124.193.196.104

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Teletron Telecom Engineering Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 124.193.196.104 to port 1433	2020-01-01 04:33:33
attackbotsspam	Port Scan 1433	2019-11-11 07:19:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.193.196.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23015
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.193.196.104.		IN	A

;; AUTHORITY SECTION:
.			115	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111001 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 07:18:56 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 104.196.193.124.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 104.196.193.124.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
222.186.175.182	attackbotsspam	Mar 12 04:08:39 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:43 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:47 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:47 bacztwo sshd[29848]: Failed keyboard-interactive/pam for root from 222.186.175.182 port 50944 ssh2 Mar 12 04:08:36 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:39 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:43 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:47 bacztwo sshd[29848]: error: PAM: Authentication failure for root from 222.186.175.182 Mar 12 04:08:47 bacztwo sshd[29848]: Failed keyboard-interactive/pam for root from 222.186.175.182 port 50944 ssh2 Mar 12 04:08:50 bacztwo sshd[29848]: error: PAM: Authent ...	2020-03-12 04:19:03
45.249.171.63	attackbotsspam	1583954310 - 03/11/2020 20:18:30 Host: 45.249.171.63/45.249.171.63 Port: 445 TCP Blocked	2020-03-12 04:18:00
159.89.165.99	attackbots	Mar 11 21:14:38 lukav-desktop sshd\[3191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.99 user=root Mar 11 21:14:41 lukav-desktop sshd\[3191\]: Failed password for root from 159.89.165.99 port 13046 ssh2 Mar 11 21:18:47 lukav-desktop sshd\[3262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.99 user=root Mar 11 21:18:49 lukav-desktop sshd\[3262\]: Failed password for root from 159.89.165.99 port 12355 ssh2 Mar 11 21:22:49 lukav-desktop sshd\[3306\]: Invalid user isl from 159.89.165.99	2020-03-12 04:14:48
111.206.221.10	attackbotsspam	suspicious action Wed, 11 Mar 2020 16:18:39 -0300	2020-03-12 04:12:31
5.89.35.84	attack	2020-03-11T19:27:42.778154abusebot-8.cloudsearch.cf sshd[5832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-5-89-35-84.cust.vodafonedsl.it user=root 2020-03-11T19:27:44.447487abusebot-8.cloudsearch.cf sshd[5832]: Failed password for root from 5.89.35.84 port 36980 ssh2 2020-03-11T19:30:48.408047abusebot-8.cloudsearch.cf sshd[6117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-5-89-35-84.cust.vodafonedsl.it user=root 2020-03-11T19:30:50.279975abusebot-8.cloudsearch.cf sshd[6117]: Failed password for root from 5.89.35.84 port 40020 ssh2 2020-03-11T19:34:21.645822abusebot-8.cloudsearch.cf sshd[6304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=net-5-89-35-84.cust.vodafonedsl.it user=daemon 2020-03-11T19:34:23.424433abusebot-8.cloudsearch.cf sshd[6304]: Failed password for daemon from 5.89.35.84 port 43064 ssh2 2020-03-11T19:37:22.624419abusebot-8.cl ...	2020-03-12 04:20:46
106.12.58.4	attackspambots	$f2bV_matches	2020-03-12 04:14:00
158.46.187.181	attackbotsspam	Chat Spam	2020-03-12 04:42:47
111.229.57.138	attack	Mar 11 21:18:32 vpn01 sshd[25777]: Failed password for root from 111.229.57.138 port 43870 ssh2 Mar 11 21:22:30 vpn01 sshd[25863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.57.138 ...	2020-03-12 04:39:47
45.125.65.35	attackbotsspam	Mar 11 21:29:41 relay postfix/smtpd\[9277\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 11 21:32:35 relay postfix/smtpd\[10277\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 11 21:32:40 relay postfix/smtpd\[6454\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 11 21:36:31 relay postfix/smtpd\[7144\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 11 21:43:13 relay postfix/smtpd\[2534\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-12 04:47:24
185.175.93.34	attackbots	03/11/2020-16:27:17.705356 185.175.93.34 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-03-12 04:32:59
210.212.29.215	attackbots	Mar 11 21:40:22 sd-53420 sshd\[8139\]: User root from 210.212.29.215 not allowed because none of user's groups are listed in AllowGroups Mar 11 21:40:22 sd-53420 sshd\[8139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.212.29.215 user=root Mar 11 21:40:25 sd-53420 sshd\[8139\]: Failed password for invalid user root from 210.212.29.215 port 35794 ssh2 Mar 11 21:45:00 sd-53420 sshd\[8622\]: User root from 210.212.29.215 not allowed because none of user's groups are listed in AllowGroups Mar 11 21:45:00 sd-53420 sshd\[8622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.212.29.215 user=root ...	2020-03-12 04:51:28
197.41.135.195	attack	suspicious action Wed, 11 Mar 2020 16:17:42 -0300	2020-03-12 04:49:33
199.255.159.254	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-03-12 04:44:40
176.103.52.148	attackbots	Mar 11 21:04:54 vps691689 sshd[30630]: Failed password for root from 176.103.52.148 port 49854 ssh2 Mar 11 21:09:10 vps691689 sshd[30755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.103.52.148 ...	2020-03-12 04:24:00
186.207.180.25	attackspambots	(sshd) Failed SSH login from 186.207.180.25 (BR/Brazil/bacfb419.virtua.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 11 21:06:19 amsweb01 sshd[3140]: Invalid user msfish-hunter from 186.207.180.25 port 33708 Mar 11 21:06:21 amsweb01 sshd[3140]: Failed password for invalid user msfish-hunter from 186.207.180.25 port 33708 ssh2 Mar 11 21:11:19 amsweb01 sshd[3649]: Invalid user msfish-hunter from 186.207.180.25 port 48052 Mar 11 21:11:20 amsweb01 sshd[3649]: Failed password for invalid user msfish-hunter from 186.207.180.25 port 48052 ssh2 Mar 11 21:15:47 amsweb01 sshd[4097]: Invalid user msfish-hunter from 186.207.180.25 port 33146	2020-03-12 04:35:52

最近上报的IP列表

125.160.247.28	40.65.191.139	111.35.162.81	14.173.192.205
176.31.32.121	173.182.113.95	24.48.174.43	178.90.64.91
103.92.24.36	123.23.170.168	46.122.86.187	46.122.3.86
59.47.122.105	201.146.13.90	193.106.237.10	123.23.55.241
183.80.167.83	83.242.100.112	194.15.36.177	80.230.230.131