14.189.204.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	445/tcp [2019-07-25]1pkt	2019-07-26 07:09:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.189.204.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13256
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.189.204.70.			IN	A

;; AUTHORITY SECTION:
.			3138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072503 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 07:09:55 CST 2019
;; MSG SIZE  rcvd: 117

Host info

70.204.189.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
70.204.189.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.128.215.148	attack	2019-10-08T12:26:35.780204abusebot-5.cloudsearch.cf sshd\[3580\]: Invalid user alm from 178.128.215.148 port 53894	2019-10-08 20:47:14
45.65.114.94	attack	Received: from inulogic.fr (unknown [195.231.4.149]) Subject: Activation du service CLE DIGITALE. From: BNP PARIBAS Content-ID: X-ME-bounce-domain: orange.fr X-ME-Entity: vlaX-Mailer: PHP Message-Id: <20191008101102.AAB894497D@inulogic.fr> https://teedin3d.com Tel: 05 62 66 24 57 Geneviève Lacassagne : 06 70 34 50 79	2019-10-08 20:34:22
167.99.75.143	attack	Oct 8 15:28:52 sauna sshd[20944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.75.143 Oct 8 15:28:54 sauna sshd[20944]: Failed password for invalid user 123@ABC from 167.99.75.143 port 59858 ssh2 ...	2019-10-08 20:29:55
2a0c:f040::388e:64ff:feb9:fe74	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-10-08 20:41:26
221.11.92.82	attack	Jun 20 17:55:43 ubuntu sshd[6637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.11.92.82 Jun 20 17:55:44 ubuntu sshd[6637]: Failed password for invalid user nuo from 221.11.92.82 port 40497 ssh2 Jun 20 17:56:26 ubuntu sshd[6646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.11.92.82 Jun 20 17:56:28 ubuntu sshd[6646]: Failed password for invalid user sha from 221.11.92.82 port 43618 ssh2	2019-10-08 21:01:29
134.19.218.134	attackspambots	Oct 8 13:47:41 ns381471 sshd[19695]: Failed password for root from 134.19.218.134 port 47188 ssh2 Oct 8 13:52:21 ns381471 sshd[19951]: Failed password for root from 134.19.218.134 port 59762 ssh2	2019-10-08 20:27:25
120.9.161.208	attackbotsspam	Unauthorised access (Oct 8) SRC=120.9.161.208 LEN=40 TTL=49 ID=51608 TCP DPT=8080 WINDOW=62024 SYN Unauthorised access (Oct 8) SRC=120.9.161.208 LEN=40 TTL=49 ID=48820 TCP DPT=8080 WINDOW=7352 SYN Unauthorised access (Oct 8) SRC=120.9.161.208 LEN=40 TTL=49 ID=7827 TCP DPT=8080 WINDOW=5240 SYN Unauthorised access (Oct 6) SRC=120.9.161.208 LEN=40 TTL=49 ID=40864 TCP DPT=8080 WINDOW=62024 SYN	2019-10-08 20:24:33
196.202.54.35	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/196.202.54.35/ EG - 1H : (77) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EG NAME ASN : ASN8452 IP : 196.202.54.35 CIDR : 196.202.0.0/17 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 WYKRYTE ATAKI Z ASN8452 : 1H - 2 3H - 7 6H - 16 12H - 38 24H - 74 DateTime : 2019-10-08 13:56:34 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 20:44:53
81.133.69.197	attackbotsspam	Automatic report - Port Scan Attack	2019-10-08 20:24:55
35.225.76.89	attack	Port Scan detected from 35.225.76.89 (US/United States/89.76.225.35.bc.googleusercontent.com). 4 hits in the last 181 seconds	2019-10-08 20:43:24
47.219.99.105	attackbots	" "	2019-10-08 20:41:49
138.197.163.11	attackspam	2019-10-08T12:09:16.463708shield sshd\[20369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 user=root 2019-10-08T12:09:18.418197shield sshd\[20369\]: Failed password for root from 138.197.163.11 port 58638 ssh2 2019-10-08T12:13:33.152144shield sshd\[20948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 user=root 2019-10-08T12:13:34.720307shield sshd\[20948\]: Failed password for root from 138.197.163.11 port 41976 ssh2 2019-10-08T12:17:47.818770shield sshd\[21753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 user=root	2019-10-08 20:38:44
49.232.60.2	attack	Oct 8 13:21:09 apollo sshd\[6631\]: Failed password for root from 49.232.60.2 port 51396 ssh2Oct 8 13:52:35 apollo sshd\[6727\]: Failed password for root from 49.232.60.2 port 42818 ssh2Oct 8 13:57:02 apollo sshd\[6742\]: Failed password for root from 49.232.60.2 port 39266 ssh2 ...	2019-10-08 20:25:07
125.227.164.62	attackbots	Oct 8 08:08:56 ny01 sshd[13632]: Failed password for root from 125.227.164.62 port 40986 ssh2 Oct 8 08:13:11 ny01 sshd[13994]: Failed password for root from 125.227.164.62 port 52832 ssh2	2019-10-08 20:51:51
138.68.41.161	attackspambots	Oct 5 13:00:43 server sshd[12965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.41.161 user=r.r Oct 5 13:00:44 server sshd[12965]: Failed password for r.r from 138.68.41.161 port 60644 ssh2 Oct 5 13:00:44 server sshd[12965]: Received disconnect from 138.68.41.161: 11: Bye Bye [preauth] Oct 5 13:16:32 server sshd[13363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.41.161 user=r.r Oct 5 13:16:34 server sshd[13363]: Failed password for r.r from 138.68.41.161 port 54836 ssh2 Oct 5 13:16:34 server sshd[13363]: Received disconnect from 138.68.41.161: 11: Bye Bye [preauth] Oct 5 13:20:19 server sshd[13462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.41.161 user=r.r Oct 5 13:20:21 server sshd[13462]: Failed password for r.r from 138.68.41.161 port 39438 ssh2 Oct 5 13:20:21 server sshd[13462]: Received disconnect fro........ -------------------------------	2019-10-08 20:29:05

Recently Reported IPs

195.68.151.58	51.91.56.133	51.38.99.79	106.12.111.201
46.252.16.97	153.36.236.46	122.155.223.112	187.61.242.213
24.76.1.198	201.27.55.160	107.170.53.103	106.75.240.46
149.28.251.227	93.13.223.94	52.23.248.94	200.146.244.241
121.162.184.214	103.254.13.160	59.175.238.115	182.61.181.138