31.14.40.194 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: Data Room SRL

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 14 - port: 389 proto: UDP cat: Misc Attack	2020-03-28 18:59:32

Comments on same subnet:

IP	Type	Details	Datetime
31.14.40.111	attackspambots	123/udp [2020-05-30]1pkt	2020-05-30 14:56:34
31.14.40.172	attack	unauthorized connection attempt	2020-02-16 15:47:28
31.14.40.172	attackspambots	Unauthorized connection attempt from IP address 31.14.40.172 on Port 445(SMB)	2020-02-15 05:01:38
31.14.40.200	attack	CloudCIX Reconnaissance Scan Detected, PTR: academicabelch.net.	2020-01-12 07:15:36
31.14.40.216	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-25 08:39:03
31.14.40.216	attackbotsspam	Dec 24 08:17:48 debian-2gb-nbg1-2 kernel: \[824609.841104\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=31.14.40.216 DST=195.201.40.59 LEN=45 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=UDP SPT=41043 DPT=53413 LEN=25	2019-12-24 18:13:37
31.14.40.226	attack	3478/udp 389/udp... [2019-12-19/23]6pkt,2pt.(udp)	2019-12-24 06:33:14
31.14.40.131	attack	Host Scan	2019-12-11 19:39:38
31.14.40.232	attackspambots	Excessive Port-Scanning	2019-12-01 07:40:26
31.14.40.232	attack	Malicious brute force vulnerability hacking attacks	2019-10-13 04:16:51
31.14.40.157	attackspambots	Unauthorized connection attempt from IP address 31.14.40.157 on Port 445(SMB)	2019-10-12 06:30:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.14.40.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34639
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.14.40.194.			IN	A

;; AUTHORITY SECTION:
.			329	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032801 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 28 18:59:26 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 194.40.14.31.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 194.40.14.31.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.83.110.68	attackspam	Unauthorized connection attempt detected from IP address 222.83.110.68 to port 2220 [J]	2020-01-07 07:08:19
89.22.55.46	attackbotsspam	Jan 6 23:55:17 vmanager6029 sshd\[9257\]: Invalid user wud from 89.22.55.46 port 56272 Jan 6 23:55:17 vmanager6029 sshd\[9257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.22.55.46 Jan 6 23:55:20 vmanager6029 sshd\[9257\]: Failed password for invalid user wud from 89.22.55.46 port 56272 ssh2	2020-01-07 06:57:22
187.141.135.181	attackspambots	Unauthorized connection attempt detected from IP address 187.141.135.181 to port 2220 [J]	2020-01-07 06:52:34
54.39.145.123	attackbotsspam	Unauthorized connection attempt detected from IP address 54.39.145.123 to port 2220 [J]	2020-01-07 06:42:34
41.138.208.141	attack	Unauthorized connection attempt detected from IP address 41.138.208.141 to port 2220 [J]	2020-01-07 06:45:13
223.97.201.24	attack	firewall-block, port(s): 23/tcp	2020-01-07 06:37:42
27.34.254.240	attackbotsspam	1578343909 - 01/06/2020 21:51:49 Host: 27.34.254.240/27.34.254.240 Port: 445 TCP Blocked	2020-01-07 06:33:11
120.131.11.224	attackbots	Unauthorized connection attempt detected from IP address 120.131.11.224 to port 2220 [J]	2020-01-07 06:47:10
34.77.30.224	attackspam	xmlrpc attack	2020-01-07 06:47:40
159.203.201.177	attack	8047/tcp 70/tcp 8945/tcp... [2019-11-07/2020-01-06]39pkt,32pt.(tcp),1pt.(udp)	2020-01-07 07:00:50
222.186.30.209	attackspambots	Unauthorized connection attempt detected from IP address 222.186.30.209 to port 22 [T]	2020-01-07 06:40:23
139.59.172.23	attackspam	139.59.172.23 - - \[06/Jan/2020:22:11:22 +0100\] "POST /wp-login.php HTTP/1.0" 200 7556 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.172.23 - - \[06/Jan/2020:22:11:23 +0100\] "POST /wp-login.php HTTP/1.0" 200 7381 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.172.23 - - \[06/Jan/2020:22:11:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 7376 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-01-07 07:04:16
80.228.4.194	attackbotsspam	Jan 6 11:14:12 wbs sshd\[26611\]: Invalid user usuario from 80.228.4.194 Jan 6 11:14:12 wbs sshd\[26611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.228.4.194 Jan 6 11:14:14 wbs sshd\[26611\]: Failed password for invalid user usuario from 80.228.4.194 port 45100 ssh2 Jan 6 11:16:21 wbs sshd\[26860\]: Invalid user fztest from 80.228.4.194 Jan 6 11:16:21 wbs sshd\[26860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.228.4.194	2020-01-07 06:45:52
182.18.188.132	attackbotsspam	Unauthorized connection attempt detected from IP address 182.18.188.132 to port 2220 [J]	2020-01-07 06:41:28
124.156.241.168	attackspambots	Unauthorized connection attempt detected from IP address 124.156.241.168 to port 264 [J]	2020-01-07 06:40:35

Recently Reported IPs

197.164.224.193	65.49.20.112	206.189.84.227	100.10.4.130
101.51.61.185	1.53.195.241	153.37.22.181	79.127.121.106
14.177.134.44	187.110.235.242	116.240.0.72	35.197.73.18
125.161.107.22	123.27.19.219	14.177.161.206	203.128.30.2
49.228.187.92	36.73.123.89	49.234.93.93	118.167.180.116