112.80.136.8 - IPInfo

基本信息:

城市(city): Nanjing

省份(region): Jiangsu

国家(country): China

运营商(isp): China Unicom Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:18

类型

评论内容

时间

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 5415f75a7ae2288c | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:38:18

相同子网IP讨论:

IP	类型	评论内容	时间
112.80.136.135	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.135 to port 8088	2020-06-01 00:45:42
112.80.136.245	attack	Unauthorized connection attempt detected from IP address 112.80.136.245 to port 3389 [J]	2020-03-02 21:35:54
112.80.136.176	attack	Unauthorized connection attempt detected from IP address 112.80.136.176 to port 8081 [J]	2020-03-02 18:41:32
112.80.136.214	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.136.214 to port 9999 [T]	2020-01-10 09:22:18
112.80.136.219	attackspam	Unauthorized connection attempt detected from IP address 112.80.136.219 to port 8118	2020-01-02 21:21:29
112.80.136.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543405f8ef3b6cfe \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:33:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.136.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.80.136.8.			IN	A

;; AUTHORITY SECTION:
.			276	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 04:38:15 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.136.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.136.80.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.129.17.5	attackbotsspam	Mar 5 02:09:57 ns381471 sshd[4481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.129.17.5 Mar 5 02:09:59 ns381471 sshd[4481]: Failed password for invalid user chris from 89.129.17.5 port 37822 ssh2	2020-03-05 09:53:05
45.143.220.4	attackbotsspam	[2020-03-04 17:01:31] NOTICE[1148][C-0000e02c] chan_sip.c: Call from '' (45.143.220.4:40561) to extension '01148323395006' rejected because extension not found in context 'public'. [2020-03-04 17:01:31] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-04T17:01:31.430-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01148323395006",SessionID="0x7fd82c538db8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.4/5060",ACLName="no_extension_match" [2020-03-04 17:07:44] NOTICE[1148][C-0000e02d] chan_sip.c: Call from '' (45.143.220.4:5219) to extension '90048323395006' rejected because extension not found in context 'public'. [2020-03-04 17:07:44] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-04T17:07:44.561-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="90048323395006",SessionID="0x7fd82cb29a68",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.22 ...	2020-03-05 09:48:35
123.252.188.186	attack	Mar 4 22:24:17 mail.srvfarm.net postfix/smtpd[173824]: NOQUEUE: reject: RCPT from unknown[123.252.188.186]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:24:18 mail.srvfarm.net postfix/smtpd[173824]: NOQUEUE: reject: RCPT from unknown[123.252.188.186]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:24:19 mail.srvfarm.net postfix/smtpd[173824]: NOQUEUE: reject: RCPT from unknown[123.252.188.186]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:24:20 mail.srvfarm.net postfix/smtpd[173824]: NOQUEUE: reject: RCPT f	2020-03-05 09:14:01
69.94.135.182	attackbotsspam	Mar 4 22:31:15 mail.srvfarm.net postfix/smtpd[18793]: NOQUEUE: reject: RCPT from unknown[69.94.135.182]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:31:15 mail.srvfarm.net postfix/smtpd[18772]: NOQUEUE: reject: RCPT from unknown[69.94.135.182]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:31:15 mail.srvfarm.net postfix/smtpd[18793]: NOQUEUE: reject: RCPT from unknown[69.94.135.182]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:35:10 mail.srvfarm.net postfix/smtpd[21668]: NOQUEUE: reject: RCPT from	2020-03-05 09:15:44
59.188.73.200	attack	20/3/4@16:49:54: FAIL: Alarm-Network address from=59.188.73.200 20/3/4@16:49:54: FAIL: Alarm-Network address from=59.188.73.200 ...	2020-03-05 09:23:29
118.174.166.111	attackspam	1583367634 - 03/05/2020 01:20:34 Host: 118.174.166.111/118.174.166.111 Port: 23 TCP Blocked	2020-03-05 09:26:20
123.21.22.200	attack	2020-03-0422:49:351j9btW-0000N7-PM\<=verena@rs-solution.chH=\(localhost\)[37.114.173.106]:37561P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2226id=A1A412414A9EB003DFDA932BDF59113F@rs-solution.chT="Justneedatinybitofyourinterest"forbhavner@hotmail.comdavidtbrewster@gmail.com2020-03-0422:48:441j9bsh-0000J3-Eq\<=verena@rs-solution.chH=\(localhost\)[113.173.85.238]:35485P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2232id=1510A6F5FE2A04B76B6E279F6B669688@rs-solution.chT="Justneedabitofyourinterest"forshahadathossain1600@gmail.comsahraouiilyas1996@gmail.com2020-03-0422:48:551j9bss-0000KK-Fn\<=verena@rs-solution.chH=\(localhost\)[123.21.22.200]:48662P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2244id=787DCB98934769DA06034AF206A62021@rs-solution.chT="Justdecidedtogettoknowyou"fordebbiewoodyup@gmail.comdave.jack10@yahoo.com2020-03-0422:49:161j9btD-0000MD-44\<=verena@rs-s	2020-03-05 09:35:35
185.143.223.171	attackspambots	Mar 5 01:14:22 mail.srvfarm.net postfix/smtpd[181764]: NOQUEUE: reject: RCPT from unknown[185.143.223.171]: 554 5.7.1 : Relay access denied; from=<84fzavnt6rqlz1ja@deccanmail.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 5 01:14:22 mail.srvfarm.net postfix/smtpd[181764]: NOQUEUE: reject: RCPT from unknown[185.143.223.171]: 554 5.7.1 : Relay access denied; from=<84fzavnt6rqlz1ja@deccanmail.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 5 01:14:22 mail.srvfarm.net postfix/smtpd[181764]: NOQUEUE: reject: RCPT from unknown[185.143.223.171]: 554 5.7.1 : Relay access denied; from=<84fzavnt6rqlz1ja@deccanmail.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 5 01:14:22 mail.srvfarm.net postfix/smtpd[181764]: NOQUEUE: reject: RCPT from unknown[185.143.223.171]: 554 5.7.1 : Relay acces	2020-03-05 09:11:26
119.15.153.234	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-05 09:39:14
45.146.201.252	attack	Mar 4 22:21:13 mail.srvfarm.net postfix/smtpd[158317]: NOQUEUE: reject: RCPT from unknown[45.146.201.252]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:21:13 mail.srvfarm.net postfix/smtpd[160436]: NOQUEUE: reject: RCPT from unknown[45.146.201.252]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:21:13 mail.srvfarm.net postfix/smtpd[158355]: NOQUEUE: reject: RCPT from unknown[45.146.201.252]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:21:13 mail.srvfarm.net postfix/smtpd[160378]: NOQUEUE: reject: RCPT from unknown[45.146.201.252]: 450 4.1.8 : Send	2020-03-05 09:17:06
49.234.24.108	attackspam	Mar 5 01:14:00 game-panel sshd[22062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.24.108 Mar 5 01:14:02 game-panel sshd[22062]: Failed password for invalid user ncs from 49.234.24.108 port 37896 ssh2 Mar 5 01:21:32 game-panel sshd[22336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.24.108	2020-03-05 09:43:52
200.151.208.132	attack	Mar 4 23:47:14 server sshd\[12708\]: Invalid user wp-user from 200.151.208.132 Mar 4 23:47:14 server sshd\[12708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.151.208.132 Mar 4 23:47:15 server sshd\[12708\]: Failed password for invalid user wp-user from 200.151.208.132 port 37205 ssh2 Mar 5 00:49:47 server sshd\[24308\]: Invalid user adi from 200.151.208.132 Mar 5 00:49:47 server sshd\[24308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.151.208.132 ...	2020-03-05 09:29:59
106.54.20.26	attack	Mar 5 07:06:24 areeb-Workstation sshd[24636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.20.26 Mar 5 07:06:25 areeb-Workstation sshd[24636]: Failed password for invalid user silver from 106.54.20.26 port 57738 ssh2 ...	2020-03-05 09:52:36
51.77.212.179	attackspam	Mar 5 01:52:59 ns381471 sshd[3709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.179 Mar 5 01:53:01 ns381471 sshd[3709]: Failed password for invalid user andrew from 51.77.212.179 port 37805 ssh2	2020-03-05 09:23:59
51.83.45.93	attackbots	Mar 5 02:24:21 lukav-desktop sshd\[13627\]: Invalid user amanda from 51.83.45.93 Mar 5 02:24:21 lukav-desktop sshd\[13627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.45.93 Mar 5 02:24:22 lukav-desktop sshd\[13627\]: Failed password for invalid user amanda from 51.83.45.93 port 51290 ssh2 Mar 5 02:32:36 lukav-desktop sshd\[13781\]: Invalid user cpanellogin from 51.83.45.93 Mar 5 02:32:36 lukav-desktop sshd\[13781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.45.93	2020-03-05 09:25:16

最近上报的IP列表

14.76.251.225	68.58.228.187	111.224.249.102	154.148.87.225
166.17.202.85	20.11.14.194	124.152.109.56	111.224.221.25
111.224.221.19	218.209.34.226	176.144.199.187	105.109.55.12
111.206.221.19	60.103.172.113	75.44.128.178	73.185.245.104
111.206.36.141	82.94.134.79	111.175.58.253	111.175.56.56