112.80.139.237

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415a92e09326bf6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:55:56

类型

评论内容

时间

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5415a92e09326bf6 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:55:56

相同子网IP讨论:

IP	类型	评论内容	时间
112.80.139.186	attackbotsspam	Unauthorized connection attempt detected from IP address 112.80.139.186 to port 8118 [J]	2020-03-02 16:46:43
112.80.139.72	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430ed179f239666 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:47:55
112.80.139.252	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5413c84ba8846d04 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:00:28
112.80.139.3	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410ce0509096bc6 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 00:41:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.80.139.237
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40344
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.80.139.237.			IN	A

;; AUTHORITY SECTION:
.			269	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:55:53 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 237.139.80.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 237.139.80.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.251.254.199	attack	445/tcp [2019-08-20]1pkt	2019-08-20 12:31:51
222.212.90.32	attack	Aug 20 07:29:38 server sshd\[7769\]: Invalid user sftp from 222.212.90.32 port 48916 Aug 20 07:29:38 server sshd\[7769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.212.90.32 Aug 20 07:29:40 server sshd\[7769\]: Failed password for invalid user sftp from 222.212.90.32 port 48916 ssh2 Aug 20 07:33:25 server sshd\[8547\]: Invalid user doom from 222.212.90.32 port 63784 Aug 20 07:33:25 server sshd\[8547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.212.90.32	2019-08-20 12:53:31
104.224.162.238	attack	Aug 19 18:25:55 eddieflores sshd\[31644\]: Invalid user pilot from 104.224.162.238 Aug 19 18:25:55 eddieflores sshd\[31644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.224.162.238.16clouds.com Aug 19 18:25:57 eddieflores sshd\[31644\]: Failed password for invalid user pilot from 104.224.162.238 port 36360 ssh2 Aug 19 18:31:02 eddieflores sshd\[32023\]: Invalid user tf from 104.224.162.238 Aug 19 18:31:02 eddieflores sshd\[32023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.224.162.238.16clouds.com	2019-08-20 12:43:13
202.62.11.76	attack	Automatic report - Banned IP Access	2019-08-20 12:16:17
208.123.147.150	attack	Aug 20 00:32:16 www sshd\[85229\]: Invalid user cadasa from 208.123.147.150 Aug 20 00:32:16 www sshd\[85229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.123.147.150 Aug 20 00:32:18 www sshd\[85229\]: Failed password for invalid user cadasa from 208.123.147.150 port 52776 ssh2 ...	2019-08-20 12:07:13
185.204.216.252	attackbotsspam	Aug 20 07:28:01 server sshd\[29329\]: Invalid user bb from 185.204.216.252 port 58768 Aug 20 07:28:01 server sshd\[29329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.204.216.252 Aug 20 07:28:03 server sshd\[29329\]: Failed password for invalid user bb from 185.204.216.252 port 58768 ssh2 Aug 20 07:32:09 server sshd\[30504\]: Invalid user post from 185.204.216.252 port 49118 Aug 20 07:32:09 server sshd\[30504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.204.216.252	2019-08-20 12:33:54
68.183.147.15	attack	Aug 19 18:23:12 friendsofhawaii sshd\[25772\]: Invalid user support from 68.183.147.15 Aug 19 18:23:12 friendsofhawaii sshd\[25772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.147.15 Aug 19 18:23:14 friendsofhawaii sshd\[25772\]: Failed password for invalid user support from 68.183.147.15 port 57842 ssh2 Aug 19 18:28:54 friendsofhawaii sshd\[26347\]: Invalid user tomcat3 from 68.183.147.15 Aug 19 18:28:54 friendsofhawaii sshd\[26347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.147.15	2019-08-20 12:35:50
106.12.138.219	attack	Aug 20 04:07:37 ns315508 sshd[25048]: Invalid user user21 from 106.12.138.219 port 48246 Aug 20 04:07:37 ns315508 sshd[25048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.138.219 Aug 20 04:07:37 ns315508 sshd[25048]: Invalid user user21 from 106.12.138.219 port 48246 Aug 20 04:07:39 ns315508 sshd[25048]: Failed password for invalid user user21 from 106.12.138.219 port 48246 ssh2 Aug 20 04:11:33 ns315508 sshd[25123]: Invalid user oracle9 from 106.12.138.219 port 56160 ...	2019-08-20 12:16:55
177.135.33.0	attackbotsspam	60001/tcp [2019-08-20]1pkt	2019-08-20 12:34:23
198.143.155.138	attackbotsspam	firewall-block, port(s): 8010/tcp	2019-08-20 12:37:26
142.93.26.245	attackbotsspam	Aug 20 00:39:47 vps200512 sshd\[26709\]: Invalid user testbox from 142.93.26.245 Aug 20 00:39:47 vps200512 sshd\[26709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245 Aug 20 00:39:49 vps200512 sshd\[26709\]: Failed password for invalid user testbox from 142.93.26.245 port 38752 ssh2 Aug 20 00:43:59 vps200512 sshd\[26833\]: Invalid user tony from 142.93.26.245 Aug 20 00:43:59 vps200512 sshd\[26833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245	2019-08-20 12:49:53
50.253.211.61	attackspam	Automatic report - Banned IP Access	2019-08-20 12:36:13
202.184.123.113	attackspam	445/tcp 445/tcp 445/tcp [2019-08-20]3pkt	2019-08-20 12:32:32
117.18.15.71	attackspambots	Aug 20 09:12:02 areeb-Workstation sshd\[12416\]: Invalid user magasin from 117.18.15.71 Aug 20 09:12:02 areeb-Workstation sshd\[12416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.18.15.71 Aug 20 09:12:04 areeb-Workstation sshd\[12416\]: Failed password for invalid user magasin from 117.18.15.71 port 41142 ssh2 ...	2019-08-20 12:09:43
139.199.100.51	attackspam	Aug 20 00:25:26 ny01 sshd[14087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.100.51 Aug 20 00:25:28 ny01 sshd[14087]: Failed password for invalid user artifactory from 139.199.100.51 port 60784 ssh2 Aug 20 00:30:25 ny01 sshd[14614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.100.51	2019-08-20 12:38:04

最近上报的IP列表

27.224.137.100	27.224.137.35	146.167.236.131	27.211.187.53
222.79.48.54	221.13.12.74	221.11.4.146	220.200.165.180
219.143.174.117	219.140.118.241	219.140.117.210	219.140.116.108
219.129.216.189	182.245.173.207	182.138.137.133	175.42.3.98
175.42.2.153	171.12.10.46	125.118.0.10	124.88.113.124