117.2.14.50 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1576223042 - 12/13/2019 08:44:02 Host: 117.2.14.50/117.2.14.50 Port: 445 TCP Blocked	2019-12-13 20:56:26

Comments on same subnet:

IP	Type	Details	Datetime
117.2.143.48	attackbotsspam	20/6/20@23:55:42: FAIL: Alarm-Network address from=117.2.143.48 ...	2020-06-21 15:00:31
117.2.143.33	attack	20/6/16@05:49:25: FAIL: Alarm-Network address from=117.2.143.33 ...	2020-06-16 18:14:29
117.2.144.164	attackspam	Honeypot attack, port: 81, PTR: localhost.	2020-06-04 04:30:48
117.2.143.191	attackspam	Automatic report - Port Scan Attack	2020-04-07 14:46:15
117.2.143.33	attackbotsspam	Unauthorized connection attempt from IP address 117.2.143.33 on Port 445(SMB)	2020-03-11 19:46:37
117.2.140.101	attackspam	20/2/17@00:49:09: FAIL: Alarm-Network address from=117.2.140.101 ...	2020-02-17 14:03:51
117.2.148.35	attackspam	unauthorized connection attempt	2020-01-28 20:47:14
117.2.144.143	attackspam	37215/tcp 23/tcp 2323/tcp... [2019-09-14/11-14]11pkt,3pt.(tcp)	2019-11-14 13:26:36
117.2.144.143	attackbotsspam	Automatic report - Port Scan Attack	2019-10-02 07:12:09
117.2.142.132	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:33.	2019-09-28 04:49:19
117.2.142.132	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 17:21:57,165 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.2.142.132)	2019-09-12 09:31:11
117.2.142.139	attackspam	Sun, 21 Jul 2019 07:36:11 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 22:31:14
117.2.143.26	attackspam	Unauthorized connection attempt from IP address 117.2.143.26 on Port 445(SMB)	2019-06-22 02:04:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.2.14.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54263
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.2.14.50.			IN	A

;; AUTHORITY SECTION:
.			433	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121300 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 20:56:22 CST 2019
;; MSG SIZE  rcvd: 115

Host info

50.14.2.117.in-addr.arpa domain name pointer localhost.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.14.2.117.in-addr.arpa	name = localhost.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.88.112.78	attackspam	Aug 17 21:19:43 piServer sshd\[22803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root Aug 17 21:19:45 piServer sshd\[22803\]: Failed password for root from 49.88.112.78 port 20872 ssh2 Aug 17 21:19:48 piServer sshd\[22803\]: Failed password for root from 49.88.112.78 port 20872 ssh2 Aug 17 21:19:50 piServer sshd\[22803\]: Failed password for root from 49.88.112.78 port 20872 ssh2 Aug 17 21:19:53 piServer sshd\[22828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root ...	2019-08-18 03:20:25
45.227.253.216	attackspam	Aug 17 19:41:04 mail postfix/smtpd\[5313\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 17 19:41:13 mail postfix/smtpd\[5701\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 17 19:52:56 mail postfix/smtpd\[6102\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 17 20:41:40 mail postfix/smtpd\[8178\]: warning: unknown\[45.227.253.216\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-18 02:51:28
91.207.40.44	attack	Aug 17 08:31:33 friendsofhawaii sshd\[12342\]: Invalid user deployer from 91.207.40.44 Aug 17 08:31:33 friendsofhawaii sshd\[12342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.207.40.44 Aug 17 08:31:35 friendsofhawaii sshd\[12342\]: Failed password for invalid user deployer from 91.207.40.44 port 46220 ssh2 Aug 17 08:35:31 friendsofhawaii sshd\[12718\]: Invalid user andy from 91.207.40.44 Aug 17 08:35:31 friendsofhawaii sshd\[12718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.207.40.44	2019-08-18 02:41:54
81.30.212.14	attack	vps1:sshd-InvalidUser	2019-08-18 03:04:20
51.68.46.156	attackspambots	Aug 17 20:50:43 SilenceServices sshd[32415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.46.156 Aug 17 20:50:45 SilenceServices sshd[32415]: Failed password for invalid user sammy from 51.68.46.156 port 34606 ssh2 Aug 17 20:54:35 SilenceServices sshd[3043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.46.156	2019-08-18 03:14:10
106.12.211.247	attackspambots	Aug 17 08:49:20 hiderm sshd\[3870\]: Invalid user dagna from 106.12.211.247 Aug 17 08:49:20 hiderm sshd\[3870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.211.247 Aug 17 08:49:22 hiderm sshd\[3870\]: Failed password for invalid user dagna from 106.12.211.247 port 34172 ssh2 Aug 17 08:53:59 hiderm sshd\[4311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.211.247 user=uucp Aug 17 08:54:01 hiderm sshd\[4311\]: Failed password for uucp from 106.12.211.247 port 51914 ssh2	2019-08-18 03:10:24
112.45.114.76	attackbotsspam	Postfix DNSBL listed. Trying to send SPAM.	2019-08-18 03:13:44
51.91.249.91	attack	Aug 17 08:30:59 hiderm sshd\[1838\]: Invalid user teamspeak from 51.91.249.91 Aug 17 08:30:59 hiderm sshd\[1838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-51-91-249.eu Aug 17 08:31:02 hiderm sshd\[1838\]: Failed password for invalid user teamspeak from 51.91.249.91 port 33982 ssh2 Aug 17 08:35:30 hiderm sshd\[2359\]: Invalid user user from 51.91.249.91 Aug 17 08:35:30 hiderm sshd\[2359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-51-91-249.eu	2019-08-18 02:43:12
129.204.40.44	attackbots	Aug 17 08:30:09 friendsofhawaii sshd\[12236\]: Invalid user alphonse from 129.204.40.44 Aug 17 08:30:09 friendsofhawaii sshd\[12236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.44 Aug 17 08:30:11 friendsofhawaii sshd\[12236\]: Failed password for invalid user alphonse from 129.204.40.44 port 55296 ssh2 Aug 17 08:35:26 friendsofhawaii sshd\[12698\]: Invalid user test from 129.204.40.44 Aug 17 08:35:26 friendsofhawaii sshd\[12698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.44	2019-08-18 02:46:33
195.209.45.124	attackspam	[portscan] Port scan	2019-08-18 02:42:52
104.0.143.234	attackspambots	Aug 17 20:28:51 v22019058497090703 sshd[27025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.0.143.234 Aug 17 20:28:53 v22019058497090703 sshd[27025]: Failed password for invalid user wh from 104.0.143.234 port 29156 ssh2 Aug 17 20:34:00 v22019058497090703 sshd[27398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.0.143.234 ...	2019-08-18 03:11:55
165.22.78.120	attack	Aug 17 08:31:19 web1 sshd\[5302\]: Invalid user helpdesk from 165.22.78.120 Aug 17 08:31:19 web1 sshd\[5302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.120 Aug 17 08:31:21 web1 sshd\[5302\]: Failed password for invalid user helpdesk from 165.22.78.120 port 53540 ssh2 Aug 17 08:35:24 web1 sshd\[5706\]: Invalid user tester from 165.22.78.120 Aug 17 08:35:24 web1 sshd\[5706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.120	2019-08-18 02:48:31
112.93.133.30	attack	Aug 17 20:53:47 SilenceServices sshd[2167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.93.133.30 Aug 17 20:53:48 SilenceServices sshd[2167]: Failed password for invalid user michele from 112.93.133.30 port 54210 ssh2 Aug 17 20:57:31 SilenceServices sshd[5171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.93.133.30	2019-08-18 03:03:57
208.110.84.42	attack	Aug 17 21:47:32 yabzik sshd[21773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.110.84.42 Aug 17 21:47:33 yabzik sshd[21773]: Failed password for invalid user postgres from 208.110.84.42 port 52799 ssh2 Aug 17 21:51:47 yabzik sshd[23134]: Failed password for root from 208.110.84.42 port 47946 ssh2	2019-08-18 03:00:56
51.75.126.28	attackbots	Aug 17 08:46:44 php1 sshd\[32182\]: Invalid user student from 51.75.126.28 Aug 17 08:46:44 php1 sshd\[32182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.28 Aug 17 08:46:46 php1 sshd\[32182\]: Failed password for invalid user student from 51.75.126.28 port 45452 ssh2 Aug 17 08:50:37 php1 sshd\[32496\]: Invalid user admin from 51.75.126.28 Aug 17 08:50:37 php1 sshd\[32496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.126.28	2019-08-18 02:55:18

Recently Reported IPs

84.250.249.151	20.245.122.197	255.92.223.40	112.181.95.91
196.196.160.149	189.154.52.87	134.175.124.221	33.86.122.176
223.226.17.84	237.109.196.55	201.231.83.38	42.112.180.147
171.236.193.127	86.211.94.186	95.178.157.221	186.53.102.77
107.170.153.57	125.139.88.230	28.6.47.182	171.228.181.84