39.105.20.104 - IPInfo

Basic Info

City: Hangzhou

Region: Zhejiang

Country: China

Internet Service Provider: Aliyun Computing Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	LAV,DEF GET /phpmyadmin/index.php	2019-10-04 03:23:37

Comments on same subnet:

IP	Type	Details	Datetime
39.105.200.55	attack	SSH login attempts.	2020-03-19 13:36:41
39.105.208.39	attack	Dec 17 12:47:04 host sshd\[8950\]: Invalid user andrew from 39.105.208.39Dec 17 12:53:46 host sshd\[12316\]: Invalid user user from 39.105.208.39Dec 17 13:00:24 host sshd\[15833\]: Invalid user user1 from 39.105.208.39 ...	2019-12-18 02:20:52
39.105.208.39	attack	Dec 15 05:53:58 host sshd\[7166\]: Invalid user bot from 39.105.208.39Dec 15 06:01:07 host sshd\[10534\]: Invalid user ta from 39.105.208.39Dec 15 06:08:13 host sshd\[14359\]: Invalid user debian-exim from 39.105.208.39 ...	2019-12-15 19:58:21
39.105.208.39	attackbots	Dec 12 23:35:59 host sshd\[9775\]: Invalid user alex from 39.105.208.39Dec 12 23:42:48 host sshd\[12851\]: Invalid user laozhao from 39.105.208.39Dec 12 23:56:19 host sshd\[19935\]: Invalid user statd from 39.105.208.39 ...	2019-12-13 13:05:32
39.105.208.39	attackbotsspam	Dec 11 23:35:39 host sshd\[14497\]: Invalid user test2 from 39.105.208.39Dec 11 23:42:18 host sshd\[17823\]: Invalid user guest from 39.105.208.39Dec 11 23:55:47 host sshd\[23416\]: Invalid user cinstall from 39.105.208.39 ...	2019-12-12 13:28:58
39.105.208.39	attackspambots	2019-12-07T02:52:39.4192851495-001 sshd\[49020\]: Invalid user pruebac from 39.105.208.39 port 41530 2019-12-07T02:52:39.4285681495-001 sshd\[49020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.105.208.39 2019-12-07T02:52:40.6946641495-001 sshd\[49019\]: Invalid user pruebac from 39.105.208.39 port 60014 2019-12-07T02:52:40.6979541495-001 sshd\[49019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.105.208.39 2019-12-07T02:52:41.5530631495-001 sshd\[49020\]: Failed password for invalid user pruebac from 39.105.208.39 port 41530 ssh2 2019-12-07T02:52:42.9624521495-001 sshd\[49019\]: Failed password for invalid user pruebac from 39.105.208.39 port 60014 ssh2 ...	2019-12-07 16:15:01
39.105.208.39	attack	2019-12-05T05:34:59.2901481495-001 sshd\[32008\]: Invalid user brian from 39.105.208.39 port 55572 2019-12-05T05:34:59.2949501495-001 sshd\[32008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.105.208.39 2019-12-05T05:35:00.1408981495-001 sshd\[32006\]: Invalid user brian from 39.105.208.39 port 45822 2019-12-05T05:35:00.1439931495-001 sshd\[32006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.105.208.39 2019-12-05T05:35:01.1228091495-001 sshd\[32008\]: Failed password for invalid user brian from 39.105.208.39 port 55572 ssh2 2019-12-05T05:35:02.4433931495-001 sshd\[32006\]: Failed password for invalid user brian from 39.105.208.39 port 45822 ssh2 ...	2019-12-05 19:19:59
39.105.208.39	attackbotsspam	2019-12-03T16:24:54.889585tmaserv sshd\[10662\]: Invalid user barra from 39.105.208.39 port 51310 2019-12-03T16:24:54.896585tmaserv sshd\[10662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.105.208.39 2019-12-03T16:24:56.773884tmaserv sshd\[10662\]: Failed password for invalid user barra from 39.105.208.39 port 51310 ssh2 2019-12-03T16:28:15.909566tmaserv sshd\[10850\]: Invalid user user2 from 39.105.208.39 port 41456 2019-12-03T16:28:15.915725tmaserv sshd\[10850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.105.208.39 2019-12-03T16:28:17.385745tmaserv sshd\[10850\]: Failed password for invalid user user2 from 39.105.208.39 port 41456 ssh2 ...	2019-12-03 22:37:55
39.105.208.39	attackspam	Jul 28 06:25:51 shadeyouvpn sshd[26559]: Did not receive identification string from 39.105.208.39 Jul 28 06:28:41 shadeyouvpn sshd[29389]: Did not receive identification string from 39.105.208.39 Jul 28 06:28:42 shadeyouvpn sshd[29397]: Did not receive identification string from 39.105.208.39 Jul 28 06:39:36 shadeyouvpn sshd[3643]: Did not receive identification string from 39.105.208.39 Jul 28 06:42:27 shadeyouvpn sshd[6724]: Did not receive identification string from 39.105.208.39 Jul 28 06:42:28 shadeyouvpn sshd[6767]: Did not receive identification string from 39.105.208.39 Jul 28 06:53:18 shadeyouvpn sshd[14107]: Did not receive identification string from 39.105.208.39 Jul 28 06:56:09 shadeyouvpn sshd[16728]: Did not receive identification string from 39.105.208.39 Jul 28 07:09:52 shadeyouvpn sshd[26276]: Did not receive identificat .... truncated .... ive identification string from 39.105.208.39 Jul 28 14:27:11 shadeyouvpn sshd[2040]: Did not receive identificati........ -------------------------------	2019-08-01 21:51:10
39.105.208.39	attackbots	Jul 28 06:25:51 shadeyouvpn sshd[26559]: Did not receive identification string from 39.105.208.39 Jul 28 06:28:41 shadeyouvpn sshd[29389]: Did not receive identification string from 39.105.208.39 Jul 28 06:28:42 shadeyouvpn sshd[29397]: Did not receive identification string from 39.105.208.39 Jul 28 06:39:36 shadeyouvpn sshd[3643]: Did not receive identification string from 39.105.208.39 Jul 28 06:42:27 shadeyouvpn sshd[6724]: Did not receive identification string from 39.105.208.39 Jul 28 06:42:28 shadeyouvpn sshd[6767]: Did not receive identification string from 39.105.208.39 Jul 28 06:53:18 shadeyouvpn sshd[14107]: Did not receive identification string from 39.105.208.39 Jul 28 06:56:09 shadeyouvpn sshd[16728]: Did not receive identification string from 39.105.208.39 Jul 28 07:09:52 shadeyouvpn sshd[26276]: Did not receive identificat .... truncated .... ive identification string from 39.105.208.39 Jul 28 14:27:11 shadeyouvpn sshd[2040]: Did not receive identificati........ -------------------------------	2019-08-01 16:58:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.105.20.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8202
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.105.20.104.			IN	A

;; AUTHORITY SECTION:
.			304	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100301 1800 900 604800 86400

;; Query time: 177 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 04 03:23:32 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 104.20.105.39.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.20.105.39.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
209.126.119.176	attackspambots	SSH login attempts.	2020-06-19 18:50:59
40.101.80.18	attack	SSH login attempts.	2020-06-19 18:50:21
43.250.105.65	attackbots	Jun 19 09:24:55 sigma sshd\[2233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.250.105.65 user=rootJun 19 09:39:37 sigma sshd\[2441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.250.105.65 ...	2020-06-19 18:55:48
213.209.1.129	attackspambots	SSH login attempts.	2020-06-19 18:56:41
54.225.66.103	attackspambots	SSH login attempts.	2020-06-19 19:15:45
23.95.238.120	attackspambots	Jun 19 08:11:52 sso sshd[23566]: Failed password for root from 23.95.238.120 port 56976 ssh2 ...	2020-06-19 19:23:06
213.92.204.141	attackbots	(PL/Poland/-) SMTP Bruteforcing attempts	2020-06-19 18:54:12
103.133.114.18	attackspam	Jun 19 05:53:19 10.23.102.230 wordpress(blog.ruhnke.cloud)[94916]: Blocked authentication attempt for admin from 103.133.114.18 ...	2020-06-19 19:02:46
220.130.78.183	attackbotsspam	SSH login attempts.	2020-06-19 19:07:12
192.254.189.17	attack	SSH login attempts.	2020-06-19 19:02:03
24.220.134.245	attack	SSH login attempts.	2020-06-19 18:56:16
45.141.84.30	attackspambots	Jun 19 13:15:53 debian-2gb-nbg1-2 kernel: \[14824042.685168\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.141.84.30 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=24645 PROTO=TCP SPT=50749 DPT=1063 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-19 19:21:20
51.79.149.123	attackspambots	UDP 51.79.149.123:27015 -> port 45394, len 201	2020-06-19 18:47:23
222.186.42.7	attackbotsspam	Jun 19 07:20:47 NPSTNNYC01T sshd[24166]: Failed password for root from 222.186.42.7 port 63367 ssh2 Jun 19 07:20:56 NPSTNNYC01T sshd[24188]: Failed password for root from 222.186.42.7 port 38379 ssh2 ...	2020-06-19 19:23:38
104.16.120.50	attackspambots	SSH login attempts.	2020-06-19 19:02:30

Recently Reported IPs

1.190.131.54	66.236.174.201	112.93.152.148	1.28.3.195
68.34.78.74	162.21.122.255	213.102.58.131	134.193.237.11
124.82.81.11	96.90.80.32	191.236.152.88	124.51.25.127
114.187.73.231	98.99.134.138	59.53.233.12	100.150.139.171
61.102.12.227	101.179.127.206	61.199.114.111	115.205.218.207