14.185.199.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 14.185.199.52 on Port 445(SMB)	2020-01-03 18:08:09

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.185.199.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19255
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.185.199.52.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010300 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 18:08:06 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

52.199.185.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.199.185.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
61.157.142.246	attackbots	Dec 14 07:40:19 ns41 sshd[17574]: Failed password for root from 61.157.142.246 port 22508 ssh2 Dec 14 07:40:19 ns41 sshd[17574]: Failed password for root from 61.157.142.246 port 22508 ssh2	2019-12-14 14:58:02
106.12.7.75	attackspam	Dec 13 20:22:29 php1 sshd\[7680\]: Invalid user gilray from 106.12.7.75 Dec 13 20:22:29 php1 sshd\[7680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.7.75 Dec 13 20:22:31 php1 sshd\[7680\]: Failed password for invalid user gilray from 106.12.7.75 port 53842 ssh2 Dec 13 20:29:58 php1 sshd\[8620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.7.75 user=root Dec 13 20:29:59 php1 sshd\[8620\]: Failed password for root from 106.12.7.75 port 52266 ssh2	2019-12-14 14:42:40
188.162.38.53	attackspam	1576304991 - 12/14/2019 07:29:51 Host: 188.162.38.53/188.162.38.53 Port: 445 TCP Blocked	2019-12-14 14:53:53
165.22.46.4	attackspambots	2019-12-14T07:24:33.875707vps751288.ovh.net sshd\[29214\]: Invalid user gerringer from 165.22.46.4 port 58461 2019-12-14T07:24:33.886278vps751288.ovh.net sshd\[29214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.46.4 2019-12-14T07:24:36.177513vps751288.ovh.net sshd\[29214\]: Failed password for invalid user gerringer from 165.22.46.4 port 58461 ssh2 2019-12-14T07:29:41.442310vps751288.ovh.net sshd\[29256\]: Invalid user pano from 165.22.46.4 port 34066 2019-12-14T07:29:41.452867vps751288.ovh.net sshd\[29256\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.46.4	2019-12-14 15:03:03
210.245.26.142	attack	Dec 14 07:48:12 mc1 kernel: \[464922.099121\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.26.142 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=53137 PROTO=TCP SPT=56123 DPT=7809 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 14 07:51:58 mc1 kernel: \[465148.240033\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.26.142 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=21853 PROTO=TCP SPT=56123 DPT=7332 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 14 07:53:29 mc1 kernel: \[465239.068502\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.26.142 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=46527 PROTO=TCP SPT=56123 DPT=7572 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-14 14:58:29
77.123.155.201	attackbots	Dec 14 07:56:38 legacy sshd[19627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.123.155.201 Dec 14 07:56:40 legacy sshd[19627]: Failed password for invalid user demo from 77.123.155.201 port 40016 ssh2 Dec 14 08:02:13 legacy sshd[19748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.123.155.201 ...	2019-12-14 15:17:29
89.238.135.59	attackspambots	TCP Port Scanning	2019-12-14 15:11:22
218.92.0.134	attack	Dec 14 07:51:25 MK-Soft-Root2 sshd[21951]: Failed password for root from 218.92.0.134 port 60978 ssh2 Dec 14 07:51:30 MK-Soft-Root2 sshd[21951]: Failed password for root from 218.92.0.134 port 60978 ssh2 ...	2019-12-14 14:55:46
190.75.102.113	attack	Unauthorized connection attempt detected from IP address 190.75.102.113 to port 445	2019-12-14 14:58:54
185.156.175.93	attack	SS5,DEF GET /admin/	2019-12-14 15:00:43
96.114.71.146	attack	$f2bV_matches	2019-12-14 14:43:37
162.253.42.208	attackbots	Dec 14 07:40:27 markkoudstaal sshd[5658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.253.42.208 Dec 14 07:40:29 markkoudstaal sshd[5658]: Failed password for invalid user hsiung from 162.253.42.208 port 1813 ssh2 Dec 14 07:46:00 markkoudstaal sshd[6217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.253.42.208	2019-12-14 15:01:09
62.210.167.202	attackbotsspam	\[2019-12-14 01:27:37\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-14T01:27:37.521-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011114242671090",SessionID="0x7f0fb418df78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/57515",ACLName="no_extension_match" \[2019-12-14 01:28:27\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-14T01:28:27.680-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011214242671090",SessionID="0x7f0fb418df78",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/62478",ACLName="no_extension_match" \[2019-12-14 01:29:19\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-14T01:29:19.251-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011414242671090",SessionID="0x7f0fb406f938",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/54740",ACLName="no_	2019-12-14 15:19:59
188.131.164.163	attackspambots	2019-12-14T06:45:59.517596shield sshd\[20275\]: Invalid user daebum from 188.131.164.163 port 35170 2019-12-14T06:45:59.522445shield sshd\[20275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.164.163 2019-12-14T06:46:01.357026shield sshd\[20275\]: Failed password for invalid user daebum from 188.131.164.163 port 35170 ssh2 2019-12-14T06:54:27.142157shield sshd\[22625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.164.163 user=root 2019-12-14T06:54:29.383205shield sshd\[22625\]: Failed password for root from 188.131.164.163 port 41492 ssh2	2019-12-14 15:03:57
173.162.229.10	attack	Dec 14 08:48:29 pkdns2 sshd\[59123\]: Invalid user giacomini from 173.162.229.10Dec 14 08:48:30 pkdns2 sshd\[59123\]: Failed password for invalid user giacomini from 173.162.229.10 port 46968 ssh2Dec 14 08:53:19 pkdns2 sshd\[59431\]: Invalid user yftest from 173.162.229.10Dec 14 08:53:21 pkdns2 sshd\[59431\]: Failed password for invalid user yftest from 173.162.229.10 port 57474 ssh2Dec 14 08:58:07 pkdns2 sshd\[59714\]: Invalid user mariadb from 173.162.229.10Dec 14 08:58:09 pkdns2 sshd\[59714\]: Failed password for invalid user mariadb from 173.162.229.10 port 39746 ssh2 ...	2019-12-14 15:21:26

最近上报的IP列表

118.99.96.178	223.155.162.173	71.176.249.53	39.53.104.68
74.199.123.130	1.2.148.66	41.129.131.118	113.160.227.49
110.137.103.6	14.173.240.253	182.61.176.220	114.40.18.213
218.37.68.19	101.95.186.146	40.46.110.28	46.101.112.205
83.212.120.57	155.37.202.202	161.100.150.253	180.183.178.177