14.169.2.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
14.169.236.134	attackspambots	Hit honeypot r.	2020-10-10 03:40:13
14.169.236.134	attack	Hit honeypot r.	2020-10-09 19:35:21
14.169.204.218	attack	Unauthorised access (Aug 22) SRC=14.169.204.218 LEN=52 TTL=113 ID=1915 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-22 14:18:12
14.169.243.198	attackspam	michaelklotzbier.de 14.169.243.198 [22/Jul/2020:16:44:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" michaelklotzbier.de 14.169.243.198 [22/Jul/2020:16:45:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4279 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-23 06:19:40
14.169.251.60	attackspambots	(smtpauth) Failed SMTP AUTH login from 14.169.251.60 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-13 08:21:24 plain authenticator failed for (127.0.0.1) [14.169.251.60]: 535 Incorrect authentication data (set_id=tavanavaran@tavanavaran.com)	2020-07-13 16:16:24
14.169.221.185	attackspambots	2020-07-0722:11:171jstvx-00056v-Fj\<=info@whatsup2013.chH=\(localhost\)[37.45.211.19]:37213P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3010id=8ef8d39f94bf6a99ba44b2e1ea3e07ab886bb7a8c8@whatsup2013.chT="Wouldliketohumptheladiesaroundyou\?"foranonymighty@gmail.comwinstonsalem559@gmail.combryanmeyer22@gmail.com2020-07-0722:11:461jstwQ-00058X-6F\<=info@whatsup2013.chH=\(localhost\)[14.169.221.185]:37114P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2979id=ada26d3e351ecbc7e0a51340b473f9f5cfdd9ba7@whatsup2013.chT="Doyouwanttoscrewtheyoungladiesinyourarea\?"fordarcy@yahoo.cawindrift29pc@hotmail.comkagaz@live.co.uk2020-07-0722:11:391jstwI-00057s-F5\<=info@whatsup2013.chH=\(localhost\)[14.177.18.28]:58116P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2936id=a806b0e3e8c3e9e17d78ce6285f1dbce399ab3@whatsup2013.chT="Needcasualhookuptoday\?"formarcelo.daguar@hotmail.comjosh.carruth1@g	2020-07-08 07:29:03
14.169.255.42	attack	Jul 4 23:30:34 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:34 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:37 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL PLAIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL LOGIN authentication failed: authentication failure Jul 4 23:30:38 offspring postfix/smtpd[11628]: warning: unknown[14.169.255.42]: SASL CRAM-MD5 authentication failed: authentication failure Jul 4 23:30:39 offspring postfix/smtpd[11628]: disconnect from unknown[14.169.255.42] Jul 4 23:30:39 offspring postfix/smtpd[11628]: warning: hostname static.vnpt.vn does not resolve to address 14.169.255.42 Jul 4 23:30:39 offspring postfix/smtpd[11628]: connect from unknown[14.169.255.42] Jul 4 23:30:42 offspring postfix/smtpd[11628]: warning: unknown[1........ -------------------------------	2020-07-05 07:19:00
14.169.219.145	attackbots	2020-07-0304:10:041jrB9J-0007ZO-DE\<=info@whatsup2013.chH=\(localhost\)[178.47.142.5]:59066P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=4985id=882492c1cae1cbc35f5aec40a7d3f9edeb7eb3@whatsup2013.chT="Matchactualfemalesforsexualintercourserightnow"forsangaretata1999@gmail.comxbcnvn@gmail.commrmaytag1974@gmail.com2020-07-0304:11:181jrBAc-0007jA-27\<=info@whatsup2013.chH=\(localhost\)[37.34.102.207]:33872P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=4936id=8c23f3919ab16497b44abcefe43009a58664ef21e5@whatsup2013.chT="Signuptodaytogetsextonite"forsandeep_gura@hotmail.comgoodhardpaddling@gmail.comdigitlandscaping92@gmail.com2020-07-0304:10:461jrBA5-0007gA-Ms\<=info@whatsup2013.chH=\(localhost\)[113.172.156.54]:60556P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=4928id=aecc01131833e61536c83e6d66b28b2704e6a6215f@whatsup2013.chT="Jointodaytolocatesextonight"forkjud@comcast.netjorda	2020-07-03 22:43:19
14.169.235.239	attack	20/6/29@07:11:06: FAIL: IoT-SSH address from=14.169.235.239 ...	2020-06-29 22:56:00
14.169.237.247	attackspambots	Unauthorized IMAP connection attempt	2020-06-19 02:53:08
14.169.253.84	attack	Invalid user admin from 14.169.253.84 port 44738	2020-06-18 06:37:11
14.169.212.178	attackspam	Invalid user admin from 14.169.212.178 port 60907	2020-06-18 05:59:35
14.169.238.241	attackbots	Invalid user admin from 14.169.238.241 port 1614	2020-06-18 05:40:30
14.169.217.191	attackbotsspam	Unauthorized connection attempt from IP address 14.169.217.191 on Port 445(SMB)	2020-06-08 03:02:23
14.169.207.209	attack	Invalid user admin from 14.169.207.209 port 43484	2020-06-06 01:56:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.169.2.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7156
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.169.2.141.			IN	A

;; AUTHORITY SECTION:
.			253	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:00:32 CST 2022
;; MSG SIZE  rcvd: 105

Host info

141.2.169.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.2.169.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.92.210.138	attack	Sep 11 19:57:57 lcprod sshd\[2052\]: Invalid user 12345 from 74.92.210.138 Sep 11 19:57:57 lcprod sshd\[2052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-92-210-138-colorado.hfc.comcastbusiness.net Sep 11 19:58:00 lcprod sshd\[2052\]: Failed password for invalid user 12345 from 74.92.210.138 port 42020 ssh2 Sep 11 20:03:21 lcprod sshd\[2608\]: Invalid user anonimus from 74.92.210.138 Sep 11 20:03:21 lcprod sshd\[2608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74-92-210-138-colorado.hfc.comcastbusiness.net	2019-09-12 17:19:01
202.235.195.1	attack	Sep 11 22:30:48 sachi sshd\[22566\]: Invalid user abc123 from 202.235.195.1 Sep 11 22:30:48 sachi sshd\[22566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vip-rt-daiba.s2factory.co.jp Sep 11 22:30:50 sachi sshd\[22566\]: Failed password for invalid user abc123 from 202.235.195.1 port 34088 ssh2 Sep 11 22:37:23 sachi sshd\[23284\]: Invalid user 1324 from 202.235.195.1 Sep 11 22:37:23 sachi sshd\[23284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vip-rt-daiba.s2factory.co.jp	2019-09-12 16:43:43
125.167.237.142	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 02:38:38,085 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.167.237.142)	2019-09-12 17:20:55
124.158.94.91	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 02:46:36,436 INFO [amun_request_handler] PortScan Detected on Port: 445 (124.158.94.91)	2019-09-12 16:37:09
165.227.67.64	attack	Sep 12 05:01:17 plusreed sshd[13451]: Invalid user admins from 165.227.67.64 ...	2019-09-12 17:14:32
132.248.88.72	attackspam	Sep 12 08:35:38 ip-172-31-1-72 sshd\[13318\]: Invalid user kfserver from 132.248.88.72 Sep 12 08:35:38 ip-172-31-1-72 sshd\[13318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.248.88.72 Sep 12 08:35:40 ip-172-31-1-72 sshd\[13318\]: Failed password for invalid user kfserver from 132.248.88.72 port 38334 ssh2 Sep 12 08:42:54 ip-172-31-1-72 sshd\[13532\]: Invalid user admin from 132.248.88.72 Sep 12 08:42:54 ip-172-31-1-72 sshd\[13532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.248.88.72	2019-09-12 16:45:47
128.199.231.239	attackbots	Sep 12 10:34:09 v22019058497090703 sshd[27944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.231.239 Sep 12 10:34:11 v22019058497090703 sshd[27944]: Failed password for invalid user web5 from 128.199.231.239 port 54338 ssh2 Sep 12 10:44:08 v22019058497090703 sshd[28769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.231.239 ...	2019-09-12 17:05:05
203.196.32.61	attackbotsspam	postfix (unknown user, SPF fail or relay access denied)	2019-09-12 16:36:38
198.98.62.43	attackbots	Sep 12 09:10:33 flomail sshd[2244]: Invalid user admin from 198.98.62.43 Sep 12 09:10:34 flomail sshd[2257]: Invalid user admin from 198.98.62.43 Sep 12 09:10:35 flomail sshd[2263]: Invalid user admin from 198.98.62.43	2019-09-12 17:13:55
66.249.79.241	attack	66.249.79.241 - - \[12/Sep/2019:11:53:57 +0800\] "GET /install.php HTTP/1.1" 404 38452 "-" "Mozilla/5.0 \(Linux\; Android 6.0.1\; Nexus 5X Build/MMB29P\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/41.0.2272.96 Mobile Safari/537.36 \(compatible\; Googlebot/2.1\; +http://www.google.com/bot.html\)"	2019-09-12 17:00:21
201.119.238.185	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 03:44:00,069 INFO [amun_request_handler] PortScan Detected on Port: 445 (201.119.238.185)	2019-09-12 16:51:49
206.167.33.17	attackbots	2019-09-12T09:39:29.498359lon01.zurich-datacenter.net sshd\[16782\]: Invalid user ts3bot from 206.167.33.17 port 40842 2019-09-12T09:39:29.505631lon01.zurich-datacenter.net sshd\[16782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.167.33.17 2019-09-12T09:39:32.338478lon01.zurich-datacenter.net sshd\[16782\]: Failed password for invalid user ts3bot from 206.167.33.17 port 40842 ssh2 2019-09-12T09:48:17.481223lon01.zurich-datacenter.net sshd\[16961\]: Invalid user ts from 206.167.33.17 port 47854 2019-09-12T09:48:17.489029lon01.zurich-datacenter.net sshd\[16961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.167.33.17 ...	2019-09-12 17:19:20
118.24.210.86	attackbotsspam	Sep 12 11:38:41 yabzik sshd[28237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.210.86 Sep 12 11:38:43 yabzik sshd[28237]: Failed password for invalid user myftp from 118.24.210.86 port 35316 ssh2 Sep 12 11:47:01 yabzik sshd[31305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.210.86	2019-09-12 16:52:48
141.98.101.133	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 02:41:14,906 INFO [amun_request_handler] PortScan Detected on Port: 445 (141.98.101.133)	2019-09-12 17:13:22
113.235.107.36	attackspam	Sep 12 05:53:38 root sshd[24479]: Failed password for root from 113.235.107.36 port 58681 ssh2 Sep 12 05:53:41 root sshd[24479]: Failed password for root from 113.235.107.36 port 58681 ssh2 Sep 12 05:53:44 root sshd[24479]: Failed password for root from 113.235.107.36 port 58681 ssh2 Sep 12 05:53:46 root sshd[24479]: Failed password for root from 113.235.107.36 port 58681 ssh2 ...	2019-09-12 17:11:28

Recently Reported IPs

157.100.92.10	85.222.202.22	179.6.57.184	80.48.66.183
138.99.135.214	82.22.63.36	27.45.16.65	189.182.21.184
112.118.193.170	200.194.43.234	194.158.74.192	117.251.53.240
50.194.5.181	117.251.61.202	79.73.59.244	103.19.142.111
213.149.1.106	73.69.44.82	200.241.42.180	200.194.55.178