114.237.134.247

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130 Dec x@x Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.237.134.247	2019-12-27 16:06:42

类型

评论内容

时间

attackspam

Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2
Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2
Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130
Dec x@x
Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=114.237.134.247

2019-12-27 16:06:42

相同子网IP讨论:

IP	类型	评论内容	时间
114.237.134.204	attack	SpamScore above: 10.0	2020-06-24 06:47:32
114.237.134.228	attack	SpamScore above: 10.0	2020-06-16 23:23:53
114.237.134.193	attack	SpamScore above: 10.0	2020-06-03 17:04:00
114.237.134.66	attack	IP: 114.237.134.66 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS4134 Chinanet China (CN) CIDR 114.232.0.0/13 Log Date: 9/05/2020 7:57:01 PM UTC	2020-05-10 05:47:37
114.237.134.84	attack	SpamScore above: 10.0	2020-04-06 16:42:09
114.237.134.133	attackbots	Feb 24 05:53:02 grey postfix/smtpd\[5539\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.133\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.133\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=114.237.134.133\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-24 16:10:39
114.237.134.194	attackbotsspam	Jan 23 17:06:17 grey postfix/smtpd\[7664\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.194\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.194\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-24 03:26:02
114.237.134.79	attackspambots	Dec 28 07:23:19 grey postfix/smtpd\[4905\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.79\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.79\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.79\]\; from=\ to=\ proto=SMTP helo=\ ...	2019-12-28 19:24:09
114.237.134.103	attack	SpamReport	2019-12-12 14:56:45
114.237.134.221	attack	Oct 16 22:23:14 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:23:57 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:24:31 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\	2019-10-17 07:16:24
114.237.134.176	attackspambots	Brute force SMTP login attempts.	2019-09-10 02:00:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.237.134.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35561
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.237.134.247.		IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122700 1800 900 604800 86400

;; Query time: 287 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 27 16:06:35 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

247.134.237.114.in-addr.arpa domain name pointer 247.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
247.134.237.114.in-addr.arpa	name = 247.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
1.9.46.177	attackbots	Unauthorized connection attempt detected from IP address 1.9.46.177 to port 2220 [J]	2020-01-05 14:43:12
112.85.42.178	attack	Jan 5 07:54:16 jane sshd[13713]: Failed password for root from 112.85.42.178 port 6253 ssh2 Jan 5 07:54:19 jane sshd[13713]: Failed password for root from 112.85.42.178 port 6253 ssh2 ...	2020-01-05 14:59:33
92.221.145.57	attackbots	20 attempts against mh-misbehave-ban on pluto.magehost.pro	2020-01-05 15:08:49
218.92.0.148	attackbots	2020-01-05T06:03:17.744609abusebot-3.cloudsearch.cf sshd[15841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root 2020-01-05T06:03:19.597320abusebot-3.cloudsearch.cf sshd[15841]: Failed password for root from 218.92.0.148 port 36047 ssh2 2020-01-05T06:03:22.671864abusebot-3.cloudsearch.cf sshd[15841]: Failed password for root from 218.92.0.148 port 36047 ssh2 2020-01-05T06:03:17.744609abusebot-3.cloudsearch.cf sshd[15841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root 2020-01-05T06:03:19.597320abusebot-3.cloudsearch.cf sshd[15841]: Failed password for root from 218.92.0.148 port 36047 ssh2 2020-01-05T06:03:22.671864abusebot-3.cloudsearch.cf sshd[15841]: Failed password for root from 218.92.0.148 port 36047 ssh2 2020-01-05T06:03:17.744609abusebot-3.cloudsearch.cf sshd[15841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho ...	2020-01-05 14:41:52
74.82.254.191	attackbotsspam	Feb 14 22:44:18 vpn sshd[27798]: Invalid user admin from 74.82.254.191 Feb 14 22:44:18 vpn sshd[27798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.82.254.191 Feb 14 22:44:20 vpn sshd[27798]: Failed password for invalid user admin from 74.82.254.191 port 51162 ssh2 Feb 14 22:44:22 vpn sshd[27798]: Failed password for invalid user admin from 74.82.254.191 port 51162 ssh2 Feb 14 22:44:24 vpn sshd[27798]: Failed password for invalid user admin from 74.82.254.191 port 51162 ssh2	2020-01-05 15:09:17
109.94.174.84	attackbotsspam	B: zzZZzz blocked content access	2020-01-05 15:13:45
76.74.253.31	attack	Sep 21 11:42:02 vpn sshd[31347]: Invalid user ftpuser from 76.74.253.31 Sep 21 11:42:02 vpn sshd[31347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.74.253.31 Sep 21 11:42:04 vpn sshd[31347]: Failed password for invalid user ftpuser from 76.74.253.31 port 58978 ssh2 Sep 21 11:50:12 vpn sshd[31362]: Invalid user abel from 76.74.253.31 Sep 21 11:50:12 vpn sshd[31362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.74.253.31	2020-01-05 14:49:26
185.147.212.13	attackbots	\[2020-01-05 01:23:02\] NOTICE\[2839\] chan_sip.c: Registration from '\' failed for '185.147.212.13:62495' - Wrong password \[2020-01-05 01:23:02\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-05T01:23:02.957-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="6410",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.13/62495",Challenge="2c019faa",ReceivedChallenge="2c019faa",ReceivedHash="509dd1a237f74b0c78639791fc3cdaca" \[2020-01-05 01:25:01\] NOTICE\[2839\] chan_sip.c: Registration from '\' failed for '185.147.212.13:60260' - Wrong password \[2020-01-05 01:25:01\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-05T01:25:01.398-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="412",SessionID="0x7f0fb466f928",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.	2020-01-05 14:25:31
74.208.242.24	attackbots	Mar 22 04:36:05 vpn sshd[7040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.242.24 Mar 22 04:36:07 vpn sshd[7040]: Failed password for invalid user test from 74.208.242.24 port 48378 ssh2 Mar 22 04:39:14 vpn sshd[7049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.242.24	2020-01-05 15:12:56
75.188.197.92	attack	Dec 5 16:21:17 vpn sshd[11190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.188.197.92 Dec 5 16:21:17 vpn sshd[11192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.188.197.92 Dec 5 16:21:19 vpn sshd[11190]: Failed password for invalid user pi from 75.188.197.92 port 52348 ssh2	2020-01-05 15:01:04
75.50.59.233	attack	Jan 16 07:25:04 vpn sshd[17765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.50.59.233 Jan 16 07:25:06 vpn sshd[17765]: Failed password for invalid user jboss from 75.50.59.233 port 37828 ssh2 Jan 16 07:28:05 vpn sshd[17777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.50.59.233	2020-01-05 14:59:08
77.158.223.83	attackbotsspam	Jan 8 00:32:16 vpn sshd[13811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.158.223.83 Jan 8 00:32:18 vpn sshd[13811]: Failed password for invalid user sql from 77.158.223.83 port 48270 ssh2 Jan 8 00:35:26 vpn sshd[13824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.158.223.83	2020-01-05 14:44:51
77.211.23.60	attack	Mar 11 11:23:31 vpn sshd[1763]: Failed password for root from 77.211.23.60 port 36394 ssh2 Mar 11 11:23:41 vpn sshd[1763]: error: maximum authentication attempts exceeded for root from 77.211.23.60 port 36394 ssh2 [preauth] Mar 11 11:23:48 vpn sshd[1776]: Failed password for root from 77.211.23.60 port 36402 ssh2	2020-01-05 14:42:28
113.160.178.148	attackbots	Jan 5 07:48:25 MK-Soft-VM7 sshd[30276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.160.178.148 Jan 5 07:48:27 MK-Soft-VM7 sshd[30276]: Failed password for invalid user oliver from 113.160.178.148 port 42922 ssh2 ...	2020-01-05 15:02:08
77.50.132.33	attackspambots	Mar 11 04:18:28 vpn sshd[31928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.50.132.33 Mar 11 04:18:30 vpn sshd[31928]: Failed password for invalid user ntadmin from 77.50.132.33 port 41732 ssh2 Mar 11 04:23:59 vpn sshd[31966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.50.132.33	2020-01-05 14:25:06

最近上报的IP列表

14.226.43.181	14.169.173.175	176.205.156.143	113.22.36.217
16.42.195.145	69.229.6.9	124.152.57.64	14.181.48.181
14.162.144.50	42.115.214.79	31.223.89.190	59.99.232.180
218.241.155.218	171.235.67.77	221.226.18.222	114.33.251.195
49.235.52.126	18.202.219.241	179.155.170.175	119.119.49.48