14.252.249.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 14.252.249.2 on Port 445(SMB)	2020-02-07 17:11:54

相同子网IP讨论:

IP	类型	评论内容	时间
14.252.249.46	attackspam	Unauthorized connection attempt from IP address 14.252.249.46 on Port 445(SMB)	2020-09-18 21:49:06
14.252.249.46	attack	Unauthorized connection attempt from IP address 14.252.249.46 on Port 445(SMB)	2020-09-18 14:04:57
14.252.249.46	attackspambots	Unauthorized connection attempt from IP address 14.252.249.46 on Port 445(SMB)	2020-09-18 04:23:43
14.252.249.74	attackbotsspam	Brute force attempt	2019-12-06 20:46:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.252.249.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30086
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.252.249.2.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020700 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 17:11:47 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

2.249.252.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.249.252.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
183.58.22.146	attack	3389/tcp 3389/tcp [2020-03-14/04-15]2pkt	2020-04-15 19:32:22
45.40.199.82	attackspambots	Apr 15 04:45:24 vps58358 sshd\[13644\]: Invalid user thuannx from 45.40.199.82Apr 15 04:45:26 vps58358 sshd\[13644\]: Failed password for invalid user thuannx from 45.40.199.82 port 51526 ssh2Apr 15 04:49:04 vps58358 sshd\[13715\]: Invalid user localhost from 45.40.199.82Apr 15 04:49:07 vps58358 sshd\[13715\]: Failed password for invalid user localhost from 45.40.199.82 port 33226 ssh2Apr 15 04:52:37 vps58358 sshd\[13775\]: Invalid user desarrollo from 45.40.199.82Apr 15 04:52:39 vps58358 sshd\[13775\]: Failed password for invalid user desarrollo from 45.40.199.82 port 43168 ssh2 ...	2020-04-15 19:03:25
113.31.114.43	attackbotsspam	Invalid user resellers from 113.31.114.43 port 45772	2020-04-15 19:01:10
138.68.226.175	attackbots	Apr 15 01:17:49 web9 sshd\[21036\]: Invalid user oracle from 138.68.226.175 Apr 15 01:17:49 web9 sshd\[21036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 Apr 15 01:17:51 web9 sshd\[21036\]: Failed password for invalid user oracle from 138.68.226.175 port 39726 ssh2 Apr 15 01:21:39 web9 sshd\[21582\]: Invalid user prince from 138.68.226.175 Apr 15 01:21:39 web9 sshd\[21582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175	2020-04-15 19:29:18
183.89.237.25	attackspam	IMAP brute force ...	2020-04-15 19:08:46
222.186.173.183	attack	Apr 15 12:50:44 MainVPS sshd[17760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Apr 15 12:50:46 MainVPS sshd[17760]: Failed password for root from 222.186.173.183 port 1844 ssh2 Apr 15 12:51:00 MainVPS sshd[17760]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 1844 ssh2 [preauth] Apr 15 12:50:44 MainVPS sshd[17760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Apr 15 12:50:46 MainVPS sshd[17760]: Failed password for root from 222.186.173.183 port 1844 ssh2 Apr 15 12:51:00 MainVPS sshd[17760]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 1844 ssh2 [preauth] Apr 15 12:51:03 MainVPS sshd[18122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Apr 15 12:51:05 MainVPS sshd[18122]: Failed password for root from 222.186.173.183 port 1005	2020-04-15 18:55:47
103.138.41.74	attack	SSH Bruteforce attack	2020-04-15 19:14:52
124.77.44.61	attackbots	20/4/14@23:52:47: FAIL: Alarm-Intrusion address from=124.77.44.61 ...	2020-04-15 19:00:09
119.27.191.172	attack	Apr 15 07:56:17 dev0-dcde-rnet sshd[29579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.191.172 Apr 15 07:56:19 dev0-dcde-rnet sshd[29579]: Failed password for invalid user pych from 119.27.191.172 port 46446 ssh2 Apr 15 08:02:44 dev0-dcde-rnet sshd[29624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.191.172	2020-04-15 19:17:46
1.203.80.2	attackspambots	04/14/2020-23:51:53.807393 1.203.80.2 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-15 19:30:10
213.136.75.16	attackspambots	Apr 15 09:50:44 l03 sshd[2167]: Invalid user composer from 213.136.75.16 port 43188 ...	2020-04-15 19:21:03
115.231.176.170	attackspambots	Icarus honeypot on github	2020-04-15 19:01:35
183.6.102.54	attackbotsspam	Automatic report - Port Scan Attack	2020-04-15 19:07:43
45.55.128.109	attackbots	Apr 15 13:55:18 lukav-desktop sshd\[30193\]: Invalid user add from 45.55.128.109 Apr 15 13:55:18 lukav-desktop sshd\[30193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.128.109 Apr 15 13:55:21 lukav-desktop sshd\[30193\]: Failed password for invalid user add from 45.55.128.109 port 46454 ssh2 Apr 15 14:00:00 lukav-desktop sshd\[30391\]: Invalid user ed from 45.55.128.109 Apr 15 14:00:00 lukav-desktop sshd\[30391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.128.109	2020-04-15 19:04:39
178.128.218.56	attackspam	Apr 15 08:54:28 game-panel sshd[4794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.218.56 Apr 15 08:54:30 game-panel sshd[4794]: Failed password for invalid user firefart from 178.128.218.56 port 45722 ssh2 Apr 15 08:59:39 game-panel sshd[4945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.218.56	2020-04-15 19:12:48

最近上报的IP列表

102.157.73.136	92.253.44.111	91.247.104.210	89.19.116.52
82.200.149.81	78.85.49.116	77.159.81.183	45.247.242.155
192.241.239.203	189.177.49.25	121.210.74.103	111.220.102.207
41.33.131.66	2.187.77.74	201.119.197.196	119.30.38.134
60.241.62.214	1.10.133.37	187.176.43.151	49.228.8.249