114.67.104.242

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Beijing Jingdong 360 Degree E-Commerce Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 5 16:49:39 areeb-Workstation sshd[19050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.242 Mar 5 16:49:40 areeb-Workstation sshd[19050]: Failed password for invalid user ldapuser from 114.67.104.242 port 48592 ssh2 ...	2020-03-05 19:22:32
attack	Mar 4 23:20:46 ourumov-web sshd\[31040\]: Invalid user hongli from 114.67.104.242 port 37428 Mar 4 23:20:46 ourumov-web sshd\[31040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.242 Mar 4 23:20:47 ourumov-web sshd\[31040\]: Failed password for invalid user hongli from 114.67.104.242 port 37428 ssh2 ...	2020-03-05 06:25:24
attackspam	Invalid user simran from 114.67.104.242 port 53890	2020-02-22 15:26:21
attackbotsspam	$f2bV_matches	2020-02-22 00:36:24
attackspam	Feb 13 03:21:24 MK-Soft-VM8 sshd[10382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.242 Feb 13 03:21:26 MK-Soft-VM8 sshd[10382]: Failed password for invalid user crime from 114.67.104.242 port 59848 ssh2 ...	2020-02-13 10:33:07
attack	Feb 11 04:53:31 pi sshd[30652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.242 Feb 11 04:53:34 pi sshd[30652]: Failed password for invalid user ttm from 114.67.104.242 port 60250 ssh2	2020-02-11 16:39:51
attack	Feb 10 03:23:41 plusreed sshd[7963]: Invalid user avc from 114.67.104.242 ...	2020-02-10 17:54:17
attack	Feb 8 17:18:54 legacy sshd[21806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.242 Feb 8 17:18:56 legacy sshd[21806]: Failed password for invalid user nfe from 114.67.104.242 port 33860 ssh2 Feb 8 17:22:37 legacy sshd[21989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.242 ...	2020-02-09 06:54:56
attackspambots	Unauthorized connection attempt detected from IP address 114.67.104.242 to port 2220 [J]	2020-01-30 20:23:01
attack	Unauthorized connection attempt detected from IP address 114.67.104.242 to port 2220 [J]	2020-01-24 05:52:22

Comments on same subnet:

IP	Type	Details	Datetime
114.67.104.59	attackspam	fail2ban: brute force SSH detected	2020-10-06 05:21:06
114.67.104.59	attackbotsspam	Oct 5 01:17:00 mellenthin sshd[11159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.59 user=root Oct 5 01:17:02 mellenthin sshd[11159]: Failed password for invalid user root from 114.67.104.59 port 37250 ssh2	2020-10-05 21:25:42
114.67.104.59	attackspambots	Oct 5 01:17:00 mellenthin sshd[11159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.59 user=root Oct 5 01:17:02 mellenthin sshd[11159]: Failed password for invalid user root from 114.67.104.59 port 37250 ssh2	2020-10-05 13:17:34
114.67.104.59	attack	Aug 30 00:26:54 marvibiene sshd[30037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.59 Aug 30 00:26:56 marvibiene sshd[30037]: Failed password for invalid user wetserver from 114.67.104.59 port 47142 ssh2	2020-08-30 06:28:36
114.67.104.35	attack	2020-08-24T16:47:30.029273abusebot-5.cloudsearch.cf sshd[16779]: Invalid user support from 114.67.104.35 port 53778 2020-08-24T16:47:30.047007abusebot-5.cloudsearch.cf sshd[16779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 2020-08-24T16:47:30.029273abusebot-5.cloudsearch.cf sshd[16779]: Invalid user support from 114.67.104.35 port 53778 2020-08-24T16:47:32.208646abusebot-5.cloudsearch.cf sshd[16779]: Failed password for invalid user support from 114.67.104.35 port 53778 ssh2 2020-08-24T16:52:06.696846abusebot-5.cloudsearch.cf sshd[16838]: Invalid user dani from 114.67.104.35 port 53265 2020-08-24T16:52:06.704059abusebot-5.cloudsearch.cf sshd[16838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 2020-08-24T16:52:06.696846abusebot-5.cloudsearch.cf sshd[16838]: Invalid user dani from 114.67.104.35 port 53265 2020-08-24T16:52:08.755232abusebot-5.cloudsearch.cf sshd[16838]: Fa ...	2020-08-25 00:58:13
114.67.104.35	attack	Aug 22 10:53:31 itv-usvr-01 sshd[2685]: Invalid user kung from 114.67.104.35 Aug 22 10:53:31 itv-usvr-01 sshd[2685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 Aug 22 10:53:31 itv-usvr-01 sshd[2685]: Invalid user kung from 114.67.104.35 Aug 22 10:53:32 itv-usvr-01 sshd[2685]: Failed password for invalid user kung from 114.67.104.35 port 49723 ssh2 Aug 22 10:56:21 itv-usvr-01 sshd[2781]: Invalid user ts3 from 114.67.104.35	2020-08-22 12:01:27
114.67.104.35	attackspambots	Aug 18 03:50:07 our-server-hostname sshd[4045]: Invalid user habib from 114.67.104.35 Aug 18 03:50:08 our-server-hostname sshd[4045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 Aug 18 03:50:09 our-server-hostname sshd[4045]: Failed password for invalid user habib from 114.67.104.35 port 50850 ssh2 Aug 18 03:54:04 our-server-hostname sshd[4697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 user=r.r Aug 18 03:54:05 our-server-hostname sshd[4697]: Failed password for r.r from 114.67.104.35 port 44018 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.67.104.35	2020-08-18 03:16:03
114.67.104.35	attack	frenzy	2020-08-15 13:38:36
114.67.104.35	attackbotsspam	Aug 13 05:54:37 scw-tender-jepsen sshd[1507]: Failed password for root from 114.67.104.35 port 60883 ssh2	2020-08-13 18:48:30
114.67.104.59	attackbots	Aug 4 21:12:16 roki-contabo sshd\[1604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.59 user=root Aug 4 21:12:18 roki-contabo sshd\[1604\]: Failed password for root from 114.67.104.59 port 50028 ssh2 Aug 4 21:18:54 roki-contabo sshd\[1875\]: Invalid user 224 from 114.67.104.59 Aug 4 21:18:54 roki-contabo sshd\[1875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.59 Aug 4 21:18:55 roki-contabo sshd\[1875\]: Failed password for invalid user 224 from 114.67.104.59 port 48334 ssh2 ...	2020-08-05 04:35:13
114.67.104.35	attackbots	Aug 2 20:53:35 django-0 sshd[1099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 user=root Aug 2 20:53:37 django-0 sshd[1099]: Failed password for root from 114.67.104.35 port 52310 ssh2 ...	2020-08-03 05:11:32
114.67.104.35	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-01 08:22:09
114.67.104.35	attack	Fail2Ban - SSH Bruteforce Attempt	2020-07-30 20:57:33
114.67.104.35	attackspam	$f2bV_matches	2020-07-30 02:32:42
114.67.104.35	attackbotsspam	Jul 29 05:56:38 hidden sshd[56212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.104.35 Jul 29 05:56:40 hidden sshd[56212]: Failed password for invalid user minecraft from 114.67.104.35 port 57499 ssh2 Jul 29 06:03:39 hidden sshd[57535]: Invalid user jayheo from 114.67.104.35 port 38073	2020-07-29 12:45:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.67.104.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.67.104.242.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012301 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 05:52:19 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 242.104.67.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.104.67.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.23.12.84	attack	94.23.12.84 - - [10/Sep/2019:03:18:08 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.12.84 - - [10/Sep/2019:03:18:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.12.84 - - [10/Sep/2019:03:18:08 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.12.84 - - [10/Sep/2019:03:18:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.12.84 - - [10/Sep/2019:03:18:08 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.12.84 - - [10/Sep/2019:03:18:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-10 14:49:11
218.98.40.149	attackbotsspam	Sep 10 09:07:49 v22019058497090703 sshd[14233]: Failed password for root from 218.98.40.149 port 13392 ssh2 Sep 10 09:07:51 v22019058497090703 sshd[14233]: Failed password for root from 218.98.40.149 port 13392 ssh2 Sep 10 09:07:53 v22019058497090703 sshd[14233]: Failed password for root from 218.98.40.149 port 13392 ssh2 ...	2019-09-10 15:32:57
162.144.57.183	attackbots	fail2ban honeypot	2019-09-10 15:00:22
86.44.58.191	attack	Sep 9 21:00:20 lcprod sshd\[26072\]: Invalid user ftp123 from 86.44.58.191 Sep 9 21:00:20 lcprod sshd\[26072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86-44-58-191-dynamic.agg2.rsl.rsl-rtd.eircom.net Sep 9 21:00:21 lcprod sshd\[26072\]: Failed password for invalid user ftp123 from 86.44.58.191 port 41622 ssh2 Sep 9 21:05:58 lcprod sshd\[26574\]: Invalid user system from 86.44.58.191 Sep 9 21:05:58 lcprod sshd\[26574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86-44-58-191-dynamic.agg2.rsl.rsl-rtd.eircom.net	2019-09-10 15:13:12
164.132.81.106	attack	Sep 10 08:50:07 SilenceServices sshd[5738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106 Sep 10 08:50:09 SilenceServices sshd[5738]: Failed password for invalid user deployer from 164.132.81.106 port 42542 ssh2 Sep 10 08:55:36 SilenceServices sshd[7989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.81.106	2019-09-10 15:04:45
112.85.42.179	attack	Sep 10 01:17:44 vm-dfa0dd01 sshd[79881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.179 user=root Sep 10 01:17:46 vm-dfa0dd01 sshd[79881]: Failed password for root from 112.85.42.179 port 9861 ssh2 ...	2019-09-10 15:12:16
113.80.86.2	attack	Sep 10 08:50:20 meumeu sshd[6676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.80.86.2 Sep 10 08:50:22 meumeu sshd[6676]: Failed password for invalid user postgres from 113.80.86.2 port 52172 ssh2 Sep 10 08:55:31 meumeu sshd[7248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.80.86.2 ...	2019-09-10 15:05:42
138.68.101.199	attackbots	Sep 10 06:53:54 hcbbdb sshd\[28357\]: Invalid user admin1 from 138.68.101.199 Sep 10 06:53:54 hcbbdb sshd\[28357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.101.199 Sep 10 06:53:56 hcbbdb sshd\[28357\]: Failed password for invalid user admin1 from 138.68.101.199 port 42620 ssh2 Sep 10 06:59:43 hcbbdb sshd\[29078\]: Invalid user newuser from 138.68.101.199 Sep 10 06:59:43 hcbbdb sshd\[29078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.101.199	2019-09-10 15:00:56
51.75.23.242	attackspambots	2019-09-10T06:46:18.732775abusebot-8.cloudsearch.cf sshd\[22195\]: Invalid user deployer from 51.75.23.242 port 50150	2019-09-10 15:10:04
165.22.144.206	attackspambots	Sep 10 08:55:30 core sshd[23589]: Failed password for www-data from 165.22.144.206 port 55470 ssh2 Sep 10 09:00:57 core sshd[30136]: Invalid user webadmin from 165.22.144.206 port 58530 ...	2019-09-10 15:22:30
139.162.75.112	attackspam	19/9/10@01:18:48: FAIL: Alarm-SSH address from=139.162.75.112 19/9/10@01:18:49: FAIL: Alarm-SSH address from=139.162.75.112 ...	2019-09-10 15:08:01
122.195.200.148	attackbotsspam	Sep 10 03:11:20 plusreed sshd[16577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Sep 10 03:11:22 plusreed sshd[16577]: Failed password for root from 122.195.200.148 port 41030 ssh2 ...	2019-09-10 15:11:43
198.245.53.163	attackspambots	SSH Brute Force	2019-09-10 15:38:26
45.55.187.39	attack	Sep 10 07:09:01 www sshd\[217969\]: Invalid user test6 from 45.55.187.39 Sep 10 07:09:01 www sshd\[217969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.187.39 Sep 10 07:09:03 www sshd\[217969\]: Failed password for invalid user test6 from 45.55.187.39 port 48378 ssh2 ...	2019-09-10 15:07:32
153.36.236.35	attackbotsspam	Sep 10 13:54:46 lcl-usvr-01 sshd[16361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root Sep 10 13:54:48 lcl-usvr-01 sshd[16361]: Failed password for root from 153.36.236.35 port 45092 ssh2	2019-09-10 14:56:39

Recently Reported IPs

89.36.211.23	56.13.196.0	107.198.166.196	217.122.117.249
171.224.31.249	58.171.77.173	98.227.180.104	106.111.79.68
58.153.81.95	51.83.45.93	190.91.246.177	35.194.110.179
41.21.237.71	102.253.87.117	198.46.245.56	148.239.153.99
189.135.193.147	65.238.74.229	165.22.204.173	97.233.201.101