114.104.239.204

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 114.104.239.204 (CN/China/-): 5 in the last 3600 secs - Mon Dec 24 09:43:45 2018	2020-02-07 09:15:35

Comments on same subnet:

IP	Type	Details	Datetime
114.104.239.6	attackspam	Unauthorized connection attempt detected from IP address 114.104.239.6 to port 6656 [T]	2020-01-30 06:25:21
114.104.239.23	attackbots	Unauthorized connection attempt detected from IP address 114.104.239.23 to port 6656 [T]	2020-01-29 21:22:54
114.104.239.115	attack	Unauthorized connection attempt detected from IP address 114.104.239.115 to port 6656 [T]	2020-01-29 18:44:24
114.104.239.2	attack	Unauthorized connection attempt detected from IP address 114.104.239.2 to port 6656 [T]	2020-01-29 17:39:32
114.104.239.18	attack	Unauthorized connection attempt detected from IP address 114.104.239.18 to port 6656 [T]	2020-01-26 08:39:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.104.239.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35692
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.104.239.204.		IN	A

;; AUTHORITY SECTION:
.			501	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020601 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 09:15:32 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 204.239.104.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.239.104.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
110.246.106.195	attack	Aug 25 08:38:23 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 110.246.106.195 port 54235 ssh2 (target: 158.69.100.148:22, password: 123456) Aug 25 08:38:23 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 110.246.106.195 port 54235 ssh2 (target: 158.69.100.148:22, password: rphostnamec) Aug 25 08:38:24 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 110.246.106.195 port 54235 ssh2 (target: 158.69.100.148:22, password: admintrup) Aug 25 08:38:24 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 110.246.106.195 port 54235 ssh2 (target: 158.69.100.148:22, password: seiko2005) Aug 25 08:38:24 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 110.246.106.195 port 54235 ssh2 (target: 158.69.100.148:22, password: Zte521) Aug 25 08:38:25 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 110.246.106.195 port 54235 ssh2 (target: 158.69.100.148:22, password: waldo) Aug 25 08:38:25 wildwolf ssh-honeypotd[26164]: Fail........ ------------------------------	2019-08-26 08:26:22
14.204.136.125	attackspam	Aug 26 00:05:51 www4 sshd\[29733\]: Invalid user sh from 14.204.136.125 Aug 26 00:05:51 www4 sshd\[29733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.136.125 Aug 26 00:05:53 www4 sshd\[29733\]: Failed password for invalid user sh from 14.204.136.125 port 17826 ssh2 ...	2019-08-26 08:39:48
185.175.93.78	attackbotsspam	08/25/2019-19:13:27.094508 185.175.93.78 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-26 08:16:26
178.21.54.203	attack	Automatic report - Port Scan Attack	2019-08-26 08:34:49
51.255.173.222	attackbotsspam	Automatic report	2019-08-26 08:36:16
54.38.192.96	attack	Aug 25 14:26:13 eddieflores sshd\[1776\]: Invalid user jodie from 54.38.192.96 Aug 25 14:26:13 eddieflores sshd\[1776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3019850.ip-54-38-192.eu Aug 25 14:26:15 eddieflores sshd\[1776\]: Failed password for invalid user jodie from 54.38.192.96 port 50238 ssh2 Aug 25 14:30:26 eddieflores sshd\[2165\]: Invalid user qi from 54.38.192.96 Aug 25 14:30:26 eddieflores sshd\[2165\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3019850.ip-54-38-192.eu	2019-08-26 08:41:06
122.176.97.151	attackbotsspam	Aug 25 22:54:47 tux-35-217 sshd\[22948\]: Invalid user oracle from 122.176.97.151 port 41558 Aug 25 22:54:47 tux-35-217 sshd\[22948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.176.97.151 Aug 25 22:54:50 tux-35-217 sshd\[22948\]: Failed password for invalid user oracle from 122.176.97.151 port 41558 ssh2 Aug 25 22:59:53 tux-35-217 sshd\[23002\]: Invalid user albert from 122.176.97.151 port 57086 Aug 25 22:59:53 tux-35-217 sshd\[23002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.176.97.151 ...	2019-08-26 08:57:24
213.209.114.26	attackbotsspam	2019-08-25T23:03:10.044845abusebot-8.cloudsearch.cf sshd\[23728\]: Invalid user tara from 213.209.114.26 port 46960	2019-08-26 08:15:52
138.4.131.212	attackspambots	Aug 25 14:44:44 mail-host sshd[54489]: Invalid user mapr from 138.4.131.212 Aug 25 14:44:44 mail-host sshd[54489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.4.131.212 Aug 25 14:44:46 mail-host sshd[54489]: Failed password for invalid user mapr from 138.4.131.212 port 46540 ssh2 Aug 25 14:44:46 mail-host sshd[54491]: Received disconnect from 138.4.131.212: 11: Bye Bye Aug 25 14:53:05 mail-host sshd[56246]: Invalid user tsmuse from 138.4.131.212 Aug 25 14:53:05 mail-host sshd[56246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.4.131.212 Aug 25 14:53:07 mail-host sshd[56246]: Failed password for invalid user tsmuse from 138.4.131.212 port 43842 ssh2 Aug 25 14:53:07 mail-host sshd[56247]: Received disconnect from 138.4.131.212: 11: Bye Bye Aug 25 14:57:28 mail-host sshd[57151]: Invalid user rosaline from 138.4.131.212 Aug 25 14:57:28 mail-host sshd[57151]: pam_unix(sshd:auth)........ -------------------------------	2019-08-26 08:49:59
202.126.208.122	attack	2019-08-25T22:57:51.635195abusebot-2.cloudsearch.cf sshd\[9161\]: Invalid user student from 202.126.208.122 port 43941	2019-08-26 08:49:01
159.65.219.48	attackbots	Aug 26 02:35:59 OPSO sshd\[17324\]: Invalid user update from 159.65.219.48 port 49084 Aug 26 02:35:59 OPSO sshd\[17324\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.219.48 Aug 26 02:36:01 OPSO sshd\[17324\]: Failed password for invalid user update from 159.65.219.48 port 49084 ssh2 Aug 26 02:40:35 OPSO sshd\[18159\]: Invalid user odoo from 159.65.219.48 port 41148 Aug 26 02:40:35 OPSO sshd\[18159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.219.48	2019-08-26 08:48:20
103.83.225.15	attackspambots	Aug 26 02:19:38 minden010 sshd[27491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.83.225.15 Aug 26 02:19:39 minden010 sshd[27491]: Failed password for invalid user carter from 103.83.225.15 port 37838 ssh2 Aug 26 02:24:31 minden010 sshd[28839]: Failed password for sshd from 103.83.225.15 port 33149 ssh2 ...	2019-08-26 08:50:21
190.146.40.67	attack	Aug 25 19:09:15 hb sshd\[1548\]: Invalid user rodney from 190.146.40.67 Aug 25 19:09:16 hb sshd\[1548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.40.67 Aug 25 19:09:18 hb sshd\[1548\]: Failed password for invalid user rodney from 190.146.40.67 port 57504 ssh2 Aug 25 19:14:07 hb sshd\[2152\]: Invalid user deploy from 190.146.40.67 Aug 25 19:14:07 hb sshd\[2152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.40.67	2019-08-26 08:19:05
219.91.66.9	attackbots	Aug 25 23:25:22 tuxlinux sshd[2277]: Invalid user arkserver from 219.91.66.9 port 43150 Aug 25 23:25:22 tuxlinux sshd[2277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.91.66.9 Aug 25 23:25:22 tuxlinux sshd[2277]: Invalid user arkserver from 219.91.66.9 port 43150 Aug 25 23:25:22 tuxlinux sshd[2277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.91.66.9 Aug 25 23:25:22 tuxlinux sshd[2277]: Invalid user arkserver from 219.91.66.9 port 43150 Aug 25 23:25:22 tuxlinux sshd[2277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.91.66.9 Aug 25 23:25:25 tuxlinux sshd[2277]: Failed password for invalid user arkserver from 219.91.66.9 port 43150 ssh2 ...	2019-08-26 08:28:55
212.64.84.197	attack	$f2bV_matches	2019-08-26 08:30:39

Recently Reported IPs

202.166.72.79	122.51.234.86	2603:1026:302:80::5	213.149.62.253
191.96.249.23	153.122.17.203	85.105.155.249	117.93.143.234
185.43.209.126	113.118.14.98	83.197.6.168	80.229.40.48
192.3.204.164	40.112.182.56	38.117.65.10	143.177.88.184
51.77.151.177	201.243.39.72	94.244.191.131	91.98.172.37