112.80.139.173

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.139.186	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.139.186 to port 8118 [J]	2020-03-02 16:46:43
112.80.139.72	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430ed179f239666 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:47:55
112.80.139.237	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415a92e09326bf6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:55:56
112.80.139.252	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5413c84ba8846d04 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:00:28
112.80.139.3	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410ce0509096bc6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:41:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.139.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47550
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.139.173.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:33:33 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 173.139.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 173.139.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.78.129.147	attack	2019-11-07T06:37:42.110764shield sshd\[15149\]: Invalid user root1 from 121.78.129.147 port 49152 2019-11-07T06:37:42.114910shield sshd\[15149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.78.129.147 2019-11-07T06:37:44.090527shield sshd\[15149\]: Failed password for invalid user root1 from 121.78.129.147 port 49152 ssh2 2019-11-07T06:42:03.545781shield sshd\[15242\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.78.129.147 user=root 2019-11-07T06:42:05.686817shield sshd\[15242\]: Failed password for root from 121.78.129.147 port 58442 ssh2	2019-11-07 18:42:13
112.220.85.26	attackspambots	Nov 7 10:25:32 server sshd\[538\]: User root from 112.220.85.26 not allowed because listed in DenyUsers Nov 7 10:25:32 server sshd\[538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.85.26 user=root Nov 7 10:25:34 server sshd\[538\]: Failed password for invalid user root from 112.220.85.26 port 35926 ssh2 Nov 7 10:29:39 server sshd\[11713\]: Invalid user xpdb from 112.220.85.26 port 45436 Nov 7 10:29:39 server sshd\[11713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.85.26	2019-11-07 18:31:42
185.209.0.91	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 46200 proto: TCP cat: Misc Attack	2019-11-07 18:28:09
37.59.119.181	attackbotsspam	Lines containing failures of 37.59.119.181 Nov 5 21:14:29 shared04 sshd[16905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.119.181 user=r.r Nov 5 21:14:31 shared04 sshd[16905]: Failed password for r.r from 37.59.119.181 port 49936 ssh2 Nov 5 21:14:31 shared04 sshd[16905]: Received disconnect from 37.59.119.181 port 49936:11: Bye Bye [preauth] Nov 5 21:14:31 shared04 sshd[16905]: Disconnected from authenticating user r.r 37.59.119.181 port 49936 [preauth] Nov 5 21:43:32 shared04 sshd[24392]: Invalid user deployer from 37.59.119.181 port 34324 Nov 5 21:43:32 shared04 sshd[24392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.119.181 Nov 5 21:43:33 shared04 sshd[24392]: Failed password for invalid user deployer from 37.59.119.181 port 34324 ssh2 Nov 5 21:43:33 shared04 sshd[24392]: Received disconnect from 37.59.119.181 port 34324:11: Bye Bye [preauth] Nov 5 21:43:33........ ------------------------------	2019-11-07 18:33:59
90.187.62.121	attackspam	Nov 7 00:13:06 hanapaa sshd\[22990\]: Invalid user Pa\$\$!@\#123 from 90.187.62.121 Nov 7 00:13:06 hanapaa sshd\[22990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-90-187-62-121.pool2.vodafone-ip.de Nov 7 00:13:08 hanapaa sshd\[22990\]: Failed password for invalid user Pa\$\$!@\#123 from 90.187.62.121 port 51516 ssh2 Nov 7 00:21:38 hanapaa sshd\[23676\]: Invalid user barbiegirl from 90.187.62.121 Nov 7 00:21:38 hanapaa sshd\[23676\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=business-90-187-62-121.pool2.vodafone-ip.de	2019-11-07 18:50:22
49.128.36.34	attack	" "	2019-11-07 18:41:54
106.12.17.43	attackspam	Nov 7 09:38:11 root sshd[21224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.43 Nov 7 09:38:13 root sshd[21224]: Failed password for invalid user yd from 106.12.17.43 port 57292 ssh2 Nov 7 09:45:13 root sshd[21317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.43 ...	2019-11-07 18:50:46
104.245.144.44	attackspam	(From lyall.arnold@outlook.com) Do you want to promote your ad on thousands of advertising sites every month? Pay one flat rate and get virtually unlimited traffic to your site forever! Check out our site for details: http://www.postmyads.tech	2019-11-07 18:38:57
51.77.144.50	attack	ssh failed login	2019-11-07 18:54:26
14.111.93.252	attackspam	Lines containing failures of 14.111.93.252 Nov 6 18:54:18 shared12 sshd[7267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.111.93.252 user=r.r Nov 6 18:54:21 shared12 sshd[7267]: Failed password for r.r from 14.111.93.252 port 33524 ssh2 Nov 6 18:54:21 shared12 sshd[7267]: Received disconnect from 14.111.93.252 port 33524:11: Bye Bye [preauth] Nov 6 18:54:21 shared12 sshd[7267]: Disconnected from authenticating user r.r 14.111.93.252 port 33524 [preauth] Nov 6 19:15:21 shared12 sshd[13663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.111.93.252 user=r.r Nov 6 19:15:22 shared12 sshd[13663]: Failed password for r.r from 14.111.93.252 port 60010 ssh2 Nov 6 19:15:23 shared12 sshd[13663]: Received disconnect from 14.111.93.252 port 60010:11: Bye Bye [preauth] Nov 6 19:15:23 shared12 sshd[13663]: Disconnected from authenticating user r.r 14.111.93.252 port 60010 [preauth] No........ ------------------------------	2019-11-07 19:06:02
181.126.83.125	attack	Nov 7 13:06:59 gw1 sshd[20105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.126.83.125 Nov 7 13:07:01 gw1 sshd[20105]: Failed password for invalid user tomcat from 181.126.83.125 port 45090 ssh2 ...	2019-11-07 18:56:10
138.197.146.132	attackbots	11/07/2019-08:09:03.585262 138.197.146.132 Protocol: 6 ET POLICY Cleartext WordPress Login	2019-11-07 18:43:15
178.128.217.58	attackbots	Nov 7 08:55:14 markkoudstaal sshd[2584]: Failed password for root from 178.128.217.58 port 34550 ssh2 Nov 7 08:59:39 markkoudstaal sshd[2902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.58 Nov 7 08:59:41 markkoudstaal sshd[2902]: Failed password for invalid user pankaj from 178.128.217.58 port 43532 ssh2	2019-11-07 18:38:27
213.198.11.107	attackspam	Nov 6 02:26:26 hurricane sshd[29215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.198.11.107 user=r.r Nov 6 02:26:27 hurricane sshd[29215]: Failed password for r.r from 213.198.11.107 port 53512 ssh2 Nov 6 02:26:27 hurricane sshd[29215]: Received disconnect from 213.198.11.107 port 53512:11: Bye Bye [preauth] Nov 6 02:26:27 hurricane sshd[29215]: Disconnected from 213.198.11.107 port 53512 [preauth] Nov 6 02:48:06 hurricane sshd[29301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.198.11.107 user=r.r Nov 6 02:48:08 hurricane sshd[29301]: Failed password for r.r from 213.198.11.107 port 47016 ssh2 Nov 6 02:48:08 hurricane sshd[29301]: Received disconnect from 213.198.11.107 port 47016:11: Bye Bye [preauth] Nov 6 02:48:08 hurricane sshd[29301]: Disconnected from 213.198.11.107 port 47016 [preauth] Nov 6 02:51:41 hurricane sshd[29312]: pam_unix(sshd:auth): authenticati........ -------------------------------	2019-11-07 18:51:49
120.132.2.135	attack	Nov 7 10:32:47 nextcloud sshd\[11227\]: Invalid user zaq!!qaz from 120.132.2.135 Nov 7 10:32:47 nextcloud sshd\[11227\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.2.135 Nov 7 10:32:49 nextcloud sshd\[11227\]: Failed password for invalid user zaq!!qaz from 120.132.2.135 port 50866 ssh2 ...	2019-11-07 18:56:55

Recently Reported IPs

112.80.139.141	112.80.139.159	112.80.139.185	112.80.139.174
112.80.139.166	112.80.139.20	112.80.139.226	112.80.139.161
112.80.139.232	112.80.139.192	112.80.139.238	112.80.139.211
112.80.139.5	112.80.139.31	112.80.139.207	112.80.139.66
112.80.139.249	112.80.139.86	112.80.139.76	112.80.139.48