14.226.54.197 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 14.226.54.197 to port 445	2019-12-15 15:51:17

相同子网IP讨论:

IP	类型	评论内容	时间
14.226.54.223	attackspambots	Icarus honeypot on github	2020-08-21 13:09:45
14.226.54.182	attack	20/8/15@10:43:48: FAIL: Alarm-Network address from=14.226.54.182 ...	2020-08-16 00:05:16
14.226.54.140	attackspambots	1594352993 - 07/10/2020 05:49:53 Host: 14.226.54.140/14.226.54.140 Port: 445 TCP Blocked	2020-07-10 19:06:40
14.226.54.149	attackbots	1593230117 - 06/27/2020 05:55:17 Host: 14.226.54.149/14.226.54.149 Port: 445 TCP Blocked	2020-06-27 13:35:23
14.226.54.2	attackspam	2019-03-11 09:44:55 H=$static.vnpt.vn$ \[14.226.54.2\]:20207 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-11 09:45:09 H=$static.vnpt.vn$ \[14.226.54.2\]:20333 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-11 09:45:14 H=$static.vnpt.vn$ \[14.226.54.2\]:20390 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-04 22:00:19
14.226.54.122	attackspam	1579064116 - 01/15/2020 05:55:16 Host: 14.226.54.122/14.226.54.122 Port: 445 TCP Blocked	2020-01-15 13:54:15
14.226.54.35	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/14.226.54.35/ VN - 1H : (38) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : VN NAME ASN : ASN45899 IP : 14.226.54.35 CIDR : 14.226.48.0/21 PREFIX COUNT : 2411 UNIQUE IP COUNT : 7209216 ATTACKS DETECTED ASN45899 : 1H - 1 3H - 1 6H - 2 12H - 4 24H - 7 DateTime : 2019-10-21 05:56:10 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-21 12:01:08
14.226.54.241	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 14-10-2019 04:55:19.	2019-10-14 14:16:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.226.54.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50033
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.226.54.197.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121500 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 15 15:51:13 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

197.54.226.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.54.226.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
159.138.157.241	attackspam	Unauthorized access detected from banned ip	2020-01-13 23:07:45
138.186.54.141	attackbots	Honeypot attack, port: 445, PTR: 141.54.186.138.tecklinktelecom.com.br.	2020-01-13 23:10:11
222.186.173.226	attackspam	Jan 13 16:10:10 MK-Soft-VM5 sshd[32494]: Failed password for root from 222.186.173.226 port 8722 ssh2 Jan 13 16:10:14 MK-Soft-VM5 sshd[32494]: Failed password for root from 222.186.173.226 port 8722 ssh2 ...	2020-01-13 23:14:04
84.54.187.161	attackspambots	Jan 13 14:55:04 localhost sshd\[16426\]: Invalid user felix from 84.54.187.161 Jan 13 14:55:04 localhost sshd\[16426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.54.187.161 Jan 13 14:55:07 localhost sshd\[16426\]: Failed password for invalid user felix from 84.54.187.161 port 43762 ssh2 Jan 13 14:58:42 localhost sshd\[16539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.54.187.161 user=root Jan 13 14:58:44 localhost sshd\[16539\]: Failed password for root from 84.54.187.161 port 52974 ssh2 ...	2020-01-13 23:24:22
222.186.180.17	attackspambots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Failed password for root from 222.186.180.17 port 20198 ssh2 Failed password for root from 222.186.180.17 port 20198 ssh2 Failed password for root from 222.186.180.17 port 20198 ssh2 Failed password for root from 222.186.180.17 port 20198 ssh2	2020-01-13 23:30:55
35.226.109.92	attackspam	Jan 13 12:16:18 firewall sshd[18574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.226.109.92 Jan 13 12:16:18 firewall sshd[18574]: Invalid user bbj from 35.226.109.92 Jan 13 12:16:20 firewall sshd[18574]: Failed password for invalid user bbj from 35.226.109.92 port 41332 ssh2 ...	2020-01-13 23:33:57
159.203.201.240	attack	Unauthorized connection attempt detected from IP address 159.203.201.240 to port 808	2020-01-13 23:15:56
213.194.160.243	attack	Automatic report - Port Scan Attack	2020-01-13 22:50:11
114.119.154.23	attackbotsspam	badbot	2020-01-13 22:51:48
202.71.27.2	attackbots	Unauthorised access (Jan 13) SRC=202.71.27.2 LEN=48 TTL=111 ID=25263 DF TCP DPT=445 WINDOW=8192 SYN	2020-01-13 23:27:27
176.62.67.52	attack	Unauthorized connection attempt detected from IP address 176.62.67.52 to port 5555 [J]	2020-01-13 23:19:18
2.139.234.1	attackbots	$f2bV_matches	2020-01-13 22:53:33
46.38.144.57	attackbotsspam	Jan 13 16:28:15 relay postfix/smtpd\[10864\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:28:26 relay postfix/smtpd\[18055\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:29:02 relay postfix/smtpd\[20979\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:29:15 relay postfix/smtpd\[18055\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:29:49 relay postfix/smtpd\[10863\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-13 23:35:00
168.232.129.120	attackbotsspam	Jan 13 08:07:40 aragorn sshd[30413]: Disconnecting: Too many authentication failures for admin [preauth] Jan 13 08:07:43 aragorn sshd[30415]: Invalid user admin from 168.232.129.120 Jan 13 08:07:43 aragorn sshd[30415]: Invalid user admin from 168.232.129.120 Jan 13 08:07:43 aragorn sshd[30415]: Disconnecting: Too many authentication failures for admin [preauth] ...	2020-01-13 23:37:14
111.30.26.198	attackspam	Unauthorized connection attempt detected from IP address 111.30.26.198 to port 2220 [J]	2020-01-13 23:00:17

最近上报的IP列表

60.76.2.65	101.147.240.255	139.162.111.189	19.250.172.255
139.5.31.240	81.28.100.94	54.36.232.55	154.49.211.67
176.78.135.239	49.234.63.127	178.124.159.180	16.238.70.20
103.98.63.247	155.78.188.2	93.130.169.28	253.72.6.119
64.131.24.33	80.252.63.134	165.22.88.121	199.128.160.22