124.193.196.104

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Beijing Teletron Telecom Engineering Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 124.193.196.104 to port 1433	2020-01-01 04:33:33
attackbotsspam	Port Scan 1433	2019-11-11 07:19:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.193.196.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23015
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.193.196.104.		IN	A

;; AUTHORITY SECTION:
.			115	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111001 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 07:18:56 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 104.196.193.124.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 104.196.193.124.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
122.117.73.48	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 22:11:45,133 INFO [shellcode_manager] (122.117.73.48) no match, writing hexdump (9bc76d8f07c88cc297dad74ea22d93f9 :1884622) - MS17010 (EternalBlue)	2019-09-07 07:40:14
183.196.90.14	attackspambots	Sep 6 11:45:55 xtremcommunity sshd\[19381\]: Invalid user www-data123 from 183.196.90.14 port 46458 Sep 6 11:45:55 xtremcommunity sshd\[19381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.196.90.14 Sep 6 11:45:57 xtremcommunity sshd\[19381\]: Failed password for invalid user www-data123 from 183.196.90.14 port 46458 ssh2 Sep 6 11:51:13 xtremcommunity sshd\[19560\]: Invalid user gituser from 183.196.90.14 port 50732 Sep 6 11:51:13 xtremcommunity sshd\[19560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.196.90.14 ...	2019-09-07 06:55:40
160.238.147.18	attackspambots	Autoban 160.238.147.18 AUTH/CONNECT	2019-09-07 07:14:28
223.171.32.55	attackbotsspam	Sep 6 04:54:26 kapalua sshd\[26277\]: Invalid user test123 from 223.171.32.55 Sep 6 04:54:26 kapalua sshd\[26277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.55 Sep 6 04:54:28 kapalua sshd\[26277\]: Failed password for invalid user test123 from 223.171.32.55 port 30516 ssh2 Sep 6 04:59:22 kapalua sshd\[26792\]: Invalid user !QAZ1qaz from 223.171.32.55 Sep 6 04:59:22 kapalua sshd\[26792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.55	2019-09-07 07:19:03
106.12.99.218	attackspambots	Sep 7 00:49:43 mail sshd\[17399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.99.218 Sep 7 00:49:45 mail sshd\[17399\]: Failed password for invalid user ubuntu from 106.12.99.218 port 39510 ssh2 Sep 7 00:54:00 mail sshd\[17839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.99.218 user=mysql Sep 7 00:54:02 mail sshd\[17839\]: Failed password for mysql from 106.12.99.218 port 46360 ssh2 Sep 7 00:58:08 mail sshd\[18266\]: Invalid user butter from 106.12.99.218 port 53220	2019-09-07 07:04:33
35.202.17.165	attack	Sep 6 19:00:56 server sshd\[15861\]: Invalid user 1qaz2wsx from 35.202.17.165 port 45798 Sep 6 19:00:56 server sshd\[15861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.17.165 Sep 6 19:00:58 server sshd\[15861\]: Failed password for invalid user 1qaz2wsx from 35.202.17.165 port 45798 ssh2 Sep 6 19:04:57 server sshd\[16771\]: Invalid user proxyuser from 35.202.17.165 port 34368 Sep 6 19:04:57 server sshd\[16771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.17.165	2019-09-07 07:22:10
213.47.38.104	attackbotsspam	Sep 6 23:22:13 [host] sshd[24941]: Invalid user asam from 213.47.38.104 Sep 6 23:22:13 [host] sshd[24941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.47.38.104 Sep 6 23:22:14 [host] sshd[24941]: Failed password for invalid user asam from 213.47.38.104 port 47048 ssh2	2019-09-07 07:04:53
51.38.231.36	attack	Sep 7 01:16:47 mail sshd\[20571\]: Failed password for invalid user ts3 from 51.38.231.36 port 60514 ssh2 Sep 7 01:20:31 mail sshd\[20892\]: Invalid user vbox from 51.38.231.36 port 47584 Sep 7 01:20:31 mail sshd\[20892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.231.36 Sep 7 01:20:33 mail sshd\[20892\]: Failed password for invalid user vbox from 51.38.231.36 port 47584 ssh2 Sep 7 01:24:13 mail sshd\[21291\]: Invalid user gitlab from 51.38.231.36 port 34662 Sep 7 01:24:13 mail sshd\[21291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.231.36	2019-09-07 07:30:53
185.44.230.221	attackspambots	Unauthorized connection attempt from IP address 185.44.230.221 on Port 445(SMB)	2019-09-07 07:10:51
80.211.251.174	attack	Port Scan detected from 80.211.251.174 (PL/Poland/host174-251-211-80.static.arubacloud.pl). 4 hits in the last 85 seconds	2019-09-07 07:26:20
118.152.164.59	attackspambots	Sep 6 23:45:55 XXX sshd[42160]: Invalid user ofsaa from 118.152.164.59 port 59686	2019-09-07 06:58:48
119.196.83.22	attackbots	Tried sshing with brute force.	2019-09-07 07:35:37
222.175.183.254	attackspam	Unauthorized connection attempt from IP address 222.175.183.254 on Port 445(SMB)	2019-09-07 07:19:45
221.162.255.82	attackbots	Sep 7 00:58:43 nextcloud sshd\[1356\]: Invalid user test from 221.162.255.82 Sep 7 00:58:43 nextcloud sshd\[1356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.162.255.82 Sep 7 00:58:44 nextcloud sshd\[1356\]: Failed password for invalid user test from 221.162.255.82 port 59084 ssh2 ...	2019-09-07 07:38:22
187.188.169.123	attack	Sep 6 23:01:20 hcbbdb sshd\[13525\]: Invalid user dev from 187.188.169.123 Sep 6 23:01:20 hcbbdb sshd\[13525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-188-169-123.totalplay.net Sep 6 23:01:22 hcbbdb sshd\[13525\]: Failed password for invalid user dev from 187.188.169.123 port 58066 ssh2 Sep 6 23:06:23 hcbbdb sshd\[14065\]: Invalid user server from 187.188.169.123 Sep 6 23:06:23 hcbbdb sshd\[14065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-188-169-123.totalplay.net	2019-09-07 07:16:45

最近上报的IP列表

125.160.247.28	40.65.191.139	111.35.162.81	14.173.192.205
176.31.32.121	173.182.113.95	24.48.174.43	178.90.64.91
103.92.24.36	123.23.170.168	46.122.86.187	46.122.3.86
59.47.122.105	201.146.13.90	193.106.237.10	123.23.55.241
183.80.167.83	83.242.100.112	194.15.36.177	80.230.230.131