114.33.80.51 - IPInfo

基本信息:

城市(city): Nantou City

省份(region): Nantou

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	SIP/5060 Probe, BF, Hack -	2019-12-28 03:52:33

相同子网IP讨论:

IP	类型	评论内容	时间
114.33.80.45	attack	Honeypot attack, port: 23, PTR: 114-33-80-45.HINET-IP.hinet.net.	2019-11-14 19:01:11
114.33.80.138	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-10-08 15:41:05
114.33.80.4	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-09-20 03:41:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.33.80.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61744
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.33.80.51.			IN	A

;; AUTHORITY SECTION:
.			575	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122701 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 03:52:30 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

51.80.33.114.in-addr.arpa domain name pointer 114-33-80-51.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
51.80.33.114.in-addr.arpa	name = 114-33-80-51.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.184.117.230	attackspam	Unauthorised access (Jul 10) SRC=201.184.117.230 LEN=40 TTL=244 ID=24331 TCP DPT=445 WINDOW=1024 SYN	2019-07-11 02:34:52
117.252.10.252	attackspambots	23/tcp [2019-07-10]1pkt	2019-07-11 02:51:34
200.83.134.62	attackbotsspam	Jul 10 19:10:13 *** sshd[1499]: Invalid user pi from 200.83.134.62	2019-07-11 03:11:45
185.222.211.2	attackbotsspam	Jul 8 12:57:10 server postfix/smtpd[26771]: NOQUEUE: reject: RCPT from unknown[185.222.211.2]: 554 5.7.1 Service unavailable; Client host [185.222.211.2] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL442573 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[185.222.211.2]> Jul 8 12:57:10 server postfix/smtpd[26771]: NOQUEUE: reject: RCPT from unknown[185.222.211.2]: 554 5.7.1 Service unavailable; Client host [185.222.211.2] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL442573 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[185.222.211.2]>	2019-07-11 02:44:36
198.98.53.237	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-07-11 03:08:55
61.8.253.85	attackspambots	Jul 10 18:01:51 amit sshd\[19714\]: Invalid user pi from 61.8.253.85 Jul 10 18:01:51 amit sshd\[19701\]: Invalid user pi from 61.8.253.85 Jul 10 18:01:51 amit sshd\[19714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.8.253.85 ...	2019-07-11 02:36:56
200.229.229.201	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 23:15:50,258 INFO [shellcode_manager] (200.229.229.201) no match, writing hexdump (10944bdddd41d74f56b8d40b20da1b6e :915496) - MS17010 (EternalBlue)	2019-07-11 02:49:22
68.183.31.42	attackbots	schuetzenmusikanten.de 68.183.31.42 \[10/Jul/2019:15:03:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 5684 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 68.183.31.42 \[10/Jul/2019:15:03:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 5650 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 68.183.31.42 \[10/Jul/2019:15:04:01 +0200\] "POST /wp-login.php HTTP/1.1" 200 5641 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-11 02:44:58
185.98.82.14	attack	" "	2019-07-11 03:05:58
58.218.204.73	attack	3306/tcp 1433/tcp... [2019-05-13/07-10]104pkt,2pt.(tcp)	2019-07-11 02:36:20
177.38.188.115	attackspambots	Caught in portsentry honeypot	2019-07-11 02:42:41
14.161.6.201	attackspambots	Jul 10 11:35:14 SilenceServices sshd[32765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.6.201 Jul 10 11:35:15 SilenceServices sshd[32767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.6.201 Jul 10 11:35:17 SilenceServices sshd[32765]: Failed password for invalid user pi from 14.161.6.201 port 35874 ssh2	2019-07-11 02:42:04
212.92.108.124	attack	Jul 10 08:41:38 TCP Attack: SRC=212.92.108.124 DST=[Masked] LEN=66 TOS=0x08 PREC=0x20 TTL=118 DF PROTO=TCP SPT=65408 DPT=80 WINDOW=260 RES=0x00 ACK PSH URGP=0	2019-07-11 02:37:23
93.117.35.119	attackbotsspam	Unauthorised access (Jul 10) SRC=93.117.35.119 LEN=40 TTL=53 ID=57893 TCP DPT=23 WINDOW=11666 SYN	2019-07-11 03:02:50
218.84.39.218	attackbots	Jul 10 10:43:16 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=218.84.39.218, lip=[munged], TLS	2019-07-11 02:28:51

最近上报的IP列表

114.26.69.216	54.175.250.207	92.6.6.201	176.35.94.88
207.15.78.117	118.168.209.104	35.15.57.108	110.209.167.109
206.138.21.94	114.205.101.53	193.161.34.140	178.151.157.57
209.227.225.214	104.206.218.134	68.14.217.231	184.46.233.240
90.7.136.81	95.187.14.241	150.250.169.236	125.165.247.177