172.104.24.14 - IPInfo

Basic Info

City: Cedar Knolls

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.104.242.173	botsattackproxy	: SSH Bot Scanner	2024-05-10 17:36:41
172.104.242.173	botsattack	hack	2024-03-06 18:39:29
172.104.242.173	attackbots	TCP (SYN) 172.104.242.173:40532 -> port 902, len 44	2020-10-13 00:17:28
172.104.242.173	attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-12 15:40:14
172.104.242.173	attack	TCP (SYN) 172.104.242.173:59560 -> port 666, len 44	2020-10-11 00:40:48
172.104.242.173	attack	Found on Github Combined on 3 lists / proto=6 . srcport=41755 . dstport=20 FTP . (706)	2020-10-10 16:29:39
172.104.241.110	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: li1817-110.members.linode.com.	2020-10-05 01:53:29
172.104.241.110	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: li1817-110.members.linode.com.	2020-10-04 17:36:40
172.104.242.173	attack	SIP/5060 Probe, BF, Hack -	2020-09-08 00:16:01
172.104.242.173	attackbotsspam	[Tue Aug 11 13:06:33 2020] - DDoS Attack From IP: 172.104.242.173 Port: 56229	2020-09-07 15:48:16
172.104.242.173	attackbotsspam	Multiport scan : 4 ports scanned 8332 8333 9001 9090	2020-09-07 08:10:11
172.104.242.173	attack	TCP (SYN) 172.104.242.173:40807 -> port 5900, len 40	2020-09-04 02:59:24
172.104.242.173	attackspam	TCP ports : 4400 / 5000 / 5500 / 5722	2020-09-03 18:29:54
172.104.242.173	attackspambots	TCP (SYN) 172.104.242.173:40996 -> port 3000, len 44	2020-09-01 03:48:37
172.104.242.173	attack	firewall-block, port(s): 995/tcp	2020-08-26 06:18:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.104.24.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46997
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.104.24.14.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100601 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 02:12:38 CST 2022
;; MSG SIZE  rcvd: 106

Host info

14.24.104.172.in-addr.arpa domain name pointer li1843-14.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.24.104.172.in-addr.arpa	name = li1843-14.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
40.107.77.42	spam	Used since many times by the same "Ribeiro" for SPAM, PHISHING and SCAM on STOLLEN list we don't know where without our agreement, as usual with LIERS and ROBERS !	2020-02-12 15:20:58
185.209.0.143	attackspambots	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 10000 proto: TCP cat: Attempted Information Leak	2020-02-12 15:24:47
118.100.117.178	attack	DATE:2020-02-12 05:54:50, IP:118.100.117.178, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-12 15:13:10
148.251.125.12	attack	20 attempts against mh-misbehave-ban on comet	2020-02-12 15:14:21
101.255.40.18	attackbotsspam	xmlrpc attack	2020-02-12 15:41:38
156.213.67.128	attackspambots	2020-02-1205:55:231j1k3W-00065s-Hk\<=verena@rs-solution.chH=\(localhost\)[203.104.31.27]:37766P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3319id=A8AD1B484397B90AD6D39A22D63BB737@rs-solution.chT="\;\)behappytoreceiveyourmailorspeakwithyou."forronaldsadam@gmail.comtaximule@yahoo.com2020-02-1205:55:411j1k3p-00068P-7G\<=verena@rs-solution.chH=\(localhost\)[156.213.67.128]:53761P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2868id=8A8F396A61B59B28F4F1B800F4410E79@rs-solution.chT="\;\)Iwouldbehappytoreceiveyouranswerortalkwithyou"forwayne246@gmail.combecown85@gmail.com2020-02-1205:55:331j1k3g-00066v-L3\<=verena@rs-solution.chH=mx-ll-180.183.251-159.dynamic.3bb.co.th\(localhost\)[180.183.251.159]:33620P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3190id=4E4BFDAEA5715FEC30357CC4306FB8EA@rs-solution.chT="\;\)behappytoobtainyourreply\	2020-02-12 15:37:27
183.89.214.196	attackbotsspam	2020-02-1205:55:231j1k3W-00065s-Hk\<=verena@rs-solution.chH=\(localhost\)[203.104.31.27]:37766P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3319id=A8AD1B484397B90AD6D39A22D63BB737@rs-solution.chT="\;\)behappytoreceiveyourmailorspeakwithyou."forronaldsadam@gmail.comtaximule@yahoo.com2020-02-1205:55:411j1k3p-00068P-7G\<=verena@rs-solution.chH=\(localhost\)[156.213.67.128]:53761P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2868id=8A8F396A61B59B28F4F1B800F4410E79@rs-solution.chT="\;\)Iwouldbehappytoreceiveyouranswerortalkwithyou"forwayne246@gmail.combecown85@gmail.com2020-02-1205:55:331j1k3g-00066v-L3\<=verena@rs-solution.chH=mx-ll-180.183.251-159.dynamic.3bb.co.th\(localhost\)[180.183.251.159]:33620P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3190id=4E4BFDAEA5715FEC30357CC4306FB8EA@rs-solution.chT="\;\)behappytoobtainyourreply\	2020-02-12 15:34:11
123.20.236.25	attackbots	1581483355 - 02/12/2020 05:55:55 Host: 123.20.236.25/123.20.236.25 Port: 445 TCP Blocked	2020-02-12 15:32:44
185.176.27.254	attackbots	02/12/2020-02:34:40.457620 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-12 15:36:47
90.79.154.39	attack	Feb 11 18:55:39 web1 sshd\[10246\]: Invalid user pi from 90.79.154.39 Feb 11 18:55:39 web1 sshd\[10247\]: Invalid user pi from 90.79.154.39 Feb 11 18:55:39 web1 sshd\[10246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.79.154.39 Feb 11 18:55:39 web1 sshd\[10247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.79.154.39 Feb 11 18:55:41 web1 sshd\[10246\]: Failed password for invalid user pi from 90.79.154.39 port 49348 ssh2 Feb 11 18:55:41 web1 sshd\[10247\]: Failed password for invalid user pi from 90.79.154.39 port 49346 ssh2	2020-02-12 15:41:58
165.227.84.119	attackbots	Feb 12 04:02:38 firewall sshd[29244]: Invalid user alex from 165.227.84.119 Feb 12 04:02:40 firewall sshd[29244]: Failed password for invalid user alex from 165.227.84.119 port 34346 ssh2 Feb 12 04:05:40 firewall sshd[29373]: Invalid user user from 165.227.84.119 ...	2020-02-12 15:18:57
190.122.102.166	attack	Microsoft SQL Server User Authentication Brute Force Attempt, PTR: PTR record not found	2020-02-12 14:27:18
201.178.153.57	attackbots	Automatic report - Port Scan Attack	2020-02-12 15:39:53
27.34.68.130	attackbotsspam	Lines containing failures of 27.34.68.130 Feb 12 05:57:13 home sshd[4908]: Invalid user test from 27.34.68.130 port 37609 Feb 12 05:57:13 home sshd[4908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.68.130 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.34.68.130	2020-02-12 14:28:41
180.247.39.227	attackbotsspam	1581483372 - 02/12/2020 05:56:12 Host: 180.247.39.227/180.247.39.227 Port: 445 TCP Blocked	2020-02-12 15:16:55

Recently Reported IPs

217.73.29.114	183.155.29.133	20.125.128.20	170.254.182.18
103.152.34.216	46.71.12.243	142.93.166.195	186.29.27.87
193.233.82.186	123.223.158.40	124.222.165.161	124.50.114.249
221.167.32.152	189.154.32.164	103.158.2.6	173.242.127.185
149.34.242.100	108.175.13.181	170.254.182.21	216.240.43.202