114.237.109.66

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SpamScore above: 10.0	2020-06-16 03:49:29

Comments on same subnet:

IP	Type	Details	Datetime
114.237.109.49	attack	Spammer	2020-08-13 09:46:53
114.237.109.113	attack	Aug 8 06:56:29 elektron postfix/smtpd\[11306\]: NOQUEUE: reject: RCPT from unknown\[114.237.109.113\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.109.113\]\; from=\ to=\ proto=ESMTP helo=\ Aug 8 06:57:12 elektron postfix/smtpd\[11306\]: NOQUEUE: reject: RCPT from unknown\[114.237.109.113\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.109.113\]\; from=\ to=\ proto=ESMTP helo=\ Aug 8 06:57:45 elektron postfix/smtpd\[11306\]: NOQUEUE: reject: RCPT from unknown\[114.237.109.113\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.109.113\]\; from=\ to=\ proto=ESMTP helo=\ Aug 8 06:58:16 elektron postfix/smtpd\[11306\]: NOQUEUE: reject: RCPT from unknown\[114.237.109.113\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.109.113\]\; from=\ to=\ proto=ESMTP he	2020-08-08 16:05:00
114.237.109.30	attack	Spammer	2020-08-01 08:13:33
114.237.109.106	attack	SpamScore above: 10.0	2020-06-30 09:03:01
114.237.109.228	attackspam	SpamScore above: 10.0	2020-06-30 06:41:22
114.237.109.234	attackspambots	Email spam message	2020-06-23 08:20:02
114.237.109.68	attackbotsspam	SpamScore above: 10.0	2020-06-20 15:15:06
114.237.109.32	attackbots		2020-06-20 12:37:34
114.237.109.5	attackbotsspam	SpamScore above: 10.0	2020-06-10 19:55:38
114.237.109.95	attackbotsspam	SpamScore above: 10.0	2020-06-07 07:34:54
114.237.109.20	attackspambots	spam	2020-06-04 23:43:49
114.237.109.95	attackspam	SpamScore above: 10.0	2020-06-04 22:07:25
114.237.109.81	attack	$f2bV_matches	2020-06-03 17:13:02
114.237.109.107	attackbots	Email spam message	2020-06-01 16:39:22
114.237.109.175	attack	SpamScore above: 10.0	2020-05-31 00:27:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.237.109.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19401
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.237.109.66.			IN	A

;; AUTHORITY SECTION:
.			253	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061501 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 16 03:49:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

66.109.237.114.in-addr.arpa domain name pointer 66.109.237.114.broad.lyg.js.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.109.237.114.in-addr.arpa	name = 66.109.237.114.broad.lyg.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.56.45.87	attack	Dec 12 11:51:12 vps647732 sshd[29351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.45.87 Dec 12 11:51:14 vps647732 sshd[29351]: Failed password for invalid user yasuhara from 149.56.45.87 port 60308 ssh2 ...	2019-12-12 19:12:22
117.48.208.71	attackspam	Dec 12 09:26:44 pornomens sshd\[11182\]: Invalid user gin_kyo from 117.48.208.71 port 46580 Dec 12 09:26:44 pornomens sshd\[11182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.208.71 Dec 12 09:26:47 pornomens sshd\[11182\]: Failed password for invalid user gin_kyo from 117.48.208.71 port 46580 ssh2 ...	2019-12-12 19:21:42
60.51.17.238	attack	Microsoft-Windows-Security-Auditing	2019-12-12 19:17:07
149.202.59.85	attackspambots	Dec 12 11:22:48 tux-35-217 sshd\[8851\]: Invalid user dykstra from 149.202.59.85 port 35081 Dec 12 11:22:48 tux-35-217 sshd\[8851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 Dec 12 11:22:50 tux-35-217 sshd\[8851\]: Failed password for invalid user dykstra from 149.202.59.85 port 35081 ssh2 Dec 12 11:28:00 tux-35-217 sshd\[8888\]: Invalid user dnslog from 149.202.59.85 port 39073 Dec 12 11:28:00 tux-35-217 sshd\[8888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 ...	2019-12-12 19:18:53
14.232.106.195	attack	1576131839 - 12/12/2019 07:23:59 Host: 14.232.106.195/14.232.106.195 Port: 445 TCP Blocked	2019-12-12 19:19:24
106.12.74.141	attackspambots	Dec 12 11:59:29 mail sshd[18897]: Invalid user nfs from 106.12.74.141 Dec 12 11:59:29 mail sshd[18897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.141 Dec 12 11:59:29 mail sshd[18897]: Invalid user nfs from 106.12.74.141 Dec 12 11:59:31 mail sshd[18897]: Failed password for invalid user nfs from 106.12.74.141 port 47714 ssh2 Dec 12 12:12:38 mail sshd[21685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.141 user=dovecot Dec 12 12:12:40 mail sshd[21685]: Failed password for dovecot from 106.12.74.141 port 45350 ssh2 ...	2019-12-12 19:44:15
121.242.87.99	attackspam	1576131779 - 12/12/2019 07:22:59 Host: 121.242.87.99/121.242.87.99 Port: 445 TCP Blocked	2019-12-12 19:31:19
209.17.96.98	attack	209.17.96.98 was recorded 11 times by 9 hosts attempting to connect to the following ports: 5903,9443,5984,30303,5632,5986,9002,3388,5909,6002. Incident counter (4h, 24h, all-time): 11, 42, 1528	2019-12-12 19:26:21
183.80.52.98	attack	1576131792 - 12/12/2019 07:23:12 Host: 183.80.52.98/183.80.52.98 Port: 445 TCP Blocked	2019-12-12 19:28:04
182.52.137.127	attack	1576131830 - 12/12/2019 07:23:50 Host: 182.52.137.127/182.52.137.127 Port: 445 TCP Blocked	2019-12-12 19:22:48
103.206.137.14	attackbots	1576131766 - 12/12/2019 07:22:46 Host: 103.206.137.14/103.206.137.14 Port: 445 TCP Blocked	2019-12-12 19:34:45
81.133.73.161	attackbots	Dec 12 06:25:55 *** sshd[25369]: Invalid user ocean from 81.133.73.161	2019-12-12 19:09:39
144.121.14.152	attack	1576131786 - 12/12/2019 07:23:06 Host: 144.121.14.152/144.121.14.152 Port: 445 TCP Blocked	2019-12-12 19:29:22
79.84.88.56	attackspam	Dec 12 11:00:40 server sshd\[24171\]: Invalid user backup from 79.84.88.56 Dec 12 11:00:40 server sshd\[24171\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=56.88.84.79.rev.sfr.net Dec 12 11:00:42 server sshd\[24171\]: Failed password for invalid user backup from 79.84.88.56 port 58954 ssh2 Dec 12 13:08:30 server sshd\[30587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=56.88.84.79.rev.sfr.net user=root Dec 12 13:08:32 server sshd\[30587\]: Failed password for root from 79.84.88.56 port 55650 ssh2 ...	2019-12-12 19:16:42
59.90.28.141	attack	1576131868 - 12/12/2019 07:24:28 Host: 59.90.28.141/59.90.28.141 Port: 445 TCP Blocked	2019-12-12 19:12:40

Recently Reported IPs

123.207.188.63	236.180.23.13	98.86.66.76	0.53.8.0
99.207.224.180	59.153.219.152	21.111.116.195	252.148.46.234
52.4.54.3	21.23.19.111	239.0.88.197	46.153.164.72
121.13.18.124	249.83.255.31	250.212.31.160	121.13.18.94
220.13.56.189	35.225.34.45	119.136.96.123	86.164.71.14