14.136.245.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Broadband Network Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 3 18:36:42 minden010 sshd[9598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 Sep 3 18:36:45 minden010 sshd[9598]: Failed password for invalid user wkz from 14.136.245.194 port 61697 ssh2 Sep 3 18:40:33 minden010 sshd[10630]: Failed password for root from 14.136.245.194 port 25793 ssh2 ...	2020-09-04 01:21:15
attackbots	2020-09-02T18:44:07.773161xentho-1 sshd[437428]: Invalid user 123456 from 14.136.245.194 port 24929 2020-09-02T18:44:09.648581xentho-1 sshd[437428]: Failed password for invalid user 123456 from 14.136.245.194 port 24929 ssh2 2020-09-02T18:45:56.238290xentho-1 sshd[437462]: Invalid user solr from 14.136.245.194 port 56897 2020-09-02T18:45:56.247026xentho-1 sshd[437462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 2020-09-02T18:45:56.238290xentho-1 sshd[437462]: Invalid user solr from 14.136.245.194 port 56897 2020-09-02T18:45:58.412714xentho-1 sshd[437462]: Failed password for invalid user solr from 14.136.245.194 port 56897 ssh2 2020-09-02T18:50:23.240115xentho-1 sshd[437556]: Invalid user counterstrike from 14.136.245.194 port 36801 2020-09-02T18:50:23.247040xentho-1 sshd[437556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 2020-09-02T18:50:23.240115xentho-1 sshd[43755 ...	2020-09-03 16:43:45
attackbots	Unauthorized SSH login attempts	2020-08-17 02:43:17
attack	Aug 14 23:45:54 ajax sshd[25565]: Failed password for root from 14.136.245.194 port 52374 ssh2	2020-08-15 08:48:26
attack	Aug 14 19:21:32 hell sshd[12846]: Failed password for root from 14.136.245.194 port 40244 ssh2 ...	2020-08-15 03:07:50
attack	Brute-force attempt banned	2020-08-01 12:40:54
attackspam	Jul 31 08:04:10 mail sshd\[7642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 user=root ...	2020-08-01 01:33:11
attack	SSH Invalid Login	2020-07-30 05:52:38
attack	$f2bV_matches	2020-07-16 06:16:41
attackspambots	2020-07-11T06:52:19.900126abusebot-3.cloudsearch.cf sshd[2417]: Invalid user chenkecheng from 14.136.245.194 port 23489 2020-07-11T06:52:19.906604abusebot-3.cloudsearch.cf sshd[2417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 2020-07-11T06:52:19.900126abusebot-3.cloudsearch.cf sshd[2417]: Invalid user chenkecheng from 14.136.245.194 port 23489 2020-07-11T06:52:22.101159abusebot-3.cloudsearch.cf sshd[2417]: Failed password for invalid user chenkecheng from 14.136.245.194 port 23489 ssh2 2020-07-11T06:53:56.613899abusebot-3.cloudsearch.cf sshd[2470]: Invalid user mary from 14.136.245.194 port 16833 2020-07-11T06:53:56.620181abusebot-3.cloudsearch.cf sshd[2470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 2020-07-11T06:53:56.613899abusebot-3.cloudsearch.cf sshd[2470]: Invalid user mary from 14.136.245.194 port 16833 2020-07-11T06:53:58.800053abusebot-3.cloudsearch.cf ssh ...	2020-07-11 19:18:01
attackbots	Jul 11 02:37:56 rancher-0 sshd[242140]: Invalid user vandusen from 14.136.245.194 port 38337 ...	2020-07-11 09:22:20
attackspam	Jun 15 06:55:33 hosting sshd[2518]: Invalid user pam from 14.136.245.194 port 50145 ...	2020-06-15 12:42:24
attackbotsspam	May 22 16:33:40 localhost sshd[89899]: Invalid user zpa from 14.136.245.194 port 55361 May 22 16:33:40 localhost sshd[89899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 May 22 16:33:40 localhost sshd[89899]: Invalid user zpa from 14.136.245.194 port 55361 May 22 16:33:41 localhost sshd[89899]: Failed password for invalid user zpa from 14.136.245.194 port 55361 ssh2 May 22 16:36:25 localhost sshd[90130]: Invalid user olo from 14.136.245.194 port 28065 ...	2020-05-23 00:48:39
attack	2020-05-05T11:57:57.912669linuxbox-skyline sshd[196461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 user=root 2020-05-05T11:57:59.813682linuxbox-skyline sshd[196461]: Failed password for root from 14.136.245.194 port 28930 ssh2 ...	2020-05-06 02:04:28
attackspam	k+ssh-bruteforce	2020-04-24 14:50:23
attackbots	(sshd) Failed SSH login from 14.136.245.194 (HK/Hong Kong/astri.org): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 23 12:19:21 ubnt-55d23 sshd[24737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 user=root Apr 23 12:19:23 ubnt-55d23 sshd[24737]: Failed password for root from 14.136.245.194 port 38113 ssh2	2020-04-23 21:43:20
attack	Apr 11 02:13:42 php1 sshd\[18555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 user=root Apr 11 02:13:44 php1 sshd\[18555\]: Failed password for root from 14.136.245.194 port 8993 ssh2 Apr 11 02:17:21 php1 sshd\[18901\]: Invalid user user02 from 14.136.245.194 Apr 11 02:17:21 php1 sshd\[18901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 Apr 11 02:17:24 php1 sshd\[18901\]: Failed password for invalid user user02 from 14.136.245.194 port 6657 ssh2	2020-04-11 23:57:42
attackbotsspam	sshd jail - ssh hack attempt	2020-03-23 06:03:26
attackspam	Feb 20 11:34:43 s1 sshd\[32396\]: Invalid user gitlab-runner from 14.136.245.194 port 45185 Feb 20 11:34:43 s1 sshd\[32396\]: Failed password for invalid user gitlab-runner from 14.136.245.194 port 45185 ssh2 Feb 20 11:36:44 s1 sshd\[2818\]: Invalid user HTTP from 14.136.245.194 port 5793 Feb 20 11:36:44 s1 sshd\[2818\]: Failed password for invalid user HTTP from 14.136.245.194 port 5793 ssh2 Feb 20 11:38:43 s1 sshd\[4792\]: Invalid user rabbitmq from 14.136.245.194 port 58561 Feb 20 11:38:43 s1 sshd\[4792\]: Failed password for invalid user rabbitmq from 14.136.245.194 port 58561 ssh2 ...	2020-02-20 20:44:48
attackspam	Feb 16 18:56:24 web1 sshd\[25122\]: Invalid user lars from 14.136.245.194 Feb 16 18:56:24 web1 sshd\[25122\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 Feb 16 18:56:27 web1 sshd\[25122\]: Failed password for invalid user lars from 14.136.245.194 port 57185 ssh2 Feb 16 18:59:51 web1 sshd\[25441\]: Invalid user wildfly from 14.136.245.194 Feb 16 18:59:51 web1 sshd\[25441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194	2020-02-17 13:04:37
attackspambots	Feb 16 05:57:05 serwer sshd\[6958\]: Invalid user mythtv from 14.136.245.194 port 27425 Feb 16 05:57:05 serwer sshd\[6958\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 Feb 16 05:57:07 serwer sshd\[6958\]: Failed password for invalid user mythtv from 14.136.245.194 port 27425 ssh2 ...	2020-02-16 15:08:59
attackbots	Feb 4 12:02:05 auw2 sshd\[14961\]: Invalid user am from 14.136.245.194 Feb 4 12:02:05 auw2 sshd\[14961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 Feb 4 12:02:07 auw2 sshd\[14961\]: Failed password for invalid user am from 14.136.245.194 port 28193 ssh2 Feb 4 12:08:58 auw2 sshd\[15681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 user=root Feb 4 12:09:00 auw2 sshd\[15681\]: Failed password for root from 14.136.245.194 port 13025 ssh2	2020-02-05 06:13:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.136.245.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.136.245.194.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 06:13:22 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

194.245.136.14.in-addr.arpa domain name pointer astri.org.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
194.245.136.14.in-addr.arpa	name = astri.org.

Authoritative answers can be found from:

IP	类型	评论内容	时间
14.247.43.96	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-02-19 15:07:13
103.214.138.108	attackspambots	DATE:2020-02-19 05:54:55, IP:103.214.138.108, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-19 14:56:57
110.143.203.218	attackspambots	unauthorized connection attempt	2020-02-19 15:27:54
45.48.89.0	attackspambots	unauthorized connection attempt	2020-02-19 14:55:38
203.160.161.46	attackbotsspam	unauthorized connection attempt	2020-02-19 14:55:07
85.105.82.118	attackbots	unauthorized connection attempt	2020-02-19 15:20:46
181.143.185.154	attackbots	unauthorized connection attempt	2020-02-19 15:33:04
104.198.202.52	attack	Port Scan	2020-02-19 15:03:55
177.102.133.171	attackspambots	unauthorized connection attempt	2020-02-19 15:10:32
185.16.28.134	attackbotsspam	Honeypot attack, port: 445, PTR: host-134-28-16-185.sevstar.net.	2020-02-19 15:15:24
172.105.89.161	attackspambots	Port 35422 scan denied	2020-02-19 15:33:57
103.122.105.98	attackbots	unauthorized connection attempt	2020-02-19 15:19:49
59.126.124.101	attackbotsspam	Honeypot attack, port: 4567, PTR: 59-126-124-101.HINET-IP.hinet.net.	2020-02-19 15:11:45
196.60.8.130	attack	unauthorized connection attempt	2020-02-19 15:00:22
172.104.125.180	attackbotsspam	unauthorized connection attempt	2020-02-19 15:01:29

最近上报的IP列表

181.22.127.34	68.183.88.186	119.96.127.218	42.3.24.61
155.4.141.88	186.23.100.80	189.211.61.70	216.235.195.11
37.119.174.82	188.230.186.6	95.68.3.235	91.151.111.23
151.22.182.106	187.192.133.89	45.35.114.211	24.67.4.41
189.212.112.16	45.74.207.200	173.230.129.222	111.6.74.138