14.225.19.67 Threat Intelligence and Host Information

Nov 03, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 14.225.19.67 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force

  • Tags: brute-force, bruteforce, Bruteforce, cyber security, ioc, malicious, Nextray, phishing, Scanner, scanning, smtp, ssh, tcp, Webattack

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: haley_ssh

  • Country: Vietnam
  • Network: AS135905 vietnam posts and telecommunications group
  • Noticed: 50 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: thegioiveremarianguyen.com thuonggiatravel.com vimoctravel.com thegioibayre.com phongvetususu.com thegioive24h.net phongvexuxu.com vebaytot.com hanflightvere.com dailyvemaybaygiare.net anphatbooking.com phongvebinhhuyen.com verehanoi.com hangkhong247.net thanhatravel.com thanhabay.com saigontravel.asia vemaybaytravel.com vemaybaymuonnoi.com bayrejp.com phongvemynuong.com baybaylathich.net anhthutravel.net vemaybayhatung.com phongveminhkhoi.com vemaybaygioviet.com phongvethanhtien.com verebayvui.net verethuylinh.net phongveanbinh.net vebaymoingay.com phongvehaiha.com www.tgvr.net tgvr.net phongvetienlang.com phongveduygiang.com vemaybaythuyduong.com minbay.net phongvevinhphuc.com jctravelvn.com phongvemaybaynamphong.com phongvethanhthanh.com vemaybaytoanson.com hoanglinhbay.com vereminhquan.com vemaybaymydung.com muavedi.com www.muavedi.com bayvere286.com veredayroi.com www.bookingvemaybay.com kinhbacbay.com vere88.com vemaybayanhtho.com ngaymoivuive.com huongnhai.com baynhanhgiare.com khovere24h.com baysieutot.com avere24h.com thanhlich.net www.thanhlich.net vemaybaytrangnhung.com vemaybaysg.com bayre799.com phongvelynapham.com vemaybayhoangkim.com bayreonline.com bookingvemaybay.com phongvekimhoangyen.com vemaybayhoangmai.com phongvetruongdat.com www.tainhacmp3mienphi.net www.kytudacbiet.org kytudacbiet.org tainhacmp3mienphi.net

Open Ports Detected

3389 443 5985 80 8091

Map

Whois Information

  • inetnum: 14.224.0.0 - 14.255.255.255
  • netname: VNPT-VN
  • descr: Vietnam Posts and Telecommunications Group
  • descr: No 57, Huynh Thuc Khang Street, Lang Ha ward, Dong Da district, Ha Noi City
  • country: VN
  • admin-c: PTH13-AP
  • tech-c: PTH13-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-VN-VNNIC
  • mnt-lower: MAINT-VN-VNPT
  • mnt-routes: MAINT-VN-VNPT
  • last-modified: 2018-01-25T03:55:18Z
  • mnt-irt: IRT-VNNIC-AP
  • irt: IRT-VNNIC-AP
  • address: Ha Noi, VietNam
  • phone: +84-24-35564944
  • fax-no: +84-24-37821462
  • e-mail: hm-changed@vnnic.vn
  • abuse-mailbox: hm-changed@vnnic.vn
  • admin-c: NTTT1-AP
  • tech-c: NTTT1-AP
  • mnt-by: MAINT-VN-VNNIC
  • last-modified: 2017-11-08T09:40:06Z
  • person: Pham Tien Huy
  • address: VNPT-VN
  • country: VN
  • phone: +84-24-37741604
  • e-mail: huypt@vnpt.vn
  • nic-hdl: PTH13-AP
  • mnt-by: MAINT-VN-VNPT
  • last-modified: 2017-11-19T07:06:20Z
  • route: 14.225.19.0/24
  • descr: VNPT
  • origin: AS135905
  • mnt-by: MAINT-VN-VNPT
  • last-modified: 2022-07-29T16:09:17Z

Links to attack logs

bruteforce-ip-list-2022-03-18 ****** ****** ****** ******

Share on: