112.80.136.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.136.135	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.135 to port 8088	2020-06-01 00:45:42
112.80.136.245	attack	Unauthorized connection attempt detected from IP address 112.80.136.245 to port 3389 [J]	2020-03-02 21:35:54
112.80.136.176	attack	Unauthorized connection attempt detected from IP address 112.80.136.176 to port 8081 [J]	2020-03-02 18:41:32
112.80.136.214	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.136.214 to port 9999 [T]	2020-01-10 09:22:18
112.80.136.219	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.219 to port 8118	2020-01-02 21:21:29
112.80.136.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543405f8ef3b6cfe \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:33:44
112.80.136.8	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.136.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39822
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.136.99.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 01:10:35 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 99.136.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.136.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
2607:f298:5:101b::d4c:9764	attack	xmlrpc attack	2019-06-23 21:17:33
88.247.36.87	attackbots	" "	2019-06-23 21:16:32
202.79.52.14	attack	Unauthorised access (Jun 23) SRC=202.79.52.14 LEN=40 PREC=0x20 TTL=48 ID=32784 TCP DPT=23 WINDOW=5902 SYN Unauthorised access (Jun 16) SRC=202.79.52.14 LEN=40 PREC=0x20 TTL=48 ID=39959 TCP DPT=23 WINDOW=60150 SYN	2019-06-23 20:29:33
83.13.126.240	attackbots	2019-06-23T12:42:13.050226test01.cajus.name sshd\[25218\]: Invalid user christian from 83.13.126.240 port 46164 2019-06-23T12:42:13.074338test01.cajus.name sshd\[25218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=few240.internetdsl.tpnet.pl 2019-06-23T12:42:15.312137test01.cajus.name sshd\[25218\]: Failed password for invalid user christian from 83.13.126.240 port 46164 ssh2	2019-06-23 21:07:29
193.32.163.71	attackbotsspam	firewall-block, port(s): 6543/tcp	2019-06-23 20:30:24
39.36.193.90	attackspam	utm - spam	2019-06-23 21:10:21
189.46.249.207	attackspam	Jun 23 10:00:51 TCP Attack: SRC=189.46.249.207 DST=[Masked] LEN=237 TOS=0x00 PREC=0x00 TTL=53 DF PROTO=TCP SPT=39546 DPT=80 WINDOW=2904 RES=0x00 ACK PSH URGP=0	2019-06-23 20:50:11
94.176.76.56	attackspam	(Jun 23) LEN=40 TTL=245 ID=58204 DF TCP DPT=23 WINDOW=14600 SYN (Jun 23) LEN=40 TTL=245 ID=28838 DF TCP DPT=23 WINDOW=14600 SYN (Jun 23) LEN=40 TTL=245 ID=365 DF TCP DPT=23 WINDOW=14600 SYN (Jun 23) LEN=40 TTL=245 ID=38322 DF TCP DPT=23 WINDOW=14600 SYN (Jun 23) LEN=40 TTL=245 ID=17713 DF TCP DPT=23 WINDOW=14600 SYN (Jun 23) LEN=40 TTL=245 ID=34112 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=33345 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=45812 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=31277 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=51934 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=58722 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=44275 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=42875 DF TCP DPT=23 WINDOW=14600 SYN (Jun 22) LEN=40 TTL=245 ID=43663 DF TCP DPT=23 WINDOW=14600 SYN (Jun 21) LEN=40 TTL=245 ID=55188 DF TCP DPT=23 WINDOW=14600 SY...	2019-06-23 20:56:47
223.243.231.189	attackspam	scan r	2019-06-23 20:28:57
128.199.123.170	attackspambots	Jun 23 12:22:37 localhost sshd\[27709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.123.170 user=root Jun 23 12:22:38 localhost sshd\[27709\]: Failed password for root from 128.199.123.170 port 45712 ssh2 Jun 23 12:24:52 localhost sshd\[27896\]: Invalid user gao from 128.199.123.170 port 59740	2019-06-23 20:26:41
71.6.146.130	attackspambots	¯\_(ツ)_/¯	2019-06-23 20:57:19
192.95.22.240	attackbotsspam	www.ft-1848-basketball.de 192.95.22.240 \[23/Jun/2019:12:39:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 2174 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 192.95.22.240 \[23/Jun/2019:12:39:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 2144 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-06-23 20:31:33
40.73.71.205	attack	$f2bV_matches	2019-06-23 21:09:43
154.124.232.24	attackbots	Hit on /wp-login.php	2019-06-23 21:04:12
93.183.155.158	attackspambots	NAME : ESCOM-BG CIDR : 93.183.128.0/19 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack Bulgaria - block certain countries :) IP: 93.183.155.158 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-23 20:41:33

Recently Reported IPs

185.14.192.30	49.232.21.189	39.107.70.37	185.243.56.171
27.64.158.87	115.206.108.184	118.239.4.244	12.148.190.61
192.241.204.206	165.22.248.220	60.208.87.66	189.89.222.41
91.109.153.68	201.14.45.103	175.157.207.245	49.130.20.194
5.2.72.73	201.140.14.199	46.29.118.215	103.28.70.140