114.237.134.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jan 23 17:06:17 grey postfix/smtpd\[7664\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.194\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.194\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-24 03:26:02

类型

评论内容

时间

attackbotsspam

Jan 23 17:06:17 grey postfix/smtpd\[7664\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.194\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.194\]\; from=\ to=\ proto=SMTP helo=\
...

2020-01-24 03:26:02

相同子网IP讨论:

IP	类型	评论内容	时间
114.237.134.204	attack	SpamScore above: 10.0	2020-06-24 06:47:32
114.237.134.228	attack	SpamScore above: 10.0	2020-06-16 23:23:53
114.237.134.193	attack	SpamScore above: 10.0	2020-06-03 17:04:00
114.237.134.66	attack	IP: 114.237.134.66 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS4134 Chinanet China (CN) CIDR 114.232.0.0/13 Log Date: 9/05/2020 7:57:01 PM UTC	2020-05-10 05:47:37
114.237.134.84	attack	SpamScore above: 10.0	2020-04-06 16:42:09
114.237.134.133	attackbots	Feb 24 05:53:02 grey postfix/smtpd\[5539\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.133\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.133\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=114.237.134.133\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-24 16:10:39
114.237.134.79	attackspambots	Dec 28 07:23:19 grey postfix/smtpd\[4905\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.79\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.79\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.79\]\; from=\ to=\ proto=SMTP helo=\ ...	2019-12-28 19:24:09
114.237.134.247	attackspam	Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130 Dec x@x Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.237.134.247	2019-12-27 16:06:42
114.237.134.103	attack	SpamReport	2019-12-12 14:56:45
114.237.134.221	attack	Oct 16 22:23:14 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:23:57 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:24:31 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\	2019-10-17 07:16:24
114.237.134.176	attackspambots	Brute force SMTP login attempts.	2019-09-10 02:00:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.237.134.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65024
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.237.134.194.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012300 1800 900 604800 86400

;; Query time: 643 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 03:25:59 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

194.134.237.114.in-addr.arpa domain name pointer 194.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
194.134.237.114.in-addr.arpa	name = 194.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
67.247.33.174	attackspambots	Aug 31 06:20:57 itv-usvr-01 sshd[17318]: Invalid user uegadm from 67.247.33.174 Aug 31 06:20:57 itv-usvr-01 sshd[17318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.247.33.174 Aug 31 06:20:57 itv-usvr-01 sshd[17318]: Invalid user uegadm from 67.247.33.174 Aug 31 06:20:59 itv-usvr-01 sshd[17318]: Failed password for invalid user uegadm from 67.247.33.174 port 60830 ssh2 Aug 31 06:24:43 itv-usvr-01 sshd[17431]: Invalid user fetchmail from 67.247.33.174	2019-09-05 05:30:18
68.183.195.145	attack	Aug 29 03:19:37 itv-usvr-01 sshd[26060]: Invalid user elvis from 68.183.195.145 Aug 29 03:19:37 itv-usvr-01 sshd[26060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.195.145 Aug 29 03:19:37 itv-usvr-01 sshd[26060]: Invalid user elvis from 68.183.195.145 Aug 29 03:19:40 itv-usvr-01 sshd[26060]: Failed password for invalid user elvis from 68.183.195.145 port 32940 ssh2 Aug 29 03:23:17 itv-usvr-01 sshd[26223]: Invalid user test2 from 68.183.195.145	2019-09-05 05:08:01
155.4.71.18	attackspambots	Sep 4 17:28:49 hb sshd\[22804\]: Invalid user itk from 155.4.71.18 Sep 4 17:28:49 hb sshd\[22804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=h-71-18.a785.priv.bahnhof.se Sep 4 17:28:52 hb sshd\[22804\]: Failed password for invalid user itk from 155.4.71.18 port 49948 ssh2 Sep 4 17:33:14 hb sshd\[23637\]: Invalid user ts3user from 155.4.71.18 Sep 4 17:33:14 hb sshd\[23637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=h-71-18.a785.priv.bahnhof.se	2019-09-05 05:17:13
202.42.100.26	attack	Unauthorized connection attempt from IP address 202.42.100.26 on Port 445(SMB)	2019-09-05 05:19:42
66.108.165.215	attackspambots	Aug 31 21:42:20 itv-usvr-01 sshd[18268]: Invalid user gast from 66.108.165.215 Aug 31 21:42:20 itv-usvr-01 sshd[18268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.108.165.215 Aug 31 21:42:20 itv-usvr-01 sshd[18268]: Invalid user gast from 66.108.165.215 Aug 31 21:42:22 itv-usvr-01 sshd[18268]: Failed password for invalid user gast from 66.108.165.215 port 46002 ssh2 Aug 31 21:48:58 itv-usvr-01 sshd[18508]: Invalid user testftp from 66.108.165.215	2019-09-05 05:42:55
112.85.42.185	attack	Sep 4 10:43:44 aat-srv002 sshd[17748]: Failed password for root from 112.85.42.185 port 48217 ssh2 Sep 4 10:58:53 aat-srv002 sshd[18273]: Failed password for root from 112.85.42.185 port 44026 ssh2 Sep 4 10:59:43 aat-srv002 sshd[18317]: Failed password for root from 112.85.42.185 port 54057 ssh2 ...	2019-09-05 05:47:31
118.69.9.136	attackspam	Unauthorized connection attempt from IP address 118.69.9.136 on Port 445(SMB)	2019-09-05 05:39:15
73.93.102.54	attackbotsspam	Sep 4 11:12:03 php2 sshd\[9647\]: Invalid user crete from 73.93.102.54 Sep 4 11:12:03 php2 sshd\[9647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-93-102-54.hsd1.ca.comcast.net Sep 4 11:12:06 php2 sshd\[9647\]: Failed password for invalid user crete from 73.93.102.54 port 40410 ssh2 Sep 4 11:16:18 php2 sshd\[10070\]: Invalid user eduard from 73.93.102.54 Sep 4 11:16:18 php2 sshd\[10070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-93-102-54.hsd1.ca.comcast.net	2019-09-05 05:18:58
45.204.68.98	attackspambots	Sep 4 03:18:48 eddieflores sshd\[14708\]: Invalid user dang from 45.204.68.98 Sep 4 03:18:48 eddieflores sshd\[14708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.204.68.98 Sep 4 03:18:51 eddieflores sshd\[14708\]: Failed password for invalid user dang from 45.204.68.98 port 60158 ssh2 Sep 4 03:25:37 eddieflores sshd\[15403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.204.68.98 user=root Sep 4 03:25:40 eddieflores sshd\[15403\]: Failed password for root from 45.204.68.98 port 54830 ssh2	2019-09-05 05:16:17
67.212.82.134	attackbots	miraniessen.de 67.212.82.134 \[04/Sep/2019:19:20:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" miraniessen.de 67.212.82.134 \[04/Sep/2019:19:20:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5976 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-05 05:53:07
113.170.125.250	attack	Unauthorized connection attempt from IP address 113.170.125.250 on Port 445(SMB)	2019-09-05 05:25:22
211.104.242.171	attackbotsspam	DATE:2019-09-04 15:03:57, IP:211.104.242.171, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-09-05 05:49:10
164.132.204.91	attackspambots	2019-09-04T20:32:51.104993hub.schaetter.us sshd\[12742\]: Invalid user webuser from 164.132.204.91 2019-09-04T20:32:51.140451hub.schaetter.us sshd\[12742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.sorienrot.es 2019-09-04T20:32:53.804696hub.schaetter.us sshd\[12742\]: Failed password for invalid user webuser from 164.132.204.91 port 41060 ssh2 2019-09-04T20:41:06.450119hub.schaetter.us sshd\[12781\]: Invalid user ubuntu from 164.132.204.91 2019-09-04T20:41:06.493599hub.schaetter.us sshd\[12781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.sorienrot.es ...	2019-09-05 05:26:51
221.148.63.118	attackbots	F2B jail: sshd. Time: 2019-09-04 22:04:23, Reported by: VKReport	2019-09-05 05:34:32
51.38.176.147	attack	Sep 4 10:53:07 eddieflores sshd\[25679\]: Invalid user sdtdserver from 51.38.176.147 Sep 4 10:53:07 eddieflores sshd\[25679\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.ip-51-38-176.eu Sep 4 10:53:09 eddieflores sshd\[25679\]: Failed password for invalid user sdtdserver from 51.38.176.147 port 51790 ssh2 Sep 4 10:57:02 eddieflores sshd\[26001\]: Invalid user test1 from 51.38.176.147 Sep 4 10:57:02 eddieflores sshd\[26001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.ip-51-38-176.eu	2019-09-05 05:10:46

最近上报的IP列表

68.154.72.240	74.106.1.67	214.254.43.188	218.154.118.148
89.187.178.238	22.150.245.43	246.35.76.253	44.191.102.170
53.82.59.185	51.44.162.230	73.160.152.208	59.27.101.41
45.227.253.36	201.33.188.78	117.248.94.95	207.141.207.219
223.247.207.19	90.239.35.248	47.251.73.23	156.163.170.120