114.45.2.94 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 114.45.2.94 on Port 445(SMB)	2019-07-02 05:29:49

相同子网IP讨论:

IP	类型	评论内容	时间
114.45.252.179	attackbots	1582520237 - 02/24/2020 05:57:17 Host: 114.45.252.179/114.45.252.179 Port: 445 TCP Blocked	2020-02-24 14:08:41
114.45.224.160	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 18:06:12
114.45.226.25	attackspambots	Unauthorized connection attempt detected from IP address 114.45.226.25 to port 23 [J]	2020-01-26 03:29:53
114.45.203.60	attackspambots	Jan 1 15:48:38 grey postfix/smtpd\[23722\]: NOQUEUE: reject: RCPT from 114-45-203-60.dynamic-ip.hinet.net\[114.45.203.60\]: 554 5.7.1 Service unavailable\; Client host \[114.45.203.60\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?114.45.203.60\; from=\ to=\ proto=ESMTP helo=\<114-45-203-60.dynamic-ip.hinet.net\> ...	2020-01-02 02:22:59
114.45.235.58	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.45.235.58/ TW - 1H : (2990) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.45.235.58 CIDR : 114.45.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 304 3H - 1027 6H - 2187 12H - 2890 24H - 2899 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-24 01:30:54
114.45.226.99	attack	Port Scan: TCP/23	2019-09-03 02:07:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.45.2.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1555
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.45.2.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 05:29:43 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

94.2.45.114.in-addr.arpa domain name pointer 114-45-2-94.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.2.45.114.in-addr.arpa	name = 114-45-2-94.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.8.227.175	attackspam	Automatic report - XMLRPC Attack	2020-06-10 20:55:16
94.159.47.198	attackspam	Jun 10 06:26:34 dignus sshd[27406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.159.47.198 Jun 10 06:26:36 dignus sshd[27406]: Failed password for invalid user icn from 94.159.47.198 port 42770 ssh2 Jun 10 06:30:10 dignus sshd[27688]: Invalid user uno85 from 94.159.47.198 port 44154 Jun 10 06:30:10 dignus sshd[27688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.159.47.198 Jun 10 06:30:13 dignus sshd[27688]: Failed password for invalid user uno85 from 94.159.47.198 port 44154 ssh2 ...	2020-06-10 21:41:06
139.59.12.65	attack	SSH bruteforce	2020-06-10 20:56:10
46.17.124.40	attackspambots	Port scan on 1 port(s): 8000	2020-06-10 21:32:29
89.248.174.201	attackbotsspam	06/10/2020-08:50:55.143492 89.248.174.201 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-10 20:58:31
145.239.19.252	attack	[portscan] Port scan	2020-06-10 21:09:16
157.230.150.140	attackbotsspam	scans 2 times in preceeding hours on the ports (in chronological order) 18082 18082	2020-06-10 21:10:41
82.64.60.90	attack	nft/Honeypot/22/73e86	2020-06-10 21:04:48
194.26.29.53	attackbotsspam	Jun 10 14:39:26 debian-2gb-nbg1-2 kernel: \[14051497.273218\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.53 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=29169 PROTO=TCP SPT=53495 DPT=4356 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-10 21:02:28
61.252.141.83	attackbots	Jun 10 09:08:39 firewall sshd[30276]: Invalid user sherlock from 61.252.141.83 Jun 10 09:08:41 firewall sshd[30276]: Failed password for invalid user sherlock from 61.252.141.83 port 50101 ssh2 Jun 10 09:12:28 firewall sshd[30365]: Invalid user gnf from 61.252.141.83 ...	2020-06-10 21:00:03
119.254.155.187	attackspam	Jun 10 14:15:58 PorscheCustomer sshd[9574]: Failed password for root from 119.254.155.187 port 1487 ssh2 Jun 10 14:19:35 PorscheCustomer sshd[9655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.254.155.187 Jun 10 14:19:37 PorscheCustomer sshd[9655]: Failed password for invalid user aguko from 119.254.155.187 port 55375 ssh2 ...	2020-06-10 21:14:55
60.190.226.189	attack	Jun 10 12:59:46 vps339862 kernel: \[11005701.512614\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=60.190.226.189 DST=51.254.206.43 LEN=88 TOS=0x00 PREC=0x00 TTL=109 ID=1080 DF PROTO=UDP SPT=37975 DPT=3128 LEN=68 Jun 10 13:00:25 vps339862 kernel: \[11005740.560670\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=60.190.226.189 DST=51.254.206.43 LEN=88 TOS=0x00 PREC=0x00 TTL=109 ID=2452 DF PROTO=UDP SPT=4679 DPT=3260 LEN=68 Jun 10 13:01:04 vps339862 kernel: \[11005779.807216\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=60.190.226.189 DST=51.254.206.43 LEN=88 TOS=0x00 PREC=0x00 TTL=109 ID=1064 DF PROTO=UDP SPT=37655 DPT=3306 LEN=68 Jun 10 13:01:43 vps339862 kernel: \[11005818.893525\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=60.190.226.189 DST=51.254.206.43 LEN=88 TOS=0x00 PREC=0x00 TTL=109 ID=1885 DF PROTO= ...	2020-06-10 21:06:38
47.15.174.167	attack	Unauthorized connection attempt from IP address 47.15.174.167 on Port 445(SMB)	2020-06-10 21:22:35
46.38.145.251	attackspam	Jun 10 14:47:59 srv01 postfix/smtpd\[28221\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 10 14:48:32 srv01 postfix/smtpd\[28221\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 10 14:48:51 srv01 postfix/smtpd\[20699\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 10 14:48:51 srv01 postfix/smtpd\[28221\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 10 14:49:33 srv01 postfix/smtpd\[20797\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-10 20:57:14
177.76.193.209	attack	Unauthorized connection attempt from IP address 177.76.193.209 on Port 445(SMB)	2020-06-10 21:18:14

最近上报的IP列表

179.193.109.140	73.113.237.161	172.29.165.181	135.176.235.235
59.127.88.136	174.113.197.247	226.41.65.209	127.29.109.215
46.71.33.34	207.46.13.160	196.119.210.149	166.106.78.72
125.212.182.151	127.37.241.191	128.127.8.242	251.198.71.18
163.13.64.28	209.97.157.254	188.53.37.251	185.248.160.231