114.80.94.228 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shanghai Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 04:43:19
attackbots	Repeated brute force against a port	2020-09-14 00:00:57
attackspam	$f2bV_matches	2020-09-13 15:51:24
attack	(sshd) Failed SSH login from 114.80.94.228 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 12 18:29:34 optimus sshd[32283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root Sep 12 18:29:35 optimus sshd[32283]: Failed password for root from 114.80.94.228 port 64984 ssh2 Sep 12 18:37:29 optimus sshd[2220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root Sep 12 18:37:31 optimus sshd[2220]: Failed password for root from 114.80.94.228 port 57722 ssh2 Sep 12 18:39:49 optimus sshd[2853]: Invalid user lucas from 114.80.94.228	2020-09-13 07:36:32
attack	(sshd) Failed SSH login from 114.80.94.228 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 14:15:19 server sshd[7234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root Sep 4 14:15:21 server sshd[7234]: Failed password for root from 114.80.94.228 port 23068 ssh2 Sep 4 14:20:33 server sshd[8487]: Invalid user raspberry from 114.80.94.228 port 4351 Sep 4 14:20:35 server sshd[8487]: Failed password for invalid user raspberry from 114.80.94.228 port 4351 ssh2 Sep 4 14:22:25 server sshd[8963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root	2020-09-05 04:18:57
attackbots	Automatic Fail2ban report - Trying login SSH	2020-09-04 19:54:02
attack	2020-08-25T13:52:31.711288billing sshd[6373]: Failed password for invalid user user1 from 114.80.94.228 port 33047 ssh2 2020-08-25T13:58:54.793534billing sshd[20796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root 2020-08-25T13:58:56.899046billing sshd[20796]: Failed password for root from 114.80.94.228 port 4331 ssh2 ...	2020-08-25 18:48:58
attack	Aug 23 15:26:21 ws12vmsma01 sshd[27665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 Aug 23 15:26:21 ws12vmsma01 sshd[27665]: Invalid user ubuntu from 114.80.94.228 Aug 23 15:26:23 ws12vmsma01 sshd[27665]: Failed password for invalid user ubuntu from 114.80.94.228 port 18138 ssh2 ...	2020-08-24 03:20:43
attack	2020-08-23T11:02:59.606531randservbullet-proofcloud-66.localdomain sshd[26583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root 2020-08-23T11:03:02.117426randservbullet-proofcloud-66.localdomain sshd[26583]: Failed password for root from 114.80.94.228 port 50237 ssh2 2020-08-23T11:21:21.482038randservbullet-proofcloud-66.localdomain sshd[26632]: Invalid user steam from 114.80.94.228 port 52544 ...	2020-08-23 19:24:55
attackspam	reported through recidive - multiple failed attempts(SSH)	2020-08-18 07:44:27
attackbots	Aug 8 20:14:23 jane sshd[12548]: Failed password for root from 114.80.94.228 port 19726 ssh2 ...	2020-08-09 03:17:57
attackspam	"fail2ban match"	2020-08-06 06:31:26
attackbotsspam	$f2bV_matches	2020-07-27 20:27:19
attackbots	Jul 6 11:07:32 server sshd[15405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 Jul 6 11:07:33 server sshd[15405]: Failed password for invalid user ladev from 114.80.94.228 port 41678 ssh2 Jul 6 11:10:54 server sshd[15936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 ...	2020-07-06 17:23:38
attackspambots	Invalid user th from 114.80.94.228 port 36323	2020-07-04 06:56:11
attack	Jun 27 17:41:18 vps sshd[1039406]: Failed password for invalid user qihang from 114.80.94.228 port 61134 ssh2 Jun 27 17:44:19 vps sshd[1530]: Invalid user manas from 114.80.94.228 port 18019 Jun 27 17:44:19 vps sshd[1530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 Jun 27 17:44:21 vps sshd[1530]: Failed password for invalid user manas from 114.80.94.228 port 18019 ssh2 Jun 27 17:47:13 vps sshd[16244]: Invalid user test from 114.80.94.228 port 47069 ...	2020-06-27 23:53:39
attackbotsspam	Jun 19 14:08:56 vps sshd[333445]: Failed password for invalid user test from 114.80.94.228 port 26005 ssh2 Jun 19 14:12:25 vps sshd[353094]: Invalid user kodiak from 114.80.94.228 port 18884 Jun 19 14:12:25 vps sshd[353094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 Jun 19 14:12:27 vps sshd[353094]: Failed password for invalid user kodiak from 114.80.94.228 port 18884 ssh2 Jun 19 14:15:50 vps sshd[370965]: Invalid user lkf from 114.80.94.228 port 5630 ...	2020-06-19 23:12:33
attackbots	2020-06-03T13:12:49.721493shield sshd\[12464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root 2020-06-03T13:12:51.899720shield sshd\[12464\]: Failed password for root from 114.80.94.228 port 46353 ssh2 2020-06-03T13:17:20.045404shield sshd\[13121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root 2020-06-03T13:17:21.761725shield sshd\[13121\]: Failed password for root from 114.80.94.228 port 17306 ssh2 2020-06-03T13:21:57.596221shield sshd\[13722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root	2020-06-03 21:28:05
attackspambots	May 21 05:51:52 Ubuntu-1404-trusty-64-minimal sshd\[994\]: Invalid user cjc from 114.80.94.228 May 21 05:51:52 Ubuntu-1404-trusty-64-minimal sshd\[994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 May 21 05:51:54 Ubuntu-1404-trusty-64-minimal sshd\[994\]: Failed password for invalid user cjc from 114.80.94.228 port 10523 ssh2 May 21 06:12:54 Ubuntu-1404-trusty-64-minimal sshd\[15595\]: Invalid user wqz from 114.80.94.228 May 21 06:12:54 Ubuntu-1404-trusty-64-minimal sshd\[15595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228	2020-05-21 12:18:40
attackspambots	May 20 02:12:02 onepixel sshd[393829]: Invalid user anz from 114.80.94.228 port 58962 May 20 02:12:02 onepixel sshd[393829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 May 20 02:12:02 onepixel sshd[393829]: Invalid user anz from 114.80.94.228 port 58962 May 20 02:12:04 onepixel sshd[393829]: Failed password for invalid user anz from 114.80.94.228 port 58962 ssh2 May 20 02:14:52 onepixel sshd[394181]: Invalid user bmi from 114.80.94.228 port 27739	2020-05-20 15:02:06
attackbots	May 6 04:47:03 firewall sshd[11152]: Invalid user jonathan from 114.80.94.228 May 6 04:47:04 firewall sshd[11152]: Failed password for invalid user jonathan from 114.80.94.228 port 16160 ssh2 May 6 04:49:07 firewall sshd[11203]: Invalid user xiewenjing from 114.80.94.228 ...	2020-05-06 16:20:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.80.94.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31766
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.80.94.228.			IN	A

;; AUTHORITY SECTION:
.			549	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050600 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 16:20:01 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 228.94.80.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 228.94.80.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
64.53.14.211	attackbotsspam	Jun 12 15:39:07 cdc sshd[7774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.53.14.211 Jun 12 15:39:09 cdc sshd[7774]: Failed password for invalid user bd from 64.53.14.211 port 50040 ssh2	2020-06-12 23:03:47
14.231.29.124	attackspambots	12-6-2020 14:05:59 Unauthorized connection attempt (Brute-Force). 12-6-2020 14:05:59 Connection from IP address: 14.231.29.124 on port: 465 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.231.29.124	2020-06-12 23:32:41
46.38.150.142	attackbots	Jun 12 17:19:40 relay postfix/smtpd\[29352\]: warning: unknown\[46.38.150.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 17:20:25 relay postfix/smtpd\[6883\]: warning: unknown\[46.38.150.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 17:20:31 relay postfix/smtpd\[9753\]: warning: unknown\[46.38.150.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 17:21:31 relay postfix/smtpd\[16691\]: warning: unknown\[46.38.150.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 17:21:33 relay postfix/smtpd\[3355\]: warning: unknown\[46.38.150.142\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-12 23:29:12
178.65.2.209	attack	12-6-2020 14:06:09 Unauthorized connection attempt (Brute-Force). 12-6-2020 14:06:09 Connection from IP address: 178.65.2.209 on port: 465 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.65.2.209	2020-06-12 23:21:03
51.255.230.67	attack	Jun 12 15:58:11 vps639187 sshd\[7098\]: Invalid user user from 51.255.230.67 port 56274 Jun 12 15:58:11 vps639187 sshd\[7098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.230.67 Jun 12 15:58:14 vps639187 sshd\[7098\]: Failed password for invalid user user from 51.255.230.67 port 56274 ssh2 ...	2020-06-12 23:13:21
152.136.101.65	attackbotsspam	2020-06-12T12:03:26.305468abusebot-8.cloudsearch.cf sshd[7844]: Invalid user ftpuser1 from 152.136.101.65 port 47176 2020-06-12T12:03:26.311969abusebot-8.cloudsearch.cf sshd[7844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.101.65 2020-06-12T12:03:26.305468abusebot-8.cloudsearch.cf sshd[7844]: Invalid user ftpuser1 from 152.136.101.65 port 47176 2020-06-12T12:03:28.921484abusebot-8.cloudsearch.cf sshd[7844]: Failed password for invalid user ftpuser1 from 152.136.101.65 port 47176 ssh2 2020-06-12T12:05:46.998966abusebot-8.cloudsearch.cf sshd[7965]: Invalid user RPM from 152.136.101.65 port 52090 2020-06-12T12:05:47.007014abusebot-8.cloudsearch.cf sshd[7965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.101.65 2020-06-12T12:05:46.998966abusebot-8.cloudsearch.cf sshd[7965]: Invalid user RPM from 152.136.101.65 port 52090 2020-06-12T12:05:49.637552abusebot-8.cloudsearch.cf sshd[7965]: Fa ...	2020-06-12 23:40:33
202.163.126.134	attack	Jun 12 13:59:56 buvik sshd[13602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.163.126.134 Jun 12 13:59:58 buvik sshd[13602]: Failed password for invalid user vadim from 202.163.126.134 port 49545 ssh2 Jun 12 14:06:05 buvik sshd[15032]: Invalid user sysop from 202.163.126.134 ...	2020-06-12 23:20:35
125.163.162.145	attackbotsspam	Excessive Port-Scanning	2020-06-12 23:44:06
49.49.195.145	attackbots	LAMP,DEF GET /shell?/bin/busybox+ABCD	2020-06-12 23:36:12
51.75.202.218	attack	2020-06-12T15:13:33.852111shield sshd\[6425\]: Invalid user copy from 51.75.202.218 port 41882 2020-06-12T15:13:33.855953shield sshd\[6425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-51-75-202.eu 2020-06-12T15:13:35.791877shield sshd\[6425\]: Failed password for invalid user copy from 51.75.202.218 port 41882 ssh2 2020-06-12T15:16:49.716138shield sshd\[7996\]: Invalid user debian from 51.75.202.218 port 40848 2020-06-12T15:16:49.720131shield sshd\[7996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-51-75-202.eu	2020-06-12 23:31:26
222.186.15.115	attackbots	Jun 12 16:43:06 vpn01 sshd[25015]: Failed password for root from 222.186.15.115 port 54449 ssh2 ...	2020-06-12 23:09:05
112.85.42.172	attackspambots	Jun 12 17:10:41 home sshd[6409]: Failed password for root from 112.85.42.172 port 60920 ssh2 Jun 12 17:10:45 home sshd[6409]: Failed password for root from 112.85.42.172 port 60920 ssh2 Jun 12 17:10:54 home sshd[6409]: error: maximum authentication attempts exceeded for root from 112.85.42.172 port 60920 ssh2 [preauth] ...	2020-06-12 23:14:57
118.70.233.206	attack	Bruteforce detected by fail2ban	2020-06-12 23:31:01
185.100.87.207	attack	(sshd) Failed SSH login from 185.100.87.207 (RO/Romania/freki.enn.lu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 12 15:30:35 ubnt-55d23 sshd[21581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.100.87.207 user=root Jun 12 15:30:37 ubnt-55d23 sshd[21581]: Failed password for root from 185.100.87.207 port 16533 ssh2	2020-06-12 23:41:48
106.54.194.77	attackspambots	Jun 10 12:52:34 myhostname sshd[10238]: Invalid user userbot from 106.54.194.77 Jun 10 12:52:34 myhostname sshd[10238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.194.77 Jun 10 12:52:36 myhostname sshd[10238]: Failed password for invalid user userbot from 106.54.194.77 port 46476 ssh2 Jun 10 12:52:37 myhostname sshd[10238]: Received disconnect from 106.54.194.77 port 46476:11: Bye Bye [preauth] Jun 10 12:52:37 myhostname sshd[10238]: Disconnected from 106.54.194.77 port 46476 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.54.194.77	2020-06-12 23:25:13

最近上报的IP列表

162.243.137.117	159.89.171.81	122.10.100.59	193.112.252.36
154.8.143.182	211.116.234.149	123.20.11.23	112.160.69.203
162.243.137.31	196.53.114.132	218.2.204.125	186.226.6.40
203.252.90.83	51.15.214.21	162.243.141.120	58.157.69.204
153.0.150.42	207.207.46.114	118.186.36.66	49.145.231.160