39.109.105.245

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.109.105.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;39.109.105.245.			IN	A

;; AUTHORITY SECTION:
.			389	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011402 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 15 12:28:58 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 245.105.109.39.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.105.109.39.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.129.227.28	attack	" "	2019-07-16 11:37:01
132.232.102.60	attackbots	Jul 16 04:43:20 h2177944 sshd\[30411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.102.60 user=root Jul 16 04:43:22 h2177944 sshd\[30411\]: Failed password for root from 132.232.102.60 port 51824 ssh2 Jul 16 04:48:44 h2177944 sshd\[30570\]: Invalid user design from 132.232.102.60 port 46206 Jul 16 04:48:44 h2177944 sshd\[30570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.102.60 ...	2019-07-16 11:43:18
46.152.140.122	attack	2019-07-16T03:17:09.079695abusebot-5.cloudsearch.cf sshd\[27847\]: Invalid user hb from 46.152.140.122 port 37528	2019-07-16 11:20:08
111.198.158.100	attackspambots	Web application attack detected by fail2ban	2019-07-16 11:16:00
185.176.27.18	attack	16.07.2019 02:39:04 Connection to port 48101 blocked by firewall	2019-07-16 11:08:27
185.234.216.105	attackspam	Jul 15 21:38:33 web1 postfix/smtpd[17166]: warning: unknown[185.234.216.105]: SASL LOGIN authentication failed: authentication failure ...	2019-07-16 11:38:58
61.230.116.128	attack	Automatic report - Port Scan Attack	2019-07-16 11:30:03
122.58.175.31	attackbotsspam	Jul 16 02:20:31 thevastnessof sshd[12133]: Failed password for invalid user appuser from 122.58.175.31 port 42178 ssh2 ...	2019-07-16 11:40:14
54.38.192.96	attackspam	Jul 16 05:05:49 SilenceServices sshd[29493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.192.96 Jul 16 05:05:51 SilenceServices sshd[29493]: Failed password for invalid user web2 from 54.38.192.96 port 39668 ssh2 Jul 16 05:10:27 SilenceServices sshd[32420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.192.96	2019-07-16 11:16:34
119.29.235.163	attackbots	[Tue Jul 16 08:39:33.289808 2019] [:error] [pid 24230:tid 140560415475456] [client 119.29.235.163:27943] [client 119.29.235.163] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/App.php"] [unique_id "XS0q1U1chlI@TrV6TFb6kQAAAMQ"] ...	2019-07-16 11:12:35
129.204.91.238	attackspam	port scan and connect, tcp 80 (http)	2019-07-16 11:37:18
207.154.239.128	attackspam	Jul 16 08:18:07 vibhu-HP-Z238-Microtower-Workstation sshd\[24835\]: Invalid user rabbitmq from 207.154.239.128 Jul 16 08:18:07 vibhu-HP-Z238-Microtower-Workstation sshd\[24835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.239.128 Jul 16 08:18:09 vibhu-HP-Z238-Microtower-Workstation sshd\[24835\]: Failed password for invalid user rabbitmq from 207.154.239.128 port 44122 ssh2 Jul 16 08:22:46 vibhu-HP-Z238-Microtower-Workstation sshd\[25729\]: Invalid user samba from 207.154.239.128 Jul 16 08:22:46 vibhu-HP-Z238-Microtower-Workstation sshd\[25729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.239.128 ...	2019-07-16 11:02:41
185.153.198.204	attack	Restricted File Access Attempt Matched phrase "/.git/" at REQUEST_FILENAME.	2019-07-16 11:09:00
213.55.224.237	attackspam	Path Traversal Attack (/../) Pattern match "(?i)(?:\\x5c\|(?:%(?:c(?:0%(?:[2aq]f\|5c\|9v)\|1%(?:[19p]c\|8s\|af))\|2(?:5(?:c(?:0%25af\|1%259c)\|2f\|5c)\|%46\|f)\|(?:(?:f(?:8%8)?0%8\|e)0%80%a\|bg%q)f\|%3(?:2(?:%(?:%6\|4)6\|F)\|5%%63)\|u(?:221[56]\|002f\|EFC8\|F025)\|1u\|5c)\|0x(?:2f\|5c)\|\\/))(?:%(?:(?:f(?:(?:c%80\|8)%8)?0%8 ..." at REQUEST_URI_RAW.	2019-07-16 11:02:07
222.186.15.217	attackspambots	19/7/15@22:57:21: FAIL: IoT-SSH address from=222.186.15.217 ...	2019-07-16 11:33:52

Recently Reported IPs

225.177.202.70	30.212.135.249	158.167.89.43	70.23.223.249
191.12.134.201	107.24.245.36	77.26.188.147	9.38.14.113
128.121.221.20	160.199.220.78	112.78.2.48	244.0.43.233
227.82.99.242	8.93.152.75	14.205.109.182	12.99.4.80
222.113.91.214	197.194.106.23	75.107.231.63	191.45.171.215