111.121.14.196

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Telecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Sep 11 22:11:07 server sshd\[11772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.121.14.196 user=www-data Sep 11 22:11:09 server sshd\[11772\]: Failed password for www-data from 111.121.14.196 port 39133 ssh2 Sep 11 22:14:29 server sshd\[22026\]: Invalid user mumbleserver from 111.121.14.196 port 39757 Sep 11 22:14:29 server sshd\[22026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.121.14.196 Sep 11 22:14:32 server sshd\[22026\]: Failed password for invalid user mumbleserver from 111.121.14.196 port 39757 ssh2	2019-09-12 08:04:47

Type

Details

Datetime

attackbots

Sep 11 22:11:07 server sshd\[11772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.121.14.196  user=www-data
Sep 11 22:11:09 server sshd\[11772\]: Failed password for www-data from 111.121.14.196 port 39133 ssh2
Sep 11 22:14:29 server sshd\[22026\]: Invalid user mumbleserver from 111.121.14.196 port 39757
Sep 11 22:14:29 server sshd\[22026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.121.14.196
Sep 11 22:14:32 server sshd\[22026\]: Failed password for invalid user mumbleserver from 111.121.14.196 port 39757 ssh2

2019-09-12 08:04:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.121.14.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 279
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.121.14.196.			IN	A

;; AUTHORITY SECTION:
.			3575	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091102 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 08:04:42 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 196.14.121.111.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 196.14.121.111.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.76	attackspam	May 25 09:45:58 ArkNodeAT sshd\[13580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root May 25 09:45:59 ArkNodeAT sshd\[13580\]: Failed password for root from 222.186.30.76 port 47924 ssh2 May 25 09:46:21 ArkNodeAT sshd\[13603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root	2020-05-25 15:46:59
117.50.34.131	attackbotsspam	May 25 09:03:25 cdc sshd[1299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.34.131 user=root May 25 09:03:27 cdc sshd[1299]: Failed password for invalid user root from 117.50.34.131 port 50948 ssh2	2020-05-25 16:04:25
60.179.42.96	attack	Scanning	2020-05-25 15:59:19
60.190.243.230	attackspambots	May 25 03:14:25 vps46666688 sshd[25613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.190.243.230 May 25 03:14:27 vps46666688 sshd[25613]: Failed password for invalid user diana from 60.190.243.230 port 62581 ssh2 ...	2020-05-25 16:06:18
157.230.253.85	attackspam	SSH brute force attempt	2020-05-25 15:51:50
180.76.105.81	attack	Wordpress malicious attack:[sshd]	2020-05-25 15:57:16
69.30.226.234	attackspam	20 attempts against mh-misbehave-ban on ice	2020-05-25 16:16:01
54.39.138.251	attackbotsspam	May 25 07:32:49 web8 sshd\[17565\]: Invalid user maxsom from 54.39.138.251 May 25 07:32:49 web8 sshd\[17565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 May 25 07:32:51 web8 sshd\[17565\]: Failed password for invalid user maxsom from 54.39.138.251 port 39196 ssh2 May 25 07:36:15 web8 sshd\[19331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.138.251 user=root May 25 07:36:17 web8 sshd\[19331\]: Failed password for root from 54.39.138.251 port 44612 ssh2	2020-05-25 16:04:39
210.56.23.100	attackspam	May 25 09:53:24 gw1 sshd[19333]: Failed password for root from 210.56.23.100 port 35256 ssh2 ...	2020-05-25 15:45:54
103.79.141.158	attackbots	May 25 06:48:12 cdc sshd[29234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.79.141.158 May 25 06:48:14 cdc sshd[29234]: Failed password for invalid user admin from 103.79.141.158 port 61647 ssh2	2020-05-25 15:54:21
111.229.125.124	attackspambots	May 25 06:22:34 ns381471 sshd[31360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.125.124 May 25 06:22:36 ns381471 sshd[31360]: Failed password for invalid user michel from 111.229.125.124 port 53344 ssh2	2020-05-25 15:41:40
40.76.203.124	attackspambots	fail2ban	2020-05-25 16:11:57
172.81.204.14	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-05-25 16:06:37
213.92.156.244	attack	(smtpauth) Failed SMTP AUTH login from 213.92.156.244 (PL/Poland/213-92-156-244.serv-net.pl): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-05-25 08:21:31 plain authenticator failed for 213-92-156-244.serv-net.pl [213.92.156.244]: 535 Incorrect authentication data (set_id=md@nikoonassaj.com)	2020-05-25 15:38:42
201.20.108.98	attackspam	5x Failed Password	2020-05-25 15:39:13

Recently Reported IPs

39.60.189.105	41.37.73.168	102.232.45.207	102.238.167.145
197.32.188.84	80.12.39.146	146.119.155.181	27.72.138.136
203.78.118.26	85.13.159.101	54.37.228.221	168.150.103.217
150.253.131.208	148.107.177.76	111.38.25.89	79.110.201.195
197.90.131.122	183.15.121.50	116.206.129.37	180.242.130.112