JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 113.141.80.24

113.141.80.24 was found in our database!

This IP was reported 81 times. Confidence of Abuse is 100%: ?

100%

ISP	CHINANET SHAANXI PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS134768
Domain Name	xa.sn.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 113.141.80.24

Whois 113.141.80.24

IP Abuse Reports for 113.141.80.24:

This IP address has been reported a total of 81 times from 50 distinct sources. 113.141.80.24 was first reported on June 17th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 sc user	2026-06-26 06:04:51 (12 hours ago)	Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security too ... show more Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security tooling. Technical log details and local server identifiers intentionally omitted for privacy. show less	Brute-Force SSH
🇫🇷 lechat	2026-06-26 03:25:58 (15 hours ago)	2026-06-26T03:25:58.416958+0000 inbound port scan detected by Suricata. src=113.141.80.24:38634 dst= ... show more 2026-06-26T03:25:58.416958+0000 inbound port scan detected by Suricata. src=113.141.80.24:38634 dst=51.68.231.122:3306 proto=TCP. signature="ET SCAN Suspicious inbound to mySQL port 3306" category="Potentially Bad Traffic" sid=2010937 reason=scan_signature. show less	Port Scan
🇺🇸 Bankbook8585	2026-06-26 02:59:30 (15 hours ago)	T-Pot honeypot \| Dionaea honeypot: mysqld	Port Scan Hacking
🇫🇷 Kimax	2026-06-25 23:06:16 (19 hours ago)	RdpGuard detected brute-force attempt on IMAP	Brute-Force
🇩🇪 rd1742	2026-06-25 22:55:32 (19 hours ago)	Jun 25 22:55:31 quad dovecot: auth-worker(1600552): sql([email protected],113.141.80.24,<Y5ye4xtVTOBxjVAY ... show more Jun 25 22:55:31 quad dovecot: auth-worker(1600552): sql([email protected],113.141.80.24,<Y5ye4xtVTOBxjVAY>): unknown user show less	Brute-Force Exploited Host
🇫🇷 maxxsense	2026-06-25 21:42:56 (21 hours ago)	(imapd) Failed IMAP login from 113.141.80.24 (CN/China/-)	Brute-Force
Anonymous	2026-06-25 20:05:07 (22 hours ago)	POP or IMAP failed login attempts detected by Fail2Ban	Brute-Force
🇫🇷 basing	2026-06-25 19:03:36 (23 hours ago)	2026-06-25 20:03:36 pzb SASL PLAIN auth failed: rhost=113.141.80.24...	Brute-Force
🇫🇷 dwmp	2026-06-25 18:52:13 (23 hours ago)	Jun 25 20:04:19 webcore dovecot: imap-login: Login aborted: Connection closed (auth failed, 1 attemp ... show more Jun 25 20:04:19 webcore dovecot: imap-login: Login aborted: Connection closed (auth failed, 1 attempts in 2 secs) (auth_failed): user=<[email protected]>, method=PLAIN, rip=113.141.80.24, lip=75.119.153.41, TLS, session=<TUwT0hdVPrRxjVAY> Jun 25 20:28:18 webcore dovecot: imap-login: Login aborted: Connection closed (auth failed, 1 attempts in 2 secs) (auth_failed): user=<[email protected]>, method=PLAIN, rip=113.141.80.24, lip=75.119.153.41, TLS, session=<5wjQJxhVwtxxjVAY> Jun 25 20:52:12 webcore dovecot: imap-login: Login aborted: Connection closed (auth failed, 1 attempts in 2 secs) (auth_failed): user=<[email protected]>, method=PLAIN, rip=113.141.80.24, lip=75.119.153.41, TLS, session=<5eRKfRhVSJVxjVAY> ... show less	Brute-Force
🇷🇴 clauss	2026-06-25 18:35:36 (1 day ago)	IP reached maximum auth failures for a one day block	Brute-Force
🇹🇷 baku.hosting	2026-06-25 18:24:30 (1 day ago)	CSF Auto Report: (imapd) Failed IMAP login from 113.141.80.24 (CN/China/-): 4 in the last 3600 secs	Brute-Force Web App Attack
🇩🇪 Bedios GmbH	2026-06-25 18:14:06 (1 day ago)	POP3/IMAP Bruteforce	Hacking Brute-Force
🇺🇸 kosada.com	2026-06-25 18:03:26 (1 day ago)	IMAP password guessing	Brute-Force
🇺🇸 interbiznw.com	2026-06-25 17:58:18 (1 day ago)	dovecot-bruteforce	Port Scan Hacking Spoofing Brute-Force Exploited Host
🇳🇿 andkiwi	2026-06-25 17:56:21 (1 day ago)	Unauthorised attempted login to IMAP server	Brute-Force

Showing 1 to 15 of 81 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 186.96.151.198

🇧🇷 181.232.230.167

🇩🇪 167.94.145.23

🇰🇪 41.89.128.6

🇺🇸 198.20.231.232

🇦🇷 181.23.30.55

🇧🇩 144.79.38.67

🇺🇸 136.66.181.150

🇧🇩 103.152.106.104

🇳🇱 91.92.40.5

🇹🇼 61.218.132.28

🇺🇸 50.62.22.47

🇫🇷 2a02:c207:2025:4935:23b1::8

🇩🇪 213.209.159.231

🇹🇷 188.3.118.187

🇫🇮 147.185.133.164

🇫🇮 147.185.133.54

🇫🇮 147.185.133.49

🇰🇷 58.229.180.107

🇹🇷 46.196.145.66