112.80.139.178

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.139.186	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.139.186 to port 8118 [J]	2020-03-02 16:46:43
112.80.139.72	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430ed179f239666 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:47:55
112.80.139.237	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415a92e09326bf6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:55:56
112.80.139.252	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5413c84ba8846d04 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:00:28
112.80.139.3	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410ce0509096bc6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:41:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.139.178
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42233
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.139.178.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 03:10:27 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 178.139.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 178.139.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.171.188	attackspambots	Apr 20 01:41:54 mail sshd[6740]: Invalid user test from 106.12.171.188 Apr 20 01:41:54 mail sshd[6740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.171.188 Apr 20 01:41:54 mail sshd[6740]: Invalid user test from 106.12.171.188 Apr 20 01:41:56 mail sshd[6740]: Failed password for invalid user test from 106.12.171.188 port 43498 ssh2 Apr 20 01:45:18 mail sshd[7248]: Invalid user db2inst1 from 106.12.171.188 ...	2020-04-20 07:55:12
142.93.195.15	attack	Apr 20 02:17:20 Enigma sshd[10728]: Invalid user vh from 142.93.195.15 port 33760 Apr 20 02:17:20 Enigma sshd[10728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.15 Apr 20 02:17:20 Enigma sshd[10728]: Invalid user vh from 142.93.195.15 port 33760 Apr 20 02:17:22 Enigma sshd[10728]: Failed password for invalid user vh from 142.93.195.15 port 33760 ssh2 Apr 20 02:21:22 Enigma sshd[11256]: Invalid user ubuntu from 142.93.195.15 port 52286	2020-04-20 07:41:53
182.61.150.102	attack	SASL PLAIN auth failed: ruser=...	2020-04-20 07:59:10
88.200.72.94	attack	[ssh] SSH attack	2020-04-20 08:00:27
186.119.116.226	attack	DATE:2020-04-19 22:19:32, IP:186.119.116.226, PORT:ssh SSH brute force auth (docker-dc)	2020-04-20 08:15:04
41.188.112.102	attackbots	Apr 20 02:21:21 www4 sshd\[31562\]: Invalid user so360 from 41.188.112.102 Apr 20 02:21:21 www4 sshd\[31562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.188.112.102 Apr 20 02:21:23 www4 sshd\[31562\]: Failed password for invalid user so360 from 41.188.112.102 port 6921 ssh2 ...	2020-04-20 08:05:25
152.136.157.34	attackspambots	Apr 20 01:17:28 srv01 sshd[16760]: Invalid user ftpuser from 152.136.157.34 port 40454 Apr 20 01:17:28 srv01 sshd[16760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.157.34 Apr 20 01:17:28 srv01 sshd[16760]: Invalid user ftpuser from 152.136.157.34 port 40454 Apr 20 01:17:30 srv01 sshd[16760]: Failed password for invalid user ftpuser from 152.136.157.34 port 40454 ssh2 ...	2020-04-20 07:36:03
185.234.219.23	attack	Apr 20 02:10:04 ns3042688 courier-pop3d: LOGIN FAILED, user=support@cesumin.info, ip=\[::ffff:185.234.219.23\] ...	2020-04-20 08:11:38
178.128.162.10	attack	20 attempts against mh-ssh on cloud	2020-04-20 08:10:01
103.145.12.24	attack	[2020-04-19 19:54:30] NOTICE[1170][C-000027a0] chan_sip.c: Call from '' (103.145.12.24:60517) to extension '01146520458214' rejected because extension not found in context 'public'. [2020-04-19 19:54:30] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T19:54:30.359-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146520458214",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.24/60517",ACLName="no_extension_match" [2020-04-19 19:54:31] NOTICE[1170][C-000027a1] chan_sip.c: Call from '' (103.145.12.24:50202) to extension '01146812111503' rejected because extension not found in context 'public'. [2020-04-19 19:54:31] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-19T19:54:31.468-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146812111503",SessionID="0x7f6c08099cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103. ...	2020-04-20 08:04:24
94.191.61.57	attack	Lines containing failures of 94.191.61.57 Apr 19 12:12:17 kmh-vmh-001-fsn05 sshd[1625]: Invalid user testtest from 94.191.61.57 port 59720 Apr 19 12:12:17 kmh-vmh-001-fsn05 sshd[1625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.61.57 Apr 19 12:12:19 kmh-vmh-001-fsn05 sshd[1625]: Failed password for invalid user testtest from 94.191.61.57 port 59720 ssh2 Apr 19 12:12:21 kmh-vmh-001-fsn05 sshd[1625]: Received disconnect from 94.191.61.57 port 59720:11: Bye Bye [preauth] Apr 19 12:12:21 kmh-vmh-001-fsn05 sshd[1625]: Disconnected from invalid user testtest 94.191.61.57 port 59720 [preauth] Apr 19 12:57:09 kmh-vmh-001-fsn05 sshd[9758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.61.57 user=r.r Apr 19 12:57:12 kmh-vmh-001-fsn05 sshd[9758]: Failed password for r.r from 94.191.61.57 port 46298 ssh2 Apr 19 12:57:14 kmh-vmh-001-fsn05 sshd[9758]: Received disconnect from 94.191......... ------------------------------	2020-04-20 07:48:08
49.234.124.225	attackbotsspam	Apr 20 01:17:28 DAAP sshd[2214]: Invalid user ftpuser from 49.234.124.225 port 54706 Apr 20 01:17:28 DAAP sshd[2215]: Invalid user ftpuser from 49.234.124.225 port 54708 Apr 20 01:17:28 DAAP sshd[2214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.124.225 Apr 20 01:17:28 DAAP sshd[2214]: Invalid user ftpuser from 49.234.124.225 port 54706 Apr 20 01:17:29 DAAP sshd[2214]: Failed password for invalid user ftpuser from 49.234.124.225 port 54706 ssh2 Apr 20 01:17:28 DAAP sshd[2215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.124.225 Apr 20 01:17:28 DAAP sshd[2215]: Invalid user ftpuser from 49.234.124.225 port 54708 Apr 20 01:17:29 DAAP sshd[2215]: Failed password for invalid user ftpuser from 49.234.124.225 port 54708 ssh2 ...	2020-04-20 07:55:50
122.224.217.46	attackspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-04-20 07:59:34
177.92.138.120	attackbots	1587327150 - 04/19/2020 22:12:30 Host: 177.92.138.120/177.92.138.120 Port: 445 TCP Blocked	2020-04-20 08:14:10
95.167.225.85	attack	Apr 19 14:28:50 : SSH login attempts with invalid user	2020-04-20 08:00:00

Recently Reported IPs

112.80.139.181	112.80.139.19	112.80.139.197	112.80.139.201
112.80.139.190	112.80.139.195	113.102.206.136	113.102.206.186
113.102.206.160	113.102.206.24	113.102.206.242	113.102.206.55
113.102.206.59	113.102.207.148	113.102.205.3	113.102.207.113
113.103.52.143	113.103.52.98	113.103.53.83	113.103.22.84