JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 150.158.80.239

150.158.80.239 was found in our database!

This IP was reported 296 times. Confidence of Abuse is 100%: ?

100%

ISP	Tencent Cloud Computing (Beijing) Co., Ltd
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 150.158.80.239

Whois 150.158.80.239

IP Abuse Reports for 150.158.80.239:

This IP address has been reported a total of 296 times from 157 distinct sources. 150.158.80.239 was first reported on April 22nd 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 Yachiyo Runami	2026-06-15 13:02:49 (5 days ago)	Port Scan on Honeypot \| Ports: 23/Telnet(2x) \| Proto: TCP(2) \| Flags: all SYN \| TTL: 42 \| Len: 44B(2 ... show more Port Scan on Honeypot \| Ports: 23/Telnet(2x) \| Proto: TCP(2) \| Flags: all SYN \| TTL: 42 \| Len: 44B(2x) \| Win: 65535(2) \| F2B/ufw-honeypot@2026-06-15T13:02:49Z show less	Port Scan Hacking
🇧🇬 geddo.in	2026-06-15 12:32:23 (5 days ago)	Jun 15 06:28:49 mortgagebase xinetd[1875]: START: telnet pid=10415 from=::ffff:150.158.80.239 Jun 15 ... show more Jun 15 06:28:49 mortgagebase xinetd[1875]: START: telnet pid=10415 from=::ffff:150.158.80.239 Jun 15 06:29:33 mortgagebase login[10421]: FAILED LOGIN (1) on '/dev/pts/1' from '150.158.80.239' FOR 'UNKNOWN', Authentication failure Jun 15 06:29:36 mortgagebase xinetd[1875]: START: telnet pid=10426 from=::ffff:150.158.80.239 Jun 15 06:30:20 mortgagebase login[10455]: FAILED LOGIN (1) on '/dev/pts/1' from '150.158.80.239' FOR 'UNKNOWN', Authentication failure ... show less	Brute-Force
🇫🇷 jonahtebaa	2026-06-15 12:10:03 (5 days ago)	SSH tarpit capture	Port Scan Brute-Force SSH
🇩🇪 ipcop.net	2026-06-15 11:12:10 (5 days ago)	2026-06-15T13:10:04.509374+02:00 care.dolphin-it.de sshd-session[1487977]: Connection closed by auth ... show more 2026-06-15T13:10:04.509374+02:00 care.dolphin-it.de sshd-session[1487977]: Connection closed by authenticating user admin 150.158.80.239 port 35864 [preauth] 2026-06-15T13:10:44.389110+02:00 care.dolphin-it.de sshd-session[1488096]: Invalid user orangepi from 150.158.80.239 port 42598 2026-06-15T13:10:45.981051+02:00 care.dolphin-it.de sshd-session[1488096]: Connection closed by invalid user orangepi 150.158.80.239 port 42598 [preauth] 2026-06-15T13:11:27.012055+02:00 care.dolphin-it.de sshd-session[1488170]: Connection closed by authenticating user root 150.158.80.239 port 48798 [preauth] 2026-06-15T13:12:09.600973+02:00 care.dolphin-it.de sshd-session[1488271]: Connection closed by authenticating user root 150.158.80.239 port 55498 [preauth] show less	Brute-Force
🇺🇸 MPL	2026-06-15 10:30:25 (5 days ago)	tcp/2375 (2 or more attempts)	Port Scan
🇮🇹 alph44	2026-06-15 09:50:32 (5 days ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇩🇪 Admins@FBN	2026-06-15 09:41:12 (5 days ago)	FW-PortScan: Traffic Blocked srcport=56894 dstport=2222	Port Scan
🇺🇸 MPL	2026-06-15 08:48:23 (5 days ago)	tcp/443 (2 or more attempts)	Port Scan
🇺🇸 rjdefrancisco	2026-06-15 07:06:47 (5 days ago)	Unwanted traffic detected by honeypot on June 14, 2026: brute force and hacking attacks (1 over teln ... show more Unwanted traffic detected by honeypot on June 14, 2026: brute force and hacking attacks (1 over telnet). show less	Port Scan Brute-Force SSH
🇬🇧 openstrike.co.uk	2026-06-15 05:13:37 (5 days ago)	1 attack on shell probes: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTT ... show more 1 attack on shell probes: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 show less	Hacking
🇩🇪 ghostwarriors	2026-06-15 02:20:20 (6 days ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇹🇭 Sawasdee	2026-06-15 01:30:12 (6 days ago)	Port Scan ...	Port Scan
🇺🇸 MPL	2026-06-15 01:08:52 (6 days ago)	tcp/2222 (2 or more attempts)	Port Scan
🇬🇧 gbzret4d	2026-06-14 23:21:49 (6 days ago)	Honeypot [uk-production01]: SSH handshake/banner (24 bytes of payload); 2222 [1] TCP	SSH
🇦🇹 urnilxfgbez	2026-06-14 22:45:00 (6 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan

Showing 1 to 15 of 296 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.117

🇳🇱 185.224.128.16

🇨🇳 125.124.42.183

🇰🇷 118.216.88.229

🇬🇭 102.223.92.101

🇧🇪 34.76.80.204

🇸🇬 2400:6180:0:d0::1182:2001

🇨🇱 186.10.86.130

🇳🇱 185.226.197.33

🇳🇱 185.226.197.32

🇨🇳 180.76.240.16

🇺🇸 172.56.161.50

🇳🇱 160.119.69.14

🇧🇬 151.237.115.208

🇺🇸 147.185.132.165

🇺🇸 147.185.132.105

🇨🇳 139.9.191.197

🇵🇭 112.208.66.228

🇺🇸 109.105.210.69

🇮🇳 103.21.79.242