114.104.239.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 114.104.239.6 to port 6656 [T]	2020-01-30 06:25:21

Comments on same subnet:

IP	Type	Details	Datetime
114.104.239.204	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 114.104.239.204 (CN/China/-): 5 in the last 3600 secs - Mon Dec 24 09:43:45 2018	2020-02-07 09:15:35
114.104.239.23	attackbots	Unauthorized connection attempt detected from IP address 114.104.239.23 to port 6656 [T]	2020-01-29 21:22:54
114.104.239.115	attack	Unauthorized connection attempt detected from IP address 114.104.239.115 to port 6656 [T]	2020-01-29 18:44:24
114.104.239.2	attack	Unauthorized connection attempt detected from IP address 114.104.239.2 to port 6656 [T]	2020-01-29 17:39:32
114.104.239.18	attack	Unauthorized connection attempt detected from IP address 114.104.239.18 to port 6656 [T]	2020-01-26 08:39:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.104.239.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7118
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.104.239.6.			IN	A

;; AUTHORITY SECTION:
.			455	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012901 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 06:25:18 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 6.239.104.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.239.104.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.73.1.54	attack	2019-10-06T13:29:46.942710stark.klein-stark.info sshd\[6240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cs-201-73-1-54.embratelcloud.com.br user=root 2019-10-06T13:29:49.679552stark.klein-stark.info sshd\[6240\]: Failed password for root from 201.73.1.54 port 51344 ssh2 2019-10-06T13:42:42.891200stark.klein-stark.info sshd\[7090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cs-201-73-1-54.embratelcloud.com.br user=root ...	2019-10-07 00:41:12
134.209.108.106	attackbotsspam	Oct 6 12:19:46 plusreed sshd[14357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.108.106 user=root Oct 6 12:19:48 plusreed sshd[14357]: Failed password for root from 134.209.108.106 port 35170 ssh2 ...	2019-10-07 00:23:20
188.131.146.147	attack	Oct 6 01:57:41 hpm sshd\[8157\]: Invalid user Montblanc2016 from 188.131.146.147 Oct 6 01:57:41 hpm sshd\[8157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.146.147 Oct 6 01:57:43 hpm sshd\[8157\]: Failed password for invalid user Montblanc2016 from 188.131.146.147 port 52828 ssh2 Oct 6 02:02:41 hpm sshd\[8580\]: Invalid user Berlin@123 from 188.131.146.147 Oct 6 02:02:41 hpm sshd\[8580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.146.147	2019-10-07 00:36:42
66.249.79.175	attack	port scan and connect, tcp 80 (http)	2019-10-07 00:49:42
34.74.133.193	attack	Oct 6 16:08:38 localhost sshd\[66464\]: Invalid user Respect@2017 from 34.74.133.193 port 39352 Oct 6 16:08:38 localhost sshd\[66464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.74.133.193 Oct 6 16:08:40 localhost sshd\[66464\]: Failed password for invalid user Respect@2017 from 34.74.133.193 port 39352 ssh2 Oct 6 16:16:12 localhost sshd\[66778\]: Invalid user !QA@WS\#ED from 34.74.133.193 port 51306 Oct 6 16:16:12 localhost sshd\[66778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.74.133.193 ...	2019-10-07 00:39:44
180.95.176.148	attackspambots	Unauthorised access (Oct 6) SRC=180.95.176.148 LEN=40 TTL=48 ID=54468 TCP DPT=8080 WINDOW=54710 SYN Unauthorised access (Oct 6) SRC=180.95.176.148 LEN=40 TTL=48 ID=36308 TCP DPT=8080 WINDOW=36094 SYN	2019-10-07 00:45:19
188.226.226.82	attack	Oct 6 15:38:34 server sshd[40745]: Failed password for root from 188.226.226.82 port 56920 ssh2 Oct 6 15:47:18 server sshd[41745]: Failed password for root from 188.226.226.82 port 33586 ssh2 Oct 6 15:51:06 server sshd[42176]: Failed password for root from 188.226.226.82 port 53250 ssh2	2019-10-07 00:38:25
54.38.183.181	attackspambots	$f2bV_matches	2019-10-07 00:35:22
49.35.34.109	attackbots	Unauthorised access (Oct 6) SRC=49.35.34.109 LEN=52 TOS=0x02 TTL=112 ID=26943 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-07 01:06:11
23.231.38.206	attackbotsspam	Unauthorized access detected from banned ip	2019-10-07 00:52:48
77.43.204.158	attack	Connection by 77.43.204.158 on port: 5000 got caught by honeypot at 10/6/2019 4:43:03 AM	2019-10-07 00:32:13
45.6.72.17	attackspam	Oct 6 06:33:08 php1 sshd\[30930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 6 06:33:10 php1 sshd\[30930\]: Failed password for root from 45.6.72.17 port 55306 ssh2 Oct 6 06:38:00 php1 sshd\[31358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root Oct 6 06:38:02 php1 sshd\[31358\]: Failed password for root from 45.6.72.17 port 39518 ssh2 Oct 6 06:42:49 php1 sshd\[31901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.72.17 user=root	2019-10-07 00:53:36
39.135.1.156	attackspambots	Automatic report - Port Scan	2019-10-07 00:22:19
52.17.16.120	attackspam	Received: from shqvhggwvx.wish.com (52.17.16.120) by HE1EUR02FT040.mail.protection.outlook.com (10.152.11.92) with Microsoft SMTP Server id 15.20.2327.20 via Frontend Transport; OriginalChecksum:458F459C6E1CE6C317DD0925AE522E3DF6B175F61489A822D49751F9378050BE;UpperCasedChecksum:9EF08EE696843F9C7CF6026FCD5BFE21A6DE85467CEF9A8C13E05E5D8B8CB58C;SizeAsReceived:530;Count:9 From: Impotence Help Subject: Men's ED Health Update Reply-To: Received: from 5hancienvillatarramylifeDI3years.com (172.31.21.149) by 5hancienvillatarramylifeDI3years.com id TnvNpyK7JS0X for ; Sun, 06 Oct 2019 01:48:25 +0200 (envelope-from To: joycemarie1212@hotmail.com Message-ID: <95b05a93-4b72-493a-bff7-4a7da462e58c@HE1EUR02FT040.eop-EUR02.prod.protection.outlook.com> Return-Path: bounce@6hancienvillatarramylifeJZ3years.com X-SID-PRA: FROM@2HANCIENVILLATARRAMYLIFEJD3YEARS.COM X-SID-Result: NONE	2019-10-07 00:52:18
14.63.169.33	attackbotsspam	Oct 6 16:19:56 venus sshd\[32077\]: Invalid user 1A2S3D from 14.63.169.33 port 44940 Oct 6 16:19:56 venus sshd\[32077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.169.33 Oct 6 16:19:58 venus sshd\[32077\]: Failed password for invalid user 1A2S3D from 14.63.169.33 port 44940 ssh2 ...	2019-10-07 00:37:37

Recently Reported IPs

180.109.34.195	171.107.73.191	144.0.81.137	140.250.123.6
125.78.60.7	124.225.45.230	223.72.30.9	123.145.20.195
84.149.58.9	254.132.0.70	139.123.105.200	122.194.130.183
46.148.9.115	161.80.141.37	168.67.105.56	41.48.33.120
53.15.51.128	122.4.45.167	231.196.23.90	160.165.251.43