14.253.206.252

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 14.253.206.252 on Port 445(SMB)	2020-04-24 20:08:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.253.206.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10213
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.253.206.252.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042400 1800 900 604800 86400

;; Query time: 186 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 24 20:08:38 CST 2020
;; MSG SIZE  rcvd: 118

Host info

252.206.253.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.206.253.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.227.253.54	attack	apache exploit attempt	2020-05-27 23:28:49
147.78.29.179	attackbotsspam	TCP Port Scanning	2020-05-27 23:30:49
24.16.139.106	attack	2020-05-27T15:03:15.522078abusebot-3.cloudsearch.cf sshd[24785]: Invalid user usuario from 24.16.139.106 port 58552 2020-05-27T15:03:15.529607abusebot-3.cloudsearch.cf sshd[24785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.16.139.106 2020-05-27T15:03:15.522078abusebot-3.cloudsearch.cf sshd[24785]: Invalid user usuario from 24.16.139.106 port 58552 2020-05-27T15:03:17.500530abusebot-3.cloudsearch.cf sshd[24785]: Failed password for invalid user usuario from 24.16.139.106 port 58552 ssh2 2020-05-27T15:07:19.348429abusebot-3.cloudsearch.cf sshd[24988]: Invalid user lmwangi from 24.16.139.106 port 35762 2020-05-27T15:07:19.358135abusebot-3.cloudsearch.cf sshd[24988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.16.139.106 2020-05-27T15:07:19.348429abusebot-3.cloudsearch.cf sshd[24988]: Invalid user lmwangi from 24.16.139.106 port 35762 2020-05-27T15:07:21.161785abusebot-3.cloudsearch.cf sshd[2498 ...	2020-05-27 23:19:14
49.73.84.175	attackbotsspam	May 27 14:26:35 h2779839 sshd[15312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.84.175 user=root May 27 14:26:36 h2779839 sshd[15312]: Failed password for root from 49.73.84.175 port 48318 ssh2 May 27 14:30:58 h2779839 sshd[15420]: Invalid user chloe from 49.73.84.175 port 35154 May 27 14:30:58 h2779839 sshd[15420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.84.175 May 27 14:30:58 h2779839 sshd[15420]: Invalid user chloe from 49.73.84.175 port 35154 May 27 14:31:00 h2779839 sshd[15420]: Failed password for invalid user chloe from 49.73.84.175 port 35154 ssh2 May 27 14:35:14 h2779839 sshd[15479]: Invalid user stivender from 49.73.84.175 port 50218 May 27 14:35:14 h2779839 sshd[15479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.84.175 May 27 14:35:14 h2779839 sshd[15479]: Invalid user stivender from 49.73.84.175 port 50218 May 27 14:35 ...	2020-05-27 23:03:40
195.154.179.3	attack	(mod_security) mod_security (id:210492) triggered by 195.154.179.3 (FR/France/195-154-179-3.rev.poneytelecom.eu): 5 in the last 3600 secs	2020-05-27 23:12:25
112.85.42.174	attack	2020-05-27T15:20:41.219041shield sshd\[1373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root 2020-05-27T15:20:42.786856shield sshd\[1373\]: Failed password for root from 112.85.42.174 port 30464 ssh2 2020-05-27T15:20:46.123329shield sshd\[1373\]: Failed password for root from 112.85.42.174 port 30464 ssh2 2020-05-27T15:20:49.215481shield sshd\[1373\]: Failed password for root from 112.85.42.174 port 30464 ssh2 2020-05-27T15:20:52.743876shield sshd\[1373\]: Failed password for root from 112.85.42.174 port 30464 ssh2	2020-05-27 23:21:18
45.55.145.31	attackspam	May 27 14:14:02 l02a sshd[9433]: Invalid user ubnt from 45.55.145.31 May 27 14:14:02 l02a sshd[9433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 May 27 14:14:02 l02a sshd[9433]: Invalid user ubnt from 45.55.145.31 May 27 14:14:05 l02a sshd[9433]: Failed password for invalid user ubnt from 45.55.145.31 port 48372 ssh2	2020-05-27 23:35:31
206.189.127.6	attackspambots	May 27 14:08:35 buvik sshd[26969]: Failed password for mysql from 206.189.127.6 port 46600 ssh2 May 27 14:12:21 buvik sshd[27507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.127.6 user=root May 27 14:12:23 buvik sshd[27507]: Failed password for root from 206.189.127.6 port 52234 ssh2 ...	2020-05-27 23:18:24
204.111.241.83	attackbots	May 13 01:53:39 host sshd[29273]: Invalid user pi from 204.111.241.83 port 47380	2020-05-27 23:38:23
157.55.87.32	attackspam	WordPress XMLRPC scan :: 157.55.87.32 0.420 - [27/May/2020:11:54:08 0000] www.[censored_1] "POST //xmlrpc.php HTTP/1.1" 503 18225 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/80.0.3987.149 Safari/537.36" "HTTP/1.1"	2020-05-27 22:56:21
109.185.149.226	attackbotsspam	Registration form abuse	2020-05-27 23:22:05
89.181.28.208	attackspam	Port Scan detected! ...	2020-05-27 23:23:07
62.210.37.82	attackbots	May 13 19:53:57 host sshd[10493]: Invalid user ubnt from 62.210.37.82 port 32936	2020-05-27 23:14:39
222.90.74.62	attackbotsspam	2020-05-27T14:34:31.339474shield sshd\[21911\]: Invalid user eachbytr from 222.90.74.62 port 51060 2020-05-27T14:34:31.343286shield sshd\[21911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.90.74.62 2020-05-27T14:34:33.976166shield sshd\[21911\]: Failed password for invalid user eachbytr from 222.90.74.62 port 51060 ssh2 2020-05-27T14:40:16.103543shield sshd\[23342\]: Invalid user home from 222.90.74.62 port 51058 2020-05-27T14:40:16.107418shield sshd\[23342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.90.74.62	2020-05-27 23:09:07
180.254.40.165	attack	20/5/27@07:53:47: FAIL: Alarm-Telnet address from=180.254.40.165 ...	2020-05-27 23:10:34

Recently Reported IPs

5.53.125.142	2404:a300:0:180:0:1:aa0:2bfd	222.175.19.94	180.244.233.34
78.194.55.101	183.159.114.151	36.68.5.230	36.229.83.146
122.137.180.142	110.40.14.20	46.109.209.127	103.145.13.12
202.26.9.102	185.50.149.17	123.207.156.64	114.225.173.145
151.45.44.166	45.91.93.243	18.222.111.164	14.231.181.112