222.90.144.14 - IPInfo

Basic Info

City: Xianyang

Region: Shaanxi

Country: China

Internet Service Provider: ChinaNet Shanxi (SN) Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 222.90.144.14 to port 445 [T]	2020-01-27 04:20:24

Comments on same subnet:

IP	Type	Details	Datetime
222.90.144.22	attackspam	Unauthorized connection attempt from IP address 222.90.144.22 on Port 445(SMB)	2020-06-05 21:58:57
222.90.144.22	attack	Unauthorized connection attempt detected from IP address 222.90.144.22 to port 445 [T]	2020-01-27 06:07:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.90.144.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30907
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.90.144.14.			IN	A

;; AUTHORITY SECTION:
.			362	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012601 1800 900 604800 86400

;; Query time: 209 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 04:20:20 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 14.144.90.222.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 14.144.90.222.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.158.8.206	attackbots	Oct 1 15:27:28 rotator sshd\[18717\]: Invalid user teamspeak from 195.158.8.206Oct 1 15:27:30 rotator sshd\[18717\]: Failed password for invalid user teamspeak from 195.158.8.206 port 45612 ssh2Oct 1 15:31:28 rotator sshd\[19494\]: Invalid user pawel from 195.158.8.206Oct 1 15:31:30 rotator sshd\[19494\]: Failed password for invalid user pawel from 195.158.8.206 port 52954 ssh2Oct 1 15:35:15 rotator sshd\[20193\]: Invalid user testuser from 195.158.8.206Oct 1 15:35:17 rotator sshd\[20193\]: Failed password for invalid user testuser from 195.158.8.206 port 60290 ssh2 ...	2020-10-01 22:58:39
193.33.240.91	attackbots	Invalid user indra from 193.33.240.91 port 58664	2020-10-01 23:11:36
49.234.80.94	attackbotsspam	Oct 1 15:28:40 ovpn sshd\[13400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.80.94 user=root Oct 1 15:28:42 ovpn sshd\[13400\]: Failed password for root from 49.234.80.94 port 58900 ssh2 Oct 1 15:36:54 ovpn sshd\[15434\]: Invalid user gustavo from 49.234.80.94 Oct 1 15:36:54 ovpn sshd\[15434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.80.94 Oct 1 15:36:56 ovpn sshd\[15434\]: Failed password for invalid user gustavo from 49.234.80.94 port 43824 ssh2	2020-10-01 23:36:39
193.248.191.48	attack	Port scan on 1 port(s): 445	2020-10-01 22:59:02
1.171.65.95	attackbotsspam	Automatic report - Port Scan Attack	2020-10-01 22:55:36
115.159.53.71	attackspam	(sshd) Failed SSH login from 115.159.53.71 (CN/China/-): 5 in the last 3600 secs	2020-10-01 22:57:08
146.185.163.81	attackspam	146.185.163.81 - - [01/Oct/2020:14:55:17 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 146.185.163.81 - - [01/Oct/2020:15:13:29 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 23:10:13
180.76.246.38	attackspam	IP blocked	2020-10-01 23:02:13
106.37.223.54	attackspambots	Oct 1 13:27:54 xeon sshd[45484]: Failed password for invalid user musicbot from 106.37.223.54 port 44199 ssh2	2020-10-01 23:05:32
177.124.201.61	attack	(sshd) Failed SSH login from 177.124.201.61 (BR/Brazil/mvx-177-124-201-61.mundivox.com): 12 in the last 3600 secs	2020-10-01 23:00:44
139.59.59.102	attackspambots	Oct 1 17:23:04 localhost sshd\[6134\]: Invalid user mailer from 139.59.59.102 Oct 1 17:23:04 localhost sshd\[6134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 Oct 1 17:23:06 localhost sshd\[6134\]: Failed password for invalid user mailer from 139.59.59.102 port 58682 ssh2 Oct 1 17:26:56 localhost sshd\[6532\]: Invalid user Qwer123456 from 139.59.59.102 Oct 1 17:26:56 localhost sshd\[6532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 ...	2020-10-01 23:28:05
178.128.61.101	attackspam	Oct 1 15:46:01 hosting sshd[17053]: Invalid user jp from 178.128.61.101 port 44520 ...	2020-10-01 23:25:34
49.76.211.178	attackbots	" "	2020-10-01 23:03:36
88.157.229.58	attackspambots	SSH login attempts.	2020-10-01 23:15:48
210.86.239.186	attackspam	$f2bV_matches	2020-10-01 23:01:47

Recently Reported IPs

208.6.143.103	84.225.227.16	95.1.50.255	183.166.161.81
31.200.1.229	183.165.10.62	79.221.42.140	182.107.206.81
46.131.79.125	180.122.93.128	78.75.213.8	128.214.166.41
180.109.35.191	67.182.37.107	81.228.250.198	36.154.84.214
154.202.55.188	134.219.173.192	159.183.23.66	140.255.151.120