112.80.136.219

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 112.80.136.219 to port 8118	2020-01-02 21:21:29

相同子网IP讨论:

IP	类型	评论内容	时间
112.80.136.135	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.135 to port 8088	2020-06-01 00:45:42
112.80.136.245	attack	Unauthorized connection attempt detected from IP address 112.80.136.245 to port 3389 [J]	2020-03-02 21:35:54
112.80.136.176	attack	Unauthorized connection attempt detected from IP address 112.80.136.176 to port 8081 [J]	2020-03-02 18:41:32
112.80.136.214	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.136.214 to port 9999 [T]	2020-01-10 09:22:18
112.80.136.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543405f8ef3b6cfe \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:33:44
112.80.136.8	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.136.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61380
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.80.136.219.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 587 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 02 21:21:24 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 219.136.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 219.136.80.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.189.98.225	attackspam	May 23 10:01:21 firewall sshd[23185]: Invalid user udo from 206.189.98.225 May 23 10:01:23 firewall sshd[23185]: Failed password for invalid user udo from 206.189.98.225 port 34558 ssh2 May 23 10:05:11 firewall sshd[23259]: Invalid user jzo from 206.189.98.225 ...	2020-05-23 21:18:16
185.2.140.155	attackspambots	2020-05-23 11:39:35,432 fail2ban.actions [937]: NOTICE [sshd] Ban 185.2.140.155 2020-05-23 12:14:34,478 fail2ban.actions [937]: NOTICE [sshd] Ban 185.2.140.155 2020-05-23 12:49:58,721 fail2ban.actions [937]: NOTICE [sshd] Ban 185.2.140.155 2020-05-23 13:25:29,829 fail2ban.actions [937]: NOTICE [sshd] Ban 185.2.140.155 2020-05-23 14:02:21,001 fail2ban.actions [937]: NOTICE [sshd] Ban 185.2.140.155 ...	2020-05-23 21:26:23
83.241.232.51	attackbots	May 23 15:23:58 legacy sshd[29997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.241.232.51 May 23 15:24:00 legacy sshd[29997]: Failed password for invalid user phi from 83.241.232.51 port 33199 ssh2 May 23 15:27:36 legacy sshd[30162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.241.232.51 ...	2020-05-23 21:47:31
122.118.210.142	attackspam	" "	2020-05-23 21:20:55
129.28.162.182	attackspam	$f2bV_matches	2020-05-23 21:14:45
111.230.129.117	attack	Unauthorized connection attempt from IP address 111.230.129.117 on port 3389	2020-05-23 21:34:11
114.34.74.142	attack	(imapd) Failed IMAP login from 114.34.74.142 (TW/Taiwan/114-34-74-142.HINET-IP.hinet.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 23 16:32:25 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=114.34.74.142, lip=5.63.12.44, TLS, session=	2020-05-23 21:15:52
119.31.126.100	attackbots	Failed password for invalid user abq from 119.31.126.100 port 43510 ssh2 Invalid user nea from 119.31.126.100 port 46686 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.31.126.100 Failed password for invalid user nea from 119.31.126.100 port 46686 ssh2 Invalid user yn from 119.31.126.100 port 49864 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.31.126.100 Failed password for invalid user yn from 119.31.126.100 port 49864 ssh2	2020-05-23 21:27:49
198.108.66.199	attackbots	Unauthorized connection attempt detected from IP address 198.108.66.199 to port 9985	2020-05-23 21:20:04
50.114.192.2	attack	User signup posting spam links and content.	2020-05-23 21:41:54
165.227.176.208	attackspam	May 23 15:27:01 abendstille sshd\[24084\]: Invalid user redhat from 165.227.176.208 May 23 15:27:01 abendstille sshd\[24084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.176.208 May 23 15:27:01 abendstille sshd\[24086\]: Invalid user redhat from 165.227.176.208 May 23 15:27:01 abendstille sshd\[24086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.176.208 May 23 15:27:02 abendstille sshd\[24084\]: Failed password for invalid user redhat from 165.227.176.208 port 59788 ssh2 ...	2020-05-23 21:33:05
107.191.106.196	attackspambots	Unauthorized connection attempt detected from IP address 107.191.106.196 to port 22	2020-05-23 21:13:04
165.227.179.138	attackspam	SSH/22 MH Probe, BF, Hack -	2020-05-23 21:25:36
45.55.88.94	attack	May 23 09:53:21 vps46666688 sshd[570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.88.94 May 23 09:53:23 vps46666688 sshd[570]: Failed password for invalid user name from 45.55.88.94 port 48598 ssh2 ...	2020-05-23 21:28:43
134.209.31.167	attack	DATE:2020-05-23 14:02:20, IP:134.209.31.167, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-23 21:27:09

最近上报的IP列表

205.69.226.156	130.6.33.220	50.165.51.173	98.165.134.125
47.75.181.146	222.50.96.128	155.74.194.110	75.132.209.182
169.148.210.24	206.8.95.71	15.242.129.185	31.112.247.142
162.237.255.87	63.9.255.224	160.101.249.183	17.203.0.100
195.201.16.189	130.30.58.94	90.96.202.7	68.18.2.12