JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.112.89.161

180.112.89.161 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 0%: ?

ISP	Chinanet Jiangsu Province Network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.112.89.161

Whois 180.112.89.161

IP Abuse Reports for 180.112.89.161:

This IP address has been reported a total of 16 times from 13 distinct sources. 180.112.89.161 was first reported on March 28th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-04-26 19:59:04 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 180.112.89.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 180.112.89.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 15:58:59.180920 2026] [security2:error] [pid 11002:tid 11002] [client 180.112.89.161:39691] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.janaia.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.janaia.com"] [uri "/"] [unique_id "ae5ug0BDxEx_4BLqz7JlHwAAAB4"], referer: http://www.janaia.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-25 22:40:40 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 180.112.89.161 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 180.112.89.161 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 25 18:40:33.488330 2026] [security2:error] [pid 31517:tid 31776] [client 180.112.89.161:39732] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.the-aquifer.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.the-aquifer.com"] [uri "/"] [unique_id "ae1C4bxh6fhC7gBpGXIeewAAANU"], referer: http://www.the-aquifer.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 Countryman	2026-03-29 23:31:11 (2 months ago)	repeated unauthorized connection attempts, host sweep, port 21	Hacking Brute-Force
🇨🇿 Countryman	2026-03-29 21:47:16 (2 months ago)	repeated unauthorized connection attempts, host sweep, port 21	Hacking Brute-Force
🇺🇸 sumnone	2026-03-29 18:01:45 (2 months ago)	Port probing on unauthorized port 21	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-03-29 16:40:14 (2 months ago)	tcp/21 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-03-29 16:40:14 (2 months ago)	tcp/21 (4 or more attempts)	Port Scan
Anonymous	2026-03-29 16:18:51 (2 months ago)	Brute force. Port: 21	Brute-Force
🇫🇷 security.rdmc.fr	2026-03-29 14:10:07 (2 months ago)	Port Scan Attack proto:TCP src:38512 dst:21	Port Scan
🇺🇸 xmission.com	2026-03-29 10:45:12 (2 months ago)	Blocked by UFW (TCP on 21) Source port: 38028 TTL: 237 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 21) Source port: 38028 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 180.112.89.161) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan FTP Brute-Force Brute-Force
Anonymous	2026-03-29 10:44:08 (2 months ago)	Port Scanner	Port Scan
🇫🇮 6kilowatti	2026-03-29 08:34:33 (2 months ago)	2026-03-29T11:34:32.825008+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:f ... show more 2026-03-29T11:34:32.825008+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:fd:74:70:71:9e:08:00 SRC=180.112.89.161 DST=10.0.0.30 LEN=44 TOS=0x00 PREC=0x00 TTL=236 ID=4919 PROTO=TCP SPT=38364 DPT=21 WINDOW=65535 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-03-29 08:03:45 (2 months ago)	IP & Port Scan.	SSH Port Scan Brute-Force
🇨🇦 celestialcity	2026-03-29 01:46:00 (2 months ago)	Blocked by UFW on celestialcityna [21/tcp] \| SPT: 38504 \| TTL: 229 \| LEN: 44 \| TOS: 0x00 • Reported ... show more Blocked by UFW on celestialcityna [21/tcp] \| SPT: 38504 \| TTL: 229 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan FTP Brute-Force
🇦🇷 Bruno	2026-03-28 23:17:52 (2 months ago)	Port Scanner: 180.112.89.161	Port Scan

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 217.216.78.34

🇺🇸 107.175.114.16

🇨🇳 101.96.203.52

🇬🇷 83.235.16.111

🇷🇺 46.161.50.108

🇰🇪 41.89.227.164

🇰🇷 220.118.173.234

🇺🇸 205.210.31.40

🇲🇾 202.165.29.123

🇿🇦 197.245.62.52

🇨🇳 180.167.128.202

🇺🇸 162.216.150.192

🇮🇳 152.57.170.171

🇨🇳 121.41.24.46

🇨🇳 118.196.30.45

🇰🇷 118.37.214.187

🇺🇸 104.168.4.239

🇸🇬 43.156.60.15

🇮🇳 20.193.141.133

🇹🇭 203.154.158.195