114.104.183.137

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.104.183.196	botsattackproxy	Tried to access my Microsoft account but failed sign in, likely a scam artist.	2025-01-23 04:12:05
114.104.183.6	attackspambots	SMTP nagging	2020-05-07 23:35:24
114.104.183.190	attack	scan z	2019-10-26 15:11:14
114.104.183.199	attackbots	scan z	2019-10-26 12:36:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.104.183.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.104.183.137.		IN	A

;; AUTHORITY SECTION:
.			293	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 18:48:15 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 137.183.104.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.183.104.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.183.47.98	attackbotsspam	20/2/16@17:27:41: FAIL: Alarm-Network address from=180.183.47.98 ...	2020-02-17 06:45:51
124.156.55.248	attack	Port probing on unauthorized port 873	2020-02-17 06:15:08
58.19.1.42	attackspam	Feb 17 00:27:29 journals dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 4 secs$: user=\, method=PLAIN, rip=58.19.1.42, lip=212.111.212.230, session=\ Feb 17 00:27:36 journals dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 8 secs$: user=\, method=PLAIN, rip=58.19.1.42, lip=212.111.212.230, session=\ Feb 17 00:27:39 journals dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=58.19.1.42, lip=212.111.212.230, session=\ Feb 17 00:27:49 journals dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 12 secs$: user=\, method=PLAIN, rip=58.19.1.42, lip=212.111.212.230, session=\ Feb 17 00:27:52 journals dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 12 secs$: user=\, method=PLAIN, rip=58.19.1.42, lip=212.111.212.230, sessi ...	2020-02-17 06:32:43
218.77.105.226	attackbotsspam	$f2bV_matches	2020-02-17 06:48:27
178.154.171.111	attackspam	[Mon Feb 17 01:48:49.109263 2020] [:error] [pid 3979:tid 139656729896704] [client 178.154.171.111:64793] [client 178.154.171.111] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XkmOkervBbhTzGgGKH7FjwAAADs"] ...	2020-02-17 06:29:39
84.163.245.135	attack	SSH Brute-Force reported by Fail2Ban	2020-02-17 06:15:42
200.69.236.229	attackbots	Feb 17 03:27:52 gw1 sshd[23248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.236.229 Feb 17 03:27:55 gw1 sshd[23248]: Failed password for invalid user e from 200.69.236.229 port 58450 ssh2 ...	2020-02-17 06:30:10
106.12.99.173	attack	$f2bV_matches	2020-02-17 06:21:26
90.189.170.118	attackbotsspam	Automatic report - Port Scan Attack	2020-02-17 06:42:49
89.91.209.87	attackspambots	Feb 16 22:13:45 ourumov-web sshd\[8613\]: Invalid user admin from 89.91.209.87 port 45602 Feb 16 22:13:45 ourumov-web sshd\[8613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.91.209.87 Feb 16 22:13:47 ourumov-web sshd\[8613\]: Failed password for invalid user admin from 89.91.209.87 port 45602 ssh2 ...	2020-02-17 06:07:20
188.99.137.169	attackspam	Feb 17 01:08:43 server sshd\[32296\]: Invalid user mother from 188.99.137.169 Feb 17 01:08:43 server sshd\[32296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dslb-188-099-137-169.188.099.pools.vodafone-ip.de Feb 17 01:08:46 server sshd\[32296\]: Failed password for invalid user mother from 188.99.137.169 port 34634 ssh2 Feb 17 01:27:53 server sshd\[3688\]: Invalid user ubuntu from 188.99.137.169 Feb 17 01:27:53 server sshd\[3688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dslb-188-099-137-169.188.099.pools.vodafone-ip.de ...	2020-02-17 06:33:25
174.219.25.176	attackspam	Brute forcing email accounts	2020-02-17 06:47:40
185.40.4.23	attackspambots	Feb 16 23:19:10 debian-2gb-nbg1-2 kernel: \[4150769.787318\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.40.4.23 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=18469 DF PROTO=TCP SPT=14781 DPT=5067 WINDOW=512 RES=0x00 SYN URGP=0	2020-02-17 06:20:28
148.70.236.112	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-02-17 06:19:53
68.116.41.6	attackspambots		2020-02-17 06:31:02

Recently Reported IPs

116.115.208.245	114.104.183.138	116.115.209.71	116.115.209.54
116.115.209.50	116.115.209.69	116.115.209.67	116.115.209.58
116.115.209.60	116.115.209.7	116.115.209.73	116.115.209.64
114.104.183.14	116.115.209.74	116.115.209.77	116.115.209.94
116.115.209.86	116.115.209.79	116.115.209.88	116.115.210.114