114.67.80.134 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Jingdong 360 Degree E-Commerce Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP (SYN) 114.67.80.134:48123 -> port 30669, len 44	2020-09-30 04:53:20
attackspam	Listed on barracudaCentral / proto=6 . srcport=54318 . dstport=11976 . (522)	2020-09-29 21:01:14
attackbotsspam	11833/tcp 8832/tcp 24755/tcp... [2020-08-31/09-28]84pkt,34pt.(tcp)	2020-09-29 13:13:07
attack	Invalid user ksl from 114.67.80.134 port 35972	2020-08-29 07:50:24
attackbotsspam	Aug 28 06:26:47 plg sshd[5421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 Aug 28 06:26:49 plg sshd[5421]: Failed password for invalid user oracle from 114.67.80.134 port 40018 ssh2 Aug 28 06:27:57 plg sshd[5488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root Aug 28 06:27:58 plg sshd[5488]: Failed password for invalid user root from 114.67.80.134 port 47289 ssh2 Aug 28 06:29:16 plg sshd[5519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root Aug 28 06:29:17 plg sshd[5519]: Failed password for invalid user root from 114.67.80.134 port 54563 ssh2 ...	2020-08-28 12:42:26
attackbotsspam	2020-08-22T15:50:31.583339abusebot-3.cloudsearch.cf sshd[4915]: Invalid user eloa from 114.67.80.134 port 60043 2020-08-22T15:50:31.589572abusebot-3.cloudsearch.cf sshd[4915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 2020-08-22T15:50:31.583339abusebot-3.cloudsearch.cf sshd[4915]: Invalid user eloa from 114.67.80.134 port 60043 2020-08-22T15:50:33.953066abusebot-3.cloudsearch.cf sshd[4915]: Failed password for invalid user eloa from 114.67.80.134 port 60043 ssh2 2020-08-22T15:54:35.973804abusebot-3.cloudsearch.cf sshd[4968]: Invalid user kafka from 114.67.80.134 port 52591 2020-08-22T15:54:35.979143abusebot-3.cloudsearch.cf sshd[4968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 2020-08-22T15:54:35.973804abusebot-3.cloudsearch.cf sshd[4968]: Invalid user kafka from 114.67.80.134 port 52591 2020-08-22T15:54:38.172197abusebot-3.cloudsearch.cf sshd[4968]: Failed password f ...	2020-08-23 01:16:51
attackbots	Invalid user movie from 114.67.80.134 port 56620	2020-08-21 16:07:23
attack	SSH Brute-Force. Ports scanning.	2020-08-17 01:49:04
attackspam	Jul 31 08:14:26 journals sshd\[45997\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root Jul 31 08:14:27 journals sshd\[45997\]: Failed password for root from 114.67.80.134 port 41230 ssh2 Jul 31 08:17:46 journals sshd\[46361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root Jul 31 08:17:48 journals sshd\[46361\]: Failed password for root from 114.67.80.134 port 32921 ssh2 Jul 31 08:21:06 journals sshd\[46755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root ...	2020-07-31 19:01:09
attackbots	Jul 30 18:56:31 rotator sshd\[741\]: Invalid user daiyun from 114.67.80.134Jul 30 18:56:33 rotator sshd\[741\]: Failed password for invalid user daiyun from 114.67.80.134 port 56416 ssh2Jul 30 18:59:14 rotator sshd\[757\]: Invalid user shkim from 114.67.80.134Jul 30 18:59:16 rotator sshd\[757\]: Failed password for invalid user shkim from 114.67.80.134 port 44210 ssh2Jul 30 19:01:55 rotator sshd\[1538\]: Invalid user monitoramento from 114.67.80.134Jul 30 19:01:57 rotator sshd\[1538\]: Failed password for invalid user monitoramento from 114.67.80.134 port 60236 ssh2 ...	2020-07-31 03:45:22
attack	Jul 12 21:58:08 inter-technics sshd[20812]: Invalid user yckim from 114.67.80.134 port 43497 Jul 12 21:58:08 inter-technics sshd[20812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 Jul 12 21:58:08 inter-technics sshd[20812]: Invalid user yckim from 114.67.80.134 port 43497 Jul 12 21:58:10 inter-technics sshd[20812]: Failed password for invalid user yckim from 114.67.80.134 port 43497 ssh2 Jul 12 22:01:29 inter-technics sshd[21063]: Invalid user weiwei from 114.67.80.134 port 37751 ...	2020-07-13 05:59:33
attack	Jul 12 05:51:31 serwer sshd\[5706\]: Invalid user disablesite from 114.67.80.134 port 50356 Jul 12 05:51:31 serwer sshd\[5706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 Jul 12 05:51:32 serwer sshd\[5706\]: Failed password for invalid user disablesite from 114.67.80.134 port 50356 ssh2 ...	2020-07-12 16:23:02
attackbots	Jul 8 13:45:24 home sshd[29927]: Failed password for mail from 114.67.80.134 port 57673 ssh2 Jul 8 13:47:47 home sshd[30310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 Jul 8 13:47:49 home sshd[30310]: Failed password for invalid user syy from 114.67.80.134 port 43769 ssh2 ...	2020-07-08 21:42:52
attackspam	2020-06-22 UTC: (23x) - benutzer,caro,darwin,gs,hanson,kiran,kys,lko,q3server,root(5x),teamspeak3,test(2x),testa,unlock,user,vboxuser,vmail,zimbra	2020-06-23 18:24:58
attackspam	2020-06-15T23:49:31.381599xentho-1 sshd[335227]: Invalid user rafi from 114.67.80.134 port 51677 2020-06-15T23:49:32.824366xentho-1 sshd[335227]: Failed password for invalid user rafi from 114.67.80.134 port 51677 ssh2 2020-06-15T23:51:39.965230xentho-1 sshd[335270]: Invalid user bonaka from 114.67.80.134 port 39465 2020-06-15T23:51:39.972490xentho-1 sshd[335270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 2020-06-15T23:51:39.965230xentho-1 sshd[335270]: Invalid user bonaka from 114.67.80.134 port 39465 2020-06-15T23:51:42.314618xentho-1 sshd[335270]: Failed password for invalid user bonaka from 114.67.80.134 port 39465 ssh2 2020-06-15T23:53:51.453109xentho-1 sshd[335310]: Invalid user amar from 114.67.80.134 port 55489 2020-06-15T23:53:51.460836xentho-1 sshd[335310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 2020-06-15T23:53:51.453109xentho-1 sshd[335310]: Invalid use ...	2020-06-16 13:25:36
attackspambots	Jun 6 12:57:14 vps687878 sshd\[12493\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root Jun 6 12:57:17 vps687878 sshd\[12493\]: Failed password for root from 114.67.80.134 port 39355 ssh2 Jun 6 12:59:46 vps687878 sshd\[12704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root Jun 6 12:59:48 vps687878 sshd\[12704\]: Failed password for root from 114.67.80.134 port 56869 ssh2 Jun 6 13:02:12 vps687878 sshd\[13051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=root ...	2020-06-06 19:27:14
attackspambots	2020-06-04 UTC: (56x) - root(56x)	2020-06-05 18:57:12
attackbots	Jun 2 15:18:14 localhost sshd[659698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=r.r Jun 2 15:18:16 localhost sshd[659698]: Failed password for r.r from 114.67.80.134 port 37252 ssh2 Jun 2 15:26:19 localhost sshd[662367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=r.r Jun 2 15:26:21 localhost sshd[662367]: Failed password for r.r from 114.67.80.134 port 60249 ssh2 Jun 2 15:30:01 localhost sshd[662920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=r.r Jun 2 15:30:03 localhost sshd[662920]: Failed password for r.r from 114.67.80.134 port 34162 ssh2 Jun 2 15:33:48 localhost sshd[664316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.134 user=r.r Jun 2 15:33:49 localhost sshd[664316]: Failed password for r.r from 114.67.80.1........ ------------------------------	2020-06-03 03:19:37

相同子网IP讨论:

IP	类型	评论内容	时间
114.67.80.209	attackspam	Aug 27 01:48:34 prod4 sshd\[30984\]: Invalid user dsa from 114.67.80.209 Aug 27 01:48:35 prod4 sshd\[30984\]: Failed password for invalid user dsa from 114.67.80.209 port 50058 ssh2 Aug 27 01:58:31 prod4 sshd\[1887\]: Invalid user webaccess from 114.67.80.209 ...	2020-08-27 08:55:01
114.67.80.209	attackspam	Aug 10 12:10:04 ns3033917 sshd[10330]: Failed password for root from 114.67.80.209 port 46800 ssh2 Aug 10 12:13:00 ns3033917 sshd[10341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.209 user=root Aug 10 12:13:02 ns3033917 sshd[10341]: Failed password for root from 114.67.80.209 port 53596 ssh2 ...	2020-08-10 21:58:09
114.67.80.209	attackbots	Jul 17 14:08:27 abendstille sshd\[6339\]: Invalid user nicolas from 114.67.80.209 Jul 17 14:08:27 abendstille sshd\[6339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.209 Jul 17 14:08:29 abendstille sshd\[6339\]: Failed password for invalid user nicolas from 114.67.80.209 port 35194 ssh2 Jul 17 14:15:00 abendstille sshd\[13072\]: Invalid user william from 114.67.80.209 Jul 17 14:15:00 abendstille sshd\[13072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.209 ...	2020-07-17 20:31:40
114.67.80.209	attackspam	2020-07-14T10:43:12.169319hostname sshd[3471]: Invalid user ali from 114.67.80.209 port 57542 2020-07-14T10:43:14.282958hostname sshd[3471]: Failed password for invalid user ali from 114.67.80.209 port 57542 ssh2 2020-07-14T10:47:36.441238hostname sshd[5532]: Invalid user user2 from 114.67.80.209 port 45192 ...	2020-07-14 19:25:04
114.67.80.209	attackspambots	SSH invalid-user multiple login try	2020-07-06 12:27:56
114.67.80.209	attack	Invalid user otk from 114.67.80.209 port 47302	2020-06-25 15:58:42
114.67.80.217	attack	2020-06-09T08:16:37.809382mail.standpoint.com.ua sshd[2838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217 user=root 2020-06-09T08:16:40.173677mail.standpoint.com.ua sshd[2838]: Failed password for root from 114.67.80.217 port 44538 ssh2 2020-06-09T08:18:56.389928mail.standpoint.com.ua sshd[3117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217 user=root 2020-06-09T08:18:58.503382mail.standpoint.com.ua sshd[3117]: Failed password for root from 114.67.80.217 port 33225 ssh2 2020-06-09T08:21:13.436179mail.standpoint.com.ua sshd[3444]: Invalid user grb from 114.67.80.217 port 50113 ...	2020-06-09 14:56:11
114.67.80.217	attackbots	$f2bV_matches	2020-06-03 16:16:07
114.67.80.40	attack	May 29 10:23:01 : SSH login attempts with invalid user	2020-05-30 08:09:01
114.67.80.209	attackspam	$f2bV_matches	2020-05-26 14:43:17
114.67.80.209	attack	May 24 08:50:19 ns392434 sshd[21718]: Invalid user wby from 114.67.80.209 port 58936 May 24 08:50:19 ns392434 sshd[21718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.209 May 24 08:50:19 ns392434 sshd[21718]: Invalid user wby from 114.67.80.209 port 58936 May 24 08:50:21 ns392434 sshd[21718]: Failed password for invalid user wby from 114.67.80.209 port 58936 ssh2 May 24 09:07:28 ns392434 sshd[21928]: Invalid user dew from 114.67.80.209 port 39582 May 24 09:07:28 ns392434 sshd[21928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.209 May 24 09:07:28 ns392434 sshd[21928]: Invalid user dew from 114.67.80.209 port 39582 May 24 09:07:30 ns392434 sshd[21928]: Failed password for invalid user dew from 114.67.80.209 port 39582 ssh2 May 24 09:11:32 ns392434 sshd[22057]: Invalid user nwb from 114.67.80.209 port 33802	2020-05-24 17:41:46
114.67.80.217	attackbotsspam	May 24 03:48:39 game-panel sshd[23501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217 May 24 03:48:41 game-panel sshd[23501]: Failed password for invalid user cjm from 114.67.80.217 port 36358 ssh2 May 24 03:51:59 game-panel sshd[23621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217	2020-05-24 15:14:02
114.67.80.217	attackspam	k+ssh-bruteforce	2020-05-23 20:22:57
114.67.80.217	attackbots	May 22 23:13:32 lukav-desktop sshd\[32118\]: Invalid user bwo from 114.67.80.217 May 22 23:13:32 lukav-desktop sshd\[32118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217 May 22 23:13:34 lukav-desktop sshd\[32118\]: Failed password for invalid user bwo from 114.67.80.217 port 59972 ssh2 May 22 23:19:29 lukav-desktop sshd\[32210\]: Invalid user wux from 114.67.80.217 May 22 23:19:29 lukav-desktop sshd\[32210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.217	2020-05-23 04:40:16
114.67.80.209	attack	May 20 09:46:39 srv01 sshd[24205]: Invalid user yxg from 114.67.80.209 port 50140 May 20 09:46:39 srv01 sshd[24205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.80.209 May 20 09:46:39 srv01 sshd[24205]: Invalid user yxg from 114.67.80.209 port 50140 May 20 09:46:42 srv01 sshd[24205]: Failed password for invalid user yxg from 114.67.80.209 port 50140 ssh2 May 20 09:49:48 srv01 sshd[24330]: Invalid user qe from 114.67.80.209 port 57520 ...	2020-05-20 16:06:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.67.80.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.67.80.134.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060201 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 03 03:19:33 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 134.80.67.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.80.67.114.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
46.36.25.224	attack	1579958053 - 01/25/2020 14:14:13 Host: 46.36.25.224/46.36.25.224 Port: 445 TCP Blocked	2020-01-25 23:27:35
222.186.30.76	attack	Jan 25 16:59:33 MK-Soft-Root1 sshd[5904]: Failed password for root from 222.186.30.76 port 43377 ssh2 Jan 25 16:59:36 MK-Soft-Root1 sshd[5904]: Failed password for root from 222.186.30.76 port 43377 ssh2 ...	2020-01-26 00:07:33
202.88.174.4	attackspam	Honeypot attack, port: 445, PTR: bhima.hathway.com.	2020-01-26 00:11:45
159.65.30.66	attackspambots	Unauthorized connection attempt detected from IP address 159.65.30.66 to port 2220 [J]	2020-01-25 23:48:22
121.172.66.77	attackbotsspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-25 23:57:02
187.227.124.165	attackbotsspam	Honeypot attack, port: 81, PTR: dsl-187-227-124-165-dyn.prod-infinitum.com.mx.	2020-01-25 23:26:04
178.33.231.105	attack	[2020-01-25 10:03:31] NOTICE[1148] chan_sip.c: Registration from '' failed for '178.33.231.105:51572' - Wrong password [2020-01-25 10:03:31] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-25T10:03:31.840-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1615",SessionID="0x7fd82c3e18a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/178.33.231.105/51572",Challenge="6e1c2816",ReceivedChallenge="6e1c2816",ReceivedHash="c6d422195d967da540af1a5448f83968" [2020-01-25 10:08:19] NOTICE[1148] chan_sip.c: Registration from '' failed for '178.33.231.105:54622' - Wrong password [2020-01-25 10:08:19] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-25T10:08:19.185-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1515",SessionID="0x7fd82c4a98b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/178.33.231 ...	2020-01-25 23:23:37
93.123.115.30	attackspam	Honeypot attack, port: 445, PTR: dhcp-30.net1.bg.	2020-01-25 23:51:48
188.126.72.120	attackbotsspam	Honeypot attack, port: 445, PTR: boas0.elit.net.	2020-01-25 23:33:56
2.144.247.229	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 23:53:37
47.247.87.253	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-25 23:51:12
222.186.175.182	attack	Jan 25 10:21:41 plusreed sshd[28507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Jan 25 10:21:43 plusreed sshd[28507]: Failed password for root from 222.186.175.182 port 45924 ssh2 ...	2020-01-25 23:23:17
194.105.218.9	attackbotsspam	Honeypot attack, port: 445, PTR: of.leivo.ru.	2020-01-25 23:47:27
78.128.113.88	attack	Jan 25 15:51:32 xeon postfix/smtpd[53265]: warning: unknown[78.128.113.88]: SASL PLAIN authentication failed: authentication failure	2020-01-25 23:47:57
222.186.190.92	attack	Jan 25 05:48:09 web9 sshd\[15175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Jan 25 05:48:10 web9 sshd\[15175\]: Failed password for root from 222.186.190.92 port 45370 ssh2 Jan 25 05:48:28 web9 sshd\[15211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Jan 25 05:48:29 web9 sshd\[15211\]: Failed password for root from 222.186.190.92 port 36032 ssh2 Jan 25 05:48:57 web9 sshd\[15292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root	2020-01-25 23:59:56

最近上报的IP列表

168.232.152.242	5.16.120.46	79.79.44.100	113.140.69.198
109.162.249.67	122.62.16.176	59.57.182.41	2a01:4f8:192:80c4::2
1.175.9.27	157.44.84.109	54.202.144.168	37.98.31.86
5.189.145.108	118.71.167.120	183.82.136.83	237.20.37.152
187.174.143.182	50.175.152.198	152.0.26.177	207.87.244.218