Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '14.208.0.0 - 14.223.255.255'

% Abuse contact for '14.208.0.0 - 14.223.255.255' is 'anti-spam@chinatelecom.cn'

inetnum:        14.208.0.0 - 14.223.255.255
netname:        CHINANET-GD
descr:          CHINANET Guangdong province network
descr:          Data Communication Division
descr:          China Telecom
country:        CN
admin-c:        CH93-AP
tech-c:         IC83-AP
abuse-c:        AC1573-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
notify:         abuse_gdnoc@189.cn
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CHINANET-GD
mnt-irt:        IRT-CHINANET-CN
last-modified:  2021-06-15T08:06:06Z
source:         APNIC

irt:            IRT-CHINANET-CN
address:        No.31 ,jingrong street,beijing
address:        100032
e-mail:         anti-spam@chinatelecom.cn
abuse-mailbox:  anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
auth:           # Filtered
remarks:        anti-spam@chinatelecom.cn was validated on 2026-05-21
mnt-by:         MAINT-CHINANET
last-modified:  2026-05-21T01:31:36Z
source:         APNIC

role:           ABUSE CHINANETCN
country:        ZZ
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +000000000
e-mail:         anti-spam@chinatelecom.cn
admin-c:        CH93-AP
tech-c:         CH93-AP
nic-hdl:        AC1573-AP
remarks:        Generated from irt object IRT-CHINANET-CN
remarks:        anti-spam@chinatelecom.cn was validated on 2026-05-21
abuse-mailbox:  anti-spam@chinatelecom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2026-05-21T01:32:00Z
source:         APNIC

person:         Chinanet Hostmaster
nic-hdl:        CH93-AP
e-mail:         anti-spam@chinatelecom.cn
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +86-10-58501724
fax-no:         +86-10-58501724
country:        CN
mnt-by:         MAINT-CHINANET
last-modified:  2022-02-28T06:53:44Z
source:         APNIC

person:         IPMASTER CHINANET-GD
nic-hdl:        IC83-AP
e-mail:         abuse_gdicnoc@163.com
address:        NO.18,RO. ZHONGSHANER,YUEXIU DISTRIC,GUANGZHOU
phone:          +86-20-87189274
fax-no:         +86-20-87189274
country:        CN
mnt-by:         MAINT-CHINANET-GD
remarks:        IPMASTER is not for spam complaint,please send spam complaint to abuse_gdicnoc@163.com
abuse-mailbox:  abuse_gdicnoc@163.com
last-modified:  2021-05-12T09:06:58Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.212.107.84
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16093
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.212.107.84.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026070302 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 04 08:00:03 CST 2026
;; MSG SIZE  rcvd: 106
Host info
Host 84.107.212.14.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 84.107.212.14.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
49.88.112.60 attackspambots
Sep 25 05:06:41 baraca inetd[43983]: refused connection from 49.88.112.60, service sshd (tcp)
Sep 25 05:08:37 baraca inetd[44251]: refused connection from 49.88.112.60, service sshd (tcp)
Sep 25 05:10:23 baraca inetd[44305]: refused connection from 49.88.112.60, service sshd (tcp)
...
2020-09-25 10:58:31
104.206.128.74 attack
Unauthorized connection attempt from IP address 104.206.128.74 on Port 3389(RDP)
2020-09-25 11:14:49
194.180.224.130 attackbotsspam
Sep 25 05:16:28 santamaria sshd\[3541\]: Invalid user admin from 194.180.224.130
Sep 25 05:16:28 santamaria sshd\[3544\]: Invalid user admin from 194.180.224.130
Sep 25 05:16:32 santamaria sshd\[3541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.130
Sep 25 05:16:32 santamaria sshd\[3544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.130
...
2020-09-25 11:16:55
123.57.72.45 attack
123.57.72.45 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 24 15:50:37 server2 sshd[698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.136.185  user=root
Sep 24 15:48:59 server2 sshd[30422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.57.72.45  user=root
Sep 24 15:46:37 server2 sshd[27945]: Failed password for root from 211.26.187.128 port 39766 ssh2
Sep 24 15:49:06 server2 sshd[30730]: Failed password for root from 121.131.232.156 port 37150 ssh2
Sep 24 15:49:01 server2 sshd[30422]: Failed password for root from 123.57.72.45 port 35986 ssh2
Sep 24 15:49:04 server2 sshd[30730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.131.232.156  user=root

IP Addresses Blocked:

206.189.136.185 (IN/India/-)
2020-09-25 10:54:59
222.168.18.227 attackbotsspam
Sep 25 04:46:06 vps647732 sshd[9060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.168.18.227
Sep 25 04:46:09 vps647732 sshd[9060]: Failed password for invalid user svnuser from 222.168.18.227 port 38040 ssh2
...
2020-09-25 11:08:50
139.199.74.11 attack
(sshd) Failed SSH login from 139.199.74.11 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 21:21:30 server5 sshd[20350]: Invalid user user from 139.199.74.11
Sep 24 21:21:30 server5 sshd[20350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.74.11 
Sep 24 21:21:32 server5 sshd[20350]: Failed password for invalid user user from 139.199.74.11 port 47070 ssh2
Sep 24 21:28:26 server5 sshd[23046]: Invalid user admin from 139.199.74.11
Sep 24 21:28:26 server5 sshd[23046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.74.11
2020-09-25 10:45:46
41.218.205.2 attackbots
Sep 24 21:50:36 [host] sshd[5370]: Invalid user ad
Sep 24 21:50:37 [host] sshd[5370]: pam_unix(sshd:a
Sep 24 21:50:39 [host] sshd[5370]: Failed password
2020-09-25 10:59:00
77.122.235.96 attack
Email rejected due to spam filtering
2020-09-25 10:58:13
3.22.213.156 attack
Connection to SSH Honeypot - Detected by HoneypotDB
2020-09-25 11:01:45
168.62.50.138 attackspambots
2020-09-25T04:28:58.708549vps773228.ovh.net sshd[6833]: Failed password for root from 168.62.50.138 port 22564 ssh2
2020-09-25T05:12:23.703280vps773228.ovh.net sshd[7195]: Invalid user globalcompliance from 168.62.50.138 port 9294
2020-09-25T05:12:23.720941vps773228.ovh.net sshd[7195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.62.50.138
2020-09-25T05:12:23.703280vps773228.ovh.net sshd[7195]: Invalid user globalcompliance from 168.62.50.138 port 9294
2020-09-25T05:12:25.022496vps773228.ovh.net sshd[7195]: Failed password for invalid user globalcompliance from 168.62.50.138 port 9294 ssh2
...
2020-09-25 11:15:28
168.63.137.51 attackspam
$f2bV_matches
2020-09-25 10:49:00
161.97.94.112 attack
Sep 25 07:31:37 web1 sshd[30283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.97.94.112  user=root
Sep 25 07:31:39 web1 sshd[30283]: Failed password for root from 161.97.94.112 port 35224 ssh2
Sep 25 07:31:57 web1 sshd[30389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.97.94.112  user=root
Sep 25 07:31:58 web1 sshd[30389]: Failed password for root from 161.97.94.112 port 57084 ssh2
Sep 25 07:37:32 web1 sshd[32255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.97.94.112  user=root
Sep 25 07:37:34 web1 sshd[32255]: Failed password for root from 161.97.94.112 port 50974 ssh2
Sep 25 07:37:53 web1 sshd[32364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.97.94.112  user=root
Sep 25 07:37:55 web1 sshd[32364]: Failed password for root from 161.97.94.112 port 44578 ssh2
Sep 25 07:43:30 web1 sshd[1862]: pam
...
2020-09-25 10:49:44
64.225.126.137 attackbotsspam
(sshd) Failed SSH login from 64.225.126.137 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 22:20:48 server sshd[24416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.126.137  user=root
Sep 24 22:20:50 server sshd[24416]: Failed password for root from 64.225.126.137 port 43246 ssh2
Sep 24 22:24:06 server sshd[25232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.126.137  user=root
Sep 24 22:24:07 server sshd[25232]: Failed password for root from 64.225.126.137 port 57842 ssh2
Sep 24 22:25:29 server sshd[25643]: Invalid user user2 from 64.225.126.137 port 51716
2020-09-25 11:02:35
102.188.90.45 attackspam
SSH 102.188.90.45 [25/Sep/2020:02:46:47 "http://hargahino-truk.com/wp-login.php" "GET /wp-login.php 200 4503
102.188.90.45 [25/Sep/2020:02:46:50 "-" "GET /wp-login.php 200 4503
102.188.90.45 [25/Sep/2020:02:46:54 "-" "POST /wp-login.php 200 4922
2020-09-25 11:02:05
82.223.120.25 attack
82.223.120.25 - - [25/Sep/2020:03:21:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
82.223.120.25 - - [25/Sep/2020:03:21:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2529 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
82.223.120.25 - - [25/Sep/2020:03:21:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-25 10:47:50

Recently Reported IPs

118.78.150.32 115.53.184.96 128.241.81.115 2606:4700:10::6814:9190
110.78.153.109 35.240.150.209 2606:4700:10::ac43:2203 2606:4700:10::ac43:1899
47.110.139.226 2606:4700:10::6814:5408 2606:4700:10::6816:3133 213.32.71.94
110.77.187.106 2606:4700:10::ac43:2947 180.101.245.246 35.187.122.20
14.212.95.191 38.76.193.123 2606:4700:10::6814:6897 103.56.232.39