114.237.134.95

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.237.134.204	attack	SpamScore above: 10.0	2020-06-24 06:47:32
114.237.134.228	attack	SpamScore above: 10.0	2020-06-16 23:23:53
114.237.134.193	attack	SpamScore above: 10.0	2020-06-03 17:04:00
114.237.134.66	attack	IP: 114.237.134.66 Ports affected Simple Mail Transfer (25) Found in DNSBL('s) ASN Details AS4134 Chinanet China (CN) CIDR 114.232.0.0/13 Log Date: 9/05/2020 7:57:01 PM UTC	2020-05-10 05:47:37
114.237.134.84	attack	SpamScore above: 10.0	2020-04-06 16:42:09
114.237.134.133	attackbots	Feb 24 05:53:02 grey postfix/smtpd\[5539\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.133\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.133\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=114.237.134.133\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-24 16:10:39
114.237.134.194	attackbotsspam	Jan 23 17:06:17 grey postfix/smtpd\[7664\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.194\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.194\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-24 03:26:02
114.237.134.79	attackspambots	Dec 28 07:23:19 grey postfix/smtpd\[4905\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.79\]: 554 5.7.1 Service unavailable\; Client host \[114.237.134.79\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.134.79\]\; from=\ to=\ proto=SMTP helo=\ ...	2019-12-28 19:24:09
114.237.134.247	attackspam	Dec 27 07:16:13 mxgate1 postfix/postscreen[21363]: CONNECT from [114.237.134.247]:10130 to [176.31.12.44]:25 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.4 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21364]: addr 114.237.134.247 listed by domain zen.spamhaus.org as 127.0.0.11 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21377]: addr 114.237.134.247 listed by domain cbl.abuseat.org as 127.0.0.2 Dec 27 07:16:13 mxgate1 postfix/dnsblog[21366]: addr 114.237.134.247 listed by domain b.barracudacentral.org as 127.0.0.2 Dec 27 07:16:19 mxgate1 postfix/postscreen[21363]: DNSBL rank 4 for [114.237.134.247]:10130 Dec x@x Dec 27 07:16:20 mxgate1 postfix/postscreen[21363]: DISCONNECT [114.237.134.247]:10130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.237.134.247	2019-12-27 16:06:42
114.237.134.103	attack	SpamReport	2019-12-12 14:56:45
114.237.134.221	attack	Oct 16 22:23:14 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:23:57 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\ Oct 16 22:24:31 elektron postfix/smtpd\[28644\]: NOQUEUE: reject: RCPT from unknown\[114.237.134.221\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.134.221\]\; from=\ to=\ proto=ESMTP helo=\	2019-10-17 07:16:24
114.237.134.176	attackspambots	Brute force SMTP login attempts.	2019-09-10 02:00:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.237.134.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56630
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.237.134.95.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 11 06:22:52 CST 2019
;; MSG SIZE  rcvd: 118

Host info

95.134.237.114.in-addr.arpa domain name pointer 95.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
95.134.237.114.in-addr.arpa	name = 95.134.237.114.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.212.52.63	attackbotsspam	Aug 13 20:44:23 itv-usvr-02 sshd[19370]: Invalid user pi from 89.212.52.63 port 43756 Aug 13 20:44:23 itv-usvr-02 sshd[19370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.212.52.63 Aug 13 20:44:23 itv-usvr-02 sshd[19370]: Invalid user pi from 89.212.52.63 port 43756 Aug 13 20:44:24 itv-usvr-02 sshd[19370]: Failed password for invalid user pi from 89.212.52.63 port 43756 ssh2 Aug 13 20:51:24 itv-usvr-02 sshd[19400]: Invalid user anca from 89.212.52.63 port 41339	2019-08-14 01:38:50
159.65.158.229	attack	Aug 13 15:29:49 server sshd\[11328\]: Invalid user admin from 159.65.158.229 port 47224 Aug 13 15:29:49 server sshd\[11328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.229 Aug 13 15:29:52 server sshd\[11328\]: Failed password for invalid user admin from 159.65.158.229 port 47224 ssh2 Aug 13 15:35:32 server sshd\[12796\]: Invalid user villa from 159.65.158.229 port 39894 Aug 13 15:35:32 server sshd\[12796\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.229	2019-08-14 01:37:45
109.72.192.206	attackbotsspam	Automatic report - Port Scan Attack	2019-08-14 01:24:32
192.99.92.111	attackbots	$f2bV_matches	2019-08-14 01:48:04
178.124.207.217	attackspam	SSH Bruteforce attempt	2019-08-14 00:54:51
14.165.2.90	attackspam	Aug 13 09:26:09 [munged] sshd[8616]: Invalid user admin1 from 14.165.2.90 port 50286 Aug 13 09:26:10 [munged] sshd[8616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.165.2.90	2019-08-14 01:32:28
77.232.128.87	attackbots	Aug 13 14:52:04 XXX sshd[54137]: Invalid user quest from 77.232.128.87 port 41078	2019-08-14 00:56:45
112.85.42.194	attackspam	Aug 13 19:23:14 dcd-gentoo sshd[7425]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 13 19:23:17 dcd-gentoo sshd[7425]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 13 19:23:14 dcd-gentoo sshd[7425]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 13 19:23:17 dcd-gentoo sshd[7425]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 13 19:23:14 dcd-gentoo sshd[7425]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 13 19:23:17 dcd-gentoo sshd[7425]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 13 19:23:17 dcd-gentoo sshd[7425]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.194 port 48419 ssh2 ...	2019-08-14 01:36:46
129.144.156.96	attack	Aug 13 14:55:56 XXX sshd[54622]: Invalid user apples from 129.144.156.96 port 52393	2019-08-14 01:40:52
34.87.125.104	attackspam	Aug 13 08:23:57 xtremcommunity sshd\[30598\]: Invalid user postgres from 34.87.125.104 port 38892 Aug 13 08:23:57 xtremcommunity sshd\[30598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.87.125.104 Aug 13 08:23:59 xtremcommunity sshd\[30598\]: Failed password for invalid user postgres from 34.87.125.104 port 38892 ssh2 Aug 13 08:29:42 xtremcommunity sshd\[30890\]: Invalid user server from 34.87.125.104 port 33058 Aug 13 08:29:42 xtremcommunity sshd\[30890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.87.125.104 ...	2019-08-14 02:05:57
141.98.80.74	attackbots	Aug 8 12:00:11 elektron postfix/smtpd\[9345\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 8 12:00:19 elektron postfix/smtpd\[9345\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 8 12:16:26 elektron postfix/smtpd\[11316\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 9 00:57:16 elektron postfix/smtpd\[23863\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 9 00:57:23 elektron postfix/smtpd\[23863\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 9 01:26:18 elektron postfix/smtpd\[25770\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 9 01:26:25 elektron postfix/smtpd\[25770\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 9 02:10:53 elektron postfix/smtpd\[28654\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: Aug 9 02:11:01 elektron postfix/smtpd\[28654\]: warning: unknown\[141.98.80.74\]: SASL PL	2019-08-14 01:59:55
182.61.58.166	attackspam	Aug 13 12:37:24 hosting sshd[9229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.58.166 user=root Aug 13 12:37:27 hosting sshd[9229]: Failed password for root from 182.61.58.166 port 52064 ssh2 ...	2019-08-14 01:18:05
175.100.138.200	attackspambots	$f2bV_matches	2019-08-14 02:07:43
27.145.226.95	attackspambots	Automatic report - Port Scan Attack	2019-08-14 01:46:50
217.78.1.200	attack	MYH,DEF GET /en_fr//wp-login.php	2019-08-14 01:39:47

Recently Reported IPs

116.233.104.228	223.223.194.233	160.153.155.27	115.215.182.179
222.186.15.160	47.208.92.15	213.32.23.169	95.238.63.105
68.52.92.160	49.69.32.33	213.160.171.223	61.148.53.91
80.12.41.187	223.223.186.114	38.101.232.10	223.206.42.113
223.204.64.210	180.107.91.225	2408:8256:f173:8ce5:98bd:6485:cfe0:b01c	39.111.223.199