114.91.120.109

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: ChinaNet Shanghai Province Network

Hostname: unknown

Organization: China Telecom (Group)

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	445/tcp 445/tcp [2019-07-05/24]2pkt	2019-07-25 02:42:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.91.120.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56020
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.91.120.109.			IN	A

;; AUTHORITY SECTION:
.			1045	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072400 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 02:42:27 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 109.120.91.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 109.120.91.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.246.226.71	attackspam	Port scan: Attack repeated for 24 hours	2019-12-16 17:26:38
197.56.21.168	attackspam	IP: 197.56.21.168 ASN: AS8452 TE-AS Port: Message Submission 587 Found in one or more Blacklists Date: 16/12/2019 6:57:13 AM UTC	2019-12-16 17:40:41
51.91.136.65	attackbotsspam	IP: 51.91.136.65 ASN: AS16276 OVH SAS Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 16/12/2019 6:57:24 AM UTC	2019-12-16 17:26:20
203.160.162.213	attackbots	Dec 16 10:10:44 ns381471 sshd[5016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.160.162.213 Dec 16 10:10:46 ns381471 sshd[5016]: Failed password for invalid user sarmiento from 203.160.162.213 port 47676 ssh2	2019-12-16 17:44:49
41.216.186.89	attack	1576477633 - 12/16/2019 07:27:13 Host: 41.216.186.89/41.216.186.89 Port: 8080 TCP Blocked	2019-12-16 17:38:04
40.92.69.60	attack	Dec 16 09:27:05 debian-2gb-vpn-nbg1-1 kernel: [855995.967700] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.69.60 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=54815 DF PROTO=TCP SPT=22086 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-16 17:49:21
222.92.139.158	attack	Dec 16 10:20:14 microserver sshd[35936]: Invalid user matilda from 222.92.139.158 port 32980 Dec 16 10:20:14 microserver sshd[35936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.139.158 Dec 16 10:20:15 microserver sshd[35936]: Failed password for invalid user matilda from 222.92.139.158 port 32980 ssh2 Dec 16 10:27:22 microserver sshd[37002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.139.158 user=root Dec 16 10:27:24 microserver sshd[37002]: Failed password for root from 222.92.139.158 port 59296 ssh2 Dec 16 10:40:24 microserver sshd[39206]: Invalid user www from 222.92.139.158 port 55362 Dec 16 10:40:24 microserver sshd[39206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.92.139.158 Dec 16 10:40:26 microserver sshd[39206]: Failed password for invalid user www from 222.92.139.158 port 55362 ssh2 Dec 16 10:47:03 microserver sshd[40147]: pam_unix(sshd:auth): aut	2019-12-16 17:20:22
37.49.227.109	attackspambots	37.49.227.109 was recorded 16 times by 16 hosts attempting to connect to the following ports: 17185. Incident counter (4h, 24h, all-time): 16, 50, 1254	2019-12-16 17:13:57
89.248.168.217	attackbotsspam	89.248.168.217 was recorded 26 times by 24 hosts attempting to connect to the following ports: 135,88. Incident counter (4h, 24h, all-time): 26, 163, 12112	2019-12-16 17:37:40
188.113.176.243	attackbotsspam	1576477651 - 12/16/2019 07:27:31 Host: 188.113.176.243/188.113.176.243 Port: 445 TCP Blocked	2019-12-16 17:14:47
185.143.221.186	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-12-16 17:42:22
210.176.62.116	attackbots	Dec 15 23:14:43 web1 sshd\[24337\]: Invalid user sueyen from 210.176.62.116 Dec 15 23:14:43 web1 sshd\[24337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.176.62.116 Dec 15 23:14:45 web1 sshd\[24337\]: Failed password for invalid user sueyen from 210.176.62.116 port 59122 ssh2 Dec 15 23:24:08 web1 sshd\[25210\]: Invalid user wwwrun from 210.176.62.116 Dec 15 23:24:08 web1 sshd\[25210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.176.62.116	2019-12-16 17:39:35
193.70.0.93	attackspam	Dec 16 10:16:25 ns381471 sshd[5239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.93 Dec 16 10:16:27 ns381471 sshd[5239]: Failed password for invalid user 123 from 193.70.0.93 port 54416 ssh2	2019-12-16 17:40:06
108.246.122.11	attackspambots	Dec 16 07:27:05 MK-Soft-Root1 sshd[25441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.246.122.11 Dec 16 07:27:05 MK-Soft-Root1 sshd[25442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.246.122.11 ...	2019-12-16 17:49:05
175.192.79.151	attackbotsspam	FTP Brute Force	2019-12-16 17:42:41

Recently Reported IPs

2600:1f14:b62:9e04:7b41:3e7:1bd1:4acb	174.251.29.51	111.74.16.28	223.123.122.15
81.109.35.229	55.94.205.28	14.227.26.100	27.27.57.119
2600:1f14:b62:9e03:1c94:4dc0:ad6e:290c	83.1.145.191	129.35.124.147	2a01:598:9987:64ec:20ef:77ed:28ee:faea
166.191.115.117	99.135.153.141	206.219.225.23	72.147.172.233
207.217.75.188	92.27.105.36	162.165.31.29	183.199.198.141