114.104.131.92

Basic Info

City: unknown

Region: Anhui

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: No.31,Jin-rong Street

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.104.131.108	attack	Unauthorized connection attempt detected from IP address 114.104.131.108 to port 6656 [T]	2020-01-30 16:30:54
114.104.131.176	attack	Unauthorized connection attempt detected from IP address 114.104.131.176 to port 6656 [T]	2020-01-29 17:03:14
114.104.131.243	attackbotsspam	badbot	2019-11-23 03:52:53
114.104.131.46	attack	badbot	2019-11-20 16:31:53

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.104.131.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12752
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.104.131.92.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 12 12:22:07 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 92.131.104.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 92.131.104.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.234.80.94	attackbotsspam	Aug 30 15:47:48 rocket sshd[11471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.80.94 Aug 30 15:47:50 rocket sshd[11471]: Failed password for invalid user zhanghao from 49.234.80.94 port 34998 ssh2 Aug 30 15:50:25 rocket sshd[11943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.80.94 ...	2020-08-31 01:39:28
148.72.64.192	attack	148.72.64.192 - - [30/Aug/2020:17:55:09 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.72.64.192 - - [30/Aug/2020:17:55:12 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.72.64.192 - - [30/Aug/2020:17:55:13 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-31 01:54:56
62.110.66.66	attackbots	Aug 30 16:39:22 vmd26974 sshd[24704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.110.66.66 Aug 30 16:39:24 vmd26974 sshd[24704]: Failed password for invalid user trial from 62.110.66.66 port 48063 ssh2 ...	2020-08-31 02:04:50
206.189.91.52	attack	2020-08-30 12:32:17.415754-0500 localhost sshd[85215]: Failed password for invalid user admin from 206.189.91.52 port 38742 ssh2	2020-08-31 01:54:05
14.98.118.166	attack	Unauthorised access (Aug 30) SRC=14.98.118.166 LEN=52 TTL=110 ID=7304 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-31 01:21:05
46.109.194.244	attackspambots	Automatic report - XMLRPC Attack	2020-08-31 01:23:24
41.234.166.7	attackspambots	port scan and connect, tcp 23 (telnet)	2020-08-31 01:55:47
182.61.2.151	attack	Time: Sun Aug 30 09:48:31 2020 +0000 IP: 182.61.2.151 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 30 09:33:42 ca-29-ams1 sshd[6788]: Invalid user sftptest from 182.61.2.151 port 43450 Aug 30 09:33:45 ca-29-ams1 sshd[6788]: Failed password for invalid user sftptest from 182.61.2.151 port 43450 ssh2 Aug 30 09:43:25 ca-29-ams1 sshd[8220]: Invalid user demo from 182.61.2.151 port 56834 Aug 30 09:43:27 ca-29-ams1 sshd[8220]: Failed password for invalid user demo from 182.61.2.151 port 56834 ssh2 Aug 30 09:48:29 ca-29-ams1 sshd[8958]: Invalid user cxc from 182.61.2.151 port 59210	2020-08-31 01:51:33
180.100.206.35	attackspam	Time: Sun Aug 30 08:20:26 2020 -0400 IP: 180.100.206.35 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 30 08:14:02 pv-11-ams1 sshd[9164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.100.206.35 user=root Aug 30 08:14:04 pv-11-ams1 sshd[9164]: Failed password for root from 180.100.206.35 port 60931 ssh2 Aug 30 08:17:37 pv-11-ams1 sshd[9283]: Invalid user www from 180.100.206.35 port 50692 Aug 30 08:17:39 pv-11-ams1 sshd[9283]: Failed password for invalid user www from 180.100.206.35 port 50692 ssh2 Aug 30 08:20:21 pv-11-ams1 sshd[9382]: Invalid user clz from 180.100.206.35 port 37483	2020-08-31 01:38:32
180.76.247.16	attackspam	$f2bV_matches	2020-08-31 01:48:09
132.232.14.159	attackbots	(sshd) Failed SSH login from 132.232.14.159 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 18:12:57 amsweb01 sshd[10330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.14.159 user=root Aug 30 18:13:00 amsweb01 sshd[10330]: Failed password for root from 132.232.14.159 port 41418 ssh2 Aug 30 18:19:22 amsweb01 sshd[11339]: Invalid user pdv from 132.232.14.159 port 43330 Aug 30 18:19:24 amsweb01 sshd[11339]: Failed password for invalid user pdv from 132.232.14.159 port 43330 ssh2 Aug 30 18:23:29 amsweb01 sshd[11901]: Invalid user domino from 132.232.14.159 port 55828	2020-08-31 02:01:39
94.102.51.29	attackbots	Port scan detected on ports: 491[TCP], 402[TCP], 502[TCP]	2020-08-31 01:30:20
185.220.101.205	attack	Aug 30 19:12:38 minden010 sshd[10041]: Failed password for root from 185.220.101.205 port 16556 ssh2 Aug 30 19:12:40 minden010 sshd[10041]: Failed password for root from 185.220.101.205 port 16556 ssh2 Aug 30 19:12:43 minden010 sshd[10041]: Failed password for root from 185.220.101.205 port 16556 ssh2 Aug 30 19:12:44 minden010 sshd[10041]: Failed password for root from 185.220.101.205 port 16556 ssh2 ...	2020-08-31 01:37:36
165.22.113.66	attackbots	Aug 30 13:33:06 mx sshd[15739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.113.66 Aug 30 13:33:08 mx sshd[15739]: Failed password for invalid user vbox from 165.22.113.66 port 36928 ssh2	2020-08-31 01:38:01
165.22.216.238	attackspam	Fail2Ban Ban Triggered (2)	2020-08-31 01:43:18

Recently Reported IPs

106.217.56.252	202.102.90.168	77.22.189.198	182.64.33.159
62.216.74.46	126.148.130.1	3.186.214.247	110.170.148.135
185.186.20.227	171.246.126.156	23.62.171.217	95.51.210.115
219.12.114.150	190.220.10.76	90.30.235.185	93.119.79.155
86.124.206.223	212.254.243.211	14.66.135.6	94.87.146.115