Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Make a comment on this IP
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
114.99.14.134 attackbots 
MAIL: User Login Brute Force Attempt
 2020-04-02 02:27:28
114.99.14.112 attack 
Jan  9 13:50:43 mxgate1 postfix/postscreen[1105]: CONNECT from [114.99.14.112]:64732 to [176.31.12.44]:25
Jan  9 13:50:43 mxgate1 postfix/dnsblog[1164]: addr 114.99.14.112 listed by domain zen.spamhaus.org as 127.0.0.11
Jan  9 13:50:43 mxgate1 postfix/dnsblog[1164]: addr 114.99.14.112 listed by domain zen.spamhaus.org as 127.0.0.4
Jan  9 13:50:43 mxgate1 postfix/dnsblog[1163]: addr 114.99.14.112 listed by domain cbl.abuseat.org as 127.0.0.2
Jan  9 13:50:43 mxgate1 postfix/dnsblog[1160]: addr 114.99.14.112 listed by domain b.barracudacentral.org as 127.0.0.2
Jan  9 13:50:44 mxgate1 postfix/postscreen[1105]: PREGREET 14 after 0.26 from [114.99.14.112]:64732: EHLO IHR2prK

Jan  9 13:50:44 mxgate1 postfix/postscreen[1105]: DNSBL rank 4 for [114.99.14.112]:64732
Jan  9 13:50:45 mxgate1 postfix/postscreen[1105]: NOQUEUE: reject: RCPT from [114.99.14.112]:64732: 550 5.7.1 Service unavailable; client [114.99.14.112] blocked using zen.spamhaus.org; from=x@x helo=


........
-----------------------------------
 2020-01-10 03:18:58
114.99.14.200 attackbots 
Sep  1 23:09:32 eola postfix/smtpd[1010]: connect from unknown[114.99.14.200]
Sep  1 23:09:33 eola postfix/smtpd[1010]: NOQUEUE: reject: RCPT from unknown[114.99.14.200]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo=<55vCdI>
Sep  1 23:09:33 eola postfix/smtpd[1010]: disconnect from unknown[114.99.14.200] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4
Sep  1 23:09:34 eola postfix/smtpd[1010]: connect from unknown[114.99.14.200]
Sep  1 23:09:34 eola postfix/smtpd[1010]: lost connection after AUTH from unknown[114.99.14.200]
Sep  1 23:09:34 eola postfix/smtpd[1010]: disconnect from unknown[114.99.14.200] ehlo=1 auth=0/1 commands=1/2
Sep  1 23:09:35 eola postfix/smtpd[1010]: connect from unknown[114.99.14.200]
Sep  1 23:09:35 eola postfix/smtpd[1010]: lost connection after AUTH from unknown[114.99.14.200]
Sep  1 23:09:35 eola postfix/smtpd[1010]: disconnect from unknown[114.99.14.200] ehlo=1 auth=0/1 commands=1/2
Sep  1 23:09:35 eola ........
-------------------------------
 2019-09-02 12:36:21
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.14.215
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26366
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.99.14.215.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040400 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 04 17:12:44 CST 2022
;; MSG SIZE  rcvd: 106
Host info
Host 215.14.99.114.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 215.14.99.114.in-addr.arpa: NXDOMAIN
Related IP info:
114.99.14.42
114.99.14.32
114.99.14.181
114.99.14.188
114.99.14.240
114.99.14.185
114.99.14.136
114.99.14.114
114.99.14.43
114.99.14.20
114.99.14.18
114.99.14.100
114.99.14.156
114.99.14.146
114.99.14.134
114.99.14.27
114.99.14.45
114.99.14.187
114.99.14.149
114.99.14.189
114.99.14.204
114.99.14.10
114.99.14.244
114.99.14.233
114.99.14.70
114.99.14.76
114.99.14.6
114.99.14.47
114.99.14.253
114.99.14.95
114.99.14.167
114.99.14.120
114.99.14.234
114.99.14.140
114.99.14.180
114.99.14.183
114.99.14.157
114.99.14.93
114.99.14.160
114.99.14.116
114.99.14.88
114.99.14.235
114.99.14.254
114.99.14.117
114.99.14.132
114.99.14.152
114.99.14.232
114.99.14.243
114.99.14.79
114.99.14.39
114.99.14.36
114.99.14.31
114.99.14.208
114.99.14.219
114.99.14.210
114.99.14.164
114.99.14.53
114.99.14.34
114.99.14.21
114.99.14.65
114.99.14.177
114.99.14.222
114.99.14.87
114.99.14.197
114.99.14.48
114.99.14.133
114.99.14.38
114.99.14.169
114.99.14.17
114.99.14.186
114.99.14.72
114.99.14.251
114.99.14.221
114.99.14.41
114.99.14.161
114.99.14.154
114.99.14.237
114.99.14.23
114.99.14.54
114.99.14.104
114.99.14.192
114.99.14.173
114.99.14.213
114.99.14.203
114.99.14.25
114.99.14.111
114.99.14.205
114.99.14.102
114.99.14.35
114.99.14.85
114.99.14.174
114.99.14.159
114.99.14.49
114.99.14.162
114.99.14.33
114.99.14.66
114.99.14.26
114.99.14.24
114.99.14.44
114.99.14.58
114.99.14.144
114.99.14.89
114.99.14.236
114.99.14.250
114.99.14.246
114.99.14.230
114.99.14.191
114.99.14.63
114.99.14.129
114.99.14.71
114.99.14.3
114.99.14.201
114.99.14.28
114.99.14.19
114.99.14.211
114.99.14.172
114.99.14.101
114.99.14.145
114.99.14.155
114.99.14.16
114.99.14.153
114.99.14.67
114.99.14.202
114.99.14.96
114.99.14.82
114.99.14.62
114.99.14.91
114.99.14.8
114.99.14.198
114.99.14.184
114.99.14.165
114.99.14.109
114.99.14.127
114.99.14.121
114.99.14.179
114.99.14.194
114.99.14.22
114.99.14.103
114.99.14.168
114.99.14.170
114.99.14.113
114.99.14.98
114.99.14.139
114.99.14.40
114.99.14.46
114.99.14.182
114.99.14.4
114.99.14.108
114.99.14.218
114.99.14.51
114.99.14.130
114.99.14.64
114.99.14.151
114.99.14.97
114.99.14.106
114.99.14.12
114.99.14.143
114.99.14.112
114.99.14.15
114.99.14.84
114.99.14.175
114.99.14.7
114.99.14.231
114.99.14.59
114.99.14.214
114.99.14.81
114.99.14.226
114.99.14.68
114.99.14.11
114.99.14.119
114.99.14.224
114.99.14.229
114.99.14.80
114.99.14.141
114.99.14.196
114.99.14.195
114.99.14.50
114.99.14.206
114.99.14.147
114.99.14.131
114.99.14.30
114.99.14.110
114.99.14.74
114.99.14.241
114.99.14.78
114.99.14.249
114.99.14.9
114.99.14.239
114.99.14.217
114.99.14.200
114.99.14.123
114.99.14.138
114.99.14.75
114.99.14.92
114.99.14.228
114.99.14.148
114.99.14.14
114.99.14.29
114.99.14.77
114.99.14.99
114.99.14.212
114.99.14.225
114.99.14.60
114.99.14.125
114.99.14.242
114.99.14.126
114.99.14.158
114.99.14.128
114.99.14.105
114.99.14.122
114.99.14.1
114.99.14.220
114.99.14.199
114.99.14.115
114.99.14.163
114.99.14.245
114.99.14.90
114.99.14.61
114.99.14.118
114.99.14.142
114.99.14.247
114.99.14.207
114.99.14.37
114.99.14.223
114.99.14.5
114.99.14.83
114.99.14.124
114.99.14.86
114.99.14.94
114.99.14.52
114.99.14.57
114.99.14.56
114.99.14.248
114.99.14.166
114.99.14.176
114.99.14.107
114.99.14.190
114.99.14.178
114.99.14.227
114.99.14.73
114.99.14.55
114.99.14.209
114.99.14.215
114.99.14.137
114.99.14.135
114.99.14.2
114.99.14.216
114.99.14.13
114.99.14.150
114.99.14.69
114.99.14.238
114.99.14.193
114.99.14.171
114.99.14.252
Related comments:
IP Type Details Datetime
45.118.144.31 attackspam 
Oct 12 14:27:28 firewall sshd[26419]: Invalid user !QAZ2wsx3edc from 45.118.144.31
Oct 12 14:27:30 firewall sshd[26419]: Failed password for invalid user !QAZ2wsx3edc from 45.118.144.31 port 48378 ssh2
Oct 12 14:32:17 firewall sshd[26643]: Invalid user Toys123 from 45.118.144.31
...
 2019-10-13 05:03:37
198.50.200.80 attackspambots 
2019-10-12T15:23:25.685223abusebot-6.cloudsearch.cf sshd\[21011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip80.ip-198-50-200.net  user=root
 2019-10-13 05:21:05
192.163.252.198 attackbots 
WordPress wp-login brute force :: 192.163.252.198 0.044 BYPASS [13/Oct/2019:05:10:24  1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
 2019-10-13 05:23:02
83.219.136.196 attackbotsspam 
Oct 12 15:51:49 tamoto postfix/smtpd[4334]: connect from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]
Oct 12 15:51:50 tamoto postfix/smtpd[4334]: warning: cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]: SASL CRAM-MD5 authentication failed: authentication failure
Oct 12 15:51:50 tamoto postfix/smtpd[4334]: lost connection after AUTH from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]
Oct 12 15:51:50 tamoto postfix/smtpd[4334]: disconnect from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]
Oct 12 15:51:51 tamoto postfix/smtpd[4334]: connect from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]
Oct 12 15:51:51 tamoto postfix/smtpd[4334]: warning: cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]: SASL CRAM-MD5 authentication failed: authentication failure
Oct 12 15:51:51 tamoto postfix/smtpd[4334]: lost connection after AUTH from cgn-pool-83-219-136-196.tis-dialog.ru[83.219.136.196]
Oct 12 15:51:51 tamoto postfix/smtpd[4334]: disconne........
-------------------------------
 2019-10-13 05:14:59
128.199.52.45 attackspambots 
Oct 12 20:40:22 vps647732 sshd[5087]: Failed password for root from 128.199.52.45 port 56838 ssh2
...
 2019-10-13 05:17:21
113.225.186.79 attackspam 
Oct 12 08:37:47 ingram sshd[13961]: Invalid user pi from 113.225.186.79
Oct 12 08:37:47 ingram sshd[13961]: Failed none for invalid user pi from 113.225.186.79 port 57322 ssh2
Oct 12 08:37:47 ingram sshd[13963]: Invalid user pi from 113.225.186.79
Oct 12 08:37:47 ingram sshd[13963]: Failed none for invalid user pi from 113.225.186.79 port 57332 ssh2
Oct 12 08:37:47 ingram sshd[13961]: Failed password for invalid user pi from 113.225.186.79 port 57322 ssh2
Oct 12 08:37:47 ingram sshd[13963]: Failed password for invalid user pi from 113.225.186.79 port 57332 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=113.225.186.79
 2019-10-13 05:13:03
218.92.0.188 attack 
2019-10-12T15:59:37.621369abusebot-5.cloudsearch.cf sshd\[25614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.188  user=root
 2019-10-13 05:21:51
181.41.78.28 attackspambots 
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/181.41.78.28/ 
 GY - 1H : (1)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : GY 
 NAME ASN : ASN19863 
 
 IP : 181.41.78.28 
 
 CIDR : 181.41.76.0/22 
 
 PREFIX COUNT : 63 
 
 UNIQUE IP COUNT : 57600 
 
 
 WYKRYTE ATAKI Z ASN19863 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 DateTime : 2019-10-12 16:06:13 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
 2019-10-13 05:26:16
95.15.154.166 attackbotsspam 
Oct 12 15:46:20 node1 sshd[17571]: reveeclipse mapping checking getaddrinfo for 95.15.154.166.dynamic.ttnet.com.tr [95.15.154.166] failed - POSSIBLE BREAK-IN ATTEMPT!
Oct 12 15:46:20 node1 sshd[17571]: Disconnecting: Too many authentication failures for r.r from 95.15.154.166 port 37776 ssh2 [preauth]
Oct 12 15:46:24 node1 sshd[17578]: reveeclipse mapping checking getaddrinfo for 95.15.154.166.dynamic.ttnet.com.tr [95.15.154.166] failed - POSSIBLE BREAK-IN ATTEMPT!
Oct 12 15:46:25 node1 sshd[17578]: Disconnecting: Too many authentication failures for r.r from 95.15.154.166 port 37781 ssh2 [preauth]
Oct 12 15:46:28 node1 sshd[17584]: reveeclipse mapping checking getaddrinfo for 95.15.154.166.dynamic.ttnet.com.tr [95.15.154.166] failed - POSSIBLE BREAK-IN ATTEMPT!
Oct 12 15:46:28 node1 sshd[17584]: Received disconnect from 95.15.154.166: 11: disconnected by user [preauth]
Oct 12 15:46:32 node1 sshd[17589]: reveeclipse mapping checking getaddrinfo for 95.15.154.166.dynamic........
-------------------------------
 2019-10-13 05:02:05
213.108.250.99 attackbotsspam 
Unauthorised access (Oct 12) SRC=213.108.250.99 LEN=40 TTL=247 ID=9644 TCP DPT=1433 WINDOW=1024 SYN
 2019-10-13 05:37:00
195.181.81.37 attack 
Lines containing failures of 195.181.81.37
Oct 12 15:55:58 shared04 sshd[2224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.181.81.37  user=r.r
Oct 12 15:56:01 shared04 sshd[2224]: Failed password for r.r from 195.181.81.37 port 46267 ssh2
Oct 12 15:56:02 shared04 sshd[2224]: Failed password for r.r from 195.181.81.37 port 46267 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=195.181.81.37
 2019-10-13 05:16:58
103.88.76.66 attackbotsspam 
Oct 12 09:06:37 mailman postfix/smtpd[21263]: NOQUEUE: reject: RCPT from unknown[103.88.76.66]: 554 5.7.1 Service unavailable; Client host [103.88.76.66] blocked using dnsbl.dronebl.org; Open SOCKS proxy; from= to= proto=ESMTP helo=
Oct 12 09:06:38 mailman postfix/smtpd[21263]: NOQUEUE: reject: RCPT from unknown[103.88.76.66]: 554 5.7.1 Service unavailable; Client host [103.88.76.66] blocked using dnsbl.dronebl.org; Open SOCKS proxy; from= to= proto=ESMTP helo=
 2019-10-13 05:25:02
222.186.175.161 attack 
F2B jail: sshd. Time: 2019-10-12 23:01:23, Reported by: VKReport
 2019-10-13 05:05:32
85.203.22.32 attackspam 
85.203.22.32 - - [12/Oct/2019:10:07:11 -0400] "GET /?page=/etc/passwd&action=list&linkID=11574 HTTP/1.1" 200 13529 "https://schsupply.com/?page=/etc/passwd&action=list&linkID=11574" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0"
...
 2019-10-13 05:04:38
223.83.155.77 attackbotsspam 
Oct 12 19:04:32 minden010 sshd[29653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.155.77
Oct 12 19:04:34 minden010 sshd[29653]: Failed password for invalid user admin from 223.83.155.77 port 51094 ssh2
Oct 12 19:13:23 minden010 sshd[3995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.83.155.77
...
 2019-10-13 05:06:20

Recently Reported IPs

114.99.138.153 114.99.14.73 63.144.3.107 183.111.161.76
213.55.82.154 213.55.84.154 21.34.15.127 9.71.1.181
77.91.43.202 103.119.116.122 106.7.14.43 66.170.88.17
103.17.90.7 52.34.158.6 185.244.36.212 179.43.187.33
209.98.230.211 204.67.22.84 181.42.196.200 241.213.145.41