114.113.144.104

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: China Unicom Beijing Province Network

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.113.144.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27858
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.113.144.104.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Mar 31 10:52:39 +08 2019
;; MSG SIZE  rcvd: 119

Host info

104.144.113.114.in-addr.arpa domain name pointer mail.geolite-pv.com.
104.144.113.114.in-addr.arpa domain name pointer mail.benefituser.com.
104.144.113.114.in-addr.arpa domain name pointer mail.chiner.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
104.144.113.114.in-addr.arpa	name = mail.chiner.com.
104.144.113.114.in-addr.arpa	name = mail.benefituser.com.
104.144.113.114.in-addr.arpa	name = mail.geolite-pv.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.237.154.187	attackbots	SpamScore above: 10.0	2020-04-27 16:02:08
61.7.235.211	attack	Apr 27 03:55:19 localhost sshd\[15725\]: Invalid user admin from 61.7.235.211 port 34068 Apr 27 03:55:19 localhost sshd\[15725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.235.211 Apr 27 03:55:21 localhost sshd\[15725\]: Failed password for invalid user admin from 61.7.235.211 port 34068 ssh2 ...	2020-04-27 15:37:31
195.231.0.89	attack	Apr 27 08:21:26 meumeu sshd[2261]: Failed password for root from 195.231.0.89 port 33606 ssh2 Apr 27 08:25:17 meumeu sshd[2779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.231.0.89 Apr 27 08:25:19 meumeu sshd[2779]: Failed password for invalid user tang from 195.231.0.89 port 52696 ssh2 ...	2020-04-27 15:29:55
64.137.179.107	attackbots	Apr 27 08:39:27 [host] sshd[6901]: Invalid user te Apr 27 08:39:27 [host] sshd[6901]: pam_unix(sshd:a Apr 27 08:39:29 [host] sshd[6901]: Failed password	2020-04-27 15:48:50
88.201.28.180	attackbotsspam	DATE:2020-04-27 08:05:41, IP:88.201.28.180, PORT:ssh SSH brute force auth (docker-dc)	2020-04-27 15:36:50
222.186.173.215	attackbots	Apr 27 09:27:26 server sshd[1224]: Failed none for root from 222.186.173.215 port 4842 ssh2 Apr 27 09:27:28 server sshd[1224]: Failed password for root from 222.186.173.215 port 4842 ssh2 Apr 27 09:27:31 server sshd[1224]: Failed password for root from 222.186.173.215 port 4842 ssh2	2020-04-27 15:29:05
110.244.44.208	attackspam	Unauthorised access (Apr 27) SRC=110.244.44.208 LEN=40 TTL=46 ID=12862 TCP DPT=8080 WINDOW=24175 SYN Unauthorised access (Apr 26) SRC=110.244.44.208 LEN=40 TTL=46 ID=16005 TCP DPT=8080 WINDOW=64241 SYN Unauthorised access (Apr 26) SRC=110.244.44.208 LEN=40 TTL=46 ID=54088 TCP DPT=8080 WINDOW=33796 SYN	2020-04-27 15:31:48
128.199.85.251	attackspam	Brute force SMTP login attempted. ...	2020-04-27 15:39:02
116.237.121.54	attackbotsspam	Attempts against SMTP/SSMTP	2020-04-27 15:57:11
142.93.35.169	attackspambots	142.93.35.169 - - \[27/Apr/2020:07:37:52 +0200\] "POST /wp-login.php HTTP/1.0" 200 6945 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - \[27/Apr/2020:07:38:03 +0200\] "POST /wp-login.php HTTP/1.0" 200 6947 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - \[27/Apr/2020:07:38:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 6803 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-27 16:01:52
167.114.3.105	attack	Apr 27 03:55:02 work-partkepr sshd\[13064\]: Invalid user master from 167.114.3.105 port 56922 Apr 27 03:55:02 work-partkepr sshd\[13064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.3.105 ...	2020-04-27 15:58:09
45.148.10.71	attackspambots	PORT-SCAN	2020-04-27 16:07:05
114.67.69.206	attack	Apr 27 00:17:31 server1 sshd\[19233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.69.206 user=ubuntu Apr 27 00:17:33 server1 sshd\[19233\]: Failed password for ubuntu from 114.67.69.206 port 44678 ssh2 Apr 27 00:20:20 server1 sshd\[20228\]: Invalid user maggi from 114.67.69.206 Apr 27 00:20:20 server1 sshd\[20228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.69.206 Apr 27 00:20:22 server1 sshd\[20228\]: Failed password for invalid user maggi from 114.67.69.206 port 55298 ssh2 ...	2020-04-27 16:06:49
51.91.212.79	attackbots	04/27/2020-03:32:56.974324 51.91.212.79 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2020-04-27 15:47:37
58.186.76.241	attackspam	Unauthorised access (Apr 27) SRC=58.186.76.241 LEN=52 TTL=111 ID=209 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-27 15:34:14

Recently Reported IPs

162.252.156.95	81.136.241.89	37.99.136.209	47.91.159.88
106.13.9.153	106.12.37.232	154.73.109.10	83.249.124.62
80.211.148.158	51.255.35.41	132.145.40.25	80.151.229.8
206.189.131.213	79.9.27.174	184.105.139.80	79.41.201.109
46.101.230.131	211.181.72.238	117.156.94.32	115.238.245.8