14.241.245.208

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-01-16T04:43:44.546199homeassistant sshd[32598]: Invalid user admin from 14.241.245.208 port 41633 2020-01-16T04:43:44.553180homeassistant sshd[32598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.208 ...	2020-01-16 20:51:16
attackbots	Chat Spam	2019-09-29 08:28:12

Type

Details

Datetime

attack

2020-01-16T04:43:44.546199homeassistant sshd[32598]: Invalid user admin from 14.241.245.208 port 41633
2020-01-16T04:43:44.553180homeassistant sshd[32598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.208
...

2020-01-16 20:51:16

attackbots

Chat Spam

2019-09-29 08:28:12

Comments on same subnet:

IP	Type	Details	Datetime
14.241.245.179	attackbots	Invalid user go from 14.241.245.179 port 51334	2020-10-04 06:50:57
14.241.245.179	attackbots	Invalid user go from 14.241.245.179 port 51334	2020-10-03 23:01:00
14.241.245.179	attackbots	$f2bV_matches	2020-10-03 14:44:08
14.241.245.179	attackspambots	(sshd) Failed SSH login from 14.241.245.179 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 13:38:04 idl1-dfw sshd[2700869]: Invalid user a from 14.241.245.179 port 47152 Sep 28 13:38:06 idl1-dfw sshd[2700869]: Failed password for invalid user a from 14.241.245.179 port 47152 ssh2 Sep 28 13:50:04 idl1-dfw sshd[2709932]: Invalid user ppa from 14.241.245.179 port 40668 Sep 28 13:50:07 idl1-dfw sshd[2709932]: Failed password for invalid user ppa from 14.241.245.179 port 40668 ssh2 Sep 28 13:52:52 idl1-dfw sshd[2711916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root	2020-09-29 04:06:00
14.241.245.179	attack	2020-09-28T08:06:11.478823abusebot-6.cloudsearch.cf sshd[442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root 2020-09-28T08:06:13.779991abusebot-6.cloudsearch.cf sshd[442]: Failed password for root from 14.241.245.179 port 43084 ssh2 2020-09-28T08:10:22.454084abusebot-6.cloudsearch.cf sshd[509]: Invalid user tony from 14.241.245.179 port 52944 2020-09-28T08:10:22.460701abusebot-6.cloudsearch.cf sshd[509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 2020-09-28T08:10:22.454084abusebot-6.cloudsearch.cf sshd[509]: Invalid user tony from 14.241.245.179 port 52944 2020-09-28T08:10:24.551282abusebot-6.cloudsearch.cf sshd[509]: Failed password for invalid user tony from 14.241.245.179 port 52944 ssh2 2020-09-28T08:14:29.820977abusebot-6.cloudsearch.cf sshd[573]: Invalid user hadoop from 14.241.245.179 port 34568 ...	2020-09-28 20:19:15
14.241.245.179	attackspam	Sep 28 04:17:34 web sshd[1115043]: Failed password for invalid user postgres from 14.241.245.179 port 60478 ssh2 Sep 28 04:25:01 web sshd[1115228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root Sep 28 04:25:03 web sshd[1115228]: Failed password for root from 14.241.245.179 port 43682 ssh2 ...	2020-09-28 12:24:36
14.241.245.179	attackbotsspam	2020-09-12T18:39:30.695495shield sshd\[20547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root 2020-09-12T18:39:33.151993shield sshd\[20547\]: Failed password for root from 14.241.245.179 port 54438 ssh2 2020-09-12T18:43:42.158229shield sshd\[21333\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root 2020-09-12T18:43:44.544247shield sshd\[21333\]: Failed password for root from 14.241.245.179 port 38004 ssh2 2020-09-12T18:47:44.082696shield sshd\[22847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 user=root	2020-09-13 02:53:18
14.241.245.179	attackspambots	Sep 12 09:19:51 root sshd[18005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 ...	2020-09-12 18:55:59
14.241.245.179	attackspambots	SSH BruteForce Attack	2020-09-05 02:42:14
14.241.245.179	attackspambots	2020-08-01 05:25:02,258 fail2ban.actions [18606]: NOTICE [sshd] Ban 14.241.245.179 2020-08-01 05:39:28,116 fail2ban.actions [18606]: NOTICE [sshd] Ban 14.241.245.179 2020-08-01 05:54:29,359 fail2ban.actions [18606]: NOTICE [sshd] Ban 14.241.245.179 2020-08-01 06:09:38,579 fail2ban.actions [18606]: NOTICE [sshd] Ban 14.241.245.179 2020-08-01 06:24:59,218 fail2ban.actions [18606]: NOTICE [sshd] Ban 14.241.245.179 ...	2020-09-04 18:09:56
14.241.245.179	attackbots	Aug 30 00:02:45 NPSTNNYC01T sshd[23998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.241.245.179 Aug 30 00:02:47 NPSTNNYC01T sshd[23998]: Failed password for invalid user bob from 14.241.245.179 port 34892 ssh2 Aug 30 00:07:00 NPSTNNYC01T sshd[24288]: Failed password for root from 14.241.245.179 port 42286 ssh2 ...	2020-08-30 13:38:06
14.241.245.179	attack	Invalid user bitbucket from 14.241.245.179 port 45320	2020-08-28 20:07:09
14.241.245.179	attack	Aug 9 05:44:21 marvibiene sshd[18455]: Failed password for root from 14.241.245.179 port 57580 ssh2	2020-08-09 18:06:12
14.241.245.179	attackbots	Aug 6 01:15:33 ny01 sshd[19417]: Failed password for root from 14.241.245.179 port 59040 ssh2 Aug 6 01:20:16 ny01 sshd[19971]: Failed password for root from 14.241.245.179 port 41920 ssh2	2020-08-06 13:40:40
14.241.245.179	attack	Aug 6 00:08:39 ny01 sshd[9610]: Failed password for root from 14.241.245.179 port 33412 ssh2 Aug 6 00:13:05 ny01 sshd[10852]: Failed password for root from 14.241.245.179 port 44536 ssh2	2020-08-06 12:21:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.241.245.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.241.245.208.			IN	A

;; AUTHORITY SECTION:
.			581	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092801 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 08:28:09 CST 2019
;; MSG SIZE  rcvd: 118

Host info

208.245.241.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
208.245.241.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.10.114.5	attackbots	Nov 9 18:13:51 lnxded64 sshd[583]: Failed password for root from 119.10.114.5 port 45491 ssh2 Nov 9 18:13:51 lnxded64 sshd[583]: Failed password for root from 119.10.114.5 port 45491 ssh2	2019-11-10 04:45:11
182.75.29.134	attackspambots	Unauthorized connection attempt from IP address 182.75.29.134 on Port 445(SMB)	2019-11-10 04:44:24
114.175.222.92	attackspam	Unauthorized connection attempt from IP address 114.175.222.92 on Port 445(SMB)	2019-11-10 05:04:13
80.211.180.23	attackspam	Nov 9 17:02:49 venus sshd\[8794\]: Invalid user yuiop09876 from 80.211.180.23 port 49326 Nov 9 17:02:49 venus sshd\[8794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.180.23 Nov 9 17:02:51 venus sshd\[8794\]: Failed password for invalid user yuiop09876 from 80.211.180.23 port 49326 ssh2 ...	2019-11-10 05:18:59
178.131.82.230	attackbotsspam	Unauthorized connection attempt from IP address 178.131.82.230 on Port 445(SMB)	2019-11-10 04:46:36
115.74.227.101	attackbots	Unauthorized connection attempt from IP address 115.74.227.101 on Port 445(SMB)	2019-11-10 05:07:10
122.115.235.254	attackspam	Nov 9 17:07:28 MK-Soft-Root2 sshd[16558]: Failed password for root from 122.115.235.254 port 53154 ssh2 ...	2019-11-10 04:57:33
222.186.175.169	attackspambots	Nov 7 12:26:37 microserver sshd[31050]: Failed none for root from 222.186.175.169 port 51534 ssh2 Nov 7 12:26:39 microserver sshd[31050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Nov 7 12:26:41 microserver sshd[31050]: Failed password for root from 222.186.175.169 port 51534 ssh2 Nov 7 12:26:46 microserver sshd[31050]: Failed password for root from 222.186.175.169 port 51534 ssh2 Nov 7 12:26:51 microserver sshd[31050]: Failed password for root from 222.186.175.169 port 51534 ssh2 Nov 7 17:33:00 microserver sshd[5951]: Failed none for root from 222.186.175.169 port 54920 ssh2 Nov 7 17:33:02 microserver sshd[5951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Nov 7 17:33:03 microserver sshd[5951]: Failed password for root from 222.186.175.169 port 54920 ssh2 Nov 7 17:33:08 microserver sshd[5951]: Failed password for root from 222.186.175.169 port 54920 ssh2 Nov	2019-11-10 05:17:05
120.194.42.194	attackbots	Port scan: Attack repeated for 24 hours	2019-11-10 05:11:26
2a03:b0c0:3:e0::2ae:a001	attackbotsspam	xmlrpc attack	2019-11-10 05:18:00
58.214.9.174	attackspambots	Automatic report - Banned IP Access	2019-11-10 05:05:35
78.189.109.203	attackspam	Unauthorized connection attempt from IP address 78.189.109.203 on Port 445(SMB)	2019-11-10 04:41:21
139.59.27.104	attack	Nov 5 13:48:38 rama sshd[505119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.27.104 user=r.r Nov 5 13:48:41 rama sshd[505119]: Failed password for r.r from 139.59.27.104 port 57876 ssh2 Nov 5 13:48:41 rama sshd[505119]: Received disconnect from 139.59.27.104: 11: Bye Bye [preauth] Nov 5 13:59:42 rama sshd[508884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.27.104 user=r.r Nov 5 13:59:44 rama sshd[508884]: Failed password for r.r from 139.59.27.104 port 55932 ssh2 Nov 5 13:59:44 rama sshd[508884]: Received disconnect from 139.59.27.104: 11: Bye Bye [preauth] Nov 5 14:03:55 rama sshd[510941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.27.104 user=r.r Nov 5 14:03:57 rama sshd[510941]: Failed password for r.r from 139.59.27.104 port 38074 ssh2 Nov 5 14:03:57 rama sshd[510941]: Received disconnect from 139.59......... -------------------------------	2019-11-10 04:41:59
173.18.204.105	attackbotsspam	RDP Bruteforce	2019-11-10 05:17:36
51.75.32.141	attackbots	Nov 9 14:38:44 Tower sshd[36928]: Connection from 51.75.32.141 port 53198 on 192.168.10.220 port 22 Nov 9 14:38:46 Tower sshd[36928]: Invalid user test2 from 51.75.32.141 port 53198 Nov 9 14:38:46 Tower sshd[36928]: error: Could not get shadow information for NOUSER Nov 9 14:38:46 Tower sshd[36928]: Failed password for invalid user test2 from 51.75.32.141 port 53198 ssh2 Nov 9 14:38:46 Tower sshd[36928]: Received disconnect from 51.75.32.141 port 53198:11: Bye Bye [preauth] Nov 9 14:38:46 Tower sshd[36928]: Disconnected from invalid user test2 51.75.32.141 port 53198 [preauth]	2019-11-10 04:48:26

Recently Reported IPs

178.20.242.47	138.117.162.86	89.168.169.144	45.80.149.59
80.64.203.244	106.53.90.75	138.97.146.3	100.147.203.124
2.180.141.132	144.154.120.166	185.97.93.2	180.191.176.234
106.13.150.163	94.154.25.168	94.130.90.170	93.113.111.100
137.25.101.102	93.113.110.46	91.238.162.174	91.121.9.92