114.237.134.247

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130 Dec x@x Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.237.134.247	2019-12-27 16:06:42

类型

评论内容

时间

attackspam

Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2
Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130
Dec x@x
Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=114.237.134.247

2019-12-27 16:06:42

相同子网IP讨论:

IP	类型	评论内容	时间
114.237.134.204	attack	SpamScore above: 10.0	2020-06-24 06:47:32
114.237.134.228	attack	SpamScore above: 10.0	2020-06-16 23:23:53
114.237.134.193	attack	SpamScore above: 10.0	2020-06-03 17:04:00
114.237.134.66	attack	IP: 114.237.134.66 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS4134 Chinanet China (CN) CIDR 114.232.0.0/13 Log Date: 9/05/2020 7:57:01 PM UTC	2020-05-10 05:47:37
114.237.134.84	attack	SpamScore above: 10.0	2020-04-06 16:42:09
114.237.134.133	attackbots	Feb 24 05:53:02 grey postfix/smtpd\[5539\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.133\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.133\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=114.237.134.133\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-24 16:10:39
114.237.134.194	attackbotsspam	Jan 23 17:06:17 grey postfix/smtpd\[7664\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.194\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.194\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-24 03:26:02
114.237.134.79	attackspambots	Dec 28 07:23:19 grey postfix/smtpd\[4905\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.79\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.79\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.79\]\; from=\ to=\ proto=SMTP helo=\ ...	2019-12-28 19:24:09
114.237.134.103	attack	SpamReport	2019-12-12 14:56:45
114.237.134.221	attack	Oct 16 22:23:14 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:23:57 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:24:31 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\	2019-10-17 07:16:24
114.237.134.176	attackspambots	Brute force SMTP login attempts.	2019-09-10 02:00:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.237.134.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35561
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.237.134.247.		IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122700 1800 900 604800 86400

;; Query time: 287 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 27 16:06:35 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

247.134.237.114.in-addr.arpa domain name pointer 247.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
247.134.237.114.in-addr.arpa	name = 247.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.54.164.208	attackspambots	2020-03-17T00:03:54.861656ionos.janbro.de sshd[61651]: Invalid user steam from 106.54.164.208 port 42638 2020-03-17T00:03:57.108476ionos.janbro.de sshd[61651]: Failed password for invalid user steam from 106.54.164.208 port 42638 ssh2 2020-03-17T00:15:42.632068ionos.janbro.de sshd[61711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.164.208 user=root 2020-03-17T00:15:44.990547ionos.janbro.de sshd[61711]: Failed password for root from 106.54.164.208 port 46016 ssh2 2020-03-17T00:27:37.119173ionos.janbro.de sshd[61769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.164.208 user=root 2020-03-17T00:27:38.932596ionos.janbro.de sshd[61769]: Failed password for root from 106.54.164.208 port 49402 ssh2 2020-03-17T00:39:27.367136ionos.janbro.de sshd[61827]: Invalid user minecraft from 106.54.164.208 port 52784 2020-03-17T00:39:27.600264ionos.janbro.de sshd[61827]: pam_unix(sshd:auth): authentica ...	2020-03-17 15:52:54
116.51.40.205	attackspambots	" "	2020-03-17 16:26:54
159.192.104.172	attack	Invalid user nicolas from 159.192.104.172 port 55505	2020-03-17 15:51:05
112.30.100.66	attackspambots	(sshd) Failed SSH login from 112.30.100.66 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 17 01:52:14 elude sshd[11474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.100.66 user=root Mar 17 01:52:16 elude sshd[11474]: Failed password for root from 112.30.100.66 port 39098 ssh2 Mar 17 01:59:20 elude sshd[11910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.100.66 user=root Mar 17 01:59:22 elude sshd[11910]: Failed password for root from 112.30.100.66 port 44470 ssh2 Mar 17 02:03:29 elude sshd[12155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.100.66 user=root	2020-03-17 16:29:08
45.143.220.231	attackbotsspam	[2020-03-17 04:27:26] NOTICE[1148] chan_sip.c: Registration from '"2003"' failed for '45.143.220.231:48041' - Wrong password [2020-03-17 04:27:26] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-17T04:27:26.419-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2003",SessionID="0x7fd82cdb8718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.231/48041",Challenge="632f2f7f",ReceivedChallenge="632f2f7f",ReceivedHash="41a0d93e5de5527983657578543d79e4" [2020-03-17 04:27:49] NOTICE[1148] chan_sip.c: Registration from '"2005"' failed for '45.143.220.231:48045' - Wrong password [2020-03-17 04:27:49] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-17T04:27:49.037-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2005",SessionID="0x7fd82c3f03d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ...	2020-03-17 16:31:14
61.167.99.163	attackbotsspam	Mar 17 07:56:45 pornomens sshd\[4994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.167.99.163 user=root Mar 17 07:56:47 pornomens sshd\[4994\]: Failed password for root from 61.167.99.163 port 53810 ssh2 Mar 17 07:56:54 pornomens sshd\[4996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.167.99.163 user=root ...	2020-03-17 16:18:24
157.230.235.233	attackbotsspam	Mar 17 08:27:41 server sshd\[1899\]: Invalid user redhat from 157.230.235.233 Mar 17 08:27:41 server sshd\[1899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.235.233 Mar 17 08:27:42 server sshd\[1899\]: Failed password for invalid user redhat from 157.230.235.233 port 38818 ssh2 Mar 17 08:49:24 server sshd\[6534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.235.233 user=root Mar 17 08:49:26 server sshd\[6534\]: Failed password for root from 157.230.235.233 port 57208 ssh2 ...	2020-03-17 16:01:28
58.87.78.55	attack	Mar 17 03:56:16 ns41 sshd[20828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.78.55 Mar 17 03:56:16 ns41 sshd[20828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.78.55	2020-03-17 16:37:24
190.193.181.151	attackspam	Lines containing failures of 190.193.181.151 Mar 16 11:51:04 shared06 sshd[16705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.193.181.151 user=r.r Mar 16 11:51:07 shared06 sshd[16705]: Failed password for r.r from 190.193.181.151 port 41361 ssh2 Mar 16 11:51:07 shared06 sshd[16705]: Received disconnect from 190.193.181.151 port 41361:11: Bye Bye [preauth] Mar 16 11:51:07 shared06 sshd[16705]: Disconnected from authenticating user r.r 190.193.181.151 port 41361 [preauth] Mar 16 12:08:19 shared06 sshd[21913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.193.181.151 user=r.r Mar 16 12:08:21 shared06 sshd[21913]: Failed password for r.r from 190.193.181.151 port 38161 ssh2 Mar 16 12:08:21 shared06 sshd[21913]: Received disconnect from 190.193.181.151 port 38161:11: Bye Bye [preauth] Mar 16 12:08:21 shared06 sshd[21913]: Disconnected from authenticating user r.r 190.193.181.151 p........ ------------------------------	2020-03-17 16:03:48
118.172.228.80	attackbotsspam	Port probing on unauthorized port 23	2020-03-17 16:07:30
146.66.89.175	attack	Automatic report - XMLRPC Attack	2020-03-17 15:59:22
134.209.16.36	attack	frenzy	2020-03-17 16:00:29
58.228.63.134	attack	SSH-bruteforce attempts	2020-03-17 16:16:28
151.80.144.255	attack	SSH bruteforce (Triggered fail2ban)	2020-03-17 16:02:31
106.13.72.190	attack	Mar 17 03:13:06 mail sshd\[33811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.72.190 user=root ...	2020-03-17 15:57:17

最近上报的IP列表

14.226.43.181	14.169.173.175	176.205.156.143	113.22.36.217
16.42.195.145	69.229.6.9	124.152.57.64	14.181.48.181
14.162.144.50	42.115.214.79	31.223.89.190	59.99.232.180
218.241.155.218	171.235.67.77	221.226.18.222	114.33.251.195
49.235.52.126	18.202.219.241	179.155.170.175	119.119.49.48