14.160.39.154 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Mar 5 21:58:26 sigma sshd\[23720\]: Invalid user ubnt from 14.160.39.154Mar 5 21:58:29 sigma sshd\[23720\]: Failed password for invalid user ubnt from 14.160.39.154 port 53419 ssh2 ...	2020-03-06 07:23:29

Comments on same subnet:

IP	Type	Details	Datetime
14.160.39.26	attack	Unauthorized connection attempt from IP address 14.160.39.26 on port 993	2020-09-14 03:03:30
14.160.39.26	attack	Dovecot Invalid User Login Attempt.	2020-09-13 19:01:04
14.160.39.26	attack	CMS (WordPress or Joomla) login attempt.	2020-09-01 18:26:43
14.160.39.26	attack	Dovecot Invalid User Login Attempt.	2020-08-04 13:59:51
14.160.39.222	attackbots	Jul 19 01:45:55 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=14.160.39.222, lip=185.198.26.142, TLS: Disconnected, session=<+xoylMaqiqQOoCfe> ...	2020-07-19 23:42:40
14.160.39.18	attackbots	(imapd) Failed IMAP login from 14.160.39.18 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 16 08:20:43 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=14.160.39.18, lip=5.63.12.44, TLS, session=	2020-07-16 17:26:53
14.160.39.18	attack	Dovecot Invalid User Login Attempt.	2020-07-13 17:49:28
14.160.39.26	attackbots	(imapd) Failed IMAP login from 14.160.39.26 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 12 00:36:05 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=14.160.39.26, lip=5.63.12.44, TLS, session=	2020-07-12 06:22:21
14.160.39.138	attackspam	Dovecot Invalid User Login Attempt.	2020-07-04 10:52:36
14.160.39.138	attackspam	Dovecot Invalid User Login Attempt.	2020-05-28 15:01:02
14.160.39.138	attack	Dovecot Invalid User Login Attempt.	2020-04-25 17:17:29
14.160.39.138	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-04-24 02:00:00
14.160.39.138	attackspambots	Dovecot Invalid User Login Attempt.	2020-04-19 12:01:37
14.160.39.106	attackspam	Invalid user admin from 14.160.39.106 port 55310	2020-01-22 00:06:09
14.160.39.106	attackspam	SSH bruteforce (Triggered fail2ban)	2019-12-21 07:56:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.39.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21645
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.39.154.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030502 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 06 07:23:26 CST 2020
;; MSG SIZE  rcvd: 117

Host info

154.39.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
154.39.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.78.121	attackspambots	Jun 11 09:13:49 ws22vmsma01 sshd[121170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.78.121 Jun 11 09:13:51 ws22vmsma01 sshd[121170]: Failed password for invalid user hewenlong from 106.13.78.121 port 57096 ssh2 ...	2020-06-11 21:51:57
121.128.200.146	attackspambots	Jun 11 16:43:05 pkdns2 sshd\[27754\]: Invalid user ntz123 from 121.128.200.146Jun 11 16:43:07 pkdns2 sshd\[27754\]: Failed password for invalid user ntz123 from 121.128.200.146 port 58400 ssh2Jun 11 16:46:37 pkdns2 sshd\[27943\]: Invalid user ytt from 121.128.200.146Jun 11 16:46:39 pkdns2 sshd\[27943\]: Failed password for invalid user ytt from 121.128.200.146 port 33872 ssh2Jun 11 16:50:08 pkdns2 sshd\[28160\]: Invalid user sgiweb123 from 121.128.200.146Jun 11 16:50:11 pkdns2 sshd\[28160\]: Failed password for invalid user sgiweb123 from 121.128.200.146 port 37592 ssh2 ...	2020-06-11 21:52:31
222.186.42.137	attack	Jun 11 15:48:30 piServer sshd[10419]: Failed password for root from 222.186.42.137 port 28285 ssh2 Jun 11 15:48:33 piServer sshd[10419]: Failed password for root from 222.186.42.137 port 28285 ssh2 Jun 11 15:48:35 piServer sshd[10419]: Failed password for root from 222.186.42.137 port 28285 ssh2 ...	2020-06-11 21:50:43
145.239.82.192	attack	Jun 11 21:41:40 web1 sshd[14850]: Invalid user client from 145.239.82.192 port 33876 Jun 11 21:41:40 web1 sshd[14850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.192 Jun 11 21:41:40 web1 sshd[14850]: Invalid user client from 145.239.82.192 port 33876 Jun 11 21:41:42 web1 sshd[14850]: Failed password for invalid user client from 145.239.82.192 port 33876 ssh2 Jun 11 22:10:45 web1 sshd[22344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.192 user=root Jun 11 22:10:47 web1 sshd[22344]: Failed password for root from 145.239.82.192 port 55448 ssh2 Jun 11 22:14:10 web1 sshd[23104]: Invalid user chetan from 145.239.82.192 port 55454 Jun 11 22:14:10 web1 sshd[23104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.192 Jun 11 22:14:10 web1 sshd[23104]: Invalid user chetan from 145.239.82.192 port 55454 Jun 11 22:14:12 web1 sshd[23104]: ...	2020-06-11 21:26:34
46.101.249.232	attackbotsspam	Jun 11 14:41:12 h1745522 sshd[21020]: Invalid user applmgr from 46.101.249.232 port 40540 Jun 11 14:41:12 h1745522 sshd[21020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.249.232 Jun 11 14:41:12 h1745522 sshd[21020]: Invalid user applmgr from 46.101.249.232 port 40540 Jun 11 14:41:14 h1745522 sshd[21020]: Failed password for invalid user applmgr from 46.101.249.232 port 40540 ssh2 Jun 11 14:45:12 h1745522 sshd[21206]: Invalid user lencia from 46.101.249.232 port 41022 Jun 11 14:45:12 h1745522 sshd[21206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.249.232 Jun 11 14:45:12 h1745522 sshd[21206]: Invalid user lencia from 46.101.249.232 port 41022 Jun 11 14:45:14 h1745522 sshd[21206]: Failed password for invalid user lencia from 46.101.249.232 port 41022 ssh2 Jun 11 14:49:06 h1745522 sshd[21425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.10 ...	2020-06-11 21:19:11
45.147.197.20	attackbots	RUSSIAN SCAMMERS !	2020-06-11 21:10:23
79.129.20.34	attack	Honeypot attack, port: 81, PTR: ofebde.static.otenet.gr.	2020-06-11 21:36:48
123.240.81.245	attackbots	Honeypot attack, port: 81, PTR: 123-240-81-245.cctv.dynamic.tbcnet.net.tw.	2020-06-11 21:21:27
90.112.165.151	attackspam	Jun 10 12:04:53 mail sshd[3233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.112.165.151 Jun 10 12:04:55 mail sshd[3233]: Failed password for invalid user database from 90.112.165.151 port 43568 ssh2 ...	2020-06-11 21:38:44
203.106.81.120	attackspambots	2020-06-11T08:14:18.536005bastadge sshd[20534]: Connection closed by 203.106.81.120 port 33244 [preauth] ...	2020-06-11 21:17:07
219.77.20.218	attack	Honeypot attack, port: 5555, PTR: n219077020218.netvigator.com.	2020-06-11 21:18:52
42.190.158.159	attackbots	Automatic report - Port Scan Attack	2020-06-11 21:13:05
132.145.242.238	attackspam	Jun 11 14:14:03 h2427292 sshd\[15887\]: Invalid user user1 from 132.145.242.238 Jun 11 14:14:03 h2427292 sshd\[15887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.242.238 Jun 11 14:14:05 h2427292 sshd\[15887\]: Failed password for invalid user user1 from 132.145.242.238 port 58227 ssh2 ...	2020-06-11 21:31:26
222.186.180.147	attack	Hit honeypot r.	2020-06-11 21:10:55
143.0.41.165	attack	(smtpauth) Failed SMTP AUTH login from 143.0.41.165 (BR/Brazil/143.0.41.165.lucasnet.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-11 16:43:16 plain authenticator failed for 143.0.41.165.lucasnet.com.br [143.0.41.165]: 535 Incorrect authentication data (set_id=info@koosheshgaran.com)	2020-06-11 21:58:19

Recently Reported IPs

177.99.89.134	151.70.228.32	171.96.99.162	183.89.41.128
81.196.93.228	47.100.197.136	175.202.162.120	75.31.216.116
129.226.73.26	239.176.51.199	177.77.178.30	133.14.130.249
125.57.117.189	183.44.208.212	153.124.218.26	225.249.234.130
252.85.19.214	114.93.91.196	130.188.89.100	147.102.66.163