14.242.3.107 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.242.38.190	attackbots	xmlrpc attack	2020-07-07 12:23:34
14.242.3.203	attackbots	Lines containing failures of 14.242.3.203 (max 1000) Jun 1 12:33:54 UTC__SANYALnet-Labs__cac12 sshd[26991]: Connection from 14.242.3.203 port 55659 on 64.137.176.96 port 22 Jun 1 12:33:58 UTC__SANYALnet-Labs__cac12 sshd[26991]: Address 14.242.3.203 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 1 12:33:58 UTC__SANYALnet-Labs__cac12 sshd[26991]: User r.r from 14.242.3.203 not allowed because not listed in AllowUsers Jun 1 12:33:58 UTC__SANYALnet-Labs__cac12 sshd[26991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.242.3.203 user=r.r Jun 1 12:34:00 UTC__SANYALnet-Labs__cac12 sshd[26991]: Failed password for invalid user r.r from 14.242.3.203 port 55659 ssh2 Jun 1 12:34:00 UTC__SANYALnet-Labs__cac12 sshd[26991]: Received disconnect from 14.242.3.203 port 55659:11: Bye Bye [preauth] Jun 1 12:34:00 UTC__SANYALnet-Labs__cac12 sshd[26991]: Disconnected from 14.242.3.203 por........ ------------------------------	2020-06-04 20:20:17
14.242.3.203	attack	Jun 2 18:53:24 cdc sshd[26948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.242.3.203 user=root Jun 2 18:53:26 cdc sshd[26948]: Failed password for invalid user root from 14.242.3.203 port 59595 ssh2	2020-06-03 02:01:08
14.242.36.180	attackbotsspam	Unauthorized connection attempt from IP address 14.242.36.180 on Port 445(SMB)	2019-11-25 19:09:24
14.242.36.254	attack	Automatic report - Port Scan Attack	2019-11-13 17:50:31
14.242.37.12	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 25-10-2019 04:55:18.	2019-10-25 13:48:24
14.242.31.199	attack	Invalid user admin from 14.242.31.199 port 51300	2019-08-23 23:13:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.242.3.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15333
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.242.3.107.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 08:50:52 CST 2022
;; MSG SIZE  rcvd: 105

Host info

107.3.242.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
107.3.242.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.99.168.9	attack	SSH Brute-Force attacks	2020-04-21 05:50:10
103.215.24.254	attackspambots	Apr 20 23:11:41 server sshd[42180]: Failed password for invalid user firefart from 103.215.24.254 port 47796 ssh2 Apr 20 23:23:18 server sshd[45279]: Failed password for invalid user y from 103.215.24.254 port 45664 ssh2 Apr 20 23:28:12 server sshd[46708]: Failed password for root from 103.215.24.254 port 35582 ssh2	2020-04-21 05:53:32
50.245.216.50	attack	US_Comcast Comcast_<177>1587412536 [1:2403368:56800] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 35 [Classification: Misc Attack] [Priority: 2]: {TCP} 50.245.216.50:39160	2020-04-21 06:07:20
198.108.67.35	attackspam	Apr 20 21:55:37 debian-2gb-nbg1-2 kernel: \[9671498.231387\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.108.67.35 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=32 ID=46278 PROTO=TCP SPT=62159 DPT=5907 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-21 06:05:28
208.68.39.220	attackspam	Apr 20 23:52:59 debian-2gb-nbg1-2 kernel: \[9678540.288314\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=208.68.39.220 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=10352 PROTO=TCP SPT=52302 DPT=23161 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-21 06:17:15
183.134.66.108	attack	$f2bV_matches	2020-04-21 05:52:34
92.118.38.67	attackspam	Apr 20 23:58:04 mail.srvfarm.net postfix/smtpd[2306703]: warning: unknown[92.118.38.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 23:58:38 mail.srvfarm.net postfix/smtpd[2328591]: warning: unknown[92.118.38.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 23:59:13 mail.srvfarm.net postfix/smtpd[2328594]: warning: unknown[92.118.38.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 20 23:59:46 mail.srvfarm.net postfix/smtpd[2328592]: warning: unknown[92.118.38.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 21 00:00:15 mail.srvfarm.net postfix/smtpd[2306700]: warning: unknown[92.118.38.67]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-21 06:06:23
106.12.52.75	attackspambots	Apr 20 21:00:40 game-panel sshd[32255]: Failed password for root from 106.12.52.75 port 54834 ssh2 Apr 20 21:04:57 game-panel sshd[32415]: Failed password for root from 106.12.52.75 port 57042 ssh2	2020-04-21 05:51:56
150.109.147.145	attackbots	Apr 20 21:37:51 h2646465 sshd[17868]: Invalid user x from 150.109.147.145 Apr 20 21:37:51 h2646465 sshd[17868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.147.145 Apr 20 21:37:51 h2646465 sshd[17868]: Invalid user x from 150.109.147.145 Apr 20 21:37:53 h2646465 sshd[17868]: Failed password for invalid user x from 150.109.147.145 port 48058 ssh2 Apr 20 21:48:19 h2646465 sshd[19200]: Invalid user admin from 150.109.147.145 Apr 20 21:48:19 h2646465 sshd[19200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.147.145 Apr 20 21:48:19 h2646465 sshd[19200]: Invalid user admin from 150.109.147.145 Apr 20 21:48:21 h2646465 sshd[19200]: Failed password for invalid user admin from 150.109.147.145 port 36530 ssh2 Apr 20 21:55:38 h2646465 sshd[20353]: Invalid user up from 150.109.147.145 ...	2020-04-21 06:04:26
218.92.0.192	attack	Apr 20 23:58:08 legacy sshd[28980]: Failed password for root from 218.92.0.192 port 48905 ssh2 Apr 20 23:59:53 legacy sshd[28998]: Failed password for root from 218.92.0.192 port 63067 ssh2 ...	2020-04-21 06:23:02
125.137.191.215	attackspam	SSH Invalid Login	2020-04-21 05:54:26
69.229.6.7	attackspam	Apr 20 17:57:44 vps46666688 sshd[29245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.7 Apr 20 17:57:47 vps46666688 sshd[29245]: Failed password for invalid user ubuntu from 69.229.6.7 port 46922 ssh2 ...	2020-04-21 05:55:51
80.82.77.234	attackspambots	04/20/2020-17:08:47.666290 80.82.77.234 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-21 06:03:14
39.104.138.246	attackbots	$f2bV_matches	2020-04-21 06:12:24
14.18.58.226	attackspambots	Apr 20 22:56:39 sso sshd[6698]: Failed password for root from 14.18.58.226 port 57064 ssh2 ...	2020-04-21 06:06:48

Recently Reported IPs

113.173.142.41	120.85.118.155	45.115.252.102	138.204.135.31
177.185.156.252	185.19.213.55	39.144.227.98	125.24.77.194
185.233.187.107	45.143.203.121	117.92.164.122	179.96.16.23
203.130.0.150	110.164.156.113	201.140.8.102	142.93.54.253
180.76.170.187	61.1.115.43	58.252.175.223	38.145.197.76