112.242.214.169

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Shandong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Portscan detected	2020-09-30 03:12:08
attackbotsspam	Portscan detected	2020-09-29 19:16:03

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.242.214.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46220
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.242.214.169.		IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092900 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 29 19:15:57 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 169.214.242.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.214.242.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.101.192.81	attackbots	leo_www	2020-05-04 06:58:11
150.95.153.82	attackbotsspam	May 4 00:43:20 sso sshd[11105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.153.82 May 4 00:43:21 sso sshd[11105]: Failed password for invalid user cone from 150.95.153.82 port 49990 ssh2 ...	2020-05-04 07:09:59
222.186.175.183	attackbotsspam	prod3 ...	2020-05-04 07:07:14
142.44.243.160	attackbotsspam	May 4 00:49:21 meumeu sshd[26299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.243.160 May 4 00:49:22 meumeu sshd[26299]: Failed password for invalid user marcio from 142.44.243.160 port 43208 ssh2 May 4 00:53:52 meumeu sshd[30460]: Failed password for root from 142.44.243.160 port 48750 ssh2 ...	2020-05-04 07:10:26
149.255.58.23	attack	WordPress (CMS) attack attempts. Date: 2020 May 03. 21:01:44 Source IP: 149.255.58.23 Portion of the log(s): 149.255.58.23 - [03/May/2020:21:01:44 +0200] "GET /wp-login.php HTTP/1.1" 200 1962 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.255.58.23 - [03/May/2020:21:01:44 +0200] "POST /wp-login.php HTTP/1.1" 200 2417 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.255.58.23 - [03/May/2020:21:01:44 +0200] "POST /xmlrpc.php HTTP/1.1" 404 118 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-04 07:16:37
54.37.71.204	attackbotsspam	SSH brute-force attempt	2020-05-04 07:04:44
98.113.98.54	attackbotsspam	Lines containing failures of 98.113.98.54 (max 1000) May 3 10:51:24 mm sshd[14316]: Invalid user admin from 98.113.98.54 po= rt 35938 May 3 10:51:24 mm sshd[14316]: pam_unix(sshd:auth): authentication fai= lure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D98.113.98.= 54 May 3 10:51:26 mm sshd[14316]: Failed password for invalid user admin = from 98.113.98.54 port 35938 ssh2 May 3 10:51:26 mm sshd[14316]: Received disconnect from 98.113.98.54 p= ort 35938:11: Bye Bye [preauth] May 3 10:51:26 mm sshd[14316]: Disconnected from invalid user admin 98= .113.98.54 port 35938 [preauth] May 3 10:59:27 mm sshd[14470]: Invalid user brisa from 98.113.98.54 po= rt 39980 May 3 10:59:27 mm sshd[14470]: pam_unix(sshd:auth): authentication fai= lure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D98.113.98.= 54 May 3 10:59:29 mm sshd[14470]: Failed password for invalid user brisa = from 98.113.98.54 port 39980 ssh2 May 3 10:59:30 mm sshd[14470]: Received disco........ ------------------------------	2020-05-04 07:01:08
82.154.141.56	attackbots	Repeated attempts to deliver spam	2020-05-04 07:14:44
49.88.112.112	attackbotsspam	May 3 18:42:49 plusreed sshd[19158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.112 user=root May 3 18:42:52 plusreed sshd[19158]: Failed password for root from 49.88.112.112 port 35633 ssh2 ...	2020-05-04 06:43:04
37.49.226.213	attack	Automatic report - SSH Brute-Force Attack	2020-05-04 07:12:53
112.85.42.172	attackspambots	$f2bV_matches	2020-05-04 07:18:33
122.51.77.128	attackspambots	May 3 22:33:24 mail sshd[11827]: Invalid user test from 122.51.77.128 May 3 22:33:24 mail sshd[11827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.77.128 May 3 22:33:24 mail sshd[11827]: Invalid user test from 122.51.77.128 May 3 22:33:26 mail sshd[11827]: Failed password for invalid user test from 122.51.77.128 port 56050 ssh2 May 3 22:42:52 mail sshd[13141]: Invalid user sofia from 122.51.77.128 ...	2020-05-04 06:54:55
172.81.243.232	attackspambots	(sshd) Failed SSH login from 172.81.243.232 (CN/China/-): 5 in the last 3600 secs	2020-05-04 06:50:53
222.186.30.218	attackbots	$f2bV_matches	2020-05-04 06:57:42
222.244.144.163	attackbots	May 3 16:37:28 Tower sshd[37624]: Connection from 222.244.144.163 port 44620 on 192.168.10.220 port 22 rdomain "" May 3 16:37:30 Tower sshd[37624]: Failed password for root from 222.244.144.163 port 44620 ssh2 May 3 16:37:30 Tower sshd[37624]: Received disconnect from 222.244.144.163 port 44620:11: Bye Bye [preauth] May 3 16:37:30 Tower sshd[37624]: Disconnected from authenticating user root 222.244.144.163 port 44620 [preauth]	2020-05-04 07:15:40

Recently Reported IPs

194.105.6.66	162.158.158.113	36.74.47.123	114.47.15.58
66.35.114.162	1.55.230.170	89.160.179.46	61.170.209.183
49.232.3.125	137.74.219.115	36.24.153.1	190.27.103.100
200.109.66.201	177.82.100.19	173.0.84.226	58.186.120.77
236.229.235.216	51.195.63.170	120.146.174.34	95.107.218.111