122.51.80.112 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Guangzhou Haizhiguang Communication Technology Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Attempted connection to port 445.	2020-07-06 20:48:25

相同子网IP讨论:

IP	类型	评论内容	时间
122.51.80.81	attackspambots	Oct 13 15:12:52 onepixel sshd[2740060]: Failed password for invalid user gregory from 122.51.80.81 port 44814 ssh2 Oct 13 15:16:03 onepixel sshd[2740722]: Invalid user hirata from 122.51.80.81 port 50270 Oct 13 15:16:03 onepixel sshd[2740722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 Oct 13 15:16:03 onepixel sshd[2740722]: Invalid user hirata from 122.51.80.81 port 50270 Oct 13 15:16:05 onepixel sshd[2740722]: Failed password for invalid user hirata from 122.51.80.81 port 50270 ssh2	2020-10-14 04:07:43
122.51.80.81	attackbotsspam	Oct 13 12:56:28 rancher-0 sshd[383270]: Invalid user dj from 122.51.80.81 port 56162 ...	2020-10-13 19:30:26
122.51.80.81	attackbots	Oct 4 17:45:59 scw-gallant-ride sshd[12576]: Failed password for root from 122.51.80.81 port 36924 ssh2	2020-10-05 02:43:53
122.51.80.81	attackbots	2020-10-04T02:34:00.7875951495-001 sshd[34857]: Invalid user aaron from 122.51.80.81 port 42874 2020-10-04T02:34:02.7442591495-001 sshd[34857]: Failed password for invalid user aaron from 122.51.80.81 port 42874 ssh2 2020-10-04T02:37:51.1472731495-001 sshd[35057]: Invalid user mfg from 122.51.80.81 port 52090 2020-10-04T02:37:51.1542411495-001 sshd[35057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 2020-10-04T02:37:51.1472731495-001 sshd[35057]: Invalid user mfg from 122.51.80.81 port 52090 2020-10-04T02:37:53.1469581495-001 sshd[35057]: Failed password for invalid user mfg from 122.51.80.81 port 52090 ssh2 ...	2020-10-04 18:26:52
122.51.80.94	attack	SMB Server BruteForce Attack	2020-09-26 07:40:25
122.51.80.94	attackspam	SMB Server BruteForce Attack	2020-09-26 00:53:55
122.51.80.94	attack	SMB Server BruteForce Attack	2020-09-25 16:29:39
122.51.80.81	attackspam	Sep 5 08:43:47 rotator sshd\[7564\]: Invalid user precious from 122.51.80.81Sep 5 08:43:49 rotator sshd\[7564\]: Failed password for invalid user precious from 122.51.80.81 port 38582 ssh2Sep 5 08:48:13 rotator sshd\[8327\]: Invalid user www from 122.51.80.81Sep 5 08:48:15 rotator sshd\[8327\]: Failed password for invalid user www from 122.51.80.81 port 57910 ssh2Sep 5 08:52:42 rotator sshd\[9093\]: Invalid user wocloud from 122.51.80.81Sep 5 08:52:43 rotator sshd\[9093\]: Failed password for invalid user wocloud from 122.51.80.81 port 49002 ssh2 ...	2020-09-05 21:03:54
122.51.80.81	attackspambots	Sep 4 18:36:50 rush sshd[19946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 Sep 4 18:36:51 rush sshd[19946]: Failed password for invalid user user from 122.51.80.81 port 43052 ssh2 Sep 4 18:38:36 rush sshd[20019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.81 ...	2020-09-05 05:27:35
122.51.80.81	attack	Automatic Fail2ban report - Trying login SSH	2020-08-22 23:52:18
122.51.80.103	attackbotsspam	Aug 22 17:33:57 lunarastro sshd[17283]: Failed password for root from 122.51.80.103 port 56096 ssh2 Aug 22 17:46:18 lunarastro sshd[17732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.103 Aug 22 17:46:21 lunarastro sshd[17732]: Failed password for invalid user usuario from 122.51.80.103 port 57118 ssh2	2020-08-22 21:41:53
122.51.80.103	attack	Aug 17 18:39:21 pve1 sshd[21020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.80.103 Aug 17 18:39:23 pve1 sshd[21020]: Failed password for invalid user postgres from 122.51.80.103 port 42176 ssh2 ...	2020-08-18 01:34:07
122.51.80.81	attackspambots	$f2bV_matches	2020-08-10 08:09:29
122.51.80.81	attack	" "	2020-08-09 16:54:12
122.51.80.81	attackspam	Jul 31 22:31:13 eventyay sshd[20790]: Failed password for root from 122.51.80.81 port 39324 ssh2 Jul 31 22:32:34 eventyay sshd[20855]: Failed password for root from 122.51.80.81 port 53892 ssh2 ...	2020-08-01 04:59:13

WHOIS信息:

DIG信息:


; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 122.51.80.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62860
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;122.51.80.112.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070600 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Mon Jul  6 20:56:24 2020
;; MSG SIZE  rcvd: 106

HOST信息:

Host 112.80.51.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 112.80.51.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.61.54.14	attackbotsspam	SSH-BruteForce	2019-11-10 07:51:40
185.173.35.37	attackspambots	Unauthorized SSH connection attempt	2019-11-10 07:19:49
62.234.74.29	attack	Nov 9 17:59:17 vps691689 sshd[5702]: Failed password for root from 62.234.74.29 port 56946 ssh2 Nov 9 18:03:59 vps691689 sshd[5787]: Failed password for root from 62.234.74.29 port 44961 ssh2 ...	2019-11-10 07:45:59
62.234.206.12	attackspambots	ssh failed login	2019-11-10 07:27:47
222.186.173.142	attackspam	$f2bV_matches	2019-11-10 07:32:42
111.59.93.76	attackspambots	10 failed attempt(s) in the last 24h	2019-11-10 07:52:23
182.19.211.134	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-10 07:43:49
81.22.45.107	attackbotsspam	Nov 10 00:28:54 mc1 kernel: \[4628421.831487\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=1096 PROTO=TCP SPT=49947 DPT=53888 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 00:31:24 mc1 kernel: \[4628571.953505\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=30478 PROTO=TCP SPT=49947 DPT=54142 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 00:34:15 mc1 kernel: \[4628742.742611\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=65452 PROTO=TCP SPT=49947 DPT=54287 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-10 07:48:52
34.90.24.81	attack	Port scan	2019-11-10 07:42:53
189.146.142.107	attackbots	Connection by 189.146.142.107 on port: 8080 got caught by honeypot at 11/9/2019 3:10:54 PM	2019-11-10 07:19:24
185.143.223.24	attackbots	2019-11-10T00:41:53.500784+01:00 lumpi kernel: [3165293.470273] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.24 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=9537 PROTO=TCP SPT=47476 DPT=33119 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-10 07:44:51
151.45.47.171	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/151.45.47.171/ IT - 1H : (114) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN1267 IP : 151.45.47.171 CIDR : 151.45.0.0/16 PREFIX COUNT : 161 UNIQUE IP COUNT : 6032640 ATTACKS DETECTED ASN1267 : 1H - 2 3H - 2 6H - 3 12H - 8 24H - 14 DateTime : 2019-11-09 17:09:43 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-10 07:59:01
51.15.190.180	attackspambots	Nov 9 23:19:33 debian sshd\[19105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 user=root Nov 9 23:19:35 debian sshd\[19105\]: Failed password for root from 51.15.190.180 port 38118 ssh2 Nov 9 23:39:41 debian sshd\[20579\]: Invalid user maverick from 51.15.190.180 port 46098 Nov 9 23:39:41 debian sshd\[20579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 ...	2019-11-10 07:25:01
45.55.93.245	attack	45.55.93.245 - - \[09/Nov/2019:21:34:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 5507 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.93.245 - - \[09/Nov/2019:21:34:31 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 45.55.93.245 - - \[09/Nov/2019:21:34:46 +0100\] "POST /wp-login.php HTTP/1.0" 200 5494 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-10 07:54:10
217.182.54.165	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/217.182.54.165/ FR - 1H : (39) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN16276 IP : 217.182.54.165 CIDR : 217.182.0.0/16 PREFIX COUNT : 132 UNIQUE IP COUNT : 3052544 ATTACKS DETECTED ASN16276 : 1H - 2 3H - 3 6H - 5 12H - 10 24H - 19 DateTime : 2019-11-09 21:29:31 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-11-10 07:24:39

最近上报的IP列表

45.93.250.39	201.93.81.52	124.123.107.242	192.241.219.46
95.173.49.165	45.88.159.13	95.14.160.194	95.8.229.195
86.18.66.230	64.225.104.20	168.134.2.228	212.70.149.3
112.154.14.185	170.30.111.152	18.140.240.49	194.169.121.230
244.85.49.94	15.238.254.0	180.183.190.147	122.61.73.217