City: unknown
Region: unknown
Country: China
Internet Service Provider: ChinaNet Anhui Province Network
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attack | Jan 9 13:50:43 mxgate1 postfix/postscreen[1105]: CONNECT from [114.99.14.112]:64732 to [176.31.12.44]:25 Jan 9 13:50:43 mxgate1 postfix/dnsblog[1164]: addr 114.99.14.112 listed by domain zen.spamhaus.org as 127.0.0.11 Jan 9 13:50:43 mxgate1 postfix/dnsblog[1164]: addr 114.99.14.112 listed by domain zen.spamhaus.org as 127.0.0.4 Jan 9 13:50:43 mxgate1 postfix/dnsblog[1163]: addr 114.99.14.112 listed by domain cbl.abuseat.org as 127.0.0.2 Jan 9 13:50:43 mxgate1 postfix/dnsblog[1160]: addr 114.99.14.112 listed by domain b.barracudacentral.org as 127.0.0.2 Jan 9 13:50:44 mxgate1 postfix/postscreen[1105]: PREGREET 14 after 0.26 from [114.99.14.112]:64732: EHLO IHR2prK Jan 9 13:50:44 mxgate1 postfix/postscreen[1105]: DNSBL rank 4 for [114.99.14.112]:64732 Jan 9 13:50:45 mxgate1 postfix/postscreen[1105]: NOQUEUE: reject: RCPT from [114.99.14.112]:64732: 550 5.7.1 Service unavailable; client [114.99.14.112] blocked using zen.spamhaus.org; from=x@x helo= |
2020-01-10 03:18:58 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 114.99.14.134 | attackbots | MAIL: User Login Brute Force Attempt |
2020-04-02 02:27:28 |
| 114.99.14.200 | attackbots | Sep 1 23:09:32 eola postfix/smtpd[1010]: connect from unknown[114.99.14.200] Sep 1 23:09:33 eola postfix/smtpd[1010]: NOQUEUE: reject: RCPT from unknown[114.99.14.200]: 504 5.5.2 |
2019-09-02 12:36:21 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.14.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.99.14.112. IN A
;; AUTHORITY SECTION:
. 237 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020010901 1800 900 604800 86400
;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 03:18:55 CST 2020
;; MSG SIZE rcvd: 117Host 112.14.99.114.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 112.14.99.114.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 78.187.157.143 | attack | Automatic report - Banned IP Access |
2019-11-30 03:27:46 |
| 209.251.180.190 | attackbots | Nov 29 19:55:03 sauna sshd[97762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.251.180.190 Nov 29 19:55:06 sauna sshd[97762]: Failed password for invalid user trenchard from 209.251.180.190 port 48410 ssh2 ... |
2019-11-30 03:17:55 |
| 158.69.48.197 | attackbotsspam | Nov 29 12:10:41 TORMINT sshd\[20624\]: Invalid user admin from 158.69.48.197 Nov 29 12:10:41 TORMINT sshd\[20624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.48.197 Nov 29 12:10:43 TORMINT sshd\[20624\]: Failed password for invalid user admin from 158.69.48.197 port 34726 ssh2 ... |
2019-11-30 03:19:09 |
| 61.147.103.158 | attackspambots | port scan/probe/communication attempt |
2019-11-30 03:18:41 |
| 51.75.66.11 | attack | Nov 29 16:01:17 MainVPS sshd[15904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.11 user=root Nov 29 16:01:19 MainVPS sshd[15904]: Failed password for root from 51.75.66.11 port 47546 ssh2 Nov 29 16:04:53 MainVPS sshd[22264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.11 user=root Nov 29 16:04:56 MainVPS sshd[22264]: Failed password for root from 51.75.66.11 port 54390 ssh2 Nov 29 16:08:31 MainVPS sshd[29032]: Invalid user kidoguchi from 51.75.66.11 port 33002 ... |
2019-11-30 03:41:36 |
| 118.178.119.198 | attackbots | 2019-11-29T19:13:35.360149abusebot-3.cloudsearch.cf sshd\[10257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.178.119.198 user=root |
2019-11-30 03:24:41 |
| 14.187.178.60 | attackspambots | Unauthorized IMAP connection attempt |
2019-11-30 03:12:09 |
| 49.234.43.173 | attackbots | Invalid user hello from 49.234.43.173 port 33404 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.43.173 Failed password for invalid user hello from 49.234.43.173 port 33404 ssh2 Invalid user admin from 49.234.43.173 port 35128 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.43.173 |
2019-11-30 03:35:20 |
| 184.105.247.204 | attackspam | 3389/tcp 50075/tcp 11211/tcp... [2019-09-29/11-28]47pkt,16pt.(tcp),1pt.(udp) |
2019-11-30 03:44:26 |
| 61.158.174.66 | attack | port scan/probe/communication attempt |
2019-11-30 03:14:44 |
| 106.12.98.12 | attack | fail2ban |
2019-11-30 03:32:22 |
| 60.217.68.88 | attackbots | port scan/probe/communication attempt |
2019-11-30 03:29:26 |
| 185.171.1.197 | attackbots | 185.171.1.197 - - [29/Nov/2019:17:00:11 +0200] "GET /index.php HTTP/1.1" 444 0 "-" "-" |
2019-11-30 03:28:12 |
| 81.18.66.4 | attack | (Nov 29) LEN=52 TTL=117 ID=17806 DF TCP DPT=445 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=119 ID=17591 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=117 ID=17640 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=117 ID=9433 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=117 ID=6197 DF TCP DPT=445 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=117 ID=10429 DF TCP DPT=445 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=119 ID=30972 DF TCP DPT=445 WINDOW=8192 SYN (Nov 29) LEN=52 TTL=119 ID=1747 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 28) LEN=52 TTL=117 ID=16693 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 28) LEN=52 TTL=117 ID=30874 DF TCP DPT=445 WINDOW=8192 SYN (Nov 28) LEN=52 TTL=119 ID=13306 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 28) LEN=52 TTL=117 ID=22418 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 28) LEN=52 TTL=119 ID=16847 DF TCP DPT=445 WINDOW=8192 SYN (Nov 28) LEN=52 TTL=119 ID=26963 DF TCP DPT=445 WINDOW=8192 SYN (Nov 27) LEN=52 TTL=119 ID=28110 DF TCP DPT=445 WINDOW=8... |
2019-11-30 03:13:56 |
| 134.209.90.220 | attack | 2019-11-06T23:31:35.218024suse-nuc sshd[12201]: Invalid user oj from 134.209.90.220 port 35854 ... |
2019-11-30 03:24:00 |