14.121.144.39 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorised access (Aug 30) SRC=14.121.144.39 LEN=40 TTL=50 ID=4199 TCP DPT=8080 WINDOW=45800 SYN Unauthorised access (Aug 30) SRC=14.121.144.39 LEN=40 TTL=50 ID=21657 TCP DPT=8080 WINDOW=17083 SYN Unauthorised access (Aug 29) SRC=14.121.144.39 LEN=40 TTL=49 ID=24521 TCP DPT=8080 WINDOW=46931 SYN Unauthorised access (Aug 28) SRC=14.121.144.39 LEN=40 TTL=49 ID=814 TCP DPT=8080 WINDOW=58181 SYN	2019-08-31 08:39:11

Type

Details

Datetime

attackspambots

Unauthorised access (Aug 30) SRC=14.121.144.39 LEN=40 TTL=50 ID=4199 TCP DPT=8080 WINDOW=45800 SYN 
Unauthorised access (Aug 30) SRC=14.121.144.39 LEN=40 TTL=50 ID=21657 TCP DPT=8080 WINDOW=17083 SYN 
Unauthorised access (Aug 29) SRC=14.121.144.39 LEN=40 TTL=49 ID=24521 TCP DPT=8080 WINDOW=46931 SYN 
Unauthorised access (Aug 28) SRC=14.121.144.39 LEN=40 TTL=49 ID=814 TCP DPT=8080 WINDOW=58181 SYN

2019-08-31 08:39:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.121.144.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14387
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.121.144.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 08:39:06 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 39.144.121.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 39.144.121.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.234.52.176	attackspambots	Invalid user csj from 49.234.52.176 port 44690	2020-09-04 18:52:15
218.92.0.198	attackbots	2020-09-04T08:54:58.907746rem.lavrinenko.info sshd[22008]: refused connect from 218.92.0.198 (218.92.0.198) 2020-09-04T08:56:43.317411rem.lavrinenko.info sshd[22009]: refused connect from 218.92.0.198 (218.92.0.198) 2020-09-04T08:58:37.374136rem.lavrinenko.info sshd[22012]: refused connect from 218.92.0.198 (218.92.0.198) 2020-09-04T09:00:35.796710rem.lavrinenko.info sshd[22014]: refused connect from 218.92.0.198 (218.92.0.198) 2020-09-04T09:02:27.269610rem.lavrinenko.info sshd[22030]: refused connect from 218.92.0.198 (218.92.0.198) ...	2020-09-04 18:54:39
189.186.123.3	attackspambots	Honeypot attack, port: 445, PTR: dsl-189-186-123-3-dyn.prod-infinitum.com.mx.	2020-09-04 18:58:57
188.146.171.252	attackspam	Sep 3 18:43:39 mellenthin postfix/smtpd[20267]: NOQUEUE: reject: RCPT from 188.146.171.252.nat.umts.dynamic.t-mobile.pl[188.146.171.252]: 554 5.7.1 Service unavailable; Client host [188.146.171.252] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/188.146.171.252; from= to= proto=ESMTP helo=<188.146.171.252.nat.umts.dynamic.t-mobile.pl>	2020-09-04 19:04:21
49.88.112.117	attack	Sep 4 12:29:30 OPSO sshd\[17040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root Sep 4 12:29:32 OPSO sshd\[17040\]: Failed password for root from 49.88.112.117 port 55504 ssh2 Sep 4 12:29:35 OPSO sshd\[17040\]: Failed password for root from 49.88.112.117 port 55504 ssh2 Sep 4 12:29:37 OPSO sshd\[17040\]: Failed password for root from 49.88.112.117 port 55504 ssh2 Sep 4 12:33:49 OPSO sshd\[17738\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root	2020-09-04 18:44:46
190.203.55.55	attackspam	Honeypot attack, port: 445, PTR: 190-203-55-55.dyn.dsl.cantv.net.	2020-09-04 18:40:44
64.64.233.198	attackspam	2020-09-03 17:28:54,001 fail2ban.actions [1312]: NOTICE [sshd] Ban 64.64.233.198 2020-09-03 17:52:05,067 fail2ban.actions [1312]: NOTICE [sshd] Ban 64.64.233.198 2020-09-03 18:20:57,013 fail2ban.actions [1312]: NOTICE [sshd] Ban 64.64.233.198 2020-09-03 18:43:35,784 fail2ban.actions [1312]: NOTICE [sshd] Ban 64.64.233.198 2020-09-03 19:06:09,639 fail2ban.actions [1312]: NOTICE [sshd] Ban 64.64.233.198 ...	2020-09-04 19:06:10
185.26.156.91	attack	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 185.26.156.91, Reason:[(mod_security) mod_security (id:340004) triggered by 185.26.156.91 (DE/Germany/kohoutek.uberspace.de): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-04 18:34:42
80.90.80.117	attackbotsspam	TCP ports : 7770 / 7777	2020-09-04 19:03:49
177.126.238.78	attackspam	Honeypot attack, port: 5555, PTR: 177-126-238-78.city10.com.br.	2020-09-04 18:37:29
79.9.171.88	attack	$f2bV_matches	2020-09-04 18:50:52
165.90.239.203	attackbotsspam	Automatic report - Port Scan Attack	2020-09-04 18:55:03
91.228.65.14	attack	Unauthorized IMAP connection attempt	2020-09-04 18:35:01
54.39.16.73	attack	Sep 4 13:00:47 kh-dev-server sshd[19993]: Failed password for root from 54.39.16.73 port 39206 ssh2 ...	2020-09-04 19:07:25
195.154.179.3	attackbotsspam	Sep 4 16:25:47 itv-usvr-01 sshd[23221]: Invalid user admin from 195.154.179.3	2020-09-04 18:53:21

Recently Reported IPs

143.170.208.62	135.88.127.201	83.78.192.89	224.217.98.43
22.244.226.48	211.95.0.163	64.85.243.144	94.139.227.84
213.150.76.74	94.243.27.120	109.183.231.228	35.185.104.197
86.124.84.83	188.211.227.111	116.12.254.242	45.175.179.229
114.127.196.31	115.114.177.166	103.95.164.51	173.236.72.146