114.228.74.252

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.228.74.82	attackspam	Unauthorized connection attempt detected from IP address 114.228.74.82 to port 3389	2020-05-31 21:39:39
114.228.74.92	attackbots	firewall-block, port(s): 22/tcp	2019-10-06 23:39:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.228.74.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29839
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.228.74.252.			IN	A

;; AUTHORITY SECTION:
.			150	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030501 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 06 10:59:29 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 252.74.228.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 252.74.228.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.116.41.6	attackbotsspam	5x Failed Password	2020-09-21 16:04:16
46.101.193.99	attack	46.101.193.99 - - [21/Sep/2020:07:41:45 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.193.99 - - [21/Sep/2020:07:41:47 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.193.99 - - [21/Sep/2020:07:41:48 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-21 16:06:44
162.243.145.195	attack	Automatic report generated by Wazuh	2020-09-21 16:01:43
121.190.3.139	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 16:07:51
141.98.81.154	attack	TCP (SYN) 141.98.81.154:42888 -> port 1080, len 60	2020-09-21 15:59:27
193.27.229.92	attackbots	Found on CINS badguys / proto=6 . srcport=46676 . dstport=32989 . (352)	2020-09-21 16:26:09
222.186.175.182	attack	Sep 21 08:20:36 localhost sshd[118948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Sep 21 08:20:38 localhost sshd[118948]: Failed password for root from 222.186.175.182 port 62346 ssh2 Sep 21 08:20:41 localhost sshd[118948]: Failed password for root from 222.186.175.182 port 62346 ssh2 Sep 21 08:20:36 localhost sshd[118948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Sep 21 08:20:38 localhost sshd[118948]: Failed password for root from 222.186.175.182 port 62346 ssh2 Sep 21 08:20:41 localhost sshd[118948]: Failed password for root from 222.186.175.182 port 62346 ssh2 Sep 21 08:20:36 localhost sshd[118948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Sep 21 08:20:38 localhost sshd[118948]: Failed password for root from 222.186.175.182 port 62346 ssh2 Sep 21 08:20:41 localhost ...	2020-09-21 16:27:12
180.124.50.115	attackspambots	Automatic report - Banned IP Access	2020-09-21 15:55:16
192.241.238.97	attackspambots	2455/tcp 953/tcp 7574/tcp... [2020-07-23/09-20]34pkt,32pt.(tcp)	2020-09-21 16:27:35
150.95.177.195	attackspam	150.95.177.195 (JP/Japan/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 21 04:00:02 server5 sshd[23723]: Failed password for root from 182.75.216.190 port 60168 ssh2 Sep 21 03:59:27 server5 sshd[23390]: Failed password for root from 112.78.3.39 port 59018 ssh2 Sep 21 03:59:14 server5 sshd[23372]: Failed password for root from 71.186.165.41 port 48194 ssh2 Sep 21 03:59:25 server5 sshd[23390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.78.3.39 user=root Sep 21 04:00:00 server5 sshd[23723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.216.190 user=root Sep 21 04:02:07 server5 sshd[24615]: Failed password for root from 150.95.177.195 port 58104 ssh2 IP Addresses Blocked: 182.75.216.190 (IN/India/-) 112.78.3.39 (VN/Vietnam/-) 71.186.165.41 (US/United States/-)	2020-09-21 16:24:40
47.176.104.74	attackspambots	Sep 21 08:20:53 Ubuntu-1404-trusty-64-minimal sshd\[10174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.176.104.74 user=root Sep 21 08:20:56 Ubuntu-1404-trusty-64-minimal sshd\[10174\]: Failed password for root from 47.176.104.74 port 23291 ssh2 Sep 21 08:27:15 Ubuntu-1404-trusty-64-minimal sshd\[13602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.176.104.74 user=root Sep 21 08:27:17 Ubuntu-1404-trusty-64-minimal sshd\[13602\]: Failed password for root from 47.176.104.74 port 60432 ssh2 Sep 21 08:31:05 Ubuntu-1404-trusty-64-minimal sshd\[19463\]: Invalid user webftp from 47.176.104.74 Sep 21 08:31:05 Ubuntu-1404-trusty-64-minimal sshd\[19463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.176.104.74	2020-09-21 16:10:19
201.77.130.3	attackspam	Sep 21 04:35:35 inter-technics sshd[28442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.77.130.3 user=root Sep 21 04:35:38 inter-technics sshd[28442]: Failed password for root from 201.77.130.3 port 38396 ssh2 Sep 21 04:39:17 inter-technics sshd[28758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.77.130.3 user=postgres Sep 21 04:39:19 inter-technics sshd[28758]: Failed password for postgres from 201.77.130.3 port 36959 ssh2 Sep 21 04:43:00 inter-technics sshd[28972]: Invalid user testdev from 201.77.130.3 port 35528 ...	2020-09-21 16:12:50
27.150.22.44	attackspambots	SSH Bruteforce Attempt on Honeypot	2020-09-21 16:24:24
222.186.42.7	attackspam	Sep 21 09:57:35 vps639187 sshd\[15781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Sep 21 09:57:37 vps639187 sshd\[15781\]: Failed password for root from 222.186.42.7 port 55077 ssh2 Sep 21 09:57:39 vps639187 sshd\[15781\]: Failed password for root from 222.186.42.7 port 55077 ssh2 ...	2020-09-21 16:08:41
186.113.109.47	attack	Sep 20 19:00:42 mellenthin postfix/smtpd[11972]: NOQUEUE: reject: RCPT from unknown[186.113.109.47]: 554 5.7.1 Service unavailable; Client host [186.113.109.47] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/186.113.109.47; from= to= proto=ESMTP helo=<[186.113.109.47]>	2020-09-21 15:57:22

Recently Reported IPs

114.228.74.26	114.228.74.243	114.228.74.33	114.228.74.30
114.228.74.29	114.228.74.244	114.228.74.39	114.228.74.34
114.106.151.68	114.228.74.4	114.228.74.40	114.228.74.45
114.228.74.48	114.228.77.91	114.228.80.7	114.228.78.205
114.228.80.88	114.228.81.98	114.228.82.163	114.228.82.136