114.99.0.140 - IPInfo

Basic Info

City: Anqing

Region: Anhui

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 114.99.0.140 to port 6656 [T]	2020-01-27 04:32:38

Comments on same subnet:

IP	Type	Details	Datetime
114.99.0.204	attackbots	MAIL: User Login Brute Force Attempt	2020-03-12 06:36:16
114.99.0.62	attackbots	Lines containing failures of 114.99.0.62 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.99.0.62	2020-02-26 10:31:16
114.99.0.3	attack	Unauthorized connection attempt detected from IP address 114.99.0.3 to port 6656 [T]	2020-01-30 14:48:32
114.99.0.120	attackbots	Brute force attempt	2020-01-11 05:46:41
114.99.0.30	attack	Brute force attempt	2020-01-10 07:21:34
114.99.0.221	attackspambots	Nov 9 01:05:41 eola postfix/smtpd[31453]: connect from unknown[114.99.0.221] Nov 9 01:05:41 eola postfix/smtpd[31453]: NOQUEUE: reject: RCPT from unknown[114.99.0.221]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo=<36hp89k> Nov 9 01:05:41 eola postfix/smtpd[31453]: disconnect from unknown[114.99.0.221] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Nov 9 01:05:42 eola postfix/smtpd[31453]: connect from unknown[114.99.0.221] Nov 9 01:05:43 eola postfix/smtpd[31453]: lost connection after AUTH from unknown[114.99.0.221] Nov 9 01:05:43 eola postfix/smtpd[31453]: disconnect from unknown[114.99.0.221] ehlo=1 auth=0/1 commands=1/2 Nov 9 01:05:43 eola postfix/smtpd[31453]: connect from unknown[114.99.0.221] Nov 9 01:05:44 eola postfix/smtpd[31453]: lost connection after AUTH from unknown[114.99.0.221] Nov 9 01:05:44 eola postfix/smtpd[31453]: disconnect from unknown[114.99.0.221] ehlo=1 auth=0/1 commands=1/2 Nov 9 01:05:44 eola........ -------------------------------	2019-11-09 17:59:40
114.99.0.39	attackbotsspam	Oct 1 04:33:59 mxgate1 postfix/postscreen[15902]: CONNECT from [114.99.0.39]:51190 to [176.31.12.44]:25 Oct 1 04:33:59 mxgate1 postfix/dnsblog[15906]: addr 114.99.0.39 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 1 04:33:59 mxgate1 postfix/dnsblog[15906]: addr 114.99.0.39 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 1 04:33:59 mxgate1 postfix/dnsblog[15904]: addr 114.99.0.39 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 1 04:34:00 mxgate1 postfix/dnsblog[15907]: addr 114.99.0.39 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 1 04:34:05 mxgate1 postfix/postscreen[15902]: DNSBL rank 4 for [114.99.0.39]:51190 Oct x@x Oct 1 04:34:06 mxgate1 postfix/postscreen[15902]: DISCONNECT [114.99.0.39]:51190 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.99.0.39	2019-10-04 14:58:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.0.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.99.0.140.			IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012601 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 04:32:35 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 140.0.99.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.0.99.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.17.228	attackbots	Invalid user weblogic from 51.75.17.228 port 46178	2019-08-01 13:12:04
36.226.219.16	attackbotsspam	Unauthorized connection attempt from IP address 36.226.219.16 on Port 445(SMB)	2019-08-01 12:57:44
195.206.105.217	attack	Aug 1 06:57:02 tuxlinux sshd[56771]: Invalid user NetLinx from 195.206.105.217 port 40542 Aug 1 06:57:02 tuxlinux sshd[56771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.105.217 Aug 1 06:57:02 tuxlinux sshd[56771]: Invalid user NetLinx from 195.206.105.217 port 40542 Aug 1 06:57:02 tuxlinux sshd[56771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.105.217 Aug 1 06:57:02 tuxlinux sshd[56771]: Invalid user NetLinx from 195.206.105.217 port 40542 Aug 1 06:57:02 tuxlinux sshd[56771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.105.217 Aug 1 06:57:03 tuxlinux sshd[56771]: Failed password for invalid user NetLinx from 195.206.105.217 port 40542 ssh2 ...	2019-08-01 13:12:58
94.191.3.81	attackspambots	Aug 1 06:09:00 dedicated sshd[4338]: Invalid user staette from 94.191.3.81 port 45956	2019-08-01 12:28:53
142.93.49.103	attack	Mar 19 10:15:44 vtv3 sshd\[8777\]: Invalid user admin from 142.93.49.103 port 38734 Mar 19 10:15:44 vtv3 sshd\[8777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.49.103 Mar 19 10:15:46 vtv3 sshd\[8777\]: Failed password for invalid user admin from 142.93.49.103 port 38734 ssh2 Mar 19 10:19:35 vtv3 sshd\[10163\]: Invalid user zachary from 142.93.49.103 port 42266 Mar 19 10:19:35 vtv3 sshd\[10163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.49.103 Apr 2 07:33:48 vtv3 sshd\[4081\]: Invalid user a from 142.93.49.103 port 55692 Apr 2 07:33:48 vtv3 sshd\[4081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.49.103 Apr 2 07:33:50 vtv3 sshd\[4081\]: Failed password for invalid user a from 142.93.49.103 port 55692 ssh2 Apr 2 07:39:25 vtv3 sshd\[6302\]: Invalid user ce from 142.93.49.103 port 34912 Apr 2 07:39:25 vtv3 sshd\[6302\]: pam_unix\(sshd:auth\):	2019-08-01 12:54:11
103.236.253.28	attackspam	Aug 1 04:50:06 debian sshd\[31322\]: Invalid user user from 103.236.253.28 port 37976 Aug 1 04:50:06 debian sshd\[31322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.236.253.28 ...	2019-08-01 12:31:32
14.241.111.6	attackspam	Unauthorized connection attempt from IP address 14.241.111.6 on Port 445(SMB)	2019-08-01 12:55:12
162.247.74.7	attackbotsspam	Invalid user user from 162.247.74.7 port 44178	2019-08-01 12:45:59
166.70.207.2	attack	[ssh] SSH attack	2019-08-01 13:16:55
180.167.233.250	attack	SSH/22 MH Probe, BF, Hack -	2019-08-01 13:03:04
165.227.143.37	attackbots	Aug 1 06:36:00 vps647732 sshd[14328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.143.37 Aug 1 06:36:01 vps647732 sshd[14328]: Failed password for invalid user nicole from 165.227.143.37 port 56240 ssh2 ...	2019-08-01 12:43:10
138.197.202.133	attackspambots	Aug 1 02:50:15 vtv3 sshd\[25755\]: Invalid user paintball from 138.197.202.133 port 56530 Aug 1 02:50:15 vtv3 sshd\[25755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.202.133 Aug 1 02:50:17 vtv3 sshd\[25755\]: Failed password for invalid user paintball from 138.197.202.133 port 56530 ssh2 Aug 1 02:55:32 vtv3 sshd\[28225\]: Invalid user workflow from 138.197.202.133 port 51298 Aug 1 02:55:32 vtv3 sshd\[28225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.202.133 Aug 1 03:05:39 vtv3 sshd\[607\]: Invalid user download from 138.197.202.133 port 40630 Aug 1 03:05:39 vtv3 sshd\[607\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.202.133 Aug 1 03:05:41 vtv3 sshd\[607\]: Failed password for invalid user download from 138.197.202.133 port 40630 ssh2 Aug 1 03:10:46 vtv3 sshd\[3105\]: Invalid user i-heart from 138.197.202.133 port 35446 Aug 1 03:1	2019-08-01 12:35:53
169.45.136.244	attackspambots	Aug 1 05:24:01 mail1 sshd\[12778\]: Invalid user network2 from 169.45.136.244 port 58514 Aug 1 05:24:01 mail1 sshd\[12778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.45.136.244 Aug 1 05:24:03 mail1 sshd\[12778\]: Failed password for invalid user network2 from 169.45.136.244 port 58514 ssh2 Aug 1 05:33:21 mail1 sshd\[16920\]: Invalid user suporte from 169.45.136.244 port 52154 Aug 1 05:33:21 mail1 sshd\[16920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.45.136.244 ...	2019-08-01 13:05:20
171.25.193.25	attack	Aug 1 05:32:39 nginx sshd[75691]: Connection from 171.25.193.25 port 37909 on 10.23.102.80 port 22 Aug 1 05:32:41 nginx sshd[75691]: Invalid user eurek from 171.25.193.25	2019-08-01 13:10:30
36.84.63.150	attack	Unauthorized connection attempt from IP address 36.84.63.150 on Port 445(SMB)	2019-08-01 13:01:15

Recently Reported IPs

111.197.210.113	68.199.105.193	110.87.221.109	2.98.16.27
106.122.169.247	122.157.68.24	209.152.36.152	153.121.144.234
74.168.166.70	84.13.204.83	197.53.170.151	134.219.61.48
128.122.167.219	5.180.61.53	61.138.222.57	122.36.143.159
195.162.116.49	60.189.155.224	177.126.96.72	60.185.36.183