14.230.133.148

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 14.230.133.148 on Port 445(SMB)	2019-08-20 21:53:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.230.133.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61773
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.230.133.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 20 21:53:18 CST 2019
;; MSG SIZE  rcvd: 118

Host info

148.133.230.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.133.230.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.248.227.164	attack	GET /wp-config.php.orig HTTP/1.1	2020-08-07 03:47:46
60.169.77.181	attack	firewall-block, port(s): 1433/tcp	2020-08-07 03:33:41
198.100.145.89	attackspam	198.100.145.89 - - [06/Aug/2020:20:28:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.100.145.89 - - [06/Aug/2020:20:28:05 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.100.145.89 - - [06/Aug/2020:20:28:06 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-07 03:58:39
77.3.177.228	attackbotsspam	Lines containing failures of 77.3.177.228 Aug 6 17:16:39 www sshd[7165]: Invalid user pi from 77.3.177.228 port 49316 Aug 6 17:16:39 www sshd[7167]: Invalid user pi from 77.3.177.228 port 49318 Aug 6 17:16:39 www sshd[7167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.3.177.228 Aug 6 17:16:39 www sshd[7165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.3.177.228 Aug 6 17:16:42 www sshd[7167]: Failed password for invalid user pi from 77.3.177.228 port 49318 ssh2 Aug 6 17:16:42 www sshd[7165]: Failed password for invalid user pi from 77.3.177.228 port 49316 ssh2 Aug 6 17:16:42 www sshd[7167]: Connection closed by invalid user pi 77.3.177.228 port 49318 [preauth] Aug 6 17:16:42 www sshd[7165]: Connection closed by invalid user pi 77.3.177.228 port 49316 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=77.3.177.228	2020-08-07 03:53:10
104.248.145.254	attack	Aug 6 16:45:53 debian-2gb-nbg1-2 kernel: \[18983609.468139\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.145.254 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=16833 PROTO=TCP SPT=43412 DPT=32345 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 03:27:55
162.243.129.245	attack	ZGrab Application Layer Scanner Detection	2020-08-07 03:59:41
89.248.174.166	attackbotsspam	08/06/2020-14:41:09.768103 89.248.174.166 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-08-07 03:29:34
138.68.184.70	attackbotsspam	Aug 6 10:15:30 firewall sshd[9767]: Failed password for root from 138.68.184.70 port 52584 ssh2 Aug 6 10:20:07 firewall sshd[9967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.184.70 user=root Aug 6 10:20:08 firewall sshd[9967]: Failed password for root from 138.68.184.70 port 36092 ssh2 ...	2020-08-07 03:28:39
106.55.151.227	attack	Aug 6 17:42:32 lnxmail61 sshd[32049]: Failed password for root from 106.55.151.227 port 47308 ssh2 Aug 6 17:42:32 lnxmail61 sshd[32049]: Failed password for root from 106.55.151.227 port 47308 ssh2	2020-08-07 03:42:31
94.23.38.191	attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 03:29:05
206.189.128.215	attackbotsspam	2020-08-06T20:21:08.234161amanda2.illicoweb.com sshd\[30364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.128.215 user=root 2020-08-06T20:21:10.776016amanda2.illicoweb.com sshd\[30364\]: Failed password for root from 206.189.128.215 port 34588 ssh2 2020-08-06T20:26:50.592654amanda2.illicoweb.com sshd\[31176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.128.215 user=root 2020-08-06T20:26:52.750962amanda2.illicoweb.com sshd\[31176\]: Failed password for root from 206.189.128.215 port 46604 ssh2 2020-08-06T20:28:40.461670amanda2.illicoweb.com sshd\[31493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.128.215 user=root ...	2020-08-07 03:49:40
218.18.161.186	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 03:33:11
47.251.38.185	attackbotsspam	/html/gdpr/en.inc.php	2020-08-07 03:49:11
49.69.108.153	attackbotsspam	Aug 6 02:56:04 s158375 sshd[15533]: Failed password for invalid user admin from 49.69.108.153 port 51661 ssh2	2020-08-07 03:41:25
60.53.247.169	attackbotsspam	1596735181 - 08/06/2020 19:33:01 Host: 60.53.247.169/60.53.247.169 Port: 23 TCP Blocked ...	2020-08-07 03:38:52

Recently Reported IPs

202.143.120.129	125.26.133.186	209.124.64.245	177.62.177.190
51.15.87.199	103.101.17.134	210.219.151.170	89.154.243.150
116.90.214.39	68.183.1.175	154.110.243.4	62.215.107.244
135.11.183.218	162.8.171.108	61.55.120.189	182.61.130.121
57.26.203.130	46.187.48.174	83.129.43.61	111.146.220.220