AbuseIPDB » 111.67.199.142

111.67.199.142 was found in our database!

This IP was reported 3,598 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Yiantianxia Network Science&Technology Co Ltd.
Usage Type	Data Center/Web Hosting/Transit
Domain Name	cnean.com
Country	China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 111.67.199.142

Whois 111.67.199.142

IP Abuse Reports for 111.67.199.142:

This IP address has been reported a total of 3,598 times from 695 distinct sources. 111.67.199.142 was first reported on November 22nd 2020, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
Parth Maniar	2023-12-04 06:22:28 (6 days ago)	This IP address carried out 34 SSH credential attack (attempts) on 03-12-2023. For more information ... show moreThis IP address carried out 34 SSH credential attack (attempts) on 03-12-2023. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
Filli Group	2023-12-03 15:05:48 (6 days ago)	2023-12-03T16:05:44.143412pom01-it-pop.as202427.net sshd[418788]: Invalid user db2inst1 from 111.67. ... show more2023-12-03T16:05:44.143412pom01-it-pop.as202427.net sshd[418788]: Invalid user db2inst1 from 111.67.199.142 port 50832 2023-12-03T16:05:45.376377pom01-it-pop.as202427.net sshd[418793]: Invalid user default from 111.67.199.142 port 56012 2023-12-03T16:05:47.641037pom01-it-pop.as202427.net sshd[418800]: Invalid user default from 111.67.199.142 port 42254 ... show less	Brute-Force SSH
mg	2023-12-03 14:39:50 (6 days ago)	Dec 3 06:35:16 goldcrest sshd[635187]: Failed password for invalid user db2inst1 from 111.67.199.14 ... show moreDec 3 06:35:16 goldcrest sshd[635187]: Failed password for invalid user db2inst1 from 111.67.199.142 port 35778 ssh2 Dec 3 06:35:21 goldcrest sshd[635189]: Invalid user default from 111.67.199.142 port 56936 Dec 3 06:35:22 goldcrest sshd[635189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.142 Dec 3 06:35:24 goldcrest sshd[635189]: Failed password for invalid user default from 111.67.199.142 port 56936 ssh2 ... show less	Brute-Force SSH
sashan	2023-12-03 14:39:00 (6 days ago)	Dec 3 17:39:00 gate kernel: [104842.510215] nftables: JAIL-SSH IN=wan OUT= MAC= SRC=111.67.199.142 ... show moreDec 3 17:39:00 gate kernel: [104842.510215] nftables: JAIL-SSH IN=wan OUT= MAC= SRC=111.67.199.142 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=42496 DF PROTO=TCP SPT=60762 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan
TheMFNProject	2023-12-03 14:34:04 (6 days ago)	Bonked into empty SSH door. Whatcha looking for in there, eh?!	Brute-Force SSH
Anonymous	2023-12-03 14:29:50 (6 days ago)	Brute force SSH login	Brute-Force SSH
Anonymous	2023-12-03 14:26:04 (6 days ago)	Dec 3 14:25:57 vps-3cf7b8c3 sshd[1358915]: pam_unix(sshd:auth): authentication failure; logname= ui ... show moreDec 3 14:25:57 vps-3cf7b8c3 sshd[1358915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.142 Dec 3 14:26:00 vps-3cf7b8c3 sshd[1358915]: Failed password for invalid user db2inst1 from 111.67.199.142 port 35956 ssh2 Dec 3 14:26:03 vps-3cf7b8c3 sshd[1358995]: Invalid user default from 111.67.199.142 port 41774 ... show less	Brute-Force SSH
herz-der-gamer.de	2023-12-03 14:23:46 (6 days ago)	2023-12-03T15:23:38.944088+01:00 marvibiene sshd[2454347]: Failed password for invalid user db2inst1 ... show more2023-12-03T15:23:38.944088+01:00 marvibiene sshd[2454347]: Failed password for invalid user db2inst1 from 111.67.199.142 port 45630 ssh2 2023-12-03T15:23:40.697101+01:00 marvibiene sshd[2454350]: Invalid user default from 111.67.199.142 port 48606 2023-12-03T15:23:40.900359+01:00 marvibiene sshd[2454350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.142 2023-12-03T15:23:43.022212+01:00 marvibiene sshd[2454350]: Failed password for invalid user default from 111.67.199.142 port 48606 ssh2 2023-12-03T15:23:45.675494+01:00 marvibiene sshd[2454352]: Invalid user default from 111.67.199.142 port 42716 show less	Brute-Force SSH
vereinshosting	2023-12-03 13:47:03 (6 days ago)	Dec 3 13:39:34 corfu-4 sshd\[19648\]: Invalid user db2inst1 from 111.67.199.142Dec 3 13:39:48 corf ... show moreDec 3 13:39:34 corfu-4 sshd\[19648\]: Invalid user db2inst1 from 111.67.199.142Dec 3 13:39:48 corfu-4 sshd\[19661\]: Invalid user default from 111.67.199.142Dec 3 13:39:59 corfu-4 sshd\[19668\]: Invalid user default from 111.67.199.142Dec 3 13:46:36 corfu-4 sshd\[20177\]: Invalid user admin from 111.67.199.142Dec 3 13:46:50 corfu-4 sshd\[20192\]: Invalid user admin from 111.67.199.142Dec 3 13:47:01 corfu-4 sshd\[20196\]: Invalid user admin from 111.67.199.142 ... show less	Brute-Force SSH
nikoladd	2023-12-03 13:44:56 (6 days ago)	Dec 3 15:43:10 server2 sshd\[1289\]: Invalid user db2inst1 from 111.67.199.142 Dec 3 15:43:3 ... show moreDec 3 15:43:10 server2 sshd\[1289\]: Invalid user db2inst1 from 111.67.199.142 Dec 3 15:43:33 server2 sshd\[1320\]: Invalid user default from 111.67.199.142 Dec 3 15:43:38 server2 sshd\[1323\]: Invalid user default from 111.67.199.142 Dec 3 15:44:30 server2 sshd\[1368\]: User root from 111.67.199.142 not allowed because not listed in AllowUsers Dec 3 15:44:43 server2 sshd\[1380\]: User root from 111.67.199.142 not allowed because not listed in AllowUsers Dec 3 15:44:55 server2 sshd\[1394\]: User root from 111.67.199.142 not allowed because not listed in AllowUsers show less	Brute-Force
Anonymous	2023-12-03 13:40:47 (6 days ago)	2023-12-03T14:40:44.468068hz21.yumianalyticsweb.com sshd[12897]: Invalid user db2inst1 from 111.67.1 ... show more2023-12-03T14:40:44.468068hz21.yumianalyticsweb.com sshd[12897]: Invalid user db2inst1 from 111.67.199.142 port 41670 2023-12-03T14:40:45.677493hz21.yumianalyticsweb.com sshd[12899]: Invalid user default from 111.67.199.142 port 52166 2023-12-03T14:40:46.851028hz21.yumianalyticsweb.com sshd[12901]: Invalid user default from 111.67.199.142 port 59030 ... show less	Brute-Force SSH
SurfinBirdie	2023-12-03 13:08:01 (6 days ago)	2023-12-03T14:01:28.101252+01:00 docker sshd[635989]: pam_unix(sshd:auth): authentication failure; l ... show more2023-12-03T14:01:28.101252+01:00 docker sshd[635989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.142 user=root 2023-12-03T14:01:30.146366+01:00 docker sshd[635989]: Failed password for root from 111.67.199.142 port 57850 ssh2 2023-12-03T14:07:57.899378+01:00 docker sshd[636657]: Invalid user admin from 111.67.199.142 port 60166 2023-12-03T14:07:58.211506+01:00 docker sshd[636657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.142 2023-12-03T14:08:00.796050+01:00 docker sshd[636657]: Failed password for invalid user admin from 111.67.199.142 port 60166 ssh2 ... show less	Brute-Force SSH
ballichar.de	2023-12-03 13:05:25 (6 days ago)	Dec 3 14:05:22 dalia sshd[3625973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ... show moreDec 3 14:05:22 dalia sshd[3625973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.142 Dec 3 14:05:24 dalia sshd[3625973]: Failed password for invalid user db2inst1 from 111.67.199.142 port 35548 ssh2 ... show less	Brute-Force SSH
itachi1706	2023-12-03 12:12:43 (6 days ago)	Dec 3 20:12:39 doubuntu sshd[3236867]: Invalid user ansible from 111.67.199.142 port 51912 De ... show moreDec 3 20:12:39 doubuntu sshd[3236867]: Invalid user ansible from 111.67.199.142 port 51912 Dec 3 20:12:40 doubuntu sshd[3236867]: Connection closed by invalid user ansible 111.67.199.142 port 51912 [preauth] Dec 3 20:12:43 doubuntu sshd[3236869]: Invalid user ansible from 111.67.199.142 port 58420 ... show less	Brute-Force SSH
mentality	2023-12-03 10:42:46 (1 week ago)	2023-12-03T10:42:25.638085racknerd-2df238 sshd[714410]: Invalid user db2inst1 from 111.67.199.142 po ... show more2023-12-03T10:42:25.638085racknerd-2df238 sshd[714410]: Invalid user db2inst1 from 111.67.199.142 port 57666 2023-12-03T10:42:28.293392racknerd-2df238 sshd[714410]: Failed password for invalid user db2inst1 from 111.67.199.142 port 57666 ssh2 2023-12-03T10:42:45.313847racknerd-2df238 sshd[714413]: Invalid user default from 111.67.199.142 port 43208 ... show less	Brute-Force SSH