14.134.189.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.134.189.33	attackbots	Lines containing failures of 14.134.189.33 Jun 25 05:51:50 nexus sshd[1099]: Invalid user discover from 14.134.189.33 port 42428 Jun 25 05:51:50 nexus sshd[1099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.134.189.33 Jun 25 05:51:52 nexus sshd[1099]: Failed password for invalid user discover from 14.134.189.33 port 42428 ssh2 Jun 25 05:51:53 nexus sshd[1099]: Received disconnect from 14.134.189.33 port 42428:11: Bye Bye [preauth] Jun 25 05:51:53 nexus sshd[1099]: Disconnected from 14.134.189.33 port 42428 [preauth] Jun 25 05:55:00 nexus sshd[1136]: Invalid user qa from 14.134.189.33 port 52558 Jun 25 05:55:00 nexus sshd[1136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.134.189.33 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.134.189.33	2020-06-25 14:17:26
14.134.189.204	attackbotsspam	SSH login attempts.	2020-05-28 19:51:02

类型

评论内容

时间

14.134.189.33

attackbots

Lines containing failures of 14.134.189.33
Jun 25 05:51:50 nexus sshd[1099]: Invalid user discover from 14.134.189.33 port 42428
Jun 25 05:51:50 nexus sshd[1099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.134.189.33
Jun 25 05:51:52 nexus sshd[1099]: Failed password for invalid user discover from 14.134.189.33 port 42428 ssh2
Jun 25 05:51:53 nexus sshd[1099]: Received disconnect from 14.134.189.33 port 42428:11: Bye Bye [preauth]
Jun 25 05:51:53 nexus sshd[1099]: Disconnected from 14.134.189.33 port 42428 [preauth]
Jun 25 05:55:00 nexus sshd[1136]: Invalid user qa from 14.134.189.33 port 52558
Jun 25 05:55:00 nexus sshd[1136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.134.189.33


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.134.189.33

2020-06-25 14:17:26

14.134.189.204

attackbotsspam

SSH login attempts.

2020-05-28 19:51:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.134.189.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53952
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.134.189.1.			IN	A

;; AUTHORITY SECTION:
.			241	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:59:56 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 1.189.134.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.189.134.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.19.23.30	attack	2019-09-24T07:32:17.912106abusebot.cloudsearch.cf sshd\[31436\]: Invalid user service from 61.19.23.30 port 33872	2019-09-24 16:07:57
51.254.131.137	attackspambots	Sep 24 10:07:26 rpi sshd[1903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.131.137 Sep 24 10:07:29 rpi sshd[1903]: Failed password for invalid user kroener from 51.254.131.137 port 52796 ssh2	2019-09-24 16:11:05
220.130.222.156	attackspam	Sep 24 10:36:36 localhost sshd\[15918\]: Invalid user dsetiadi from 220.130.222.156 port 45694 Sep 24 10:36:36 localhost sshd\[15918\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.222.156 Sep 24 10:36:38 localhost sshd\[15918\]: Failed password for invalid user dsetiadi from 220.130.222.156 port 45694 ssh2	2019-09-24 16:48:35
103.41.23.76	attackbots	Sep 24 03:43:38 ip-172-31-62-245 sshd\[2043\]: Invalid user service from 103.41.23.76\ Sep 24 03:43:40 ip-172-31-62-245 sshd\[2043\]: Failed password for invalid user service from 103.41.23.76 port 44354 ssh2\ Sep 24 03:48:25 ip-172-31-62-245 sshd\[2072\]: Invalid user jn from 103.41.23.76\ Sep 24 03:48:28 ip-172-31-62-245 sshd\[2072\]: Failed password for invalid user jn from 103.41.23.76 port 56788 ssh2\ Sep 24 03:53:07 ip-172-31-62-245 sshd\[2118\]: Invalid user eee from 103.41.23.76\	2019-09-24 16:19:08
23.129.64.205	attackbotsspam	2019-09-24T08:12:25.110103abusebot.cloudsearch.cf sshd\[32105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.205 user=root	2019-09-24 16:18:35
91.134.135.220	attackbots	Sep 24 06:49:32 site3 sshd\[24105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.135.220 user=nobody Sep 24 06:49:33 site3 sshd\[24105\]: Failed password for nobody from 91.134.135.220 port 59000 ssh2 Sep 24 06:53:01 site3 sshd\[24175\]: Invalid user admin from 91.134.135.220 Sep 24 06:53:01 site3 sshd\[24175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.135.220 Sep 24 06:53:04 site3 sshd\[24175\]: Failed password for invalid user admin from 91.134.135.220 port 43162 ssh2 ...	2019-09-24 16:19:23
81.4.106.152	attackspambots	Sep 24 04:35:43 game-panel sshd[21851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.106.152 Sep 24 04:35:45 game-panel sshd[21851]: Failed password for invalid user chandra from 81.4.106.152 port 37246 ssh2 Sep 24 04:39:38 game-panel sshd[22047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.106.152	2019-09-24 16:10:18
183.134.199.68	attackspambots	2019-09-24T08:09:13.933617abusebot-6.cloudsearch.cf sshd\[4982\]: Invalid user 1234567890 from 183.134.199.68 port 34486	2019-09-24 16:31:05
51.38.224.46	attackspam	Sep 24 10:02:08 MK-Soft-Root2 sshd[23323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.224.46 Sep 24 10:02:10 MK-Soft-Root2 sshd[23323]: Failed password for invalid user abdallah from 51.38.224.46 port 59578 ssh2 ...	2019-09-24 16:11:34
139.199.21.245	attackspam	Sep 24 02:27:57 plusreed sshd[13118]: Invalid user hp from 139.199.21.245 ...	2019-09-24 16:25:05
150.93.20.36	attackspambots	Sep 23 18:51:01 web9 sshd\[23752\]: Invalid user atn from 150.93.20.36 Sep 23 18:51:01 web9 sshd\[23752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.93.20.36 Sep 23 18:51:03 web9 sshd\[23752\]: Failed password for invalid user atn from 150.93.20.36 port 45704 ssh2 Sep 23 18:55:38 web9 sshd\[24771\]: Invalid user yona from 150.93.20.36 Sep 23 18:55:38 web9 sshd\[24771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.93.20.36	2019-09-24 16:26:32
58.250.161.97	attack	Sep 24 05:52:35 lnxded64 sshd[22314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.250.161.97	2019-09-24 16:39:00
49.143.95.121	attackbotsspam	[TueSep2405:52:27.1114172019][:error][pid26675:tid47560302733056][client49.143.95.121:44905][client49.143.95.121]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"boltonholding.com"][uri"/boltonholding.sql"][unique_id"XYmS@yUY647fdT5XzKC6LAAAABU"][TueSep2405:52:29.4647092019][:error][pid26753:tid47560302733056][client49.143.95.121:45164][client49.143.95.121]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][sever	2019-09-24 16:41:30
202.107.238.94	attack	Sep 24 10:15:40 v22019058497090703 sshd[24473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.107.238.94 Sep 24 10:15:41 v22019058497090703 sshd[24473]: Failed password for invalid user testuser from 202.107.238.94 port 39546 ssh2 Sep 24 10:20:53 v22019058497090703 sshd[24892]: Failed password for test from 202.107.238.94 port 59546 ssh2 ...	2019-09-24 16:43:51
34.73.55.203	attackbots	Sep 23 20:27:13 hiderm sshd\[4424\]: Invalid user yong from 34.73.55.203 Sep 23 20:27:13 hiderm sshd\[4424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.55.73.34.bc.googleusercontent.com Sep 23 20:27:15 hiderm sshd\[4424\]: Failed password for invalid user yong from 34.73.55.203 port 40470 ssh2 Sep 23 20:31:15 hiderm sshd\[4763\]: Invalid user titanium from 34.73.55.203 Sep 23 20:31:15 hiderm sshd\[4763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.55.73.34.bc.googleusercontent.com	2019-09-24 16:22:08

最近上报的IP列表

14.134.188.9	14.134.188.82	14.134.188.92	14.134.189.106
14.134.189.105	14.134.189.110	14.134.189.122	14.134.189.117
14.134.189.114	14.134.189.134	14.134.189.119	14.134.189.126
14.134.189.142	14.134.189.140	14.134.189.14	14.134.189.125
14.134.189.144	14.134.189.159	14.134.189.139	14.134.189.150