112.80.139.193

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.80.139.186	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.139.186 to port 8118 [J]	2020-03-02 16:46:43
112.80.139.72	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430ed179f239666 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:47:55
112.80.139.237	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415a92e09326bf6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:55:56
112.80.139.252	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5413c84ba8846d04 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:00:28
112.80.139.3	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410ce0509096bc6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:41:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.139.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49090
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.139.193.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030700 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 07 22:57:36 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 193.139.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 193.139.80.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.150.216.229	attack	Oct 4 13:06:09 localhost sshd\[31322\]: Invalid user Android2017 from 178.150.216.229 port 41500 Oct 4 13:06:09 localhost sshd\[31322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.150.216.229 Oct 4 13:06:10 localhost sshd\[31322\]: Failed password for invalid user Android2017 from 178.150.216.229 port 41500 ssh2	2019-10-04 19:12:53
5.135.223.35	attack	Oct 4 00:42:00 hpm sshd\[30533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip35.ip-5-135-223.eu user=root Oct 4 00:42:02 hpm sshd\[30533\]: Failed password for root from 5.135.223.35 port 55750 ssh2 Oct 4 00:45:50 hpm sshd\[30853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip35.ip-5-135-223.eu user=root Oct 4 00:45:53 hpm sshd\[30853\]: Failed password for root from 5.135.223.35 port 39416 ssh2 Oct 4 00:49:39 hpm sshd\[31149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip35.ip-5-135-223.eu user=root	2019-10-04 18:54:19
92.118.160.37	attackspambots	04.10.2019 08:03:49 Connection to port 6001 blocked by firewall	2019-10-04 19:26:20
211.59.36.66	attack	Brute force attempt	2019-10-04 18:59:34
181.174.164.161	attackbotsspam	Oct 3 14:41:33 localhost kernel: [3865912.288424] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=181.174.164.161 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=68 ID=62208 DF PROTO=TCP SPT=54179 DPT=22 SEQ=3858059240 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 17:07:21 localhost kernel: [3874660.022760] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=181.174.164.161 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=81 ID=52759 DF PROTO=TCP SPT=63702 DPT=22 SEQ=921582379 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:49:19 localhost kernel: [3898778.062676] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=181.174.164.161 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=69 ID=21998 DF PROTO=TCP SPT=56860 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:49:19 localhost kernel: [3898778.062705] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=181.174.164.161 DST=[	2019-10-04 19:22:24
193.112.6.241	attack	Oct 4 13:13:57 ArkNodeAT sshd\[31685\]: Invalid user P@55W0RD@2017 from 193.112.6.241 Oct 4 13:13:57 ArkNodeAT sshd\[31685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.6.241 Oct 4 13:13:58 ArkNodeAT sshd\[31685\]: Failed password for invalid user P@55W0RD@2017 from 193.112.6.241 port 59394 ssh2	2019-10-04 19:24:38
84.243.8.156	attackbotsspam	(Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 4) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3) LEN=40 TTL=56 ID=19108 TCP DPT=23 WINDOW=2739 SYN (Oct 3...	2019-10-04 19:15:35
103.36.84.180	attack	2019-10-03T23:45:12.752055ns525875 sshd\[4961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.84.180 user=root 2019-10-03T23:45:15.203280ns525875 sshd\[4961\]: Failed password for root from 103.36.84.180 port 56412 ssh2 2019-10-03T23:49:56.692656ns525875 sshd\[9260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.84.180 user=root 2019-10-03T23:49:58.798659ns525875 sshd\[9260\]: Failed password for root from 103.36.84.180 port 41352 ssh2 ...	2019-10-04 19:00:23
61.183.35.44	attackbotsspam	Oct 4 12:44:29 localhost sshd\[11488\]: Invalid user user9 from 61.183.35.44 Oct 4 12:44:29 localhost sshd\[11488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.35.44 Oct 4 12:44:32 localhost sshd\[11488\]: Failed password for invalid user user9 from 61.183.35.44 port 48225 ssh2 Oct 4 12:49:27 localhost sshd\[11795\]: Invalid user banjob from 61.183.35.44 Oct 4 12:49:27 localhost sshd\[11795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.35.44 ...	2019-10-04 19:06:59
184.103.163.15	attack	Telnetd brute force attack detected by fail2ban	2019-10-04 19:08:34
190.14.36.152	attackspambots	" "	2019-10-04 19:19:34
164.132.100.28	attackbots	Invalid user tech from 164.132.100.28 port 44092	2019-10-04 18:48:36
109.106.60.112	attack	firewall-block, port(s): 23/tcp	2019-10-04 18:45:32
79.21.59.9	attack	firewall-block, port(s): 23/tcp	2019-10-04 18:49:07
45.142.195.5	attack	Oct 4 11:02:14 heicom postfix/smtpd\[14098\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 4 11:02:59 heicom postfix/smtpd\[14098\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 4 11:03:47 heicom postfix/smtpd\[12125\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 4 11:04:36 heicom postfix/smtpd\[14098\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure Oct 4 11:05:22 heicom postfix/smtpd\[12125\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure ...	2019-10-04 19:14:57

Recently Reported IPs

112.80.139.167	112.80.139.198	112.80.139.202	112.80.139.206
112.80.139.223	112.80.139.23	112.80.139.235	112.80.139.241
112.80.139.243	112.80.139.244	112.80.139.245	112.80.139.251
112.85.211.54	112.85.22.181	112.85.22.3	112.85.23.173
112.85.23.52	112.85.64.99	112.85.65.107	112.85.65.202