47.103.14.74 - IPInfo

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
47.103.148.115	attackspam	Jul 24 07:03:07 server sshd[28128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.103.148.115 Jul 24 07:03:09 server sshd[28128]: Failed password for invalid user malcolm from 47.103.148.115 port 58867 ssh2 Jul 24 07:18:15 server sshd[29034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.103.148.115 Jul 24 07:18:17 server sshd[29034]: Failed password for invalid user adm from 47.103.148.115 port 18284 ssh2	2020-07-24 16:41:01
47.103.149.33	attackbotsspam	REQUESTED PAGE: /wp-admin/edit.php?page=wp-db-backup.php&backup=../wp-config.php	2020-03-04 04:30:57
47.103.146.94	attackbotsspam	REQUESTED PAGE: /wp-admin/edit.php?post_type=wd_ads_ads&export=export_csv&path=../wp-config.php	2020-03-04 03:44:25
47.103.149.122	attackspam	Unauthorized IMAP connection attempt	2020-02-21 03:47:02
47.103.146.94	attackbots	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-01-31 13:20:21
47.103.143.158	attackbotsspam	Unauthorized connection attempt detected from IP address 47.103.143.158 to port 2220 [J]	2020-01-18 13:41:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 47.103.14.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42599
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;47.103.14.74.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120202 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 03 12:35:46 CST 2024
;; MSG SIZE  rcvd: 105

Host info

Host 74.14.103.47.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.14.103.47.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.201.57	attackbotsspam	09/24/2019-23:52:38.620319 159.203.201.57 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-25 15:12:29
178.128.161.153	attack	Sep 25 06:54:44 web8 sshd\[15737\]: Invalid user ftpaccess from 178.128.161.153 Sep 25 06:54:44 web8 sshd\[15737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.161.153 Sep 25 06:54:46 web8 sshd\[15737\]: Failed password for invalid user ftpaccess from 178.128.161.153 port 34105 ssh2 Sep 25 06:58:52 web8 sshd\[17668\]: Invalid user lab from 178.128.161.153 Sep 25 06:58:52 web8 sshd\[17668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.161.153	2019-09-25 15:02:13
67.184.64.224	attackspam	Sep 25 09:13:28 lnxweb61 sshd[31866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.184.64.224 Sep 25 09:13:30 lnxweb61 sshd[31866]: Failed password for invalid user mktg2 from 67.184.64.224 port 32336 ssh2 Sep 25 09:17:02 lnxweb61 sshd[3241]: Failed password for root from 67.184.64.224 port 32766 ssh2	2019-09-25 15:20:33
164.160.34.111	attackspambots	Sep 24 20:41:57 lcdev sshd\[18953\]: Invalid user user from 164.160.34.111 Sep 24 20:41:57 lcdev sshd\[18953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.34.111 Sep 24 20:41:58 lcdev sshd\[18953\]: Failed password for invalid user user from 164.160.34.111 port 51226 ssh2 Sep 24 20:46:49 lcdev sshd\[19384\]: Invalid user weblogic from 164.160.34.111 Sep 24 20:46:49 lcdev sshd\[19384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.34.111	2019-09-25 14:52:17
202.254.234.103	attack	Scanning and Vuln Attempts	2019-09-25 14:48:48
222.186.175.148	attackbots	v+ssh-bruteforce	2019-09-25 14:47:00
219.142.28.206	attack	Sep 25 08:02:27 nextcloud sshd\[4595\]: Invalid user userweb from 219.142.28.206 Sep 25 08:02:27 nextcloud sshd\[4595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.142.28.206 Sep 25 08:02:28 nextcloud sshd\[4595\]: Failed password for invalid user userweb from 219.142.28.206 port 56708 ssh2 ...	2019-09-25 15:13:54
134.209.40.67	attack	Sep 25 07:14:36 www5 sshd\[51800\]: Invalid user ah from 134.209.40.67 Sep 25 07:14:36 www5 sshd\[51800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.40.67 Sep 25 07:14:37 www5 sshd\[51800\]: Failed password for invalid user ah from 134.209.40.67 port 54516 ssh2 ...	2019-09-25 15:03:56
125.32.229.213	attackspam	Unauthorised access (Sep 25) SRC=125.32.229.213 LEN=40 TTL=49 ID=63201 TCP DPT=8080 WINDOW=5060 SYN	2019-09-25 15:09:35
222.186.42.15	attack	Automated report - ssh fail2ban: Sep 25 08:23:41 wrong password, user=root, port=54812, ssh2 Sep 25 08:23:45 wrong password, user=root, port=54812, ssh2 Sep 25 08:23:49 wrong password, user=root, port=54812, ssh2	2019-09-25 14:44:48
221.214.55.82	attack	25/09/2019 8:54 high 221.214.55.82 CHN 62748 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:49376:1) Attempted Administrator Privilege Gain 25/09/2019 8:54 high 221.214.55.82 CHN 62298 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:41819:2) Attempted Administrator Privilege Gain 25/09/2019 8:54 high 221.214.55.82 CHN 62298 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:41818:3) Attempted Administrator Privilege Gain 25/09/2019 8:52 high 221.214.55.82 CHN 59847 / tcp 80 (http) / tcp Unknown (Unknown) 0 SERVER-APACHE Apache Struts remote code execution attempt (1:49376:1) Attempted Administrator Privilege Gain	2019-09-25 15:20:49
200.27.210.114	attackspam	10 attempts against mh_ha-misc-ban on light.magehost.pro	2019-09-25 14:55:21
51.38.237.214	attackbots	Sep 25 08:51:39 MK-Soft-VM5 sshd[2244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.237.214 Sep 25 08:51:40 MK-Soft-VM5 sshd[2244]: Failed password for invalid user bot from 51.38.237.214 port 35284 ssh2 ...	2019-09-25 15:07:48
192.3.140.202	attack	\[2019-09-25 02:38:54\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '192.3.140.202:54710' - Wrong password \[2019-09-25 02:38:54\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T02:38:54.078-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7643",SessionID="0x7f9b34358e08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140.202/54710",Challenge="0432d999",ReceivedChallenge="0432d999",ReceivedHash="0bd1925313f035959cc3215192150685" \[2019-09-25 02:40:48\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '192.3.140.202:59941' - Wrong password \[2019-09-25 02:40:48\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T02:40:48.396-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2934",SessionID="0x7f9b34044128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140	2019-09-25 14:52:57
49.83.1.110	attackspam	Sep 25 07:22:53 nginx sshd[51700]: error: maximum authentication attempts exceeded for root from 49.83.1.110 port 44765 ssh2 [preauth] Sep 25 07:22:53 nginx sshd[51700]: Disconnecting: Too many authentication failures [preauth]	2019-09-25 15:11:26

Recently Reported IPs

114.1.213.217	30.129.94.87	233.136.119.114	43.136.39.99
171.161.235.27	208.26.252.243	182.144.62.173	140.110.104.136
221.255.204.70	172.227.227.173	182.160.224.21	232.157.246.229
43.22.75.43	136.232.52.151	204.10.44.0	237.118.179.172
142.250.207.177	136.220.42.230	172.185.205.2	172.217.16.35