14.134.188.166

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.134.188.217	attack	Jun 16 13:51:08 localhost sshd[491544]: Invalid user mc from 14.134.188.217 port 36639 ...	2020-06-16 15:57:15
14.134.188.56	attackspambots	May 20 03:48:25 Tower sshd[32087]: Connection from 14.134.188.56 port 51366 on 192.168.10.220 port 22 rdomain "" May 20 03:48:39 Tower sshd[32087]: Invalid user nhh from 14.134.188.56 port 51366 May 20 03:48:39 Tower sshd[32087]: error: Could not get shadow information for NOUSER May 20 03:48:39 Tower sshd[32087]: Failed password for invalid user nhh from 14.134.188.56 port 51366 ssh2 May 20 03:48:41 Tower sshd[32087]: Received disconnect from 14.134.188.56 port 51366:11: Bye Bye [preauth] May 20 03:48:41 Tower sshd[32087]: Disconnected from invalid user nhh 14.134.188.56 port 51366 [preauth]	2020-05-20 17:17:34

类型

评论内容

时间

14.134.188.217

attack

Jun 16 13:51:08 localhost sshd[491544]: Invalid user mc from 14.134.188.217 port 36639
...

2020-06-16 15:57:15

14.134.188.56

attackspambots

May 20 03:48:25 Tower sshd[32087]: Connection from 14.134.188.56 port 51366 on 192.168.10.220 port 22 rdomain ""
May 20 03:48:39 Tower sshd[32087]: Invalid user nhh from 14.134.188.56 port 51366
May 20 03:48:39 Tower sshd[32087]: error: Could not get shadow information for NOUSER
May 20 03:48:39 Tower sshd[32087]: Failed password for invalid user nhh from 14.134.188.56 port 51366 ssh2
May 20 03:48:41 Tower sshd[32087]: Received disconnect from 14.134.188.56 port 51366:11: Bye Bye [preauth]
May 20 03:48:41 Tower sshd[32087]: Disconnected from invalid user nhh 14.134.188.56 port 51366 [preauth]

2020-05-20 17:17:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.134.188.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12338
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.134.188.166.			IN	A

;; AUTHORITY SECTION:
.			269	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:59:32 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 166.188.134.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.188.134.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
154.118.173.102	attackbots	prod6 ...	2020-06-19 04:10:31
45.162.21.212	attack	Jun 18 10:10:25 mail.srvfarm.net postfix/smtps/smtpd[1384169]: warning: unknown[45.162.21.212]: SASL PLAIN authentication failed: Jun 18 10:10:26 mail.srvfarm.net postfix/smtps/smtpd[1384169]: lost connection after AUTH from unknown[45.162.21.212] Jun 18 10:12:40 mail.srvfarm.net postfix/smtps/smtpd[1384169]: warning: unknown[45.162.21.212]: SASL PLAIN authentication failed: Jun 18 10:12:41 mail.srvfarm.net postfix/smtps/smtpd[1384169]: lost connection after AUTH from unknown[45.162.21.212] Jun 18 10:15:57 mail.srvfarm.net postfix/smtps/smtpd[1384169]: warning: unknown[45.162.21.212]: SASL PLAIN authentication failed:	2020-06-19 04:39:49
159.203.102.122	attackbotsspam	Jun 18 19:06:55 vps639187 sshd\[16398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.102.122 user=root Jun 18 19:06:56 vps639187 sshd\[16398\]: Failed password for root from 159.203.102.122 port 44630 ssh2 Jun 18 19:10:29 vps639187 sshd\[16455\]: Invalid user gw from 159.203.102.122 port 40238 Jun 18 19:10:29 vps639187 sshd\[16455\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.102.122 ...	2020-06-19 04:18:47
195.117.135.214	attack	Jun 18 10:21:25 mail.srvfarm.net postfix/smtps/smtpd[1383618]: warning: unknown[195.117.135.214]: SASL PLAIN authentication failed: Jun 18 10:21:25 mail.srvfarm.net postfix/smtps/smtpd[1383618]: lost connection after AUTH from unknown[195.117.135.214] Jun 18 10:25:17 mail.srvfarm.net postfix/smtpd[1386168]: warning: unknown[195.117.135.214]: SASL PLAIN authentication failed: Jun 18 10:25:17 mail.srvfarm.net postfix/smtpd[1386168]: lost connection after AUTH from unknown[195.117.135.214] Jun 18 10:27:24 mail.srvfarm.net postfix/submission/smtpd[1382606]: lost connection after EHLO from unknown[195.117.135.214]	2020-06-19 04:28:53
217.112.142.226	attackbots	Jun 18 10:18:31 web01.agentur-b-2.de postfix/smtpd[1112049]: NOQUEUE: reject: RCPT from unknown[217.112.142.226]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 18 10:18:59 web01.agentur-b-2.de postfix/smtpd[1112045]: NOQUEUE: reject: RCPT from unknown[217.112.142.226]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 18 10:23:08 web01.agentur-b-2.de postfix/smtpd[1104395]: NOQUEUE: reject: RCPT from dog.yxbown.com[217.112.142.226]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 18 10:23:18 web01.agentur-b-2.de postfix/smtpd[1104395]: NOQUEUE: reject: RCPT from unknown[217.112.142.226]: 450 4.7.1 : Helo comma	2020-06-19 04:28:32
209.97.134.58	attack	SSH Brute Force	2020-06-19 04:24:35
190.145.12.233	attackbots	$f2bV_matches	2020-06-19 04:46:26
129.213.165.207	attackbots	2020-05-07T12:18:49.971Z CLOSE host=129.213.165.207 port=50185 fd=4 time=20.017 bytes=7 ...	2020-06-19 04:25:09
194.181.228.90	attackbots	Mar 29 11:00:32 mercury wordpress(www.learnargentinianspanish.com)[15934]: XML-RPC authentication failure for josh from 194.181.228.90 ...	2020-06-19 04:13:17
151.248.63.230	attackspambots	Jun 18 10:19:51 mail.srvfarm.net postfix/smtps/smtpd[1383076]: warning: unknown[151.248.63.230]: SASL PLAIN authentication failed: Jun 18 10:19:51 mail.srvfarm.net postfix/smtps/smtpd[1383076]: lost connection after AUTH from unknown[151.248.63.230] Jun 18 10:23:17 mail.srvfarm.net postfix/smtps/smtpd[1383076]: warning: unknown[151.248.63.230]: SASL PLAIN authentication failed: Jun 18 10:23:17 mail.srvfarm.net postfix/smtps/smtpd[1383076]: lost connection after AUTH from unknown[151.248.63.230] Jun 18 10:26:45 mail.srvfarm.net postfix/smtps/smtpd[1383001]: warning: unknown[151.248.63.230]: SASL PLAIN authentication failed:	2020-06-19 04:31:39
103.194.89.50	attack	Unauthorized connection attempt from IP address 103.194.89.50 on Port 445(SMB)	2020-06-19 04:16:23
189.91.5.22	attackspam	Jun 18 10:00:14 mail.srvfarm.net postfix/smtps/smtpd[1382768]: warning: unknown[189.91.5.22]: SASL PLAIN authentication failed: Jun 18 10:00:15 mail.srvfarm.net postfix/smtps/smtpd[1382768]: lost connection after AUTH from unknown[189.91.5.22] Jun 18 10:05:35 mail.srvfarm.net postfix/smtpd[1383333]: warning: unknown[189.91.5.22]: SASL PLAIN authentication failed: Jun 18 10:05:36 mail.srvfarm.net postfix/smtpd[1383333]: lost connection after AUTH from unknown[189.91.5.22] Jun 18 10:08:45 mail.srvfarm.net postfix/smtps/smtpd[1383642]: warning: unknown[189.91.5.22]: SASL PLAIN authentication failed:	2020-06-19 04:34:58
189.124.0.233	attackbotsspam	Jun 18 10:24:48 mail.srvfarm.net postfix/smtps/smtpd[1383618]: warning: 189-124-0-233.tcvnet.com.br[189.124.0.233]: SASL PLAIN authentication failed: Jun 18 10:24:49 mail.srvfarm.net postfix/smtps/smtpd[1383618]: lost connection after AUTH from 189-124-0-233.tcvnet.com.br[189.124.0.233] Jun 18 10:30:16 mail.srvfarm.net postfix/smtps/smtpd[1383077]: warning: 189-124-0-233.tcvnet.com.br[189.124.0.233]: SASL PLAIN authentication failed: Jun 18 10:30:16 mail.srvfarm.net postfix/smtps/smtpd[1383077]: lost connection after AUTH from 189-124-0-233.tcvnet.com.br[189.124.0.233] Jun 18 10:34:48 mail.srvfarm.net postfix/smtps/smtpd[1392585]: warning: 189-124-0-233.tcvnet.com.br[189.124.0.233]: SASL PLAIN authentication failed:	2020-06-19 04:29:57
89.248.167.141	attack	Jun 18 22:20:18 debian-2gb-nbg1-2 kernel: \[14770310.444634\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.167.141 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=31123 PROTO=TCP SPT=8080 DPT=4282 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-19 04:38:12
213.217.1.225	attack	firewall-block, port(s): 8982/tcp, 16015/tcp, 18740/tcp, 23705/tcp, 26095/tcp, 26649/tcp, 28638/tcp, 29341/tcp, 31056/tcp, 31065/tcp, 31235/tcp, 31278/tcp, 40184/tcp, 41885/tcp, 43487/tcp, 56477/tcp, 59115/tcp, 62756/tcp, 64054/tcp	2020-06-19 04:24:04

最近上报的IP列表

14.134.188.174	14.134.188.172	14.134.188.171	14.134.188.13
14.134.188.188	14.134.187.93	14.134.188.178	14.134.188.181
14.134.188.184	180.97.150.186	14.134.186.61	14.134.186.41
14.134.186.78	14.134.186.74	14.134.186.84	14.134.186.67
14.134.186.54	14.134.186.45	14.134.186.56	14.134.186.46