114.102.1.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.102.183.219	attack	114.102.183.219 - - \[12/Apr/2020:05:58:30 +0200\] "GET http://api.gxout.com/proxy/check.aspx HTTP/1.1" 400 666 "http://api.gxout.com/proxy/check.aspx" "Mozilla/4.0 $compatible\; MSIE 6.0\; Windows NT 5.1$" ...	2020-04-12 12:15:46
114.102.10.133	attackspam	Unauthorized connection attempt detected from IP address 114.102.10.133 to port 6656 [T]	2020-01-29 19:28:44
114.102.11.107	attackspam	Unauthorized connection attempt detected from IP address 114.102.11.107 to port 6656 [T]	2020-01-28 08:20:41
114.102.13.238	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.102.13.238/ CN - 1H : (293) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 114.102.13.238 CIDR : 114.96.0.0/13 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 45 3H - 90 6H - 90 12H - 93 24H - 93 DateTime : 2019-10-27 04:49:00 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-27 17:32:28
114.102.140.79	attack	Seq 2995002506	2019-10-22 04:38:25
114.102.136.171	attackbotsspam	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 03:57:49
114.102.138.158	attackbots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 03:57:16
114.102.138.203	attackspam	Brute Force attack against O365 mail account	2019-06-22 03:40:41
114.102.137.169	attackspam	Brute Force attack against O365 mail account	2019-06-22 03:25:27
114.102.138.15	attackspam	Brute Force attack against O365 mail account	2019-06-22 03:25:03
114.102.139.129	attackbots	Brute Force attack against O365 mail account	2019-06-22 03:24:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.102.1.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.102.1.3.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 05:18:31 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 3.1.102.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.1.102.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.223.81	attackbotsspam	Apr 1 20:15:40 [host] kernel: [2394349.918830] [U Apr 1 20:15:51 [host] kernel: [2394360.756428] [U Apr 1 20:17:04 [host] kernel: [2394434.271791] [U Apr 1 20:18:27 [host] kernel: [2394516.998141] [U Apr 1 20:22:22 [host] kernel: [2394751.419937] [U Apr 1 20:35:58 [host] kernel: [2395567.601704] [U	2020-04-02 03:09:57
51.158.117.104	attack	port scan and connect, tcp 443 (https)	2020-04-02 03:32:26
35.221.63.248	attackspambots	$f2bV_matches	2020-04-02 03:28:08
110.8.67.146	attack	Invalid user ow from 110.8.67.146 port 43990	2020-04-02 03:27:53
52.230.1.232	attackspam	fail2ban	2020-04-02 03:30:29
142.44.218.192	attack	2020-04-01T16:51:35.034194abusebot-4.cloudsearch.cf sshd[19795]: Invalid user sql from 142.44.218.192 port 39108 2020-04-01T16:51:35.040446abusebot-4.cloudsearch.cf sshd[19795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip192.ip-142-44-218.net 2020-04-01T16:51:35.034194abusebot-4.cloudsearch.cf sshd[19795]: Invalid user sql from 142.44.218.192 port 39108 2020-04-01T16:51:37.636096abusebot-4.cloudsearch.cf sshd[19795]: Failed password for invalid user sql from 142.44.218.192 port 39108 ssh2 2020-04-01T16:53:17.024878abusebot-4.cloudsearch.cf sshd[19903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip192.ip-142-44-218.net user=root 2020-04-01T16:53:19.154122abusebot-4.cloudsearch.cf sshd[19903]: Failed password for root from 142.44.218.192 port 35312 ssh2 2020-04-01T16:54:19.780555abusebot-4.cloudsearch.cf sshd[19965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser ...	2020-04-02 03:19:52
65.31.127.80	attack	SSH auth scanning - multiple failed logins	2020-04-02 03:17:06
114.67.112.231	attackbotsspam	Apr 1 02:44:07 web9 sshd\[28810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.112.231 user=root Apr 1 02:44:09 web9 sshd\[28810\]: Failed password for root from 114.67.112.231 port 58784 ssh2 Apr 1 02:48:48 web9 sshd\[29432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.112.231 user=root Apr 1 02:48:51 web9 sshd\[29432\]: Failed password for root from 114.67.112.231 port 58798 ssh2 Apr 1 02:53:49 web9 sshd\[30075\]: Invalid user couchdb from 114.67.112.231	2020-04-02 03:27:22
175.9.248.11	attack	Honeypot hit.	2020-04-02 03:31:49
121.229.2.190	attackbots	Apr 1 17:31:05 localhost sshd\[6433\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.2.190 user=root Apr 1 17:31:07 localhost sshd\[6433\]: Failed password for root from 121.229.2.190 port 52186 ssh2 Apr 1 17:39:20 localhost sshd\[6607\]: Invalid user admin from 121.229.2.190 port 54022 ...	2020-04-02 03:29:11
51.178.29.191	attackspam	Apr 1 19:22:24 yesfletchmain sshd\[29444\]: User root from 51.178.29.191 not allowed because not listed in AllowUsers Apr 1 19:22:25 yesfletchmain sshd\[29444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.29.191 user=root Apr 1 19:22:27 yesfletchmain sshd\[29444\]: Failed password for invalid user root from 51.178.29.191 port 60264 ssh2 Apr 1 19:27:05 yesfletchmain sshd\[29525\]: User root from 51.178.29.191 not allowed because not listed in AllowUsers Apr 1 19:27:05 yesfletchmain sshd\[29525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.29.191 user=root ...	2020-04-02 03:40:16
148.72.206.225	attackspambots	Apr 1 18:50:05 ms-srv sshd[30826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 user=root Apr 1 18:50:07 ms-srv sshd[30826]: Failed password for invalid user root from 148.72.206.225 port 44662 ssh2	2020-04-02 03:47:15
222.186.15.166	attack	DATE:2020-04-01 21:21:43, IP:222.186.15.166, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-02 03:26:09
118.39.154.131	attackbots	Time: Wed Apr 1 07:13:53 2020 -0300 IP: 118.39.154.131 (KR/South Korea/-) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2020-04-02 03:08:42
106.13.207.113	attackbotsspam	Apr 1 15:10:10 localhost sshd\[16366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.207.113 user=root Apr 1 15:10:13 localhost sshd\[16366\]: Failed password for root from 106.13.207.113 port 42150 ssh2 Apr 1 15:12:08 localhost sshd\[16465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.207.113 user=root Apr 1 15:12:10 localhost sshd\[16465\]: Failed password for root from 106.13.207.113 port 38386 ssh2 Apr 1 15:14:17 localhost sshd\[16519\]: Invalid user xguest from 106.13.207.113 Apr 1 15:14:17 localhost sshd\[16519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.207.113 ...	2020-04-02 03:38:32

Recently Reported IPs

2.245.59.173	114.102.1.51	114.102.1.54	54.176.241.138
114.102.1.64	114.102.1.87	190.132.110.169	114.102.1.93
114.102.127.188	114.102.2.10	114.102.2.138	114.102.2.168
114.102.2.200	114.102.2.52	251.233.69.54	114.102.2.57
114.102.2.90	114.102.3.122	114.102.3.131	114.102.3.14