14.241.243.206

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 14.241.243.206 on Port 445(SMB)	2020-04-03 20:56:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.241.243.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45626
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.241.243.206.			IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040300 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 03 20:56:29 CST 2020
;; MSG SIZE  rcvd: 118

Host info

206.243.241.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
206.243.241.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
66.96.228.119	attack	$f2bV_matches	2020-07-12 04:20:34
128.199.238.110	attackspambots	2020-07-11T20:07:02.814169dmca.cloudsearch.cf sshd[22964]: Invalid user yangyang from 128.199.238.110 port 56646 2020-07-11T20:07:02.819092dmca.cloudsearch.cf sshd[22964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.238.110 2020-07-11T20:07:02.814169dmca.cloudsearch.cf sshd[22964]: Invalid user yangyang from 128.199.238.110 port 56646 2020-07-11T20:07:05.058703dmca.cloudsearch.cf sshd[22964]: Failed password for invalid user yangyang from 128.199.238.110 port 56646 ssh2 2020-07-11T20:10:20.303149dmca.cloudsearch.cf sshd[23014]: Invalid user tom from 128.199.238.110 port 39046 2020-07-11T20:10:20.309798dmca.cloudsearch.cf sshd[23014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.238.110 2020-07-11T20:10:20.303149dmca.cloudsearch.cf sshd[23014]: Invalid user tom from 128.199.238.110 port 39046 2020-07-11T20:10:22.398718dmca.cloudsearch.cf sshd[23014]: Failed password for invalid user to ...	2020-07-12 04:47:23
91.121.89.189	attackbotsspam	91.121.89.189 - - [11/Jul/2020:22:08:19 +0200] "GET /wp-login.php HTTP/1.1" 200 6398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.89.189 - - [11/Jul/2020:22:08:20 +0200] "POST /wp-login.php HTTP/1.1" 200 6649 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.89.189 - - [11/Jul/2020:22:08:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-12 04:31:30
124.112.204.41	attackspam	20 attempts against mh-ssh on frost	2020-07-12 04:38:02
180.101.145.234	attackbots	Jul 11 22:09:27 karger postfix/smtpd[29440]: warning: unknown[180.101.145.234]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 22:09:33 karger postfix/smtpd[29440]: warning: unknown[180.101.145.234]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 22:09:44 karger postfix/smtpd[29440]: warning: unknown[180.101.145.234]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-12 04:56:08
141.98.81.207	attack	Jul 11 22:36:20 debian64 sshd[8557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.207 Jul 11 22:36:22 debian64 sshd[8557]: Failed password for invalid user admin from 141.98.81.207 port 1769 ssh2 ...	2020-07-12 04:37:44
175.213.24.199	attackspam	Jul 9 21:44:14 h2065291 sshd[18474]: Invalid user mhostnamea from 175.213.24.199 Jul 9 21:44:14 h2065291 sshd[18474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.213.24.199 Jul 9 21:44:17 h2065291 sshd[18474]: Failed password for invalid user mhostnamea from 175.213.24.199 port 58359 ssh2 Jul 9 21:44:17 h2065291 sshd[18474]: Received disconnect from 175.213.24.199: 11: Bye Bye [preauth] Jul 9 22:55:42 h2065291 sshd[19629]: Invalid user proba from 175.213.24.199 Jul 9 22:55:42 h2065291 sshd[19629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.213.24.199 Jul 9 22:55:43 h2065291 sshd[19629]: Failed password for invalid user proba from 175.213.24.199 port 38946 ssh2 Jul 9 22:55:43 h2065291 sshd[19629]: Received disconnect from 175.213.24.199: 11: Bye Bye [preauth] Jul 9 22:59:00 h2065291 sshd[19810]: Invalid user alan from 175.213.24.199 Jul 9 22:59:00 h2065291 sshd[19........ -------------------------------	2020-07-12 04:45:13
91.241.19.172	attackbots	2020-07-11T20:08:01Z - RDP login failed multiple times. (91.241.19.172)	2020-07-12 04:53:28
112.85.42.172	attack	Jul 11 21:25:35 sd-69548 sshd[167972]: Unable to negotiate with 112.85.42.172 port 26826: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Jul 11 22:19:00 sd-69548 sshd[172032]: Unable to negotiate with 112.85.42.172 port 22688: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-07-12 04:21:59
51.161.11.70	attackbots	Jul 11 23:02:05 ift sshd\[64410\]: Invalid user jenkins from 51.161.11.70Jul 11 23:02:07 ift sshd\[64410\]: Failed password for invalid user jenkins from 51.161.11.70 port 55242 ssh2Jul 11 23:05:09 ift sshd\[65171\]: Invalid user edit from 51.161.11.70Jul 11 23:05:11 ift sshd\[65171\]: Failed password for invalid user edit from 51.161.11.70 port 52480 ssh2Jul 11 23:08:04 ift sshd\[468\]: Invalid user forsaken from 51.161.11.70 ...	2020-07-12 04:49:04
222.186.15.18	attackspam	Jul 11 22:07:15 OPSO sshd\[7756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Jul 11 22:07:16 OPSO sshd\[7756\]: Failed password for root from 222.186.15.18 port 57139 ssh2 Jul 11 22:07:18 OPSO sshd\[7756\]: Failed password for root from 222.186.15.18 port 57139 ssh2 Jul 11 22:07:21 OPSO sshd\[7756\]: Failed password for root from 222.186.15.18 port 57139 ssh2 Jul 11 22:08:26 OPSO sshd\[7843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2020-07-12 04:23:02
142.93.182.7	attackbotsspam	142.93.182.7 - - [11/Jul/2020:22:07:58 +0200] "GET /wp-login.php HTTP/1.1" 200 6398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.182.7 - - [11/Jul/2020:22:08:05 +0200] "POST /wp-login.php HTTP/1.1" 200 6649 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.182.7 - - [11/Jul/2020:22:08:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-12 04:42:17
46.38.148.2	attackspam	Jul 11 22:35:33 v22019058497090703 postfix/smtpd[480]: warning: unknown[46.38.148.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 22:36:31 v22019058497090703 postfix/smtpd[480]: warning: unknown[46.38.148.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 22:37:30 v22019058497090703 postfix/smtpd[799]: warning: unknown[46.38.148.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-12 04:39:03
103.120.221.97	attackspam	Jul 11 16:04:19 NPSTNNYC01T sshd[7223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.221.97 Jul 11 16:04:21 NPSTNNYC01T sshd[7223]: Failed password for invalid user trial from 103.120.221.97 port 48452 ssh2 Jul 11 16:08:11 NPSTNNYC01T sshd[7559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.221.97 ...	2020-07-12 04:42:47
81.68.74.171	attackbotsspam	2020-07-11T22:05:31.683416vps773228.ovh.net sshd[16798]: Failed password for invalid user chris from 81.68.74.171 port 47514 ssh2 2020-07-11T22:08:08.720139vps773228.ovh.net sshd[16848]: Invalid user db2bet from 81.68.74.171 port 57620 2020-07-11T22:08:08.737896vps773228.ovh.net sshd[16848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.74.171 2020-07-11T22:08:08.720139vps773228.ovh.net sshd[16848]: Invalid user db2bet from 81.68.74.171 port 57620 2020-07-11T22:08:11.037806vps773228.ovh.net sshd[16848]: Failed password for invalid user db2bet from 81.68.74.171 port 57620 ssh2 ...	2020-07-12 04:43:26

Recently Reported IPs

178.213.107.68	128.72.154.80	103.37.201.172	27.114.145.84
103.53.113.244	103.253.151.25	34.83.85.228	116.22.146.227
196.158.199.142	132.202.188.136	124.115.173.234	130.67.126.88
173.112.113.35	154.55.60.11	20.186.132.120	240.55.224.200
99.197.102.25	35.232.195.24	238.205.205.180	250.118.105.109