114.237.134.247

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130 Dec x@x Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.237.134.247	2019-12-27 16:06:42

类型

评论内容

时间

attackspam

Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2
Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130
Dec x@x
Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=114.237.134.247

2019-12-27 16:06:42

相同子网IP讨论:

IP	类型	评论内容	时间
114.237.134.204	attack	SpamScore above: 10.0	2020-06-24 06:47:32
114.237.134.228	attack	SpamScore above: 10.0	2020-06-16 23:23:53
114.237.134.193	attack	SpamScore above: 10.0	2020-06-03 17:04:00
114.237.134.66	attack	IP: 114.237.134.66 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS4134 Chinanet China (CN) CIDR 114.232.0.0/13 Log Date: 9/05/2020 7:57:01 PM UTC	2020-05-10 05:47:37
114.237.134.84	attack	SpamScore above: 10.0	2020-04-06 16:42:09
114.237.134.133	attackbots	Feb 24 05:53:02 grey postfix/smtpd\[5539\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.133\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.133\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=114.237.134.133\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-24 16:10:39
114.237.134.194	attackbotsspam	Jan 23 17:06:17 grey postfix/smtpd\[7664\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.194\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.194\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-24 03:26:02
114.237.134.79	attackspambots	Dec 28 07:23:19 grey postfix/smtpd\[4905\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.79\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.79\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.79\]\; from=\ to=\ proto=SMTP helo=\ ...	2019-12-28 19:24:09
114.237.134.103	attack	SpamReport	2019-12-12 14:56:45
114.237.134.221	attack	Oct 16 22:23:14 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:23:57 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:24:31 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\	2019-10-17 07:16:24
114.237.134.176	attackspambots	Brute force SMTP login attempts.	2019-09-10 02:00:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.237.134.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35561
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.237.134.247.		IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122700 1800 900 604800 86400

;; Query time: 287 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 27 16:06:35 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

247.134.237.114.in-addr.arpa domain name pointer 247.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
247.134.237.114.in-addr.arpa	name = 247.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.142.201.84	attack	Sep 5 20:27:51 cws2.mueller-hostname.net sshd[8127]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [222.142.201.84] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 5 20:27:51 cws2.mueller-hostname.net sshd[8127]: Failed password for invalid user ubnt from 222.142.201.84 port 45748 ssh2 Sep 5 20:27:51 cws2.mueller-hostname.net sshd[8127]: Failed password for invalid user ubnt from 222.142.201.84 port 45748 ssh2 Sep 5 20:27:51 cws2.mueller-hostname.net sshd[8127]: Failed password for invalid user ubnt from 222.142.201.84 port 45748 ssh2 Sep 5 20:27:52 cws2.mueller-hostname.net sshd[8127]: Failed password for invalid user ubnt from 222.142.201.84 port 45748 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=222.142.201.84	2019-09-06 11:45:55
104.196.50.15	attackspam	2019-09-06T04:04:55.326087lon01.zurich-datacenter.net sshd\[26877\]: Invalid user git from 104.196.50.15 port 56648 2019-09-06T04:04:55.332584lon01.zurich-datacenter.net sshd\[26877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com 2019-09-06T04:04:57.069040lon01.zurich-datacenter.net sshd\[26877\]: Failed password for invalid user git from 104.196.50.15 port 56648 ssh2 2019-09-06T04:09:04.229594lon01.zurich-datacenter.net sshd\[26978\]: Invalid user daniel from 104.196.50.15 port 44182 2019-09-06T04:09:04.234668lon01.zurich-datacenter.net sshd\[26978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com ...	2019-09-06 11:28:31
162.241.37.134	attack	/wp-login.php	2019-09-06 11:43:35
207.180.243.167	attackspam	Sep 5 21:51:59 root sshd[14951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.180.243.167 Sep 5 21:52:01 root sshd[14951]: Failed password for invalid user teamspeak3 from 207.180.243.167 port 50104 ssh2 Sep 5 21:56:03 root sshd[15020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.180.243.167 ...	2019-09-06 11:58:11
81.220.81.65	attackbots	Sep 6 02:09:58 XXX sshd[18422]: Invalid user ofsaa from 81.220.81.65 port 51534	2019-09-06 11:34:45
223.202.201.138	attack	Sep 6 03:04:03 XXX sshd[52405]: Invalid user www-data from 223.202.201.138 port 19726	2019-09-06 12:06:06
189.115.92.62	attack	Unauthorized connection attempt from IP address 189.115.92.62 on Port 445(SMB)	2019-09-06 11:43:00
141.98.81.253	attack	scan r	2019-09-06 12:12:58
222.188.21.68	attackspambots	2019-09-06T04:00:00.173119abusebot-2.cloudsearch.cf sshd\[22472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.188.21.68 user=root	2019-09-06 12:04:14
182.254.228.46	attack	Sep 6 05:21:07 v22019058497090703 sshd[30037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.228.46 Sep 6 05:21:09 v22019058497090703 sshd[30037]: Failed password for invalid user server from 182.254.228.46 port 43340 ssh2 Sep 6 05:26:32 v22019058497090703 sshd[30441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.228.46 ...	2019-09-06 11:39:20
51.79.73.206	attackspambots	Sep 5 23:59:28 TORMINT sshd\[23687\]: Invalid user demo from 51.79.73.206 Sep 5 23:59:28 TORMINT sshd\[23687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.73.206 Sep 5 23:59:30 TORMINT sshd\[23687\]: Failed password for invalid user demo from 51.79.73.206 port 40826 ssh2 ...	2019-09-06 12:14:14
81.174.227.27	attackspambots	Sep 5 23:55:05 ny01 sshd[1854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.174.227.27 Sep 5 23:55:07 ny01 sshd[1854]: Failed password for invalid user odoo from 81.174.227.27 port 50790 ssh2 Sep 5 23:59:25 ny01 sshd[2725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.174.227.27	2019-09-06 12:01:42
86.98.58.193	attack	Fail2Ban Ban Triggered SMTP Bruteforce Attempt	2019-09-06 11:35:28
88.0.80.224	attackspam	Sep 6 06:55:47 www2 sshd\[38244\]: Invalid user alexk from 88.0.80.224Sep 6 06:55:49 www2 sshd\[38244\]: Failed password for invalid user alexk from 88.0.80.224 port 37294 ssh2Sep 6 06:59:52 www2 sshd\[38560\]: Invalid user guest from 88.0.80.224 ...	2019-09-06 12:10:23
195.222.163.54	attack	Sep 6 05:47:19 mail sshd\[5768\]: Failed password for invalid user admin from 195.222.163.54 port 37730 ssh2 Sep 6 05:52:05 mail sshd\[6296\]: Invalid user test from 195.222.163.54 port 52102 Sep 6 05:52:05 mail sshd\[6296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.222.163.54 Sep 6 05:52:07 mail sshd\[6296\]: Failed password for invalid user test from 195.222.163.54 port 52102 ssh2 Sep 6 05:56:53 mail sshd\[6899\]: Invalid user test from 195.222.163.54 port 38232	2019-09-06 12:06:54

最近上报的IP列表

14.226.43.181	14.169.173.175	176.205.156.143	113.22.36.217
16.42.195.145	69.229.6.9	124.152.57.64	14.181.48.181
14.162.144.50	42.115.214.79	31.223.89.190	59.99.232.180
218.241.155.218	171.235.67.77	221.226.18.222	114.33.251.195
49.235.52.126	18.202.219.241	179.155.170.175	119.119.49.48