14.249.4.196 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.249.44.227	attack	TCP (SYN) 14.249.44.227:57117 -> port 445, len 52	2020-05-20 06:11:49
14.249.48.78	attackspambots	Unauthorized connection attempt from IP address 14.249.48.78 on Port 445(SMB)	2020-04-03 20:02:30
14.249.42.22	attackbotsspam	Unauthorized connection attempt from IP address 14.249.42.22 on Port 445(SMB)	2020-02-20 04:14:26

Type

Details

Datetime

14.249.44.227

attack

 TCP (SYN) 14.249.44.227:57117 -> port 445, len 52

2020-05-20 06:11:49

14.249.48.78

attackspambots

Unauthorized connection attempt from IP address 14.249.48.78 on Port 445(SMB)

2020-04-03 20:02:30

14.249.42.22

attackbotsspam

Unauthorized connection attempt from IP address 14.249.42.22 on Port 445(SMB)

2020-02-20 04:14:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.249.4.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61384
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.249.4.196.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:11:53 CST 2022
;; MSG SIZE  rcvd: 105

Host info

196.4.249.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.4.249.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.29.219.18	attackspambots	Dovecot Brute-Force	2019-10-05 01:01:27
71.6.146.186	attack	Unauthorized connection attempt from IP address 71.6.146.186 on Port 445(SMB)	2019-10-05 00:38:41
185.175.93.3	attackspambots	10/04/2019-12:01:40.793397 185.175.93.3 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-05 00:46:25
112.78.1.86	attack	xmlrpc attack	2019-10-05 00:24:34
190.203.202.201	attackspambots	" "	2019-10-05 00:42:27
95.170.118.79	attackbotsspam	Sending SPAM email	2019-10-05 00:44:43
185.251.33.194	attackspambots	proto=tcp . spt=45030 . dpt=25 . (Listed on truncate-gbudb also unsubscore and manitu-net) (507)	2019-10-05 01:01:54
211.44.226.176	attack	Oct 4 18:28:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=82 ID=43195 DF PROTO=TCP SPT=56720 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=60 ID=40494 DF PROTO=TCP SPT=52883 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:38 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=73 ID=19070 DF PROTO=TCP SPT=55081 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=60 ID=40494 DF PROTO=TCP SPT=52883 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:38 mail kernel: [UFW BLOCK] IN=eth	2019-10-05 00:43:48
183.136.236.43	attack	port scan and connect, tcp 22 (ssh)	2019-10-05 00:35:41
200.98.1.189	attackbotsspam	Oct 4 04:26:23 auw2 sshd\[30443\]: Invalid user Circus from 200.98.1.189 Oct 4 04:26:23 auw2 sshd\[30443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-98-1-189.tlf.dialuol.com.br Oct 4 04:26:24 auw2 sshd\[30443\]: Failed password for invalid user Circus from 200.98.1.189 port 44634 ssh2 Oct 4 04:31:25 auw2 sshd\[30844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-98-1-189.tlf.dialuol.com.br user=root Oct 4 04:31:27 auw2 sshd\[30844\]: Failed password for root from 200.98.1.189 port 36724 ssh2	2019-10-05 00:59:19
51.68.44.158	attack	SSH invalid-user multiple login try	2019-10-05 00:30:57
37.57.12.231	attack	postfix	2019-10-05 00:26:01
51.38.162.232	attack	Oct 4 14:24:20 rotator sshd\[14973\]: Invalid user admin from 51.38.162.232Oct 4 14:24:22 rotator sshd\[14973\]: Failed password for invalid user admin from 51.38.162.232 port 53085 ssh2Oct 4 14:24:25 rotator sshd\[14973\]: Failed password for invalid user admin from 51.38.162.232 port 53085 ssh2Oct 4 14:24:28 rotator sshd\[14973\]: Failed password for invalid user admin from 51.38.162.232 port 53085 ssh2Oct 4 14:24:31 rotator sshd\[14973\]: Failed password for invalid user admin from 51.38.162.232 port 53085 ssh2Oct 4 14:24:34 rotator sshd\[14973\]: Failed password for invalid user admin from 51.38.162.232 port 53085 ssh2 ...	2019-10-05 00:54:02
37.44.253.158	attackspam	5.245.844,85-03/02 [bc18/m88] concatform PostRequest-Spammer scoring: Durban02	2019-10-05 00:54:36
130.211.88.124	attackbots	Automatic report - XMLRPC Attack	2019-10-05 00:47:23

Recently Reported IPs

14.249.202.83	14.249.66.217	14.249.136.137	14.250.168.118
14.250.227.133	14.250.104.158	14.250.38.4	14.250.242.205
14.250.83.29	14.251.0.59	14.251.173.191	14.251.193.148
14.251.207.146	14.251.218.52	14.251.146.17	14.251.35.77
14.252.143.118	14.251.6.191	14.252.65.48	14.252.156.189