14.244.74.252 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 14.244.74.252 to port 445	2020-03-12 17:55:38

Comments on same subnet:

IP	Type	Details	Datetime
14.244.74.87	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-30 12:15:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.244.74.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25327
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.244.74.252.			IN	A

;; AUTHORITY SECTION:
.			471	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 17:55:33 CST 2020
;; MSG SIZE  rcvd: 117

Host info

252.74.244.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.74.244.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.68.213	attackspambots	SSH brute force attempt	2020-05-13 20:49:22
118.174.117.72	attack	Lines containing failures of 118.174.117.72 May 13 05:07:46 shared07 sshd[18141]: Did not receive identification string from 118.174.117.72 port 63009 May 13 05:07:50 shared07 sshd[18155]: Invalid user system from 118.174.117.72 port 63388 May 13 05:07:50 shared07 sshd[18155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.117.72 May 13 05:07:52 shared07 sshd[18155]: Failed password for invalid user system from 118.174.117.72 port 63388 ssh2 May 13 05:07:52 shared07 sshd[18155]: Connection closed by invalid user system 118.174.117.72 port 63388 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.174.117.72	2020-05-13 20:37:53
5.135.179.178	attackbots	2020-05-13T12:34:21.417232abusebot-4.cloudsearch.cf sshd[17877]: Invalid user jtm from 5.135.179.178 port 21221 2020-05-13T12:34:21.424324abusebot-4.cloudsearch.cf sshd[17877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3287787.ip-5-135-179.eu 2020-05-13T12:34:21.417232abusebot-4.cloudsearch.cf sshd[17877]: Invalid user jtm from 5.135.179.178 port 21221 2020-05-13T12:34:22.931946abusebot-4.cloudsearch.cf sshd[17877]: Failed password for invalid user jtm from 5.135.179.178 port 21221 ssh2 2020-05-13T12:40:15.238197abusebot-4.cloudsearch.cf sshd[18381]: Invalid user sysadmin from 5.135.179.178 port 12781 2020-05-13T12:40:15.243993abusebot-4.cloudsearch.cf sshd[18381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3287787.ip-5-135-179.eu 2020-05-13T12:40:15.238197abusebot-4.cloudsearch.cf sshd[18381]: Invalid user sysadmin from 5.135.179.178 port 12781 2020-05-13T12:40:17.348557abusebot-4.cloudsearc ...	2020-05-13 21:19:00
190.85.71.129	attack	May 13 14:35:10 home sshd[22112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.71.129 May 13 14:35:11 home sshd[22112]: Failed password for invalid user pascal from 190.85.71.129 port 52436 ssh2 May 13 14:39:23 home sshd[22775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.71.129 ...	2020-05-13 20:53:23
49.235.134.224	attackspambots	$f2bV_matches	2020-05-13 21:09:14
171.252.170.212	attackspambots	Invalid user noc from 171.252.170.212 port 43632	2020-05-13 20:39:11
125.73.56.96	attack	May 13 14:18:05 server sshd[21990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.73.56.96 May 13 14:18:07 server sshd[21990]: Failed password for invalid user update from 125.73.56.96 port 37772 ssh2 May 13 14:23:10 server sshd[22391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.73.56.96 ...	2020-05-13 20:30:15
2.135.39.134	attack	May 13 12:38:53 ssh2 sshd[20445]: Connection from 2.135.39.134 port 53358 on 192.240.101.3 port 22 May 13 12:38:55 ssh2 sshd[20445]: Invalid user admina from 2.135.39.134 port 53358 May 13 12:38:55 ssh2 sshd[20445]: Failed password for invalid user admina from 2.135.39.134 port 53358 ssh2 ...	2020-05-13 21:17:35
183.236.67.48	attack	(sshd) Failed SSH login from 183.236.67.48 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 13 15:08:09 srv sshd[9601]: Invalid user test from 183.236.67.48 port 57578 May 13 15:08:11 srv sshd[9601]: Failed password for invalid user test from 183.236.67.48 port 57578 ssh2 May 13 15:21:36 srv sshd[9951]: Invalid user thompson from 183.236.67.48 port 35648 May 13 15:21:39 srv sshd[9951]: Failed password for invalid user thompson from 183.236.67.48 port 35648 ssh2 May 13 15:26:22 srv sshd[10066]: Invalid user thibaut from 183.236.67.48 port 39918	2020-05-13 20:29:37
151.16.37.184	attackbots	May 13 20:47:19 web1 sshd[6111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.16.37.184 user=root May 13 20:47:21 web1 sshd[6111]: Failed password for root from 151.16.37.184 port 48702 ssh2 May 13 22:05:08 web1 sshd[25636]: Invalid user worker1 from 151.16.37.184 port 40754 May 13 22:05:08 web1 sshd[25636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.16.37.184 May 13 22:05:08 web1 sshd[25636]: Invalid user worker1 from 151.16.37.184 port 40754 May 13 22:05:10 web1 sshd[25636]: Failed password for invalid user worker1 from 151.16.37.184 port 40754 ssh2 May 13 22:22:22 web1 sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.16.37.184 user=root May 13 22:22:24 web1 sshd[29808]: Failed password for root from 151.16.37.184 port 50900 ssh2 May 13 22:39:22 web1 sshd[1640]: Invalid user hduser from 151.16.37.184 port 32810 ...	2020-05-13 20:53:47
148.66.142.135	attack	SSH Brute-Force Attack	2020-05-13 20:35:41
110.93.226.177	attackspambots	Brute-force general attack.	2020-05-13 20:34:46
2.134.183.238	attackspam	20/5/13@08:38:54: FAIL: Alarm-Network address from=2.134.183.238 ...	2020-05-13 21:19:40
51.75.30.238	attackspam	May 13 14:36:15 sip sshd[242974]: Invalid user tomcat from 51.75.30.238 port 55242 May 13 14:36:17 sip sshd[242974]: Failed password for invalid user tomcat from 51.75.30.238 port 55242 ssh2 May 13 14:39:55 sip sshd[242997]: Invalid user hip from 51.75.30.238 port 33992 ...	2020-05-13 21:07:59
51.38.130.63	attackbots	May 13 15:03:22 buvik sshd[12562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.63 May 13 15:03:24 buvik sshd[12562]: Failed password for invalid user oracle10g from 51.38.130.63 port 36214 ssh2 May 13 15:05:48 buvik sshd[12888]: Invalid user wallet from 51.38.130.63 ...	2020-05-13 21:10:26

Recently Reported IPs

164.68.118.217	167.249.102.174	192.241.216.95	103.108.220.73
192.241.213.213	14.168.31.168	171.238.9.160	118.24.212.64
176.119.141.79	37.9.47.121	213.171.216.60	190.198.228.225
123.24.206.251	101.109.62.148	182.100.60.168	168.232.207.244
92.240.207.196	192.184.46.235	150.129.149.108	114.33.66.147