112.80.137.163

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.137.153	attackspambots	Web Server Scan. RayID: 590c5cc7ee296e42, UA: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729), Country: CN	2020-05-21 04:11:37
112.80.137.72	attack	Unauthorized connection attempt detected from IP address 112.80.137.72 to port 22 [J]	2020-03-02 19:32:51
112.80.137.30	attackspam	Unauthorized connection attempt detected from IP address 112.80.137.30 to port 9991 [T]	2020-01-27 15:42:09
112.80.137.97	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.137.97 to port 8081 [T]	2020-01-10 08:56:25
112.80.137.144	attack	CN_APNIC-HM_<177>1578575004 [1:2013053:1] ET WEB_SERVER PyCurl Suspicious User Agent Inbound [Classification: Attempted Information Leak] [Priority: 2]: {TCP} 112.80.137.144:59730	2020-01-10 03:04:32
112.80.137.119	attackspam	Unauthorized connection attempt detected from IP address 112.80.137.119 to port 3128	2019-12-31 08:08:24
112.80.137.14	attackbots	HTTP/80/443 Probe, BF, WP, Hack -	2019-12-26 05:16:33
112.80.137.34	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54101e30ae016e18 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:43:04
112.80.137.117	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54147ae5dbc76bb4 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:04:43
112.80.137.189	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 541570716d3c9641 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:07:54
112.80.137.13	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 541062388e246c56 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:17:30
112.80.137.39	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54104ef0f857ed47 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:34:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.137.163
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55147
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.137.163.			IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031100 1800 900 604800 86400

;; Query time: 79 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 12 00:38:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 163.137.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 163.137.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.180.206.191	attackspambots	1581084322 - 02/07/2020 15:05:22 Host: 45.180.206.191/45.180.206.191 Port: 445 TCP Blocked	2020-02-08 02:01:30
71.6.165.200	attackspambots	Automatic report - Banned IP Access	2020-02-08 01:56:23
158.69.223.91	attack	Feb 7 16:53:07 host sshd[17870]: Invalid user sza from 158.69.223.91 port 52776 ...	2020-02-08 02:03:19
202.218.3.149	attack	Feb 7 19:35:35 areeb-Workstation sshd[22267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.218.3.149 Feb 7 19:35:36 areeb-Workstation sshd[22267]: Failed password for invalid user cnw from 202.218.3.149 port 45548 ssh2 ...	2020-02-08 02:28:20
49.145.245.197	attackspam	Unauthorized connection attempt from IP address 49.145.245.197 on Port 445(SMB)	2020-02-08 01:57:54
84.143.80.202	attackspam	Feb 7 18:51:43 mail postfix/smtpd[9619]: warning: p548F50CA.dip0.t-ipconnect.de[84.143.80.202]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 7 18:55:21 mail postfix/smtpd[10016]: warning: p548F50CA.dip0.t-ipconnect.de[84.143.80.202]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 7 18:57:39 mail postfix/smtpd[11713]: warning: p548F50CA.dip0.t-ipconnect.de[84.143.80.202]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-02-08 02:23:23
222.186.31.166	attackspambots	Feb 7 19:24:03 v22018076622670303 sshd\[4351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root Feb 7 19:24:05 v22018076622670303 sshd\[4351\]: Failed password for root from 222.186.31.166 port 53951 ssh2 Feb 7 19:24:07 v22018076622670303 sshd\[4351\]: Failed password for root from 222.186.31.166 port 53951 ssh2 ...	2020-02-08 02:27:09
190.211.243.82	attack	Feb 7 18:24:54 mail postfix/smtpd[4220]: warning: unknown[190.211.243.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 7 18:24:54 mail postfix/smtpd[4322]: warning: unknown[190.211.243.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 7 18:24:59 mail postfix/smtpd[4271]: warning: unknown[190.211.243.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 7 18:24:59 mail postfix/smtpd[4226]: warning: unknown[190.211.243.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 7 18:24:59 mail postfix/smtpd[4235]: warning: unknown[190.211.243.82]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-02-08 02:21:20
45.125.66.189	attack	Rude login attack (5 tries in 1d)	2020-02-08 02:29:32
51.75.160.215	attackbotsspam	Feb 7 19:36:00 areeb-Workstation sshd[22392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.160.215 Feb 7 19:36:02 areeb-Workstation sshd[22392]: Failed password for invalid user rtl from 51.75.160.215 port 36810 ssh2 ...	2020-02-08 02:17:59
185.156.73.38	attackspam	firewall-block, port(s): 3393/tcp, 3395/tcp, 3402/tcp, 3431/tcp, 3433/tcp	2020-02-08 02:00:39
121.36.16.7	attack	2020/02/07 15:05:54 \[error\] 1707\#1707: \*72673 limiting requests, excess: 0.486 by zone "one", client: 121.36.16.7, server: default_server, request: "GET /thinkphp/html/public/index.php HTTP/1.1", host: "81.32.231.108" ...	2020-02-08 02:06:19
92.119.160.6	attackbots	Feb 7 16:49:15 h2177944 kernel: \[4288616.896487\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11022 PROTO=TCP SPT=8080 DPT=44444 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 16:49:15 h2177944 kernel: \[4288616.896499\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=11022 PROTO=TCP SPT=8080 DPT=44444 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 17:12:55 h2177944 kernel: \[4290036.388406\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34773 PROTO=TCP SPT=8080 DPT=3490 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 17:12:55 h2177944 kernel: \[4290036.388422\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34773 PROTO=TCP SPT=8080 DPT=3490 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 7 17:43:15 h2177944 kernel: \[4291856.149058\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.6 DST=85.214.117.9 LEN=40	2020-02-08 02:06:48
185.39.11.28	attackspam	Feb 7 17:11:06 host3 dovecot: pop3-login: Disconnected: Inactivity (auth failed, 1 attempts in 180 secs): user=, method=PLAIN, rip=185.39.11.28, lip=207.180.241.50, session= Feb 7 18:56:16 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=185.39.11.28, lip=207.180.241.50, session= Feb 7 18:57:00 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=185.39.11.28, lip=207.180.241.50, session= Feb 7 18:57:41 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=185.39.11.28, lip=207.180.241.50, session= Feb 7 18:59:37 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=185.39.11.28, lip=207.180.241.50, s ...	2020-02-08 02:01:09
191.13.91.62	attackspam	Automatic report - Port Scan Attack	2020-02-08 02:15:09

Recently Reported IPs

112.80.137.151	112.80.137.217	112.80.137.250	112.80.137.254
112.80.137.3	112.80.137.91	134.114.85.167	112.80.138.11
112.80.138.124	112.80.138.165	112.80.138.176	112.80.138.181
112.80.138.206	112.80.138.86	112.80.139.102	112.80.139.125
112.80.139.136	112.80.139.15	112.80.139.16	112.80.139.165