112.80.137.63 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
112.80.137.153	attackspambots	Web Server Scan. RayID: 590c5cc7ee296e42, UA: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729), Country: CN	2020-05-21 04:11:37
112.80.137.72	attack	Unauthorized connection attempt detected from IP address 112.80.137.72 to port 22 [J]	2020-03-02 19:32:51
112.80.137.30	attackspam	Unauthorized connection attempt detected from IP address 112.80.137.30 to port 9991 [T]	2020-01-27 15:42:09
112.80.137.97	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.137.97 to port 8081 [T]	2020-01-10 08:56:25
112.80.137.144	attack	CN_APNIC-HM_<177>1578575004 [1:2013053:1] ET WEB_SERVER PyCurl Suspicious User Agent Inbound [Classification: Attempted Information Leak] [Priority: 2]: {TCP} 112.80.137.144:59730	2020-01-10 03:04:32
112.80.137.119	attackspam	Unauthorized connection attempt detected from IP address 112.80.137.119 to port 3128	2019-12-31 08:08:24
112.80.137.14	attackbots	HTTP/80/443 Probe, BF, WP, Hack -	2019-12-26 05:16:33
112.80.137.34	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54101e30ae016e18 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:43:04
112.80.137.117	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54147ae5dbc76bb4 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:04:43
112.80.137.189	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 541570716d3c9641 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:07:54
112.80.137.13	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 541062388e246c56 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:17:30
112.80.137.39	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54104ef0f857ed47 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:34:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.137.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21703
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.80.137.63.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030102 1800 900 604800 86400

;; Query time: 179 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 02 12:25:06 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 63.137.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.137.80.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
93.43.180.118	attack	C1,WP GET /manga/wp-login.php	2019-09-14 01:06:09
162.210.193.140	attack	[Fri Sep 13 00:07:25 2019 GMT] Jan Hegerfeld [RDNS_NONE], Subject: AW: Please quote these goods	2019-09-14 01:58:02
91.239.190.250	attackspam	Sep 13 12:55:43 server6 sshd[16152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.239.190.250 user=r.r Sep 13 12:55:45 server6 sshd[16152]: Failed password for r.r from 91.239.190.250 port 58643 ssh2 Sep 13 12:55:47 server6 sshd[16152]: Failed password for r.r from 91.239.190.250 port 58643 ssh2 Sep 13 12:55:49 server6 sshd[16152]: Failed password for r.r from 91.239.190.250 port 58643 ssh2 Sep 13 12:55:51 server6 sshd[16152]: Failed password for r.r from 91.239.190.250 port 58643 ssh2 Sep 13 12:55:54 server6 sshd[16152]: Failed password for r.r from 91.239.190.250 port 58643 ssh2 Sep 13 12:55:55 server6 sshd[16152]: Failed password for r.r from 91.239.190.250 port 58643 ssh2 Sep 13 12:55:55 server6 sshd[16152]: Disconnecting: Too many authentication failures for r.r from 91.239.190.250 port 58643 ssh2 [preauth] Sep 13 12:55:55 server6 sshd[16152]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rho........ -------------------------------	2019-09-14 01:19:46
112.86.98.172	attackbotsspam	Sep 13 19:04:50 mars sshd\[6498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.86.98.172 user=root Sep 13 19:04:50 mars sshd\[6499\]: Invalid user admin from 112.86.98.172 Sep 13 19:04:50 mars sshd\[6499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.86.98.172 ...	2019-09-14 02:01:01
77.247.110.130	attackbotsspam	\[2019-09-13 13:25:38\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-13T13:25:38.872-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01165150101148672520012",SessionID="0x7f8a6c025388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.130/65136",ACLName="no_extension_match" \[2019-09-13 13:26:08\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-13T13:26:08.901-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="55501148297661004",SessionID="0x7f8a6c98b708",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.130/50133",ACLName="no_extension_match" \[2019-09-13 13:26:18\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-13T13:26:18.134-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="150401048778878010",SessionID="0x7f8a6c3857d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.130/531	2019-09-14 01:31:58
95.46.181.21	attackbotsspam	Sep 13 12:55:57 mxgate1 postfix/postscreen[16125]: CONNECT from [95.46.181.21]:58046 to [176.31.12.44]:25 Sep 13 12:55:57 mxgate1 postfix/dnsblog[16129]: addr 95.46.181.21 listed by domain cbl.abuseat.org as 127.0.0.2 Sep 13 12:55:57 mxgate1 postfix/dnsblog[16128]: addr 95.46.181.21 listed by domain bl.spamcop.net as 127.0.0.2 Sep 13 12:55:58 mxgate1 postfix/postscreen[16125]: PREGREET 20 after 0.69 from [95.46.181.21]:58046: HELO agdysmsgu.com Sep 13 12:55:58 mxgate1 postfix/dnsblog[16130]: addr 95.46.181.21 listed by domain zen.spamhaus.org as 127.0.0.4 Sep 13 12:55:58 mxgate1 postfix/dnsblog[16130]: addr 95.46.181.21 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 13 12:55:58 mxgate1 postfix/postscreen[16125]: DNSBL rank 4 for [95.46.181.21]:58046 Sep x@x Sep 13 12:56:00 mxgate1 postfix/postscreen[16125]: HANGUP after 2.1 from [95.46.181.21]:58046 in tests after SMTP handshake Sep 13 12:56:00 mxgate1 postfix/postscreen[16125]: DISCONNECT [95.46.181.21]:58046 ........ ---------------------------------	2019-09-14 01:49:16
138.94.193.43	attack	SPF Fail sender not permitted to send mail for @agtnet.com.br / Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-14 01:43:45
62.231.168.109	attackspambots	2019-09-13T17:01:19.541858abusebot-7.cloudsearch.cf sshd\[29164\]: Invalid user bot2 from 62.231.168.109 port 39500	2019-09-14 01:11:40
88.189.141.61	attackbotsspam	Sep 13 12:17:17 MK-Soft-VM5 sshd\[23414\]: Invalid user apidoc from 88.189.141.61 port 34128 Sep 13 12:17:17 MK-Soft-VM5 sshd\[23414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.189.141.61 Sep 13 12:17:19 MK-Soft-VM5 sshd\[23414\]: Failed password for invalid user apidoc from 88.189.141.61 port 34128 ssh2 ...	2019-09-14 01:08:02
150.95.135.190	attackbotsspam	Sep 13 20:35:02 www sshd\[42376\]: Invalid user 123123 from 150.95.135.190Sep 13 20:35:04 www sshd\[42376\]: Failed password for invalid user 123123 from 150.95.135.190 port 47754 ssh2Sep 13 20:39:29 www sshd\[42513\]: Invalid user pass from 150.95.135.190 ...	2019-09-14 01:58:23
14.34.28.131	attack	Sep 13 16:51:41 lenivpn01 kernel: \[619097.764894\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=14.34.28.131 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=13790 DF PROTO=TCP SPT=34500 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 13 16:51:42 lenivpn01 kernel: \[619098.807111\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=14.34.28.131 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=13791 DF PROTO=TCP SPT=34500 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 13 16:51:44 lenivpn01 kernel: \[619100.888059\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=14.34.28.131 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=13792 DF PROTO=TCP SPT=34500 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 ...	2019-09-14 01:33:32
115.159.216.187	attack	Sep 13 16:10:01 markkoudstaal sshd[28098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.216.187 Sep 13 16:10:03 markkoudstaal sshd[28098]: Failed password for invalid user 1234 from 115.159.216.187 port 58524 ssh2 Sep 13 16:16:09 markkoudstaal sshd[28800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.216.187	2019-09-14 01:44:55
112.85.42.185	attackbots	Sep 13 12:36:39 aat-srv002 sshd[18128]: Failed password for root from 112.85.42.185 port 47277 ssh2 Sep 13 12:52:40 aat-srv002 sshd[18575]: Failed password for root from 112.85.42.185 port 47623 ssh2 Sep 13 12:54:20 aat-srv002 sshd[18597]: Failed password for root from 112.85.42.185 port 45599 ssh2 ...	2019-09-14 02:01:27
69.94.131.85	attackspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-14 01:11:02
141.98.9.5	attack	Sep 13 19:36:16 webserver postfix/smtpd\[29010\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 19:37:03 webserver postfix/smtpd\[28030\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 19:37:54 webserver postfix/smtpd\[29051\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 19:38:36 webserver postfix/smtpd\[29051\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 19:39:20 webserver postfix/smtpd\[29010\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-14 01:48:45

最近上报的IP列表

78.148.181.5	112.80.137.89	112.80.137.95	112.80.138.107
112.80.138.128	112.80.138.15	112.80.138.16	112.80.138.161
131.96.65.141	112.80.138.178	112.80.138.20	112.80.138.222
112.80.138.233	112.80.138.247	112.80.138.41	112.80.138.70
112.80.138.96	112.80.139.1	112.80.139.184	112.80.139.189

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表