14.169.2.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.169.236.134	attackspambots	Hit honeypot r.	2020-10-10 03:40:13
14.169.236.134	attack	Hit honeypot r.	2020-10-09 19:35:21
14.169.204.218	attack	Unauthorised access (Aug 22) SRC=14.169.204.218 LEN=52 TTL=113 ID=1915 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-22 14:18:12
14.169.243.198	attackspam	michaelklotzbier.de 14.169.243.198 [22/Jul/2020:16:44:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" michaelklotzbier.de 14.169.243.198 [22/Jul/2020:16:45:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-23 06:19:40
14.169.251.60	attackspambots	(smtpauth) Failed SMTP AUTH login from 14.169.251.60 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-13 08:21:24 plain authenticator failed for (127.0.0.1) [14.169.251.60]: 535 Incorrect authentication data (set_id=tavanavaran@tavanavaran.com)	2020-07-13 16:16:24
14.169.221.185	attackspambots	2020-07-0722:11:171jstvx-00056v-Fj\<=info@whatsup2013.chH=$localhost$[37.45.211.19]:37213P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3010id=8ef8d39f94bf6a99ba44b2e1ea3e07ab886bb7a8c8@whatsup2013.chT="Wouldliketohumptheladiesaroundyou\?"foranonymighty@gmail.comwinstonsalem559@gmail.combryanmeyer22@gmail.com2020-07-0722:11:461jstwQ-00058X-6F\<=info@whatsup2013.chH=$localhost$[14.169.221.185]:37114P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2979id=ada26d3e351ecbc7e0a51340b473f9f5cfdd9ba7@whatsup2013.chT="Doyouwanttoscrewtheyoungladiesinyourarea\?"fordarcy@yahoo.cawindrift29pc@hotmail.comkagaz@live.co.uk2020-07-0722:11:391jstwI-00057s-F5\<=info@whatsup2013.chH=$localhost$[14.177.18.28]:58116P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2936id=a806b0e3e8c3e9e17d78ce6285f1dbce399ab3@whatsup2013.chT="Needcasualhookuptoday\?"formarcelo.daguar@hotmail.comjosh.carruth1@g	2020-07-08 07:29:03
14.169.255.42	attack	Jul 4 23:30:34 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:34 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:37 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL PLAIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL LOGIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL CRAM-MD5 authentication failed: authentication failure Jul 4 23:30:39 offspring postfix/smtpd[11628]: disconnect from unknown[14.169.255.42] Jul 4 23:30:39 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:39 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:42 offspring postfix/smtpd[11628]: warning: unknown[1........ -------------------------------	2020-07-05 07:19:00
14.169.219.145	attackbots	2020-07-0304:10:041jrB9J-0007ZO-DE\<=info@whatsup2013.chH=$localhost$[178.47.142.5]:59066P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=4985id=882492c1cae1cbc35f5aec40a7d3f9edeb7eb3@whatsup2013.chT="Matchactualfemalesforsexualintercourserightnow"forsangaretata1999@gmail.comxbcnvn@gmail.commrmaytag1974@gmail.com2020-07-0304:11:181jrBAc-0007jA-27\<=info@whatsup2013.chH=$localhost$[37.34.102.207]:33872P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=4936id=8c23f3919ab16497b44abcefe43009a58664ef21e5@whatsup2013.chT="Signuptodaytogetsextonite"forsandeep_gura@hotmail.comgoodhardpaddling@gmail.comdigitlandscaping92@gmail.com2020-07-0304:10:461jrBA5-0007gA-Ms\<=info@whatsup2013.chH=$localhost$[113.172.156.54]:60556P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=4928id=aecc01131833e61536c83e6d66b28b2704e6a6215f@whatsup2013.chT="Jointodaytolocatesextonight"forkjud@comcast.netjorda	2020-07-03 22:43:19
14.169.235.239	attack	20/6/29@07:11:06: FAIL: IoT-SSH address from=14.169.235.239 ...	2020-06-29 22:56:00
14.169.237.247	attackspambots	Unauthorized IMAP connection attempt	2020-06-19 02:53:08
14.169.253.84	attack	Invalid user admin from 14.169.253.84 port 44738	2020-06-18 06:37:11
14.169.212.178	attackspam	Invalid user admin from 14.169.212.178 port 60907	2020-06-18 05:59:35
14.169.238.241	attackbots	Invalid user admin from 14.169.238.241 port 1614	2020-06-18 05:40:30
14.169.217.191	attackbotsspam	Unauthorized connection attempt from IP address 14.169.217.191 on Port 445(SMB)	2020-06-08 03:02:23
14.169.207.209	attack	Invalid user admin from 14.169.207.209 port 43484	2020-06-06 01:56:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.2.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7156
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.169.2.141.			IN	A

;; AUTHORITY SECTION:
.			253	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:00:32 CST 2022
;; MSG SIZE  rcvd: 105

Host info

141.2.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.2.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.148.122.18	attack	Port 1433 Scan	2019-10-10 19:58:23
79.107.158.143	attack	Telnet Server BruteForce Attack	2019-10-10 19:55:48
106.75.141.91	attackbotsspam	Oct 10 13:14:12 MK-Soft-VM7 sshd[22942]: Failed password for root from 106.75.141.91 port 41722 ssh2 ...	2019-10-10 19:49:53
200.133.39.24	attackspambots	Oct 10 03:43:19 unicornsoft sshd\[30053\]: User root from 200.133.39.24 not allowed because not listed in AllowUsers Oct 10 03:43:19 unicornsoft sshd\[30053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.24 user=root Oct 10 03:43:21 unicornsoft sshd\[30053\]: Failed password for invalid user root from 200.133.39.24 port 59846 ssh2	2019-10-10 19:38:24
154.237.238.132	attack	B: Magento admin pass /admin/ test (wrong country)	2019-10-10 20:15:41
62.210.201.63	attack	Automatic report - Banned IP Access	2019-10-10 20:16:34
77.42.109.110	attackspam	Automatic report - Port Scan Attack	2019-10-10 19:52:22
104.40.18.45	attack	Oct 10 03:41:20 TCP Attack: SRC=104.40.18.45 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=40 PROTO=TCP SPT=16832 DPT=23 WINDOW=34909 RES=0x00 SYN URGP=0	2019-10-10 19:53:26
162.243.165.39	attack	SSH invalid-user multiple login attempts	2019-10-10 19:52:59
35.189.52.196	attackspam	fail2ban honeypot	2019-10-10 20:04:58
139.59.249.255	attackspambots	Oct 10 01:50:21 hanapaa sshd\[6361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=blog.jungleland.co.id user=root Oct 10 01:50:22 hanapaa sshd\[6361\]: Failed password for root from 139.59.249.255 port 25284 ssh2 Oct 10 01:54:59 hanapaa sshd\[6708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=blog.jungleland.co.id user=root Oct 10 01:55:01 hanapaa sshd\[6708\]: Failed password for root from 139.59.249.255 port 64660 ssh2 Oct 10 01:59:29 hanapaa sshd\[7759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=blog.jungleland.co.id user=root	2019-10-10 20:08:05
201.39.233.40	attack	Oct 10 07:01:31 www sshd\[35806\]: Invalid user P@$$WORD2018 from 201.39.233.40Oct 10 07:01:33 www sshd\[35806\]: Failed password for invalid user P@$$WORD2018 from 201.39.233.40 port 46815 ssh2Oct 10 07:06:22 www sshd\[36014\]: Invalid user Execute2017 from 201.39.233.40 ...	2019-10-10 19:48:00
2.35.164.27	attackspambots	Automatic report - Port Scan Attack	2019-10-10 19:51:18
106.13.93.216	attack	Oct 10 13:54:28 * sshd[16492]: Failed password for root from 106.13.93.216 port 55050 ssh2	2019-10-10 20:05:29
151.228.243.31	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/151.228.243.31/ GB - 1H : (74) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN5607 IP : 151.228.243.31 CIDR : 151.224.0.0/13 PREFIX COUNT : 35 UNIQUE IP COUNT : 5376768 WYKRYTE ATAKI Z ASN5607 : 1H - 1 3H - 1 6H - 2 12H - 6 24H - 12 DateTime : 2019-10-10 05:42:53 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-10 19:49:33

Recently Reported IPs

157.100.92.10	85.222.202.22	179.6.57.184	80.48.66.183
138.99.135.214	82.22.63.36	27.45.16.65	189.182.21.184
112.118.193.170	200.194.43.234	194.158.74.192	117.251.53.240
50.194.5.181	117.251.61.202	79.73.59.244	103.19.142.111
213.149.1.106	73.69.44.82	200.241.42.180	200.194.55.178