89.114.11.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: Vodafone Portugal - Communicacoes Pessoais S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sat, 20 Jul 2019 21:55:26 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 10:30:22

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.114.11.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48837
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.114.11.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 21 10:30:15 CST 2019
;; MSG SIZE  rcvd: 117

Host info

214.11.114.89.in-addr.arpa domain name pointer 214.11.114.89.rev.vodafone.pt.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
214.11.114.89.in-addr.arpa	name = 214.11.114.89.rev.vodafone.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.38.3	attack	Apr 13 20:22:31 nextcloud sshd\[4857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.3 user=root Apr 13 20:22:32 nextcloud sshd\[4857\]: Failed password for root from 117.50.38.3 port 45156 ssh2 Apr 13 20:27:27 nextcloud sshd\[11299\]: Invalid user guenevere from 117.50.38.3 Apr 13 20:27:27 nextcloud sshd\[11299\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.3	2020-04-14 02:47:31
45.227.255.149	attack	23 attempts against mh-misbehave-ban on comet	2020-04-14 02:57:59
168.195.206.230	attackspambots	Dovecot Invalid User Login Attempt.	2020-04-14 02:30:39
222.186.169.192	attack	Apr 13 14:26:22 debian sshd[6608]: Unable to negotiate with 222.186.169.192 port 31394: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Apr 13 14:50:34 debian sshd[7804]: Unable to negotiate with 222.186.169.192 port 26180: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-04-14 02:50:58
111.229.57.21	attack	2020-04-13T20:22:33.752801vps751288.ovh.net sshd\[2590\]: Invalid user nine from 111.229.57.21 port 32806 2020-04-13T20:22:33.763612vps751288.ovh.net sshd\[2590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.57.21 2020-04-13T20:22:35.561106vps751288.ovh.net sshd\[2590\]: Failed password for invalid user nine from 111.229.57.21 port 32806 ssh2 2020-04-13T20:26:51.751440vps751288.ovh.net sshd\[2651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.57.21 user=root 2020-04-13T20:26:53.633869vps751288.ovh.net sshd\[2651\]: Failed password for root from 111.229.57.21 port 53582 ssh2	2020-04-14 02:45:23
49.232.162.235	attackbots	Apr 13 18:54:23 Ubuntu-1404-trusty-64-minimal sshd\[28730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.162.235 user=root Apr 13 18:54:25 Ubuntu-1404-trusty-64-minimal sshd\[28730\]: Failed password for root from 49.232.162.235 port 42598 ssh2 Apr 13 19:14:34 Ubuntu-1404-trusty-64-minimal sshd\[9339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.162.235 user=root Apr 13 19:14:36 Ubuntu-1404-trusty-64-minimal sshd\[9339\]: Failed password for root from 49.232.162.235 port 45780 ssh2 Apr 13 19:19:28 Ubuntu-1404-trusty-64-minimal sshd\[11069\]: Invalid user caleb from 49.232.162.235 Apr 13 19:19:28 Ubuntu-1404-trusty-64-minimal sshd\[11069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.162.235	2020-04-14 02:50:17
187.32.48.59	attack	Unauthorized connection attempt from IP address 187.32.48.59 on Port 445(SMB)	2020-04-14 02:43:36
156.96.118.40	attackbots	Apr 13 18:34:27 mail postfix/smtpd[64702]: warning: unknown[156.96.118.40]: SASL LOGIN authentication failed: generic failure Apr 13 18:34:28 mail postfix/smtpd[64702]: warning: unknown[156.96.118.40]: SASL LOGIN authentication failed: generic failure Apr 13 18:34:28 mail postfix/smtpd[64702]: warning: unknown[156.96.118.40]: SASL LOGIN authentication failed: generic failure ...	2020-04-14 03:08:58
106.13.15.122	attackbots	Apr 13 20:05:29 mout sshd[4981]: Invalid user ts from 106.13.15.122 port 59528	2020-04-14 03:01:53
51.255.170.237	attack	51.255.170.237 - - [13/Apr/2020:22:03:52 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-04-14 02:42:31
51.77.200.101	attack	Apr 13 19:51:00 srv01 sshd[29399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.101 user=root Apr 13 19:51:02 srv01 sshd[29399]: Failed password for root from 51.77.200.101 port 42280 ssh2 Apr 13 19:54:42 srv01 sshd[29602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.101 user=root Apr 13 19:54:45 srv01 sshd[29602]: Failed password for root from 51.77.200.101 port 51566 ssh2 Apr 13 19:58:20 srv01 sshd[29772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.101 user=root Apr 13 19:58:22 srv01 sshd[29772]: Failed password for root from 51.77.200.101 port 60856 ssh2 ...	2020-04-14 03:05:42
186.84.172.25	attackbotsspam	Apr 13 20:22:57 sso sshd[26785]: Failed password for root from 186.84.172.25 port 55286 ssh2 ...	2020-04-14 03:11:22
128.199.174.201	attack	Apr 13 20:55:48 markkoudstaal sshd[2847]: Failed password for root from 128.199.174.201 port 48404 ssh2 Apr 13 20:59:48 markkoudstaal sshd[3460]: Failed password for root from 128.199.174.201 port 55652 ssh2	2020-04-14 03:09:17
201.186.146.254	attack	1586798352 - 04/13/2020 19:19:12 Host: 201.186.146.254/201.186.146.254 Port: 445 TCP Blocked	2020-04-14 03:06:33
49.88.112.75	attackbotsspam	Apr 13 20:50:36 vps647732 sshd[11678]: Failed password for root from 49.88.112.75 port 56352 ssh2 ...	2020-04-14 03:07:16

Recently Reported IPs

200.96.78.102	180.251.236.169	80.38.218.134	59.91.193.242
37.111.130.189	178.221.234.169	176.100.191.79	119.252.170.138
113.22.176.82	190.79.97.227	154.126.166.85	125.163.119.34
113.161.167.11	39.45.235.140	221.162.255.86	209.163.163.80
197.45.173.92	190.74.72.25	180.183.176.250	79.103.174.44