14.186.134.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches	2019-11-15 18:57:09

相同子网IP讨论:

IP	类型	评论内容	时间
14.186.134.159	attackspam	Attempts against SMTP/SSMTP	2020-05-22 14:51:58
14.186.134.160	attackbots	2020-02-1212:18:161j1q24-0006QF-Bf\<=verena@rs-solution.chH=$localhost$[37.41.182.16]:57117P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3349id=CDC87E2D26F2DC6FB3B6FF47B34C6C52@rs-solution.chT="Iwouldbepleasedtoobtainyourmailandspeakwithyou\!"forhp.mahbodv@gmail.combigcgarage12@gmail.com2020-02-1212:19:031j1q2o-0006U9-7X\<=verena@rs-solution.chH=$localhost$[81.22.132.99]:47431P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2994id=A8AD1B484397B90AD6D39A22D63BB737@rs-solution.chT="\;DI'dbeveryhappytoobtainyouranswerorchatwithme\!"fordekwandekwan@gmail.comlildude2693@gmail.com2020-02-1212:17:591j1q1m-0006Nh-6w\<=verena@rs-solution.chH=$localhost$[14.186.134.160]:44439P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3000id=252096C5CE1A34875B5E17AF5BD963D6@rs-solution.chT="\;DI'dbeveryhappytoreceiveyouranswerorchatwithme."forhajdarmiraka@hotmail.comburtonbrad30@gm	2020-02-12 20:57:36
14.186.134.131	attackspambots	Brute force attempt	2019-11-29 19:05:01
14.186.134.187	attackbots	2019-09-19T11:52:14.874023+01:00 suse sshd[19468]: Invalid user admin from 14.186.134.187 port 51257 2019-09-19T11:52:18.581750+01:00 suse sshd[19468]: error: PAM: User not known to the underlying authentication module for illegal user admin from 14.186.134.187 2019-09-19T11:52:14.874023+01:00 suse sshd[19468]: Invalid user admin from 14.186.134.187 port 51257 2019-09-19T11:52:18.581750+01:00 suse sshd[19468]: error: PAM: User not known to the underlying authentication module for illegal user admin from 14.186.134.187 2019-09-19T11:52:14.874023+01:00 suse sshd[19468]: Invalid user admin from 14.186.134.187 port 51257 2019-09-19T11:52:18.581750+01:00 suse sshd[19468]: error: PAM: User not known to the underlying authentication module for illegal user admin from 14.186.134.187 2019-09-19T11:52:18.582342+01:00 suse sshd[19468]: Failed keyboard-interactive/pam for invalid user admin from 14.186.134.187 port 51257 ssh2 ...	2019-09-19 23:27:31
14.186.134.233	attackspam	Automatic report - SSH Brute-Force Attack	2019-06-21 19:32:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.186.134.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27648
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.186.134.6.			IN	A

;; AUTHORITY SECTION:
.			181	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111500 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 15 18:57:05 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

6.134.186.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.134.186.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
124.81.107.238	attackbotsspam	Unauthorised access (Sep 8) SRC=124.81.107.238 LEN=40 TTL=241 ID=49359 TCP DPT=445 WINDOW=1024 SYN	2019-09-08 19:02:05
185.118.197.124	attack	Sep 8 13:15:09 mail postfix/smtpd\[26614\]: warning: 185-118-197-124.clients.srvfarm.net\[185.118.197.124\]: SASL CRAM-MD5 authentication failed: Invalid authentication mechanism Sep 8 13:15:12 mail postfix/smtpd\[32112\]: warning: 185-118-197-124.clients.srvfarm.net\[185.118.197.124\]: SASL CRAM-MD5 authentication failed: Invalid authentication mechanism Sep 8 13:15:18 mail postfix/smtpd\[2492\]: warning: 185-118-197-124.clients.srvfarm.net\[185.118.197.124\]: SASL CRAM-MD5 authentication failed: Invalid authentication mechanism	2019-09-08 19:22:07
209.59.154.106	attack	[SunSep0810:13:03.0179512019][:error][pid30526:tid47849312130816][client209.59.154.106:36018][client209.59.154.106]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"419"][id"330131"][rev"3"][msg"Atomicorp.comWAFRules:MaliciousBotBlocked$FakeMozillaUserAgentStringDetected$"][severity"CRITICAL"][hostname"planetescortgold.com"][uri"/wp-content/uploads/2019/05/media-admin.php"][unique_id"XXS4D2sNdfo@v77dUJ8vGAAAAVU"]\,referer:planetescortgold.com[SunSep0810:13:03.2820122019][:error][pid30457:tid47849295320832][client209.59.154.106:36062][client209.59.154.106]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"419"][id"330	2019-09-08 19:17:32
149.56.121.99	attackbots	$f2bV_matches_ltvn	2019-09-08 18:49:28
128.199.162.108	attack	Reported by AbuseIPDB proxy server.	2019-09-08 19:10:28
123.31.24.16	attackspam	Sep 8 10:47:13 www_kotimaassa_fi sshd[689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.24.16 Sep 8 10:47:15 www_kotimaassa_fi sshd[689]: Failed password for invalid user minecraft1 from 123.31.24.16 port 52900 ssh2 ...	2019-09-08 18:55:56
188.230.71.185	attackbots	Automatic report - Port Scan Attack	2019-09-08 19:30:04
71.6.135.131	attackspam	scan r	2019-09-08 18:48:57
218.78.54.80	attack	Too many connections or unauthorized access detected from Yankee banned ip	2019-09-08 19:34:40
80.82.78.104	attackspambots	Scanning in the 3000 port range. likely looking for exposed RDP	2019-09-08 19:00:42
35.197.142.128	attack	Sep 8 01:09:47 sachi sshd\[13227\]: Invalid user q1w2e3r4t5y6 from 35.197.142.128 Sep 8 01:09:47 sachi sshd\[13227\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.142.197.35.bc.googleusercontent.com Sep 8 01:09:49 sachi sshd\[13227\]: Failed password for invalid user q1w2e3r4t5y6 from 35.197.142.128 port 34826 ssh2 Sep 8 01:15:10 sachi sshd\[13707\]: Invalid user myftp123 from 35.197.142.128 Sep 8 01:15:10 sachi sshd\[13707\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.142.197.35.bc.googleusercontent.com	2019-09-08 19:28:43
177.156.83.70	attack	Automatic report - Port Scan Attack	2019-09-08 18:48:42
182.211.194.169	attackspam	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (807)	2019-09-08 19:08:21
182.213.217.110	attackspam	TCP Port: 25 _ invalid blocked abuseat-org barracudacentral _ _ _ _ (804)	2019-09-08 19:12:29
116.196.94.108	attack	Sep 8 11:15:02 server01 sshd\[8431\]: Invalid user ts from 116.196.94.108 Sep 8 11:15:02 server01 sshd\[8431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108 Sep 8 11:15:03 server01 sshd\[8431\]: Failed password for invalid user ts from 116.196.94.108 port 49718 ssh2 ...	2019-09-08 19:23:52

最近上报的IP列表

112.179.62.220	225.76.216.204	37.160.96.45	204.55.53.129
85.23.82.249	13.108.153.219	66.165.216.214	109.213.40.31
76.219.46.5	35.153.182.226	123.136.21.110	193.126.136.144
45.180.73.143	113.167.210.219	54.36.150.174	14.185.176.36
51.15.27.2	14.177.130.94	118.89.39.81	79.42.239.23