14.174.104.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-04-05 02:07:09

Comments on same subnet:

IP	Type	Details	Datetime
14.174.104.61	attackbotsspam	Unauthorized connection attempt from IP address 14.174.104.61 on Port 445(SMB)	2020-03-14 02:43:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.174.104.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62062
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.174.104.5.			IN	A

;; AUTHORITY SECTION:
.			424	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 02:07:04 CST 2020
;; MSG SIZE  rcvd: 116

Host info

5.104.174.14.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.104.174.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.15.7.60	attack	Virus on IP !	2019-07-07 22:21:19
112.192.106.204	attackbotsspam	" "	2019-07-07 22:00:09
68.163.100.254	attackspam	Jul 2 23:46:46 vzmaster sshd[27526]: Invalid user yin from 68.163.100.254 Jul 2 23:46:46 vzmaster sshd[27526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-68-163-100-254.bstnma.fios.verizon.net Jul 2 23:46:48 vzmaster sshd[27526]: Failed password for invalid user yin from 68.163.100.254 port 40606 ssh2 Jul 2 23:50:38 vzmaster sshd[31152]: Invalid user reponse from 68.163.100.254 Jul 2 23:50:38 vzmaster sshd[31152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-68-163-100-254.bstnma.fios.verizon.net Jul 2 23:50:40 vzmaster sshd[31152]: Failed password for invalid user reponse from 68.163.100.254 port 36752 ssh2 Jul 2 23:52:41 vzmaster sshd[571]: Invalid user hadoop from 68.163.100.254 Jul 2 23:52:41 vzmaster sshd[571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=pool-68-163-100-254.bstnma.fios.verizon.net ........ ----------------------------------------------	2019-07-07 22:02:51
94.177.176.162	attack	2019-07-07T13:46:51.615741abusebot.cloudsearch.cf sshd\[20114\]: Invalid user Joshua from 94.177.176.162 port 44870	2019-07-07 22:33:48
66.70.130.151	attack	SSH invalid-user multiple login attempts	2019-07-07 21:46:07
187.162.56.252	attackbots	Honeypot attack, port: 23, PTR: 187-162-56-252.static.axtel.net.	2019-07-07 21:50:10
93.174.95.106	attackbotsspam	07.07.2019 13:49:09 Connection to port 8039 blocked by firewall	2019-07-07 22:04:37
107.150.71.194	attackbots	Registration form abuse	2019-07-07 21:57:20
112.4.172.182	attackbotsspam	failed_logins	2019-07-07 22:38:00
178.32.44.197	attack	Jul 7 13:47:19 MK-Soft-VM4 sshd\[29138\]: Invalid user appluat from 178.32.44.197 port 64218 Jul 7 13:47:19 MK-Soft-VM4 sshd\[29138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.44.197 Jul 7 13:47:21 MK-Soft-VM4 sshd\[29138\]: Failed password for invalid user appluat from 178.32.44.197 port 64218 ssh2 ...	2019-07-07 22:10:21
189.84.120.170	attackbots	Jul 2 16:29:45 mail01 postfix/postscreen[26668]: CONNECT from [189.84.120.170]:32768 to [94.130.181.95]:25 Jul 2 16:29:45 mail01 postfix/dnsblog[26850]: addr 189.84.120.170 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 2 16:29:45 mail01 postfix/dnsblog[26850]: addr 189.84.120.170 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 2 16:29:45 mail01 postfix/dnsblog[26849]: addr 189.84.120.170 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 2 16:29:46 mail01 postfix/postscreen[26668]: PREGREET 32 after 0.51 from [189.84.120.170]:32768: EHLO 132-255-178-18.cte.net.br Jul 2 16:29:46 mail01 postfix/postscreen[26668]: DNSBL rank 4 for [189.84.120.170]:32768 Jul x@x Jul 2 16:29:47 mail01 postfix/postscreen[26668]: HANGUP after 1.4 from [189.84.120.170]:32768 in tests after SMTP handshake Jul 2 16:29:47 mail01 postfix/postscreen[26668]: DISCONNECT [189.84.120.170]:32768 Jul 4 03:20:18 mail01 postfix/postscreen[15894]: CONNECT from [189.84.120.170]:37673 to [........ -------------------------------	2019-07-07 22:13:12
103.231.139.130	attackbotsspam	Jul 7 16:19:58 mail postfix/smtpd\[1006\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 16:20:39 mail postfix/smtpd\[1463\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 16:21:21 mail postfix/smtpd\[1463\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-07 22:28:21
130.0.28.74	attackspambots	Automatic report - Web App Attack	2019-07-07 22:20:37
107.170.20.247	attack	Jul 7 15:47:05 nextcloud sshd\[9345\]: Invalid user jaqueline from 107.170.20.247 Jul 7 15:47:05 nextcloud sshd\[9345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.20.247 Jul 7 15:47:07 nextcloud sshd\[9345\]: Failed password for invalid user jaqueline from 107.170.20.247 port 39139 ssh2 ...	2019-07-07 22:17:32
171.38.202.25	attackbots	2019-07-07T10:46:41.456807mizuno.rwx.ovh sshd[9309]: Connection from 171.38.202.25 port 51267 on 78.46.61.178 port 22 2019-07-07T10:46:47.566343mizuno.rwx.ovh sshd[9309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.38.202.25 user=root 2019-07-07T10:46:49.415553mizuno.rwx.ovh sshd[9309]: Failed password for root from 171.38.202.25 port 51267 ssh2 2019-07-07T10:46:53.960890mizuno.rwx.ovh sshd[9309]: Failed password for root from 171.38.202.25 port 51267 ssh2 2019-07-07T10:46:41.456807mizuno.rwx.ovh sshd[9309]: Connection from 171.38.202.25 port 51267 on 78.46.61.178 port 22 2019-07-07T10:46:47.566343mizuno.rwx.ovh sshd[9309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.38.202.25 user=root 2019-07-07T10:46:49.415553mizuno.rwx.ovh sshd[9309]: Failed password for root from 171.38.202.25 port 51267 ssh2 2019-07-07T10:46:53.960890mizuno.rwx.ovh sshd[9309]: Failed password for root from 171.38.202 ...	2019-07-07 22:32:43

Recently Reported IPs

103.147.10.206	62.28.243.190	5.95.205.72	14.238.26.2
60.246.178.253	192.71.30.89	183.81.73.97	178.128.15.96
195.162.88.160	200.123.6.194	157.50.101.166	43.226.28.126
14.253.149.98	47.183.142.139	95.71.117.34	168.20.15.169
42.185.87.183	233.159.144.42	216.6.85.230	197.37.225.128