112.80.137.144

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	CN_APNIC-HM_<177>1578575004 [1:2013053:1] ET WEB_SERVER PyCurl Suspicious User Agent Inbound [Classification: Attempted Information Leak] [Priority: 2]: {TCP} 112.80.137.144:59730	2020-01-10 03:04:32

相同子网IP讨论:

IP	类型	评论内容	时间
112.80.137.153	attackspambots	Web Server Scan. RayID: 590c5cc7ee296e42, UA: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729), Country: CN	2020-05-21 04:11:37
112.80.137.72	attack	Unauthorized connection attempt detected from IP address 112.80.137.72 to port 22 [J]	2020-03-02 19:32:51
112.80.137.30	attackspam	Unauthorized connection attempt detected from IP address 112.80.137.30 to port 9991 [T]	2020-01-27 15:42:09
112.80.137.97	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.137.97 to port 8081 [T]	2020-01-10 08:56:25
112.80.137.119	attackspam	Unauthorized connection attempt detected from IP address 112.80.137.119 to port 3128	2019-12-31 08:08:24
112.80.137.14	attackbots	HTTP/80/443 Probe, BF, WP, Hack -	2019-12-26 05:16:33
112.80.137.34	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54101e30ae016e18 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:43:04
112.80.137.117	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54147ae5dbc76bb4 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:04:43
112.80.137.189	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 541570716d3c9641 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:07:54
112.80.137.13	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 541062388e246c56 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:17:30
112.80.137.39	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54104ef0f857ed47 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:34:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.137.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57207
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.80.137.144.			IN	A

;; AUTHORITY SECTION:
.			184	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010901 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 03:04:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 144.137.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 144.137.80.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
216.75.176.51	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:19:51,967 INFO [amun_request_handler] PortScan Detected on Port: 445 (216.75.176.51)	2019-07-06 09:14:16
45.55.254.13	attackspam	v+ssh-bruteforce	2019-07-06 08:34:42
180.182.47.132	attackbotsspam	Invalid user server from 180.182.47.132 port 58909	2019-07-06 08:57:15
181.123.10.88	attack	Jul 6 02:12:18 ArkNodeAT sshd\[26349\]: Invalid user matilda from 181.123.10.88 Jul 6 02:12:18 ArkNodeAT sshd\[26349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.123.10.88 Jul 6 02:12:20 ArkNodeAT sshd\[26349\]: Failed password for invalid user matilda from 181.123.10.88 port 54826 ssh2	2019-07-06 08:45:28
5.39.79.48	attackspam	Invalid user smbuser from 5.39.79.48 port 52406	2019-07-06 08:42:21
103.231.139.130	attack	Jul 5 20:26:44 web1 postfix/smtpd[30631]: warning: unknown[103.231.139.130]: SASL LOGIN authentication failed: authentication failure ...	2019-07-06 09:06:18
207.154.193.178	attack	web-1 [ssh_2] SSH Attack	2019-07-06 09:13:21
77.247.110.212	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-06 08:48:47
112.205.207.47	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:01:33,972 INFO [shellcode_manager] (112.205.207.47) no match, writing hexdump (606ac6f8eaed37e23e7d573ab406d01d :2228982) - MS17010 (EternalBlue)	2019-07-06 09:09:59
90.100.85.121	attack	WordPress login Brute force / Web App Attack on client site.	2019-07-06 09:17:55
132.255.29.228	attack	Jul 6 02:24:11 vps647732 sshd[24588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.255.29.228 Jul 6 02:24:13 vps647732 sshd[24588]: Failed password for invalid user can from 132.255.29.228 port 44434 ssh2 ...	2019-07-06 08:31:23
157.230.246.198	attack	2019-07-06T03:10:33.615187centos sshd\[28094\]: Invalid user jordan from 157.230.246.198 port 53174 2019-07-06T03:10:33.619664centos sshd\[28094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.246.198 2019-07-06T03:10:35.525702centos sshd\[28094\]: Failed password for invalid user jordan from 157.230.246.198 port 53174 ssh2	2019-07-06 09:19:11
104.206.128.54	attack	05.07.2019 23:33:36 Connection to port 3389 blocked by firewall	2019-07-06 09:03:38
41.223.17.161	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:01:57,950 INFO [shellcode_manager] (41.223.17.161) no match, writing hexdump (3cc56a11030ecff5cca36ba37ad41833 :11307) - SMB (Unknown)	2019-07-06 08:55:57
183.157.188.52	attackspam	Unauthorized access to SSH at 5/Jul/2019:23:34:10 +0000.	2019-07-06 08:50:15

最近上报的IP列表

46.159.234.20	114.99.14.112	41.253.104.68	179.53.45.118
119.200.89.107	175.50.85.204	68.96.184.98	167.56.114.157
120.28.194.120	191.252.100.70	54.187.155.45	54.196.58.180
156.214.95.70	212.17.202.59	117.31.55.224	51.77.254.63
109.201.219.194	119.11.49.193	113.169.52.151	173.161.183.197