14.204.136.125

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Unicom Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user abhay from 14.204.136.125 port 20969	2020-07-24 01:33:07
attack	Invalid user uhw from 14.204.136.125 port 18744	2020-05-24 13:13:08
attackbotsspam	Invalid user uhw from 14.204.136.125 port 18744	2020-05-22 21:59:12
attackbots	May 21 06:54:42 hosting sshd[26755]: Invalid user 22 from 14.204.136.125 port 14433 May 21 06:54:42 hosting sshd[26755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 May 21 06:54:42 hosting sshd[26755]: Invalid user 22 from 14.204.136.125 port 14433 May 21 06:54:43 hosting sshd[26755]: Failed password for invalid user 22 from 14.204.136.125 port 14433 ssh2 May 21 06:59:21 hosting sshd[27047]: Invalid user zeb from 14.204.136.125 port 33472 ...	2020-05-21 12:21:43
attackbotsspam	SSH brutforce	2020-05-14 14:05:56
attackbotsspam	Mar 18 21:07:15 hosting180 sshd[26491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Mar 18 21:07:15 hosting180 sshd[26491]: Invalid user 134.209.169.13 from 14.204.136.125 port 25945 Mar 18 21:07:17 hosting180 sshd[26491]: Failed password for invalid user 134.209.169.13 from 14.204.136.125 port 25945 ssh2 ...	2020-03-19 12:14:13
attack	Mar 9 21:11:47 lnxmysql61 sshd[21767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125	2020-03-10 05:02:56
attackbots	Mar 8 10:47:00 tuxlinux sshd[30525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 user=root Mar 8 10:47:02 tuxlinux sshd[30525]: Failed password for root from 14.204.136.125 port 48476 ssh2 Mar 8 10:47:00 tuxlinux sshd[30525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 user=root Mar 8 10:47:02 tuxlinux sshd[30525]: Failed password for root from 14.204.136.125 port 48476 ssh2 Mar 8 21:33:49 tuxlinux sshd[42050]: Invalid user service from 14.204.136.125 port 3255 Mar 8 21:33:49 tuxlinux sshd[42050]: Invalid user service from 14.204.136.125 port 3255 Mar 8 21:33:49 tuxlinux sshd[42050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 ...	2020-03-09 04:53:07
attackbots	$f2bV_matches	2020-03-06 13:58:07
attack	Sep 16 22:02:00 s64-1 sshd[15259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Sep 16 22:02:02 s64-1 sshd[15259]: Failed password for invalid user chrome from 14.204.136.125 port 33391 ssh2 Sep 16 22:06:20 s64-1 sshd[15354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 ...	2019-09-17 04:17:08
attackbots	Sep 14 20:24:37 webhost01 sshd[30383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Sep 14 20:24:39 webhost01 sshd[30383]: Failed password for invalid user vision from 14.204.136.125 port 20491 ssh2 ...	2019-09-14 21:35:14
attackbotsspam	Sep 7 05:25:01 localhost sshd\[12258\]: Invalid user miusuario from 14.204.136.125 port 63809 Sep 7 05:25:01 localhost sshd\[12258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Sep 7 05:25:03 localhost sshd\[12258\]: Failed password for invalid user miusuario from 14.204.136.125 port 63809 ssh2	2019-09-07 11:42:53
attack	Sep 4 23:42:10 tdfoods sshd\[31620\]: Invalid user test from 14.204.136.125 Sep 4 23:42:10 tdfoods sshd\[31620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Sep 4 23:42:12 tdfoods sshd\[31620\]: Failed password for invalid user test from 14.204.136.125 port 51250 ssh2 Sep 4 23:47:42 tdfoods sshd\[32078\]: Invalid user ts3server from 14.204.136.125 Sep 4 23:47:42 tdfoods sshd\[32078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125	2019-09-06 02:47:41
attack	Sep 4 18:55:28 tdfoods sshd\[6834\]: Invalid user sammy from 14.204.136.125 Sep 4 18:55:28 tdfoods sshd\[6834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Sep 4 18:55:30 tdfoods sshd\[6834\]: Failed password for invalid user sammy from 14.204.136.125 port 4815 ssh2 Sep 4 19:00:56 tdfoods sshd\[7295\]: Invalid user hadoop from 14.204.136.125 Sep 4 19:00:56 tdfoods sshd\[7295\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125	2019-09-05 13:15:06
attackbots	Sep 2 09:19:25 m3061 sshd[2484]: Invalid user sjnystro from 14.204.136.125 Sep 2 09:19:25 m3061 sshd[2484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.204.136.125	2019-09-02 19:49:10
attackbotsspam	2019-08-29T11:26:51.408027centos sshd\[15667\]: Invalid user test from 14.204.136.125 port 48645 2019-08-29T11:26:51.414239centos sshd\[15667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 2019-08-29T11:26:53.943830centos sshd\[15667\]: Failed password for invalid user test from 14.204.136.125 port 48645 ssh2	2019-08-29 20:33:24
attack	Aug 27 16:18:29 vps647732 sshd[25908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Aug 27 16:18:31 vps647732 sshd[25908]: Failed password for invalid user app from 14.204.136.125 port 16966 ssh2 ...	2019-08-28 02:32:52
attackspam	Aug 26 00:05:51 www4 sshd\[29733\]: Invalid user sh from 14.204.136.125 Aug 26 00:05:51 www4 sshd\[29733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Aug 26 00:05:53 www4 sshd\[29733\]: Failed password for invalid user sh from 14.204.136.125 port 17826 ssh2 ...	2019-08-26 08:39:48
attackbots	SSH Brute Force, server-1 sshd[8980]: Failed password for invalid user kimber from 14.204.136.125 port 6575 ssh2	2019-08-24 07:04:25

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.204.136.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65330
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.204.136.125.			IN	A

;; AUTHORITY SECTION:
.			2468	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 07:04:19 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 125.136.204.14.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 125.136.204.14.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.50.87.77	attackbots	Sep 1 00:21:33 vps647732 sshd[22599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.50.87.77 Sep 1 00:21:35 vps647732 sshd[22599]: Failed password for invalid user zabbix from 49.50.87.77 port 33748 ssh2 ...	2019-09-01 07:09:15
120.132.29.195	attackspam	Sep 1 01:50:58 www sshd\[22097\]: Invalid user user1 from 120.132.29.195Sep 1 01:51:00 www sshd\[22097\]: Failed password for invalid user user1 from 120.132.29.195 port 46948 ssh2Sep 1 01:54:34 www sshd\[22140\]: Invalid user leave from 120.132.29.195 ...	2019-09-01 07:13:51
165.22.110.16	attackspambots	Sep 1 01:42:45 microserver sshd[55248]: Invalid user med from 165.22.110.16 port 48220 Sep 1 01:42:45 microserver sshd[55248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.110.16 Sep 1 01:42:47 microserver sshd[55248]: Failed password for invalid user med from 165.22.110.16 port 48220 ssh2 Sep 1 01:47:12 microserver sshd[55842]: Invalid user felipe from 165.22.110.16 port 37106 Sep 1 01:47:12 microserver sshd[55842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.110.16 Sep 1 02:00:22 microserver sshd[57642]: Invalid user tim from 165.22.110.16 port 60236 Sep 1 02:00:22 microserver sshd[57642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.110.16 Sep 1 02:00:24 microserver sshd[57642]: Failed password for invalid user tim from 165.22.110.16 port 60236 ssh2 Sep 1 02:04:58 microserver sshd[57873]: Invalid user registry from 165.22.110.16 port 49126 Sep 1 02	2019-09-01 07:22:03
200.32.54.97	attack	B: /wp-login.php attack	2019-09-01 07:14:26
118.174.45.29	attackbotsspam	Aug 31 23:47:08 rotator sshd\[16755\]: Address 118.174.45.29 maps to node-10d.ll-118-174.static.totisp.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 31 23:47:08 rotator sshd\[16755\]: Invalid user tracker from 118.174.45.29Aug 31 23:47:10 rotator sshd\[16755\]: Failed password for invalid user tracker from 118.174.45.29 port 60804 ssh2Aug 31 23:51:58 rotator sshd\[17597\]: Address 118.174.45.29 maps to node-10d.ll-118-174.static.totisp.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 31 23:51:58 rotator sshd\[17597\]: Invalid user informatica from 118.174.45.29Aug 31 23:52:01 rotator sshd\[17597\]: Failed password for invalid user informatica from 118.174.45.29 port 48044 ssh2 ...	2019-09-01 07:24:44
189.172.215.9	attackbotsspam	Sep 1 01:34:34 SilenceServices sshd[13948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.172.215.9 Sep 1 01:34:36 SilenceServices sshd[13948]: Failed password for invalid user romania from 189.172.215.9 port 56126 ssh2 Sep 1 01:38:51 SilenceServices sshd[17106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.172.215.9	2019-09-01 07:52:50
218.249.154.130	attackbots	Sep 1 00:52:47 icinga sshd[5753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.249.154.130 Sep 1 00:52:50 icinga sshd[5753]: Failed password for invalid user tester from 218.249.154.130 port 12033 ssh2 ...	2019-09-01 07:29:42
159.65.172.240	attack	Aug 31 17:19:46 xb3 sshd[12388]: Failed password for invalid user weiguo from 159.65.172.240 port 46582 ssh2 Aug 31 17:19:46 xb3 sshd[12388]: Received disconnect from 159.65.172.240: 11: Bye Bye [preauth] Aug 31 17:27:06 xb3 sshd[5824]: Failed password for invalid user jaxon from 159.65.172.240 port 37648 ssh2 Aug 31 17:27:06 xb3 sshd[5824]: Received disconnect from 159.65.172.240: 11: Bye Bye [preauth] Aug 31 17:30:56 xb3 sshd[3633]: Failed password for invalid user support from 159.65.172.240 port 55428 ssh2 Aug 31 17:30:56 xb3 sshd[3633]: Received disconnect from 159.65.172.240: 11: Bye Bye [preauth] Aug 31 17:34:49 xb3 sshd[13310]: Failed password for invalid user amine from 159.65.172.240 port 44948 ssh2 Aug 31 17:34:49 xb3 sshd[13310]: Received disconnect from 159.65.172.240: 11: Bye Bye [preauth] Aug 31 17:38:36 xb3 sshd[10093]: Failed password for invalid user j0k3r from 159.65.172.240 port 34490 ssh2 Aug 31 17:38:36 xb3 sshd[10093]: Received disconnect from 159........ -------------------------------	2019-09-01 07:45:03
151.80.207.9	attackspambots	Aug 31 21:53:50 hcbbdb sshd\[10880\]: Invalid user lth from 151.80.207.9 Aug 31 21:53:50 hcbbdb sshd\[10880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.207.9 Aug 31 21:53:52 hcbbdb sshd\[10880\]: Failed password for invalid user lth from 151.80.207.9 port 59987 ssh2 Aug 31 21:57:45 hcbbdb sshd\[11308\]: Invalid user mail1 from 151.80.207.9 Aug 31 21:57:45 hcbbdb sshd\[11308\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.207.9	2019-09-01 07:42:12
162.247.74.74	attack	Sep 1 00:22:58 cvbmail sshd\[15476\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.74 user=root Sep 1 00:23:00 cvbmail sshd\[15476\]: Failed password for root from 162.247.74.74 port 59446 ssh2 Sep 1 00:25:48 cvbmail sshd\[15553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.74 user=root	2019-09-01 07:20:34
201.235.19.122	attackbotsspam	SSH Brute-Forcing (ownc)	2019-09-01 07:47:36
119.10.115.36	attackbots	Sep 1 00:01:38 ns3367391 sshd\[26951\]: Invalid user support from 119.10.115.36 port 35734 Sep 1 00:01:38 ns3367391 sshd\[26951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.10.115.36 ...	2019-09-01 07:27:02
46.185.139.41	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-31 20:29:31,018 INFO [amun_request_handler] PortScan Detected on Port: 445 (46.185.139.41)	2019-09-01 07:27:26
192.42.116.14	attackspambots	$f2bV_matches	2019-09-01 07:51:18
168.227.35.89	attackspam	Aug 31 23:52:03 server postfix/smtpd[16932]: NOQUEUE: reject: RCPT from unknown[168.227.35.89]: 554 5.7.1 Service unavailable; Client host [168.227.35.89] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/168.227.35.89 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[168.227.35.89]>	2019-09-01 07:27:45

Recently Reported IPs

146.136.0.125	137.74.152.235	212.96.79.135	179.181.4.142
31.173.189.126	181.67.35.145	197.248.10.108	58.21.255.140
100.90.172.161	163.57.66.25	220.171.199.151	218.211.20.8
108.84.192.216	81.40.150.167	223.16.139.1	132.173.203.187
222.134.232.60	106.52.157.187	58.242.228.153	75.234.81.201