114.99.4.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.99.4.65	attackbots	MAIL: User Login Brute Force Attempt	2020-04-08 06:54:03
114.99.4.254	attack	$f2bV_matches	2020-02-16 03:21:05
114.99.4.248	attackspam	Unauthorized connection attempt detected from IP address 114.99.4.248 to port 6656 [T]	2020-01-30 17:32:38
114.99.4.29	attackspambots	Dec 30 07:10:02 garuda postfix/smtpd[1105]: connect from unknown[114.99.4.29] Dec 30 07:10:02 garuda postfix/smtpd[1105]: connect from unknown[114.99.4.29] Dec 30 07:10:04 garuda postfix/smtpd[1105]: warning: unknown[114.99.4.29]: SASL LOGIN authentication failed: generic failure Dec 30 07:10:04 garuda postfix/smtpd[1105]: warning: unknown[114.99.4.29]: SASL LOGIN authentication failed: generic failure Dec 30 07:10:04 garuda postfix/smtpd[1105]: lost connection after AUTH from unknown[114.99.4.29] Dec 30 07:10:04 garuda postfix/smtpd[1105]: lost connection after AUTH from unknown[114.99.4.29] Dec 30 07:10:04 garuda postfix/smtpd[1105]: disconnect from unknown[114.99.4.29] ehlo=1 auth=0/1 commands=1/2 Dec 30 07:10:04 garuda postfix/smtpd[1105]: disconnect from unknown[114.99.4.29] ehlo=1 auth=0/1 commands=1/2 Dec 30 07:10:04 garuda postfix/smtpd[1105]: connect from unknown[114.99.4.29] Dec 30 07:10:04 garuda postfix/smtpd[1105]: connect from unknown[114.99.4.29] Dec 30 0........ -------------------------------	2019-12-30 20:14:31
114.99.4.34	attackbotsspam	badbot	2019-11-24 01:07:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.4.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63736
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.99.4.142.			IN	A

;; AUTHORITY SECTION:
.			349	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062202 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 23 05:39:50 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 142.4.99.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.4.99.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.40.128	attackbotsspam	165.22.40.128 - - [09/Aug/2020:22:17:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.40.128 - - [09/Aug/2020:22:17:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.40.128 - - [09/Aug/2020:22:17:18 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-10 06:16:10
51.137.89.155	attack	Aug 9 23:36:32 mout sshd[10293]: Invalid user wocaonima123.. from 51.137.89.155 port 56066	2020-08-10 06:02:37
159.203.35.141	attackspambots	[ssh] SSH attack	2020-08-10 05:57:56
195.154.53.237	attackbotsspam	[2020-08-09 18:18:02] NOTICE[1248][C-00005375] chan_sip.c: Call from '' (195.154.53.237:58918) to extension '011972595725668' rejected because extension not found in context 'public'. [2020-08-09 18:18:02] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T18:18:02.164-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972595725668",SessionID="0x7f27205f71d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.53.237/58918",ACLName="no_extension_match" [2020-08-09 18:22:03] NOTICE[1248][C-0000537d] chan_sip.c: Call from '' (195.154.53.237:61043) to extension '011972595725668' rejected because extension not found in context 'public'. [2020-08-09 18:22:03] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T18:22:03.830-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972595725668",SessionID="0x7f2720621db8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-08-10 06:25:08
207.154.229.50	attackbotsspam	"Unauthorized connection attempt on SSHD detected"	2020-08-10 06:28:56
60.30.98.194	attackspam	" "	2020-08-10 06:26:21
51.81.34.227	attackspambots	2020-08-09T21:38:43.889414shield sshd\[25986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-4fc07249.vps.ovh.us user=root 2020-08-09T21:38:46.235903shield sshd\[25986\]: Failed password for root from 51.81.34.227 port 60086 ssh2 2020-08-09T21:42:13.455628shield sshd\[26376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-4fc07249.vps.ovh.us user=root 2020-08-09T21:42:14.637248shield sshd\[26376\]: Failed password for root from 51.81.34.227 port 42738 ssh2 2020-08-09T21:45:46.398133shield sshd\[26752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-4fc07249.vps.ovh.us user=root	2020-08-10 05:52:19
47.56.255.231	attackbots	GET /xmlrpc.php HTTP/1.1	2020-08-10 06:11:02
51.144.73.114	attackspam	51.144.73.114 - - [09/Aug/2020:22:48:48 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.144.73.114 - - [09/Aug/2020:22:48:49 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.144.73.114 - - [09/Aug/2020:22:48:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-10 06:08:32
177.54.85.10	attackbotsspam	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-10 06:17:29
177.23.227.136	attackbots	Dovecot Invalid User Login Attempt.	2020-08-10 05:49:49
95.181.131.153	attackbotsspam	Aug 9 22:23:48 hidden sshd[34634]: Failed password for hidden from 95.181.131.153 port 56156 ssh2 Aug 9 22:27:31 hidden sshd[43502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153 user=root Aug 9 22:27:33 hidden sshd[43502]: Failed password for hidden from 95.181.131.153 port 38092 ssh2 Aug 9 22:31:22 hidden sshd[53223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153 user=root Aug 9 22:31:24 hidden sshd[53223]: Failed password for hidden from 95.181.131.153 port 48260 ssh2	2020-08-10 06:01:39
51.79.84.101	attack	SSH invalid-user multiple login attempts	2020-08-10 06:21:14
223.247.194.43	attack	Aug 9 23:32:11 vps639187 sshd\[6020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.194.43 user=root Aug 9 23:32:13 vps639187 sshd\[6020\]: Failed password for root from 223.247.194.43 port 54636 ssh2 Aug 9 23:35:28 vps639187 sshd\[6063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.194.43 user=root ...	2020-08-10 06:24:51
195.54.160.183	attackbotsspam	SSH Invalid Login	2020-08-10 06:03:30

Recently Reported IPs

137.226.108.124	137.226.221.121	137.226.55.84	137.226.179.185
184.105.247.209	137.226.117.0	137.226.66.175	137.226.169.71
137.226.179.101	137.226.160.192	137.226.56.51	137.226.195.184
137.226.67.24	137.226.66.196	201.217.5.167	137.226.67.45
137.226.67.8	137.226.54.101	137.226.197.245	137.226.99.142