112.80.136.238

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.136.135	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.135 to port 8088	2020-06-01 00:45:42
112.80.136.245	attack	Unauthorized connection attempt detected from IP address 112.80.136.245 to port 3389 [J]	2020-03-02 21:35:54
112.80.136.176	attack	Unauthorized connection attempt detected from IP address 112.80.136.176 to port 8081 [J]	2020-03-02 18:41:32
112.80.136.214	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.136.214 to port 9999 [T]	2020-01-10 09:22:18
112.80.136.219	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.219 to port 8118	2020-01-02 21:21:29
112.80.136.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543405f8ef3b6cfe \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:33:44
112.80.136.8	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.136.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19068
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.136.238.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:08:42 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 238.136.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.136.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.110.179.26	attack	Sep 15 02:23:14 MK-Soft-Root2 sshd\[21532\]: Invalid user timothy from 203.110.179.26 port 55364 Sep 15 02:23:14 MK-Soft-Root2 sshd\[21532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26 Sep 15 02:23:16 MK-Soft-Root2 sshd\[21532\]: Failed password for invalid user timothy from 203.110.179.26 port 55364 ssh2 ...	2019-09-15 09:05:34
202.169.62.187	attackspambots	Sep 14 20:13:38 vpn01 sshd\[3395\]: Invalid user mabad from 202.169.62.187 Sep 14 20:13:38 vpn01 sshd\[3395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187 Sep 14 20:13:40 vpn01 sshd\[3395\]: Failed password for invalid user mabad from 202.169.62.187 port 36811 ssh2	2019-09-15 09:02:01
185.176.27.38	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-09-15 08:59:35
209.97.167.131	attack	Sep 15 04:15:38 yabzik sshd[22312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.131 Sep 15 04:15:39 yabzik sshd[22312]: Failed password for invalid user cpc from 209.97.167.131 port 45158 ssh2 Sep 15 04:22:32 yabzik sshd[24702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.131	2019-09-15 09:32:24
118.68.170.172	attack	Sep 14 14:44:40 web9 sshd\[17854\]: Invalid user alberding from 118.68.170.172 Sep 14 14:44:40 web9 sshd\[17854\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.68.170.172 Sep 14 14:44:41 web9 sshd\[17854\]: Failed password for invalid user alberding from 118.68.170.172 port 53320 ssh2 Sep 14 14:49:14 web9 sshd\[18734\]: Invalid user fj from 118.68.170.172 Sep 14 14:49:14 web9 sshd\[18734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.68.170.172	2019-09-15 09:03:44
119.60.29.78	attack	[munged]::80 119.60.29.78 - - [14/Sep/2019:20:13:14 +0200] "POST /[munged]: HTTP/1.1" 200 4214 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 119.60.29.78 - - [14/Sep/2019:20:13:16 +0200] "POST /[munged]: HTTP/1.1" 200 4213 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 119.60.29.78 - - [14/Sep/2019:20:13:17 +0200] "POST /[munged]: HTTP/1.1" 200 4213 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 119.60.29.78 - - [14/Sep/2019:20:13:19 +0200] "POST /[munged]: HTTP/1.1" 200 4213 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 119.60.29.78 - - [14/Sep/2019:20:13:21 +0200] "POST /[munged]: HTTP/1.1" 200 4213 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::80 119.60.29.78 - - [14/Sep/2019:20:13:22 +0200] "POST	2019-09-15 09:12:12
5.246.231.145	attack	Sep 14 19:59:51 v32671 sshd[31977]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 19:59:54 v32671 sshd[31979]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 19:59:55 v32671 sshd[31982]: Invalid user ubnt from 5.246.231.145 Sep 14 19:59:56 v32671 sshd[31982]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 19:59:58 v32671 sshd[31984]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 20:00:00 v32671 sshd[31986]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 20:00:04 v32671 sshd[31988]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 20:00:07 v32671 sshd[32108]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 20:00:10 v32671 sshd[32296]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 20:00:15 v32671 sshd[32344]: Received disconnect from 5.246.231.145: 11: Bye Bye [preauth] Sep 14 20:00:17 v32671 sshd[3........ -------------------------------	2019-09-15 09:05:04
171.235.60.248	attackspam	Invalid user admin from 171.235.60.248 port 5810	2019-09-15 09:31:31
206.189.76.64	attackspambots	$f2bV_matches	2019-09-15 09:19:13
187.16.55.0	attack	Chat Spam	2019-09-15 08:58:03
106.12.28.203	attackspam	Invalid user linda from 106.12.28.203 port 54494	2019-09-15 09:00:59
94.191.50.114	attackspam	2019-09-15T00:04:42.893560abusebot-6.cloudsearch.cf sshd\[3681\]: Invalid user ptf from 94.191.50.114 port 52322	2019-09-15 09:16:50
149.56.132.202	attackbotsspam	Sep 14 20:03:22 vtv3 sshd\[26762\]: Invalid user cody from 149.56.132.202 port 37706 Sep 14 20:03:22 vtv3 sshd\[26762\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.132.202 Sep 14 20:03:25 vtv3 sshd\[26762\]: Failed password for invalid user cody from 149.56.132.202 port 37706 ssh2 Sep 14 20:07:11 vtv3 sshd\[28736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.132.202 user=root Sep 14 20:07:13 vtv3 sshd\[28736\]: Failed password for root from 149.56.132.202 port 53938 ssh2 Sep 14 20:19:00 vtv3 sshd\[1968\]: Invalid user cfg from 149.56.132.202 port 46078 Sep 14 20:19:00 vtv3 sshd\[1968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.132.202 Sep 14 20:19:02 vtv3 sshd\[1968\]: Failed password for invalid user cfg from 149.56.132.202 port 46078 ssh2 Sep 14 20:23:09 vtv3 sshd\[4182\]: Invalid user wayne from 149.56.132.202 port 34026 Sep 14 20:23:09 vtv3	2019-09-15 09:22:38
58.56.187.83	attackbotsspam	Sep 14 23:16:42 MK-Soft-Root2 sshd\[28276\]: Invalid user rudy from 58.56.187.83 port 43730 Sep 14 23:16:42 MK-Soft-Root2 sshd\[28276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.187.83 Sep 14 23:16:44 MK-Soft-Root2 sshd\[28276\]: Failed password for invalid user rudy from 58.56.187.83 port 43730 ssh2 ...	2019-09-15 09:36:09
165.227.39.71	attack	Sep 14 22:06:05 localhost sshd\[11706\]: Invalid user ozzy from 165.227.39.71 port 54618 Sep 14 22:06:05 localhost sshd\[11706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.39.71 Sep 14 22:06:07 localhost sshd\[11706\]: Failed password for invalid user ozzy from 165.227.39.71 port 54618 ssh2 ...	2019-09-15 09:08:33

Recently Reported IPs

112.80.136.36	112.80.136.44	112.80.136.55	112.80.136.74
112.80.136.87	112.80.136.93	112.80.136.98	112.80.137.110
112.80.136.84	112.80.137.123	112.80.136.78	112.80.137.134
112.80.137.159	112.80.137.16	112.80.137.145	112.80.137.149
112.80.137.184	112.80.137.191	112.80.137.195	112.80.137.210