114.106.150.56

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 114.106.150.56 to port 6656 [T]	2020-01-30 08:44:29

Comments on same subnet:

IP	Type	Details	Datetime
114.106.150.105	attackspam	(pop3d) Failed POP3 login from 114.106.150.105 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 4 00:32:57 ir1 dovecot[2885757]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=114.106.150.105, lip=5.63.12.44, session=	2020-07-04 04:49:54
114.106.150.38	attackspam	Unauthorized connection attempt detected from IP address 114.106.150.38 to port 6656 [T]	2020-01-29 20:24:42
114.106.150.149	attack	Unauthorized connection attempt detected from IP address 114.106.150.149 to port 6656 [T]	2020-01-27 05:34:33
114.106.150.198	attackbotsspam	/download/file.php?id=160&sid=173620f71161811c4fd91df279cfaf8c	2019-11-23 21:59:37
114.106.150.103	attackbotsspam	2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x 2019-08-10 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.106.150.103	2019-08-11 03:22:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.106.150.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32254
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.106.150.56.			IN	A

;; AUTHORITY SECTION:
.			245	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012901 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 08:44:24 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 56.150.106.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.150.106.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.100.24.188	attack	Jul 16 06:57:58 s64-1 sshd[12826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.100.24.188 Jul 16 06:58:01 s64-1 sshd[12826]: Failed password for invalid user mich from 191.100.24.188 port 34749 ssh2 Jul 16 07:07:13 s64-1 sshd[13019]: Failed password for backup from 191.100.24.188 port 53365 ssh2 ...	2019-07-16 17:31:52
202.162.199.8	attack	Automatic report - Port Scan Attack	2019-07-16 17:22:07
133.130.117.173	attackbotsspam	Jul 16 11:01:16 eventyay sshd[28406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.117.173 Jul 16 11:01:18 eventyay sshd[28406]: Failed password for invalid user marc from 133.130.117.173 port 32796 ssh2 Jul 16 11:06:41 eventyay sshd[29645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.117.173 ...	2019-07-16 17:18:08
212.7.222.207	attackbots	Jul 16 02:16:08 tempelhof postfix/smtpd[1792]: warning: hostname trim.swingthelamp.com does not resolve to address 212.7.222.207 Jul 16 02:16:08 tempelhof postfix/smtpd[1792]: connect from unknown[212.7.222.207] Jul x@x Jul 16 02:16:08 tempelhof postfix/smtpd[1792]: disconnect from unknown[212.7.222.207] Jul 16 02:16:48 tempelhof postfix/smtpd[32619]: warning: hostname trim.swingthelamp.com does not resolve to address 212.7.222.207 Jul 16 02:16:48 tempelhof postfix/smtpd[32619]: connect from unknown[212.7.222.207] Jul x@x Jul 16 02:16:49 tempelhof postfix/smtpd[32619]: disconnect from unknown[212.7.222.207] Jul 16 02:20:39 tempelhof postfix/smtpd[903]: warning: hostname trim.swingthelamp.com does not resolve to address 212.7.222.207 Jul 16 02:20:39 tempelhof postfix/smtpd[903]: connect from unknown[212.7.222.207] Jul x@x Jul 16 02:20:39 tempelhof postfix/smtpd[903]: disconnect from unknown[212.7.222.207] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=212.7.	2019-07-16 18:08:08
178.122.116.109	attack	16.07.2019 03:28:40 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-07-16 18:03:30
91.89.97.195	attackbots	Jul 16 09:37:26 apollo sshd\[28067\]: Invalid user tf2server from 91.89.97.195Jul 16 09:37:28 apollo sshd\[28067\]: Failed password for invalid user tf2server from 91.89.97.195 port 42398 ssh2Jul 16 10:16:14 apollo sshd\[28102\]: Invalid user jules from 91.89.97.195 ...	2019-07-16 17:25:51
185.222.211.238	attackbotsspam	Jul 16 10:50:12 relay postfix/smtpd\[6016\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.238\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 10:50:12 relay postfix/smtpd\[6016\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.238\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 10:50:12 relay postfix/smtpd\[6016\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.238\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 16 10:50:12 relay postfix/smtpd\[6016\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.238\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ p ...	2019-07-16 17:45:52
60.13.230.199	attackspam	Jul 14 16:25:34 vpxxxxxxx22308 sshd[9852]: Invalid user sftp from 60.13.230.199 Jul 14 16:25:34 vpxxxxxxx22308 sshd[9852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.13.230.199 Jul 14 16:25:36 vpxxxxxxx22308 sshd[9852]: Failed password for invalid user sftp from 60.13.230.199 port 49140 ssh2 Jul 14 16:31:10 vpxxxxxxx22308 sshd[10588]: Invalid user posp from 60.13.230.199 Jul 14 16:31:10 vpxxxxxxx22308 sshd[10588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.13.230.199 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.13.230.199	2019-07-16 18:11:26
190.57.72.70	attackspambots	Jul 16 09:53:32 MK-Soft-VM3 sshd\[2998\]: Invalid user postgres from 190.57.72.70 port 43298 Jul 16 09:53:32 MK-Soft-VM3 sshd\[2998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.57.72.70 Jul 16 09:53:33 MK-Soft-VM3 sshd\[2998\]: Failed password for invalid user postgres from 190.57.72.70 port 43298 ssh2 ...	2019-07-16 18:16:38
81.241.157.172	attackbotsspam	...	2019-07-16 18:18:40
80.211.3.119	attack	Jul 16 08:20:09 ArkNodeAT sshd\[30191\]: Invalid user anders from 80.211.3.119 Jul 16 08:20:09 ArkNodeAT sshd\[30191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.3.119 Jul 16 08:20:11 ArkNodeAT sshd\[30191\]: Failed password for invalid user anders from 80.211.3.119 port 41632 ssh2	2019-07-16 17:42:59
36.66.149.211	attackspambots	Jul 16 10:47:51 mail sshd[22574]: Invalid user delgado from 36.66.149.211 ...	2019-07-16 18:12:04
37.204.105.82	attack	Jul 16 01:29:39 ip-172-31-62-245 sshd\[27195\]: Failed password for root from 37.204.105.82 port 37486 ssh2\ Jul 16 01:29:57 ip-172-31-62-245 sshd\[27199\]: Failed password for root from 37.204.105.82 port 37505 ssh2\ Jul 16 01:30:06 ip-172-31-62-245 sshd\[27199\]: Failed password for root from 37.204.105.82 port 37505 ssh2\ Jul 16 01:30:18 ip-172-31-62-245 sshd\[27204\]: Failed password for root from 37.204.105.82 port 37523 ssh2\ Jul 16 01:30:19 ip-172-31-62-245 sshd\[27204\]: Failed password for root from 37.204.105.82 port 37523 ssh2\	2019-07-16 17:27:39
110.44.123.47	attackbotsspam	Jul 16 10:15:57 minden010 sshd[6368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.44.123.47 Jul 16 10:15:59 minden010 sshd[6368]: Failed password for invalid user bg from 110.44.123.47 port 58488 ssh2 Jul 16 10:21:50 minden010 sshd[8327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.44.123.47 ...	2019-07-16 17:19:33
92.118.37.86	attackbots	16.07.2019 08:24:20 Connection to port 8751 blocked by firewall	2019-07-16 17:25:15

Recently Reported IPs

60.172.85.22	60.166.148.212	59.52.187.187	49.89.85.170
49.79.192.124	49.73.190.44	47.103.7.51	45.136.108.45
14.106.106.92	1.180.164.33	1.54.161.19	1.10.133.21
223.215.97.18	222.219.25.2	222.208.119.107	222.82.59.207
222.82.53.167	183.163.39.63	183.81.89.84	182.105.200.234