14.166.200.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.166.200.30	attackbotsspam	2020-06-22 06:49:58.872312-0500 localhost smtpd[19438]: NOQUEUE: reject: RCPT from unknown[14.166.200.30]: 554 5.7.1 Service unavailable; Client host [14.166.200.30] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/14.166.200.30; from= to= proto=ESMTP helo=	2020-06-23 01:31:06
14.166.200.35	attackspambots	Oct 31 06:44:39 our-server-hostname postfix/smtpd[29978]: connect from unknown[14.166.200.35] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct 31 06:44:43 our-server-hostname postfix/smtpd[29978]: too many errors after RCPT from unknown[14.166.200.35] Oct 31 06:44:43 our-server-hostname postfix/smtpd[29978]: disconnect from unknown[14.166.200.35] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.166.200.35	2019-10-31 06:31:13

Type

Details

Datetime

14.166.200.30

attackbotsspam

2020-06-22 06:49:58.872312-0500  localhost smtpd[19438]: NOQUEUE: reject: RCPT from unknown[14.166.200.30]: 554 5.7.1 Service unavailable; Client host [14.166.200.30] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/14.166.200.30; from= to= proto=ESMTP helo=

2020-06-23 01:31:06

14.166.200.35

attackspambots

Oct 31 06:44:39 our-server-hostname postfix/smtpd[29978]: connect from unknown[14.166.200.35]
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct 31 06:44:43 our-server-hostname postfix/smtpd[29978]: too many errors after RCPT from unknown[14.166.200.35]
Oct 31 06:44:43 our-server-hostname postfix/smtpd[29978]: disconnect from unknown[14.166.200.35]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=14.166.200.35

2019-10-31 06:31:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.166.200.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7029
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.166.200.18.			IN	A

;; AUTHORITY SECTION:
.			146	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 13:09:31 CST 2022
;; MSG SIZE  rcvd: 106

Host info

18.200.166.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.200.166.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.119.190.122	attackbotsspam	Oct 22 08:22:34 nextcloud sshd\[12245\]: Invalid user carrerasoft from 190.119.190.122 Oct 22 08:22:34 nextcloud sshd\[12245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.119.190.122 Oct 22 08:22:36 nextcloud sshd\[12245\]: Failed password for invalid user carrerasoft from 190.119.190.122 port 35698 ssh2 ...	2019-10-22 14:40:50
149.202.56.194	attack	$f2bV_matches	2019-10-22 14:35:28
74.207.231.72	attackspam	firewall-block, port(s): 5353/udp	2019-10-22 15:03:20
59.33.138.26	attack	Automatic report - Port Scan Attack	2019-10-22 14:37:54
94.191.50.114	attack	Oct 22 06:48:12 localhost sshd\[31066\]: Invalid user monitor1 from 94.191.50.114 port 41306 Oct 22 06:48:12 localhost sshd\[31066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.114 Oct 22 06:48:13 localhost sshd\[31066\]: Failed password for invalid user monitor1 from 94.191.50.114 port 41306 ssh2	2019-10-22 14:59:24
123.206.17.141	attack	2019-10-22T06:52:46.014607shield sshd\[22767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.17.141 user=root 2019-10-22T06:52:48.179718shield sshd\[22767\]: Failed password for root from 123.206.17.141 port 43540 ssh2 2019-10-22T06:52:50.664604shield sshd\[22767\]: Failed password for root from 123.206.17.141 port 43540 ssh2 2019-10-22T06:52:53.088470shield sshd\[22767\]: Failed password for root from 123.206.17.141 port 43540 ssh2 2019-10-22T06:52:55.592235shield sshd\[22767\]: Failed password for root from 123.206.17.141 port 43540 ssh2	2019-10-22 15:01:42
121.22.200.109	attack	UTC: 2019-10-21 port: 23/tcp	2019-10-22 14:27:05
222.186.173.154	attackspam	Oct 22 08:52:46 tux-35-217 sshd\[23112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Oct 22 08:52:48 tux-35-217 sshd\[23112\]: Failed password for root from 222.186.173.154 port 53728 ssh2 Oct 22 08:52:53 tux-35-217 sshd\[23112\]: Failed password for root from 222.186.173.154 port 53728 ssh2 Oct 22 08:52:56 tux-35-217 sshd\[23112\]: Failed password for root from 222.186.173.154 port 53728 ssh2 ...	2019-10-22 15:03:48
72.43.141.7	attack	Oct 22 13:00:55 webhost01 sshd[610]: Failed password for root from 72.43.141.7 port 10832 ssh2 ...	2019-10-22 14:31:47
221.156.106.80	attackspam	UTC: 2019-10-21 port: 88/tcp	2019-10-22 14:29:19
149.202.210.31	attackspambots	2019-10-22T06:28:19.763599abusebot-4.cloudsearch.cf sshd\[25157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sdos1.scribeo.com user=root	2019-10-22 14:48:20
218.90.237.78	attackbotsspam	Helo	2019-10-22 14:57:43
80.191.237.169	attackbotsspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-22 14:27:48
67.205.139.165	attackspam	Oct 21 20:12:51 php1 sshd\[22827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.139.165 user=root Oct 21 20:12:53 php1 sshd\[22827\]: Failed password for root from 67.205.139.165 port 48772 ssh2 Oct 21 20:16:32 php1 sshd\[23283\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.139.165 user=root Oct 21 20:16:34 php1 sshd\[23283\]: Failed password for root from 67.205.139.165 port 59470 ssh2 Oct 21 20:20:04 php1 sshd\[24701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.139.165 user=root	2019-10-22 14:51:02
192.99.57.32	attackspambots	Oct 22 07:22:07 server sshd\[22262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-192-99-57.net user=root Oct 22 07:22:09 server sshd\[22262\]: Failed password for root from 192.99.57.32 port 41200 ssh2 Oct 22 07:27:51 server sshd\[23672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-192-99-57.net user=root Oct 22 07:27:53 server sshd\[23672\]: Failed password for root from 192.99.57.32 port 35326 ssh2 Oct 22 07:31:27 server sshd\[24746\]: Invalid user vncuser from 192.99.57.32 Oct 22 07:31:27 server sshd\[24746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-192-99-57.net ...	2019-10-22 14:55:25

Recently Reported IPs

14.166.189.185	14.166.228.210	14.166.243.103	14.166.244.174
14.166.34.196	14.166.34.20	14.166.36.150	14.166.4.175
14.167.10.255	14.167.101.114	14.167.105.81	14.166.39.143
14.166.76.138	14.166.249.233	14.167.106.40	14.167.108.124
14.167.108.138	14.167.110.143	14.167.110.253	14.167.125.77