14.248.82.239 - IPInfo

Basic Info

City: Hanoi

Region: Hanoi

Country: Vietnam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.248.82.35	attackspam	Sep 9 03:35:43 netserv505 sshd[24319]: Invalid user adam from 14.248.82.35 port 37418 Sep 9 03:36:34 netserv505 sshd[24322]: Invalid user testing from 14.248.82.35 port 41574 Sep 9 03:37:29 netserv505 sshd[24326]: Invalid user marketing from 14.248.82.35 port 45724 Sep 9 03:41:05 netserv505 sshd[24338]: Invalid user samba from 14.248.82.35 port 34202 Sep 9 03:42:06 netserv505 sshd[24342]: Invalid user guest from 14.248.82.35 port 38392 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.248.82.35	2020-09-09 18:39:52
14.248.82.35	attack	Sep 9 03:35:43 netserv505 sshd[24319]: Invalid user adam from 14.248.82.35 port 37418 Sep 9 03:36:34 netserv505 sshd[24322]: Invalid user testing from 14.248.82.35 port 41574 Sep 9 03:37:29 netserv505 sshd[24326]: Invalid user marketing from 14.248.82.35 port 45724 Sep 9 03:41:05 netserv505 sshd[24338]: Invalid user samba from 14.248.82.35 port 34202 Sep 9 03:42:06 netserv505 sshd[24342]: Invalid user guest from 14.248.82.35 port 38392 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.248.82.35	2020-09-09 12:34:22
14.248.82.35	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-09 04:52:16
14.248.82.234	attackspam	20/8/13@23:34:59: FAIL: Alarm-Network address from=14.248.82.234 20/8/13@23:34:59: FAIL: Alarm-Network address from=14.248.82.234 ...	2020-08-14 17:43:43
14.248.82.83	attackspam	failed_logins	2020-06-01 19:25:59
14.248.82.166	attackspambots	Unauthorized connection attempt from IP address 14.248.82.166 on Port 445(SMB)	2020-05-26 00:29:43
14.248.82.0	attackbots	Unauthorized connection attempt detected from IP address 14.248.82.0 to port 445	2019-12-23 02:29:19
14.248.82.186	attackbots	Unauthorised access (Nov 28) SRC=14.248.82.186 LEN=52 TTL=116 ID=1705 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 28) SRC=14.248.82.186 LEN=52 TTL=116 ID=13869 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-28 23:24:46
14.248.82.75	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:57:08,278 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.248.82.75)	2019-07-03 12:10:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.248.82.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7856
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.248.82.239.			IN	A

;; AUTHORITY SECTION:
.			193	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021091001 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 11 12:00:06 CST 2021
;; MSG SIZE  rcvd: 106

Host info

Host 239.82.248.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.82.248.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.239.120.100	attack	445/tcp [2019-07-02]1pkt	2019-07-03 03:46:04
125.116.101.45	attackspam	Automatic report - Banned IP Access	2019-07-03 03:40:35
95.55.82.157	attackbotsspam	445/tcp [2019-07-02]1pkt	2019-07-03 03:34:44
85.84.209.164	attack	Hit on /wp-login.php	2019-07-03 03:17:28
201.211.126.189	attack	445/tcp [2019-07-02]1pkt	2019-07-03 03:28:47
158.255.47.146	attackbots	Jul 2 15:26:16 mxgate1 postfix/postscreen[4221]: CONNECT from [158.255.47.146]:52170 to [176.31.12.44]:25 Jul 2 15:26:16 mxgate1 postfix/dnsblog[4743]: addr 158.255.47.146 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 2 15:26:16 mxgate1 postfix/dnsblog[4744]: addr 158.255.47.146 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 2 15:26:16 mxgate1 postfix/dnsblog[4742]: addr 158.255.47.146 listed by domain bl.spamcop.net as 127.0.0.2 Jul 2 15:26:16 mxgate1 postfix/dnsblog[4745]: addr 158.255.47.146 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 2 15:26:16 mxgate1 postfix/dnsblog[4746]: addr 158.255.47.146 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 2 15:26:22 mxgate1 postfix/postscreen[4221]: DNSBL rank 6 for [158.255.47.146]:52170 Jul x@x Jul 2 15:26:22 mxgate1 postfix/postscreen[4221]: HANGUP after 0.13 from [158.255.47.146]:52170 in tests after SMTP handshake Jul 2 15:26:22 mxgate1 postfix/postscreen[4221]: DISCONNECT [158.255.47.146]........ -------------------------------	2019-07-03 03:53:12
78.7.122.186	attackbots	Brute force attempt	2019-07-03 03:44:51
195.70.44.7	attackbots	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-07-03 03:28:04
139.0.4.194	attack	445/tcp [2019-07-02]1pkt	2019-07-03 03:48:40
54.38.15.252	attackspambots	ssh failed login	2019-07-03 03:33:43
37.187.60.182	attack	Jan 16 08:03:04 motanud sshd\[562\]: Invalid user mwkamau from 37.187.60.182 port 44714 Jan 16 08:03:04 motanud sshd\[562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.60.182 Jan 16 08:03:06 motanud sshd\[562\]: Failed password for invalid user mwkamau from 37.187.60.182 port 44714 ssh2	2019-07-03 03:38:58
95.0.60.161	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-02 15:40:55]	2019-07-03 03:44:16
189.135.164.174	attackbots	Jan 19 01:03:31 motanud sshd\[30270\]: Invalid user police from 189.135.164.174 port 50534 Jan 19 01:03:31 motanud sshd\[30270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.135.164.174 Jan 19 01:03:34 motanud sshd\[30270\]: Failed password for invalid user police from 189.135.164.174 port 50534 ssh2	2019-07-03 03:16:30
45.252.249.178	attackspam	45.252.249.178 - - [02/Jul/2019:15:42:03 +0200] "GET /wp-login.php HTTP/1.1" 200 4406 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.252.249.178 - - [02/Jul/2019:15:42:10 +0200] "POST /wp-login.php HTTP/1.1" 200 4406 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.252.249.178 - - [02/Jul/2019:15:42:11 +0200] "GET /wp-login.php HTTP/1.1" 200 4406 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.252.249.178 - - [02/Jul/2019:15:42:18 +0200] "POST /wp-login.php HTTP/1.1" 200 4406 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.252.249.178 - - [02/Jul/2019:15:42:29 +0200] "GET /wp-login.php HTTP/1.1" 200 4406 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.252.249.178 - - [02/Jul/2019:15:42:32 +0200] "POST /wp-login.php HTTP/1.1" 200 4406 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-03 03:32:35
77.247.108.31	attackbotsspam	firewall-block, port(s): 5060/udp	2019-07-03 03:56:30

Recently Reported IPs

123.25.5.7	113.161.161.100	14.161.7.175	210.245.7.226
113.161.69.217	112.109.91.254	113.161.167.17	113.160.91.106
113.161.79.165	113.161.227.220	113.161.84.12	113.161.149.76
14.248.83.69	14.177.234.219	113.164.230.44	115.78.92.95
113.161.76.134	113.176.13.169	14.177.64.137	101.99.24.11