14.168.31.168 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	20/3/11@23:48:21: FAIL: Alarm-Network address from=14.168.31.168 ...	2020-03-12 18:17:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.168.31.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56734
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.168.31.168.			IN	A

;; AUTHORITY SECTION:
.			317	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 18:17:32 CST 2020
;; MSG SIZE  rcvd: 117

Host info

168.31.168.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.31.168.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.142.148.141	attackbots	Nov 24 08:59:31 our-server-hostname postfix/smtpd[26165]: connect from unknown[213.142.148.141] Nov 24 08:59:32 our-server-hostname postfix/smtpd[25209]: connect from unknown[213.142.148.141] Nov x@x Nov x@x Nov 24 08:59:34 our-server-hostname postfix/smtpd[26165]: 6E842A40327: client=unknown[213.142.148.141] Nov x@x Nov x@x Nov 24 08:59:34 our-server-hostname postfix/smtpd[25209]: A8912A40329: client=unknown[213.142.148.141] Nov 24 08:59:35 our-server-hostname postfix/smtpd[30228]: 3B6A6A4032A: client=unknown[127.0.0.1], orig_client=unknown[213.142.148.141] Nov 24 08:59:35 our-server-hostname amavis[27153]: (27153-05) Passed CLEAN, [213.142.148.141] [213.142.148.141] , mail_id: ipOMe-s091WT, Hhostnames: -, size: 9864, queued_as: 3B6A6A4032A, 124 ms Nov x@x Nov x@x Nov 24 08:59:35 our-server-hostname postfix/smtpd[26165]: 7FD11A4001A: client=unknown[213.142.148.141] Nov 24 08:59:35 our-server-hostname postfix/smtpd[30228]: 84C00A4032C: client=unknown[127.0.0.1], or........ -------------------------------	2019-11-24 08:56:04
125.231.6.127	attackbotsspam	Telnet Server BruteForce Attack	2019-11-24 09:19:07
103.55.91.51	attackspambots	F2B jail: sshd. Time: 2019-11-24 01:56:25, Reported by: VKReport	2019-11-24 09:04:19
113.121.21.176	attack	badbot	2019-11-24 09:33:39
54.39.145.59	attackbots	Nov 23 14:40:44 hpm sshd\[12498\]: Invalid user ftpuser from 54.39.145.59 Nov 23 14:40:44 hpm sshd\[12498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-54-39-145.net Nov 23 14:40:46 hpm sshd\[12498\]: Failed password for invalid user ftpuser from 54.39.145.59 port 35368 ssh2 Nov 23 14:47:26 hpm sshd\[13029\]: Invalid user bredahl from 54.39.145.59 Nov 23 14:47:26 hpm sshd\[13029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-54-39-145.net	2019-11-24 08:55:19
83.97.20.49	attackspam	port scan and connect, tcp 25 (smtp)	2019-11-24 09:14:51
14.134.201.71	attack	badbot	2019-11-24 09:03:20
103.81.84.140	attackspam	103.81.84.140 - - \[24/Nov/2019:01:38:51 +0100\] "POST /wp-login.php HTTP/1.0" 200 7538 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.81.84.140 - - \[24/Nov/2019:01:38:54 +0100\] "POST /wp-login.php HTTP/1.0" 200 7363 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.81.84.140 - - \[24/Nov/2019:01:38:57 +0100\] "POST /wp-login.php HTTP/1.0" 200 7358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-24 09:25:10
104.236.124.45	attackspambots	2019-11-24T01:55:27.227780 sshd[835]: Invalid user suesser from 104.236.124.45 port 53641 2019-11-24T01:55:27.241528 sshd[835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 2019-11-24T01:55:27.227780 sshd[835]: Invalid user suesser from 104.236.124.45 port 53641 2019-11-24T01:55:29.114686 sshd[835]: Failed password for invalid user suesser from 104.236.124.45 port 53641 ssh2 2019-11-24T02:04:02.128857 sshd[1003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 user=root 2019-11-24T02:04:03.364671 sshd[1003]: Failed password for root from 104.236.124.45 port 39198 ssh2 ...	2019-11-24 09:29:49
123.25.238.108	attackbots	SSH brutforce	2019-11-24 09:18:01
14.47.146.14	attackbotsspam	Nov 23 23:43:10 lnxmail61 sshd[11031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.47.146.14 Nov 23 23:43:10 lnxmail61 sshd[11029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.47.146.14 Nov 23 23:43:12 lnxmail61 sshd[11031]: Failed password for invalid user pi from 14.47.146.14 port 63701 ssh2	2019-11-24 09:09:10
39.176.185.82	attackbotsspam	badbot	2019-11-24 08:55:48
139.59.34.227	attackspambots	Lines containing failures of 139.59.34.227 Nov 21 22:35:53 icinga sshd[25330]: Invalid user guilmette from 139.59.34.227 port 53536 Nov 21 22:35:53 icinga sshd[25330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.34.227 Nov 21 22:35:55 icinga sshd[25330]: Failed password for invalid user guilmette from 139.59.34.227 port 53536 ssh2 Nov 21 22:35:56 icinga sshd[25330]: Received disconnect from 139.59.34.227 port 53536:11: Bye Bye [preauth] Nov 21 22:35:56 icinga sshd[25330]: Disconnected from invalid user guilmette 139.59.34.227 port 53536 [preauth] Nov 21 22:47:40 icinga sshd[28485]: Invalid user wwwadmin from 139.59.34.227 port 35030 Nov 21 22:47:40 icinga sshd[28485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.34.227 Nov 21 22:47:42 icinga sshd[28485]: Failed password for invalid user wwwadmin from 139.59.34.227 port 35030 ssh2 Nov 21 22:47:43 icinga sshd[28485]: Receiv........ ------------------------------	2019-11-24 09:31:53
193.70.2.117	attack	Fail2Ban - SSH Bruteforce Attempt	2019-11-24 09:33:04
113.102.248.105	attackbotsspam	badbot	2019-11-24 08:59:25

Recently Reported IPs

96.29.218.228	36.90.172.180	124.109.51.236	190.2.149.159
159.89.162.107	113.190.253.187	42.114.1.219	193.31.74.239
122.246.34.11	110.164.215.137	64.227.1.190	49.49.250.250
103.9.79.0	120.195.202.42	27.102.134.173	113.53.100.102
24.164.142.188	111.229.76.240	39.73.168.120	194.36.179.32