14.248.83.137 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 7 05:49:32 [munged] sshd[7122]: Failed password for root from 14.248.83.137 port 37214 ssh2	2019-10-07 15:36:07

Comments on same subnet:

IP	Type	Details	Datetime
14.248.83.163	attackspambots	2020-09-29T16:53:55.790381abusebot-5.cloudsearch.cf sshd[32089]: Invalid user test from 14.248.83.163 port 52494 2020-09-29T16:53:55.798935abusebot-5.cloudsearch.cf sshd[32089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 2020-09-29T16:53:55.790381abusebot-5.cloudsearch.cf sshd[32089]: Invalid user test from 14.248.83.163 port 52494 2020-09-29T16:53:57.227960abusebot-5.cloudsearch.cf sshd[32089]: Failed password for invalid user test from 14.248.83.163 port 52494 ssh2 2020-09-29T16:58:15.767464abusebot-5.cloudsearch.cf sshd[32092]: Invalid user cloudera from 14.248.83.163 port 60082 2020-09-29T16:58:15.776226abusebot-5.cloudsearch.cf sshd[32092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 2020-09-29T16:58:15.767464abusebot-5.cloudsearch.cf sshd[32092]: Invalid user cloudera from 14.248.83.163 port 60082 2020-09-29T16:58:17.566346abusebot-5.cloudsearch.cf sshd[32092]: Fai ...	2020-09-30 03:05:42
14.248.83.163	attackspambots	$f2bV_matches	2020-09-29 19:07:42
14.248.83.163	attack	Sep 24 01:52:38 web1 sshd\[8196\]: Invalid user testuser2 from 14.248.83.163 Sep 24 01:52:38 web1 sshd\[8196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 Sep 24 01:52:40 web1 sshd\[8196\]: Failed password for invalid user testuser2 from 14.248.83.163 port 56432 ssh2 Sep 24 01:57:09 web1 sshd\[8578\]: Invalid user a from 14.248.83.163 Sep 24 01:57:09 web1 sshd\[8578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163	2020-09-24 21:46:39
14.248.83.163	attack	SSH Invalid Login	2020-09-24 13:40:18
14.248.83.163	attackspambots	Sep 23 19:00:10 dev0-dcde-rnet sshd[17092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 Sep 23 19:00:12 dev0-dcde-rnet sshd[17092]: Failed password for invalid user ftpuser from 14.248.83.163 port 42484 ssh2 Sep 23 19:04:51 dev0-dcde-rnet sshd[17115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163	2020-09-24 05:09:02
14.248.83.163	attackspam	Tried sshing with brute force.	2020-09-22 23:17:16
14.248.83.163	attackbotsspam	Sep 22 05:45:45 haigwepa sshd[21489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 Sep 22 05:45:47 haigwepa sshd[21489]: Failed password for invalid user ian from 14.248.83.163 port 38132 ssh2 ...	2020-09-22 15:21:16
14.248.83.163	attackspambots	SSH Brute Force	2020-09-22 07:23:28
14.248.83.163	attackbots	Bruteforce detected by fail2ban	2020-09-04 02:34:44
14.248.83.163	attack	$f2bV_matches	2020-09-03 18:02:56
14.248.83.163	attackbotsspam	2020-08-09T07:10:55.932413morrigan.ad5gb.com sshd[811153]: Failed password for root from 14.248.83.163 port 52684 ssh2 2020-08-09T07:10:56.610503morrigan.ad5gb.com sshd[811153]: Disconnected from authenticating user root 14.248.83.163 port 52684 [preauth]	2020-08-10 00:14:10
14.248.83.163	attackbotsspam	Bruteforce detected by fail2ban	2020-08-08 17:27:25
14.248.83.163	attackbots	Jul 28 20:48:30 vm1 sshd[26711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.248.83.163 Jul 28 20:48:33 vm1 sshd[26711]: Failed password for invalid user wangke from 14.248.83.163 port 39718 ssh2 ...	2020-07-29 03:57:12
14.248.83.163	attackspambots	Invalid user vmail from 14.248.83.163 port 57202	2020-07-13 12:05:34
14.248.83.203	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-07-09 12:47:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.248.83.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.248.83.137.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100700 1800 900 604800 86400

;; Query time: 278 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 15:36:04 CST 2019
;; MSG SIZE  rcvd: 117

Host info

137.83.248.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
137.83.248.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.160.10.45	attackbots	Honeypot attack, port: 23, PTR: 118-160-10-45.dynamic-ip.hinet.net.	2019-08-24 23:59:26
157.245.4.79	attackspam	19/8/24@09:26:31: FAIL: IoT-Telnet address from=157.245.4.79 ...	2019-08-24 23:05:12
37.41.134.38	attack	Aug 24 12:55:42 this_host sshd[10380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.41.134.38 user=r.r Aug 24 12:55:43 this_host sshd[10380]: Failed password for r.r from 37.41.134.38 port 54994 ssh2 Aug 24 12:55:45 this_host sshd[10380]: Failed password for r.r from 37.41.134.38 port 54994 ssh2 Aug 24 12:55:48 this_host sshd[10380]: Failed password for r.r from 37.41.134.38 port 54994 ssh2 Aug 24 12:55:50 this_host sshd[10380]: Failed password for r.r from 37.41.134.38 port 54994 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.41.134.38	2019-08-24 23:33:20
187.39.237.77	attack	Aug 24 14:51:48 hb sshd\[13428\]: Invalid user noc from 187.39.237.77 Aug 24 14:51:48 hb sshd\[13428\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.39.237.77 Aug 24 14:51:50 hb sshd\[13428\]: Failed password for invalid user noc from 187.39.237.77 port 43120 ssh2 Aug 24 14:57:57 hb sshd\[14025\]: Invalid user sysadm from 187.39.237.77 Aug 24 14:57:57 hb sshd\[14025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.39.237.77	2019-08-24 23:04:34
118.25.103.140	attackbotsspam	Aug 24 15:36:38 MK-Soft-VM6 sshd\[3928\]: Invalid user ales from 118.25.103.140 port 57676 Aug 24 15:36:38 MK-Soft-VM6 sshd\[3928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.103.140 Aug 24 15:36:40 MK-Soft-VM6 sshd\[3928\]: Failed password for invalid user ales from 118.25.103.140 port 57676 ssh2 ...	2019-08-24 23:39:00
122.199.152.157	attackbots	Aug 24 16:33:19 v22019058497090703 sshd[9868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 Aug 24 16:33:21 v22019058497090703 sshd[9868]: Failed password for invalid user rdp from 122.199.152.157 port 45579 ssh2 Aug 24 16:38:10 v22019058497090703 sshd[10233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.199.152.157 ...	2019-08-24 23:56:58
36.233.45.90	attack	Aug 24 12:43:12 xxxxxxx0 sshd[9618]: Failed password for r.r from 36.233.45.90 port 49199 ssh2 Aug 24 12:43:15 xxxxxxx0 sshd[9618]: Failed password for r.r from 36.233.45.90 port 49199 ssh2 Aug 24 12:43:17 xxxxxxx0 sshd[9618]: Failed password for r.r from 36.233.45.90 port 49199 ssh2 Aug 24 12:43:18 xxxxxxx0 sshd[9618]: Failed password for r.r from 36.233.45.90 port 49199 ssh2 Aug 24 12:43:19 xxxxxxx0 sshd[9621]: Failed password for r.r from 36.233.45.90 port 49200 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.233.45.90	2019-08-24 23:10:54
51.38.131.1	attackbotsspam	Aug 24 13:00:16 vtv3 sshd\[31788\]: Invalid user lori from 51.38.131.1 port 44432 Aug 24 13:00:16 vtv3 sshd\[31788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.131.1 Aug 24 13:00:18 vtv3 sshd\[31788\]: Failed password for invalid user lori from 51.38.131.1 port 44432 ssh2 Aug 24 13:04:25 vtv3 sshd\[1086\]: Invalid user v from 51.38.131.1 port 35896 Aug 24 13:04:25 vtv3 sshd\[1086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.131.1 Aug 24 13:16:25 vtv3 sshd\[7218\]: Invalid user ftpuser from 51.38.131.1 port 38512 Aug 24 13:16:25 vtv3 sshd\[7218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.131.1 Aug 24 13:16:27 vtv3 sshd\[7218\]: Failed password for invalid user ftpuser from 51.38.131.1 port 38512 ssh2 Aug 24 13:20:27 vtv3 sshd\[10022\]: Invalid user sarvesh from 51.38.131.1 port 58204 Aug 24 13:20:27 vtv3 sshd\[10022\]: pam_unix$sshd:auth$: authe	2019-08-25 00:05:56
202.164.48.202	attackbotsspam	Aug 24 15:37:56 MK-Soft-VM7 sshd\[21364\]: Invalid user ales from 202.164.48.202 port 38381 Aug 24 15:37:56 MK-Soft-VM7 sshd\[21364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.164.48.202 Aug 24 15:37:58 MK-Soft-VM7 sshd\[21364\]: Failed password for invalid user ales from 202.164.48.202 port 38381 ssh2 ...	2019-08-25 00:06:29
112.85.42.185	attackspambots	Aug 24 13:26:57 dcd-gentoo sshd[25296]: User root from 112.85.42.185 not allowed because none of user's groups are listed in AllowGroups Aug 24 13:27:00 dcd-gentoo sshd[25296]: error: PAM: Authentication failure for illegal user root from 112.85.42.185 Aug 24 13:26:57 dcd-gentoo sshd[25296]: User root from 112.85.42.185 not allowed because none of user's groups are listed in AllowGroups Aug 24 13:27:00 dcd-gentoo sshd[25296]: error: PAM: Authentication failure for illegal user root from 112.85.42.185 Aug 24 13:26:57 dcd-gentoo sshd[25296]: User root from 112.85.42.185 not allowed because none of user's groups are listed in AllowGroups Aug 24 13:27:00 dcd-gentoo sshd[25296]: error: PAM: Authentication failure for illegal user root from 112.85.42.185 Aug 24 13:27:00 dcd-gentoo sshd[25296]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.185 port 59164 ssh2 ...	2019-08-24 23:43:41
111.67.205.202	attackbots	Invalid user xu from 111.67.205.202 port 39534	2019-08-24 23:08:47
151.80.144.255	attackspam	Aug 24 04:16:31 lcdev sshd\[13675\]: Invalid user kosherdk from 151.80.144.255 Aug 24 04:16:31 lcdev sshd\[13675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=255.ip-151-80-144.eu Aug 24 04:16:33 lcdev sshd\[13675\]: Failed password for invalid user kosherdk from 151.80.144.255 port 49417 ssh2 Aug 24 04:20:31 lcdev sshd\[14084\]: Invalid user eberhard from 151.80.144.255 Aug 24 04:20:31 lcdev sshd\[14084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=255.ip-151-80-144.eu	2019-08-25 00:03:12
94.191.50.165	attackbots	Aug 24 16:56:44 vps691689 sshd[16362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.165 Aug 24 16:56:46 vps691689 sshd[16362]: Failed password for invalid user bip from 94.191.50.165 port 42164 ssh2 ...	2019-08-24 23:47:45
208.73.204.202	attackspam	Aug 24 12:56:38 mxgate1 sshd[25028]: Invalid user test from 208.73.204.202 port 51172 Aug 24 12:56:38 mxgate1 sshd[25028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.73.204.202 Aug 24 12:56:39 mxgate1 sshd[25028]: Failed password for invalid user test from 208.73.204.202 port 51172 ssh2 Aug 24 12:56:40 mxgate1 sshd[25028]: Received disconnect from 208.73.204.202 port 51172:11: Bye Bye [preauth] Aug 24 12:56:40 mxgate1 sshd[25028]: Disconnected from 208.73.204.202 port 51172 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=208.73.204.202	2019-08-24 23:52:00
82.231.172.71	attackbots	Honeypot attack, port: 23, PTR: mfl93-1-82-231-172-71.fbx.proxad.net.	2019-08-24 23:27:41

Recently Reported IPs

112.250.105.63	166.134.143.91	41.69.179.88	37.120.163.150
34.255.137.37	96.64.118.93	124.107.67.236	14.187.46.73
177.158.137.208	41.39.130.46	200.57.243.142	222.189.144.220
212.237.23.252	175.139.172.251	208.80.194.27	78.192.104.95
209.126.103.235	93.179.89.108	45.122.221.111	181.120.254.64