113.128.104.169

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shandong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 113.128.104.169 to port 2095	2019-12-31 08:31:20

Comments on same subnet:

IP	Type	Details	Datetime
113.128.104.51	attack	Unauthorized connection attempt detected from IP address 113.128.104.51 to port 8118	2020-06-22 06:15:00
113.128.104.216	attackspam	Unauthorized connection attempt detected from IP address 113.128.104.216 to port 123	2020-06-13 07:52:15
113.128.104.123	attack	Fail2Ban Ban Triggered	2020-04-24 13:01:10
113.128.104.207	attack	113.128.104.207 - - \[27/Feb/2020:16:27:04 +0200\] "CONNECT www.ipip.net:443 HTTP/1.1" 403 202 "-" "PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3"	2020-02-27 23:33:39
113.128.104.219	attack	Fail2Ban Ban Triggered	2020-02-22 04:16:32
113.128.104.46	attack	Unauthorized connection attempt detected from IP address 113.128.104.46 to port 80	2020-02-16 02:11:34
113.128.104.238	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 563f3129cef198e7 \| WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-02-13 01:46:19
113.128.104.89	attack	Unauthorized connection attempt detected from IP address 113.128.104.89 to port 9999 [T]	2020-01-29 10:05:35
113.128.104.234	attackspam	Unauthorized connection attempt detected from IP address 113.128.104.234 to port 8123 [J]	2020-01-29 08:18:18
113.128.104.131	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.131 to port 1080 [J]	2020-01-29 02:17:51
113.128.104.158	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.158 to port 6666 [T]	2020-01-27 16:06:48
113.128.104.22	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.22 to port 8081 [J]	2020-01-27 00:48:55
113.128.104.228	attackspam	Unauthorized connection attempt detected from IP address 113.128.104.228 to port 8888 [J]	2020-01-22 08:57:44
113.128.104.3	attackbots	Unauthorized connection attempt detected from IP address 113.128.104.3 to port 999 [T]	2020-01-20 18:23:28
113.128.104.121	attackspambots	Unauthorized connection attempt detected from IP address 113.128.104.121 to port 9000 [T]	2020-01-19 16:33:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.128.104.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21477
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.128.104.169.		IN	A

;; AUTHORITY SECTION:
.			350	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123001 1800 900 604800 86400

;; Query time: 962 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 08:31:16 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 169.104.128.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.104.128.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.64.223.112	attack	Feb 20 22:49:27 lnxded63 sshd[17161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.223.112	2020-02-21 05:50:13
40.113.110.113	attack	Feb 20 23:54:27 server sshd\[31683\]: Invalid user chris from 40.113.110.113 Feb 20 23:54:27 server sshd\[31683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.113.110.113 Feb 20 23:54:29 server sshd\[31683\]: Failed password for invalid user chris from 40.113.110.113 port 54788 ssh2 Feb 21 00:01:53 server sshd\[1198\]: Invalid user gitlab-prometheus from 40.113.110.113 Feb 21 00:01:53 server sshd\[1198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.113.110.113 ...	2020-02-21 05:42:16
40.118.238.108	spam	Used my email address as sender address. Extortion attempt to pay Bitcoin 3GoBff2d5CtmvLZVC4m9pYmU26fcJ36h2L.	2020-02-21 05:37:41
41.58.181.234	attackspam	Feb 20 21:46:24 vlre-nyc-1 sshd\[6743\]: Invalid user odoo from 41.58.181.234 Feb 20 21:46:24 vlre-nyc-1 sshd\[6743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.58.181.234 Feb 20 21:46:26 vlre-nyc-1 sshd\[6743\]: Failed password for invalid user odoo from 41.58.181.234 port 34544 ssh2 Feb 20 21:49:26 vlre-nyc-1 sshd\[6815\]: Invalid user confluence from 41.58.181.234 Feb 20 21:49:26 vlre-nyc-1 sshd\[6815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.58.181.234 ...	2020-02-21 05:50:44
109.195.139.29	attackspambots	Port Scan	2020-02-21 05:51:06
172.245.109.234	attack	Feb 20 22:21:56 debian-2gb-nbg1-2 kernel: \[4492926.387263\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=172.245.109.234 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=536 PROTO=TCP SPT=53450 DPT=3393 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-21 05:29:13
103.89.169.17	attack	SSH login attempts	2020-02-21 05:21:42
184.105.139.108	attackbots	firewall-block, port(s): 8443/tcp	2020-02-21 05:26:54
167.71.216.44	attackbotsspam	Feb 20 21:29:57 sshd\[27193\]: Invalid user minecraft from 167.71.216.44Feb 20 21:29:59 sshd\[27193\]: Failed password for invalid user minecraft from 167.71.216.44 port 46958 ssh2 ...	2020-02-21 05:25:38
114.34.148.67	attack	Honeypot attack, port: 81, PTR: 114-34-148-67.HINET-IP.hinet.net.	2020-02-21 05:46:18
138.0.60.6	attackbots	Feb 20 14:19:48 prox sshd[19439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.0.60.6 Feb 20 14:19:50 prox sshd[19439]: Failed password for invalid user guest from 138.0.60.6 port 37424 ssh2	2020-02-21 05:48:12
197.240.88.124	attackbotsspam	Automatic report - Banned IP Access	2020-02-21 05:31:20
69.17.158.101	attack	suspicious action Thu, 20 Feb 2020 10:19:56 -0300	2020-02-21 05:45:13
221.124.15.199	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-21 05:43:09
185.202.1.190	attackbotsspam	RDP Brute-Force (honeypot 9)	2020-02-21 05:34:01

Recently Reported IPs

134.229.22.148	234.83.40.222	112.117.33.51	145.63.242.20
51.38.74.126	218.127.199.198	79.77.129.73	112.66.99.1
65.102.109.65	108.209.101.100	115.211.198.55	182.47.78.37
111.224.221.199	213.26.211.77	60.43.214.133	117.241.198.165
110.177.79.43	81.106.137.148	9.208.223.10	110.177.73.123