124.104.13.105

基本信息:

城市(city): Alasas

省份(region): Central Luzon

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jun 21 23:58:47 debian-2gb-nbg1-2 kernel: \[15035405.137265\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=124.104.13.105 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=58420 PROTO=TCP SPT=46658 DPT=23 WINDOW=44378 RES=0x00 SYN URGP=0	2020-06-22 06:30:18

类型

评论内容

时间

attackbots

Jun 21 23:58:47 debian-2gb-nbg1-2 kernel: \[15035405.137265\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=124.104.13.105 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=58420 PROTO=TCP SPT=46658 DPT=23 WINDOW=44378 RES=0x00 SYN URGP=0

2020-06-22 06:30:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.104.13.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15628
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.104.13.105.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062101 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 06:30:15 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

105.13.104.124.in-addr.arpa domain name pointer 124.104.13.105.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
105.13.104.124.in-addr.arpa	name = 124.104.13.105.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
89.248.174.215	attackspam	10/04/2019-09:51:36.461213 89.248.174.215 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 98	2019-10-04 23:15:35
183.146.209.68	attackspam	ssh failed login	2019-10-04 23:21:05
198.108.67.53	attack	9306/tcp 2022/tcp 88/tcp... [2019-08-03/10-02]118pkt,113pt.(tcp)	2019-10-04 23:30:17
193.32.163.72	attackbotsspam	800/tcp 700/tcp 70/tcp... [2019-09-05/10-04]465pkt,110pt.(tcp)	2019-10-04 23:19:13
134.209.12.162	attackbots	2019-10-04T18:09:43.404709tmaserv sshd\[26373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.12.162 user=root 2019-10-04T18:09:45.855972tmaserv sshd\[26373\]: Failed password for root from 134.209.12.162 port 37570 ssh2 2019-10-04T18:13:39.426686tmaserv sshd\[26573\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.12.162 user=root 2019-10-04T18:13:41.275968tmaserv sshd\[26573\]: Failed password for root from 134.209.12.162 port 48730 ssh2 2019-10-04T18:17:37.611361tmaserv sshd\[26960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.12.162 user=root 2019-10-04T18:17:39.133967tmaserv sshd\[26960\]: Failed password for root from 134.209.12.162 port 59894 ssh2 ...	2019-10-04 23:33:29
103.225.99.36	attackspam	SSH invalid-user multiple login try	2019-10-04 23:30:30
200.111.137.132	attackbotsspam	Oct 4 10:43:23 ny01 sshd[3219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132 Oct 4 10:43:25 ny01 sshd[3219]: Failed password for invalid user @#$werSDF from 200.111.137.132 port 33134 ssh2 Oct 4 10:51:25 ny01 sshd[4492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132	2019-10-04 23:36:52
222.186.190.92	attackspambots	Oct 4 17:01:40 MK-Soft-Root1 sshd[6563]: Failed password for root from 222.186.190.92 port 48644 ssh2 Oct 4 17:01:45 MK-Soft-Root1 sshd[6563]: Failed password for root from 222.186.190.92 port 48644 ssh2 ...	2019-10-04 23:13:15
85.113.15.106	attack	Automatic report - Port Scan Attack	2019-10-04 23:10:45
51.68.215.199	attackbots	fail2ban honeypot	2019-10-04 23:30:47
94.158.83.181	attack	Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-04 23:11:26
64.202.187.48	attackbots	Oct 4 04:09:30 friendsofhawaii sshd\[25196\]: Invalid user Electric2017 from 64.202.187.48 Oct 4 04:09:30 friendsofhawaii sshd\[25196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.202.187.48 Oct 4 04:09:31 friendsofhawaii sshd\[25196\]: Failed password for invalid user Electric2017 from 64.202.187.48 port 40842 ssh2 Oct 4 04:13:50 friendsofhawaii sshd\[25535\]: Invalid user Holiday@2017 from 64.202.187.48 Oct 4 04:13:50 friendsofhawaii sshd\[25535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.202.187.48	2019-10-04 23:34:17
45.227.194.14	attack	Oct 4 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 5 secs$: user=\<REMOVED.dekks@REMOVED.de\>, method=PLAIN, rip=45.227.194.14, lip=REMOVED, TLS: Disconnected, session=\ Oct 4 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=45.227.194.14, lip=REMOVED, TLS: Disconnected, session=\ Oct 4 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 5 secs$: user=\, method=PLAIN, rip=45.227.194.14, lip=REMOVED, TLS, session=\<7980zRSUCr4t48IO\>	2019-10-04 23:46:53
218.69.16.26	attack	Oct 4 17:31:55 MK-Soft-VM3 sshd[2293]: Failed password for root from 218.69.16.26 port 45935 ssh2 ...	2019-10-04 23:48:06
77.42.115.135	attack	Automatic report - Port Scan Attack	2019-10-04 23:29:11

最近上报的IP列表

188.234.232.147	172.63.135.116	76.200.67.14	94.123.38.203
79.191.120.166	92.112.46.236	174.241.228.83	108.189.66.154
69.6.95.212	85.105.196.83	44.251.3.234	121.74.215.193
79.107.117.176	102.118.202.166	187.166.176.85	71.107.224.44
77.234.226.247	27.74.246.225	146.101.68.123	197.173.0.158