14.242.212.133

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 14.242.212.133 on Port 445(SMB)	2019-11-16 22:42:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.242.212.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12867
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.242.212.133.			IN	A

;; AUTHORITY SECTION:
.			190	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111600 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 16 22:42:50 CST 2019
;; MSG SIZE  rcvd: 118

Host info

133.212.242.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
133.212.242.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
128.199.200.225	attackbots	WordPress wp-login brute force :: 128.199.200.225 0.044 BYPASS [05/Oct/2019:21:36:22 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-05 23:12:22
51.255.174.215	attackbotsspam	Oct 3 15:45:02 mail sshd[13433]: Invalid user test from 51.255.174.215 ...	2019-10-05 23:13:16
5.104.111.46	attackspam	3389BruteforceStormFW23	2019-10-05 23:25:03
46.45.187.49	attack	Automatic report - Banned IP Access	2019-10-05 23:34:30
101.100.143.138	attack	RDP Bruteforce	2019-10-05 22:57:57
185.182.56.85	attackspam	Automatic report generated by Wazuh	2019-10-05 23:16:49
85.30.215.48	attack	Chat Spam	2019-10-05 22:48:51
61.19.22.217	attackspambots	Oct 5 16:39:24 legacy sshd[11787]: Failed password for root from 61.19.22.217 port 52556 ssh2 Oct 5 16:44:05 legacy sshd[11913]: Failed password for root from 61.19.22.217 port 36252 ssh2 ...	2019-10-05 22:53:47
139.99.37.134	attackspambots	SSH bruteforce	2019-10-05 23:02:28
60.12.215.85	attackspambots	(sshd) Failed SSH login from 60.12.215.85 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Oct 5 09:20:44 host sshd[1964]: Invalid user admin from 60.12.215.85 port 45350	2019-10-05 23:08:24
186.95.186.155	attackspam	[SatOct0513:33:55.6581612019][:error][pid11076:tid46955184039680][client186.95.186.155:50531][client186.95.186.155]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:user-agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"395"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"148.251.104.80"][uri"/public/index.php"][unique_id"XZh-o9p5TuYoNtR1NxLRfgAAAUM"][SatOct0513:35:52.2806162019][:error][pid11298:tid46955188242176][client186.95.186.155:63131][client186.95.186.155]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:user-agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"395"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0	2019-10-05 23:32:30
5.175.92.33	attackbots	Automatic report - Port Scan Attack	2019-10-05 23:18:35
5.39.85.175	attack	SSH Brute-Force reported by Fail2Ban	2019-10-05 23:09:10
106.13.136.238	attack	2019-10-05T16:59:04.966839 sshd[6335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.136.238 user=root 2019-10-05T16:59:06.575936 sshd[6335]: Failed password for root from 106.13.136.238 port 42594 ssh2 2019-10-05T17:04:18.755473 sshd[6439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.136.238 user=root 2019-10-05T17:04:20.474833 sshd[6439]: Failed password for root from 106.13.136.238 port 47994 ssh2 2019-10-05T17:09:26.371399 sshd[6490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.136.238 user=root 2019-10-05T17:09:28.040032 sshd[6490]: Failed password for root from 106.13.136.238 port 53386 ssh2 ...	2019-10-05 23:30:36
222.186.175.147	attackbotsspam	Oct 5 16:52:28 minden010 sshd[20738]: Failed password for root from 222.186.175.147 port 21016 ssh2 Oct 5 16:52:32 minden010 sshd[20738]: Failed password for root from 222.186.175.147 port 21016 ssh2 Oct 5 16:52:37 minden010 sshd[20738]: Failed password for root from 222.186.175.147 port 21016 ssh2 Oct 5 16:52:41 minden010 sshd[20738]: Failed password for root from 222.186.175.147 port 21016 ssh2 ...	2019-10-05 22:52:46

Recently Reported IPs

202.96.137.99	111.206.120.250	41.33.37.150	193.112.55.86
80.211.244.72	82.65.160.2	54.37.162.102	187.106.122.252
78.79.155.75	53.98.132.107	236.177.53.117	226.124.88.140
21.150.18.141	86.5.88.218	125.75.46.35	8.219.56.128
60.222.226.87	75.140.67.239	144.63.206.42	54.146.82.221