14.131.2.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.131.2.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46423
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.131.2.18.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat May 11 14:04:50 +08 2019
;; MSG SIZE  rcvd: 115

Host info

Host 18.2.131.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 18.2.131.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.67.14.65	attack	Oct 3 08:23:54 localhost kernel: [3843253.616488] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=95.67.14.65 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=243 ID=22157 PROTO=TCP SPT=47485 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 3 08:23:54 localhost kernel: [3843253.616494] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=95.67.14.65 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=243 ID=22157 PROTO=TCP SPT=47485 DPT=445 SEQ=1513568078 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0	2019-10-04 02:05:03
212.64.44.246	attackspam	Oct 3 19:39:47 cp sshd[906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.44.246 Oct 3 19:39:47 cp sshd[906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.44.246	2019-10-04 02:20:53
180.250.115.93	attack	Oct 3 19:50:18 markkoudstaal sshd[7429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93 Oct 3 19:50:20 markkoudstaal sshd[7429]: Failed password for invalid user dwssp from 180.250.115.93 port 39685 ssh2 Oct 3 19:55:28 markkoudstaal sshd[7913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93	2019-10-04 02:05:22
179.42.198.6	attackspambots	(imapd) Failed IMAP login from 179.42.198.6 (BZ/Belize/-): 1 in the last 3600 secs	2019-10-04 02:14:15
149.202.164.82	attackspam	Feb 14 17:24:41 vtv3 sshd\[31302\]: Invalid user informix from 149.202.164.82 port 58748 Feb 14 17:24:41 vtv3 sshd\[31302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 Feb 14 17:24:43 vtv3 sshd\[31302\]: Failed password for invalid user informix from 149.202.164.82 port 58748 ssh2 Feb 14 17:29:30 vtv3 sshd\[32689\]: Invalid user demo from 149.202.164.82 port 48734 Feb 14 17:29:30 vtv3 sshd\[32689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 Feb 18 18:24:02 vtv3 sshd\[22972\]: Invalid user karen from 149.202.164.82 port 43866 Feb 18 18:24:02 vtv3 sshd\[22972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.164.82 Feb 18 18:24:04 vtv3 sshd\[22972\]: Failed password for invalid user karen from 149.202.164.82 port 43866 ssh2 Feb 18 18:29:05 vtv3 sshd\[24378\]: Invalid user jenkins from 149.202.164.82 port 33836 Feb 18 18:29:05 vtv3 sshd	2019-10-04 02:02:43
74.208.150.36	attackspambots	Attempting to spam a never valid address that is a popular target of .cn B2B spammers.	2019-10-04 02:23:50
193.202.110.21	attackspam	ATTACK TYPE :- SQL Injection	2019-10-04 02:24:11
117.200.165.123	attack	Unauthorised access (Oct 3) SRC=117.200.165.123 LEN=52 PREC=0x20 TTL=111 ID=12540 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-04 01:54:26
222.186.15.160	attack	Oct 3 20:23:52 MK-Soft-Root1 sshd[8788]: Failed password for root from 222.186.15.160 port 47344 ssh2 Oct 3 20:23:54 MK-Soft-Root1 sshd[8788]: Failed password for root from 222.186.15.160 port 47344 ssh2 ...	2019-10-04 02:24:41
117.70.44.225	attackbots	Unauthorised access (Oct 3) SRC=117.70.44.225 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=8528 TCP DPT=8080 WINDOW=1371 SYN Unauthorised access (Oct 3) SRC=117.70.44.225 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=58752 TCP DPT=8080 WINDOW=14839 SYN Unauthorised access (Oct 2) SRC=117.70.44.225 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=58645 TCP DPT=8080 WINDOW=32863 SYN Unauthorised access (Oct 2) SRC=117.70.44.225 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=23494 TCP DPT=8080 WINDOW=32863 SYN	2019-10-04 02:13:11
13.93.71.38	attackbotsspam	Automated reporting of SSH Vulnerability scanning	2019-10-04 01:53:34
81.74.229.246	attackspambots	Oct 3 17:48:49 venus sshd\[21889\]: Invalid user ku from 81.74.229.246 port 34991 Oct 3 17:48:49 venus sshd\[21889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.74.229.246 Oct 3 17:48:51 venus sshd\[21889\]: Failed password for invalid user ku from 81.74.229.246 port 34991 ssh2 ...	2019-10-04 02:00:33
93.84.84.142	attack	(imapd) Failed IMAP login from 93.84.84.142 (BY/Belarus/static12.byfly.gomel.by): 1 in the last 3600 secs	2019-10-04 02:07:34
222.161.209.130	attackspambots	[munged]::443 222.161.209.130 - - [03/Oct/2019:14:23:24 +0200] "POST /[munged]: HTTP/1.1" 200 9038 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"	2019-10-04 02:25:09
103.16.136.12	attackbots	ICMP MP Probe, Scan -	2019-10-04 02:13:55

Recently Reported IPs

95.210.109.129	202.48.154.0	221.129.131.108	116.39.174.213
37.187.92.228	234.5.250.75	206.189.41.62	107.170.194.158
177.184.75.130	125.123.154.88	185.176.26.18	89.174.64.18
62.189.188.149	198.89.125.35	127.184.185.188	207.46.13.189
167.3.196.201	51.77.146.153	253.72.162.110	234.25.27.23