.56.46.220 port 38258 ssh2	2019-11-26 17:13:13
114.33.89.93	attack	Connection by 114.33.89.93 on port: 26 got caught by honeypot at 11/26/2019 5:27:13 AM	2019-11-26 17:07:33
222.186.175.140	attack	Nov 26 10:14:04 sd-53420 sshd\[19397\]: User root from 222.186.175.140 not allowed because none of user's groups are listed in AllowGroups Nov 26 10:14:04 sd-53420 sshd\[19397\]: Failed none for invalid user root from 222.186.175.140 port 16258 ssh2 Nov 26 10:14:05 sd-53420 sshd\[19397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Nov 26 10:14:07 sd-53420 sshd\[19397\]: Failed password for invalid user root from 222.186.175.140 port 16258 ssh2 Nov 26 10:14:11 sd-53420 sshd\[19397\]: Failed password for invalid user root from 222.186.175.140 port 16258 ssh2 ...	2019-11-26 17:18:00
218.92.0.212	attackspam	Nov 26 06:05:27 firewall sshd[2747]: Failed password for root from 218.92.0.212 port 48044 ssh2 Nov 26 06:05:42 firewall sshd[2747]: error: maximum authentication attempts exceeded for root from 218.92.0.212 port 48044 ssh2 [preauth] Nov 26 06:05:42 firewall sshd[2747]: Disconnecting: Too many authentication failures [preauth] ...	2019-11-26 17:12:44

Recently Reported IPs

112.80.136.172	112.80.139.160	112.80.139.163	112.80.139.181
112.80.139.178	112.80.139.19	112.80.139.197	112.80.139.201
112.80.139.190	112.80.139.195	113.102.206.136	113.102.206.186
113.102.206.160	113.102.206.24	113.102.206.242	113.102.206.55
113.102.206.59	113.102.207.148	113.102.205.3	113.102.207.113