39.104.114.109

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Aliyun Computing Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-06 15:31:58

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.104.114.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9859
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.104.114.109.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 15:31:49 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 109.114.104.39.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 109.114.104.39.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.46.83.100	attackspam	Unauthorized connection attempt from IP address 41.46.83.100 on Port 445(SMB)	2019-11-10 23:55:39
62.210.31.99	attackbots	Nov 8 05:15:36 nbi-636 sshd[6606]: User r.r from 62.210.31.99 not allowed because not listed in AllowUsers Nov 8 05:15:36 nbi-636 sshd[6606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.31.99 user=r.r Nov 8 05:15:38 nbi-636 sshd[6606]: Failed password for invalid user r.r from 62.210.31.99 port 51026 ssh2 Nov 8 05:15:38 nbi-636 sshd[6606]: Received disconnect from 62.210.31.99 port 51026:11: Bye Bye [preauth] Nov 8 05:15:38 nbi-636 sshd[6606]: Disconnected from 62.210.31.99 port 51026 [preauth] Nov 8 05:27:53 nbi-636 sshd[9281]: Invalid user traxdata from 62.210.31.99 port 51306 Nov 8 05:27:55 nbi-636 sshd[9281]: Failed password for invalid user traxdata from 62.210.31.99 port 51306 ssh2 Nov 8 05:27:55 nbi-636 sshd[9281]: Received disconnect from 62.210.31.99 port 51306:11: Bye Bye [preauth] Nov 8 05:27:55 nbi-636 sshd[9281]: Disconnected from 62.210.31.99 port 51306 [preauth] Nov 8 05:31:14 nbi-636 sshd[9862........ -------------------------------	2019-11-11 00:23:38
51.83.42.244	attack	ssh failed login	2019-11-11 00:21:18
106.53.19.186	attackspambots	Nov 10 06:02:34 php1 sshd\[7432\]: Invalid user saini from 106.53.19.186 Nov 10 06:02:34 php1 sshd\[7432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.19.186 Nov 10 06:02:36 php1 sshd\[7432\]: Failed password for invalid user saini from 106.53.19.186 port 36934 ssh2 Nov 10 06:06:26 php1 sshd\[7961\]: Invalid user netdump from 106.53.19.186 Nov 10 06:06:26 php1 sshd\[7961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.19.186	2019-11-11 00:12:59
185.156.73.49	attack	firewall-block, port(s): 29139/tcp	2019-11-11 00:33:59
178.128.154.236	attackspam	#Join The Rebellion WebMasters: deny from DigitalOcean.com	2019-11-11 00:24:06
64.91.244.152	attack	Nov 10 15:36:53 srv-ubuntu-dev3 sshd[34846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.91.244.152 user=root Nov 10 15:36:55 srv-ubuntu-dev3 sshd[34846]: Failed password for root from 64.91.244.152 port 46038 ssh2 Nov 10 15:39:54 srv-ubuntu-dev3 sshd[35228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.91.244.152 user=root Nov 10 15:39:56 srv-ubuntu-dev3 sshd[35228]: Failed password for root from 64.91.244.152 port 49630 ssh2 Nov 10 15:42:57 srv-ubuntu-dev3 sshd[35477]: Invalid user webmin from 64.91.244.152 Nov 10 15:42:57 srv-ubuntu-dev3 sshd[35477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.91.244.152 Nov 10 15:42:57 srv-ubuntu-dev3 sshd[35477]: Invalid user webmin from 64.91.244.152 Nov 10 15:42:59 srv-ubuntu-dev3 sshd[35477]: Failed password for invalid user webmin from 64.91.244.152 port 53238 ssh2 Nov 10 15:45:53 srv-ubuntu-dev3 sshd[35 ...	2019-11-11 00:10:36
2.137.102.27	attackspam	ssh failed login	2019-11-11 00:23:52
183.88.219.84	attack	Nov 10 16:29:26 vmanager6029 sshd\[31465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.219.84 user=root Nov 10 16:29:29 vmanager6029 sshd\[31465\]: Failed password for root from 183.88.219.84 port 48472 ssh2 Nov 10 16:33:53 vmanager6029 sshd\[31573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.219.84 user=root	2019-11-10 23:56:19
222.186.180.17	attack	Nov 10 17:20:49 SilenceServices sshd[22818]: Failed password for root from 222.186.180.17 port 6268 ssh2 Nov 10 17:21:02 SilenceServices sshd[22818]: Failed password for root from 222.186.180.17 port 6268 ssh2 Nov 10 17:21:02 SilenceServices sshd[22818]: error: maximum authentication attempts exceeded for root from 222.186.180.17 port 6268 ssh2 [preauth]	2019-11-11 00:26:07
81.22.45.65	attack	Nov 10 16:41:10 mc1 kernel: \[4686755.244527\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=1624 PROTO=TCP SPT=50058 DPT=57373 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 16:47:17 mc1 kernel: \[4687122.952956\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=3500 PROTO=TCP SPT=50058 DPT=57241 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 16:47:29 mc1 kernel: \[4687134.498313\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=14478 PROTO=TCP SPT=50058 DPT=56932 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-10 23:56:47
67.85.105.1	attackspambots	Nov 10 21:36:30 vibhu-HP-Z238-Microtower-Workstation sshd\[27899\]: Invalid user tkayano from 67.85.105.1 Nov 10 21:36:30 vibhu-HP-Z238-Microtower-Workstation sshd\[27899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.85.105.1 Nov 10 21:36:33 vibhu-HP-Z238-Microtower-Workstation sshd\[27899\]: Failed password for invalid user tkayano from 67.85.105.1 port 41632 ssh2 Nov 10 21:40:14 vibhu-HP-Z238-Microtower-Workstation sshd\[28224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.85.105.1 user=root Nov 10 21:40:17 vibhu-HP-Z238-Microtower-Workstation sshd\[28224\]: Failed password for root from 67.85.105.1 port 50742 ssh2 ...	2019-11-11 00:29:41
182.61.170.213	attackbots	Nov 10 17:06:06 legacy sshd[32370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.170.213 Nov 10 17:06:08 legacy sshd[32370]: Failed password for invalid user derieck from 182.61.170.213 port 58606 ssh2 Nov 10 17:10:35 legacy sshd[32564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.170.213 ...	2019-11-11 00:17:19
196.219.95.132	attackspambots	Unauthorized connection attempt from IP address 196.219.95.132 on Port 445(SMB)	2019-11-11 00:08:24
172.104.94.137	attack	172.104.94.137 was recorded 5 times by 3 hosts attempting to connect to the following ports: 443. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-11 00:31:20

Recently Reported IPs

1.9.178.221	59.89.133.128	199.106.186.195	175.146.239.251
81.218.156.223	134.34.209.192	36.237.196.70	70.169.114.180
212.156.58.34	113.105.129.35	151.32.211.22	79.85.2.163
92.27.180.227	139.59.183.51	112.81.85.75	193.112.4.36
90.174.250.19	98.11.46.52	109.91.32.59	85.247.157.148