113.104.24.80 - IPInfo

Basic Info

City: unknown

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: No.31,Jin-rong Street

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
113.104.243.205	attack	SSH login attempts brute force.	2020-10-08 06:03:06
113.104.243.205	attackspam	Oct 7 00:25:20 onepixel sshd[1115392]: Invalid user qweasd123 from 113.104.243.205 port 14905 Oct 7 00:25:20 onepixel sshd[1115392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.243.205 Oct 7 00:25:20 onepixel sshd[1115392]: Invalid user qweasd123 from 113.104.243.205 port 14905 Oct 7 00:25:22 onepixel sshd[1115392]: Failed password for invalid user qweasd123 from 113.104.243.205 port 14905 ssh2 Oct 7 00:31:50 onepixel sshd[1116396]: Invalid user 0123456789 from 113.104.243.205 port 14980	2020-10-07 14:22:40
113.104.243.15	attack	Sep 8 06:09:41 v11 sshd[14078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.243.15 user=r.r Sep 8 06:09:42 v11 sshd[14078]: Failed password for r.r from 113.104.243.15 port 9004 ssh2 Sep 8 06:09:42 v11 sshd[14078]: Received disconnect from 113.104.243.15 port 9004:11: Bye Bye [preauth] Sep 8 06:09:42 v11 sshd[14078]: Disconnected from 113.104.243.15 port 9004 [preauth] Sep 8 06:11:15 v11 sshd[14202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.243.15 user=r.r Sep 8 06:11:17 v11 sshd[14202]: Failed password for r.r from 113.104.243.15 port 7822 ssh2 Sep 8 06:11:18 v11 sshd[14202]: Received disconnect from 113.104.243.15 port 7822:11: Bye Bye [preauth] Sep 8 06:11:18 v11 sshd[14202]: Disconnected from 113.104.243.15 port 7822 [preauth] Sep 8 06:12:53 v11 sshd[14774]: Invalid user qwe from 113.104.243.15 port 7427 Sep 8 06:12:53 v11 sshd[14774]: pam_unix(sshd........ -------------------------------	2020-09-10 01:27:23
113.104.242.151	attackspam	Aug 31 00:35:58 josie sshd[15614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 user=r.r Aug 31 00:36:00 josie sshd[15614]: Failed password for r.r from 113.104.242.151 port 10736 ssh2 Aug 31 00:36:01 josie sshd[15615]: Received disconnect from 113.104.242.151: 11: Bye Bye Aug 31 00:38:53 josie sshd[16444]: Invalid user ela from 113.104.242.151 Aug 31 00:38:53 josie sshd[16444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 Aug 31 00:38:55 josie sshd[16444]: Failed password for invalid user ela from 113.104.242.151 port 10386 ssh2 Aug 31 00:38:55 josie sshd[16446]: Received disconnect from 113.104.242.151: 11: Bye Bye Aug 31 00:43:40 josie sshd[17313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 user=r.r Aug 31 00:43:42 josie sshd[17313]: Failed password for r.r from 113.104.242.151 port 12079........ -------------------------------	2020-09-06 23:17:17
113.104.242.151	attack	Aug 31 00:35:58 josie sshd[15614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 user=r.r Aug 31 00:36:00 josie sshd[15614]: Failed password for r.r from 113.104.242.151 port 10736 ssh2 Aug 31 00:36:01 josie sshd[15615]: Received disconnect from 113.104.242.151: 11: Bye Bye Aug 31 00:38:53 josie sshd[16444]: Invalid user ela from 113.104.242.151 Aug 31 00:38:53 josie sshd[16444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 Aug 31 00:38:55 josie sshd[16444]: Failed password for invalid user ela from 113.104.242.151 port 10386 ssh2 Aug 31 00:38:55 josie sshd[16446]: Received disconnect from 113.104.242.151: 11: Bye Bye Aug 31 00:43:40 josie sshd[17313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 user=r.r Aug 31 00:43:42 josie sshd[17313]: Failed password for r.r from 113.104.242.151 port 12079........ -------------------------------	2020-09-06 14:46:55
113.104.242.151	attack	Aug 31 00:35:58 josie sshd[15614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 user=r.r Aug 31 00:36:00 josie sshd[15614]: Failed password for r.r from 113.104.242.151 port 10736 ssh2 Aug 31 00:36:01 josie sshd[15615]: Received disconnect from 113.104.242.151: 11: Bye Bye Aug 31 00:38:53 josie sshd[16444]: Invalid user ela from 113.104.242.151 Aug 31 00:38:53 josie sshd[16444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 Aug 31 00:38:55 josie sshd[16444]: Failed password for invalid user ela from 113.104.242.151 port 10386 ssh2 Aug 31 00:38:55 josie sshd[16446]: Received disconnect from 113.104.242.151: 11: Bye Bye Aug 31 00:43:40 josie sshd[17313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.151 user=r.r Aug 31 00:43:42 josie sshd[17313]: Failed password for r.r from 113.104.242.151 port 12079........ -------------------------------	2020-09-06 06:52:58
113.104.240.154	attackbotsspam	Aug 4 02:45:33 ny01 sshd[1949]: Failed password for root from 113.104.240.154 port 28960 ssh2 Aug 4 02:49:12 ny01 sshd[2380]: Failed password for root from 113.104.240.154 port 29213 ssh2	2020-08-04 15:22:07
113.104.240.154	attack	$f2bV_matches	2020-08-03 07:49:23
113.104.240.84	attackspam	Jul 30 04:44:06 b-admin sshd[16967]: Invalid user a from 113.104.240.84 port 17291 Jul 30 04:44:06 b-admin sshd[16967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.240.84 Jul 30 04:44:08 b-admin sshd[16967]: Failed password for invalid user a from 113.104.240.84 port 17291 ssh2 Jul 30 04:44:08 b-admin sshd[16967]: Received disconnect from 113.104.240.84 port 17291:11: Bye Bye [preauth] Jul 30 04:44:08 b-admin sshd[16967]: Disconnected from 113.104.240.84 port 17291 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.104.240.84	2020-07-31 17:59:35
113.104.249.232	attack	Jul 27 23:12:17 vps34202 sshd[18715]: Invalid user pellegrini from 113.104.249.232 Jul 27 23:12:17 vps34202 sshd[18715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.249.232 Jul 27 23:12:19 vps34202 sshd[18715]: Failed password for invalid user pellegrini from 113.104.249.232 port 31845 ssh2 Jul 27 23:12:19 vps34202 sshd[18715]: Received disconnect from 113.104.249.232: 11: Bye Bye [preauth] Jul 27 23:26:22 vps34202 sshd[19033]: Invalid user prerhostname from 113.104.249.232 Jul 27 23:26:22 vps34202 sshd[19033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.249.232 Jul 27 23:26:25 vps34202 sshd[19033]: Failed password for invalid user prerhostname from 113.104.249.232 port 30075 ssh2 Jul 27 23:26:25 vps34202 sshd[19033]: Received disconnect from 113.104.249.232: 11: Bye Bye [preauth] Jul 27 23:27:58 vps34202 sshd[19070]: Invalid user fangjn from 113.104.249.232 Jul 27 ........ -------------------------------	2020-07-30 21:07:54
113.104.241.4	attackbotsspam	Invalid user nestor from 113.104.241.4 port 6045	2020-07-24 00:44:27
113.104.241.6	attackspambots	$f2bV_matches	2020-07-15 02:45:19
113.104.240.201	attack	$f2bV_matches	2020-07-07 01:51:11
113.104.242.85	attackbots	Jul 4 09:08:14 localhost sshd\[11722\]: Invalid user cheng from 113.104.242.85 Jul 4 09:08:14 localhost sshd\[11722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.85 Jul 4 09:08:16 localhost sshd\[11722\]: Failed password for invalid user cheng from 113.104.242.85 port 13417 ssh2 Jul 4 09:17:24 localhost sshd\[12290\]: Invalid user mt from 113.104.242.85 Jul 4 09:17:24 localhost sshd\[12290\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.242.85 ...	2020-07-04 19:24:37
113.104.240.193	attack	Lines containing failures of 113.104.240.193 Jun 25 13:09:49 shared03 sshd[13254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.240.193 user=r.r Jun 25 13:09:51 shared03 sshd[13254]: Failed password for r.r from 113.104.240.193 port 11581 ssh2 Jun 25 13:09:52 shared03 sshd[13254]: Received disconnect from 113.104.240.193 port 11581:11: Bye Bye [preauth] Jun 25 13:09:52 shared03 sshd[13254]: Disconnected from authenticating user r.r 113.104.240.193 port 11581 [preauth] Jun 25 13:12:52 shared03 sshd[17779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.104.240.193 user=www-data Jun 25 13:12:53 shared03 sshd[17779]: Failed password for www-data from 113.104.240.193 port 9361 ssh2 Jun 25 13:12:54 shared03 sshd[17779]: Received disconnect from 113.104.240.193 port 9361:11: Bye Bye [preauth] Jun 25 13:12:54 shared03 sshd[17779]: Disconnected from authenticating user www-data 113......... ------------------------------	2020-06-27 07:36:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.104.24.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65102
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.104.24.80.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 01:27:59 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 80.24.104.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 80.24.104.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.186.167.96	attackbots	Invalid user pi from 52.186.167.96 port 60006	2020-09-11 00:33:45
191.217.170.33	attack	(sshd) Failed SSH login from 191.217.170.33 (BR/Brazil/191-217-170-33.user3p.brasiltelecom.net.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 9 17:53:08 optimus sshd[8353]: Invalid user jag from 191.217.170.33 Sep 9 17:53:11 optimus sshd[8353]: Failed password for invalid user jag from 191.217.170.33 port 33093 ssh2 Sep 9 17:58:01 optimus sshd[9859]: Failed password for root from 191.217.170.33 port 58016 ssh2 Sep 9 17:59:45 optimus sshd[10196]: Invalid user delmo from 191.217.170.33 Sep 9 17:59:47 optimus sshd[10196]: Failed password for invalid user delmo from 191.217.170.33 port 39469 ssh2	2020-09-11 00:49:56
36.155.115.72	attackspam	Sep 10 16:57:50 marvibiene sshd[4381]: Failed password for root from 36.155.115.72 port 41224 ssh2 Sep 10 17:02:46 marvibiene sshd[4730]: Failed password for root from 36.155.115.72 port 34049 ssh2	2020-09-11 01:19:14
49.233.77.12	attackspambots	$f2bV_matches	2020-09-11 00:39:32
190.97.202.94	attackspambots	445/tcp 445/tcp 445/tcp [2020-08-16/09-10]3pkt	2020-09-11 00:43:00
5.188.87.58	attackbotsspam	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-10T16:23:38Z	2020-09-11 00:47:25
210.12.215.251	attackspam	DATE:2020-09-10 09:50:49, IP:210.12.215.251, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-11 00:59:28
124.192.225.187	attackbots	Sep 10 13:59:57 vps46666688 sshd[26653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.192.225.187 Sep 10 13:59:59 vps46666688 sshd[26653]: Failed password for invalid user user from 124.192.225.187 port 13427 ssh2 ...	2020-09-11 01:17:03
181.114.208.102	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 181.114.208.102 (AR/Argentina/host-208-102.adc.net.ar): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-09 21:22:11 plain authenticator failed for ([181.114.208.102]) [181.114.208.102]: 535 Incorrect authentication data (set_id=info)	2020-09-11 00:39:06
137.74.171.160	attackspambots	2020-09-10T16:55:49.298171ns386461 sshd\[23500\]: Invalid user hobbit from 137.74.171.160 port 40348 2020-09-10T16:55:49.302873ns386461 sshd\[23500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-137-74-171.eu 2020-09-10T16:55:50.858630ns386461 sshd\[23500\]: Failed password for invalid user hobbit from 137.74.171.160 port 40348 ssh2 2020-09-10T17:01:48.554109ns386461 sshd\[28916\]: Invalid user shekhar from 137.74.171.160 port 59884 2020-09-10T17:01:48.559056ns386461 sshd\[28916\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-137-74-171.eu ...	2020-09-11 00:52:43
185.220.102.245	attack	Sep 10 17:01:12 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 Sep 10 17:01:15 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 Sep 10 17:01:17 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 Sep 10 17:01:19 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 ...	2020-09-11 00:27:28
125.167.72.225	attack	Unauthorized connection attempt from IP address 125.167.72.225 on Port 445(SMB)	2020-09-11 00:53:37
185.56.153.229	attackbots	$f2bV_matches	2020-09-11 01:12:13
36.89.213.100	attack	Port Scan detected from 36.89.213.100 (ID/Indonesia/Jakarta/Jakarta/-). 4 hits in the last 85 seconds	2020-09-11 00:31:15
218.92.0.200	attackbotsspam	Fail2Ban Ban Triggered	2020-09-11 01:17:56

Recently Reported IPs

145.96.210.72	3.32.203.164	131.234.176.179	89.131.114.70
191.53.223.108	93.44.226.205	192.198.248.168	35.174.136.214
221.173.151.20	141.221.243.232	74.173.153.142	117.50.93.63
68.145.154.213	39.109.16.92	85.199.70.148	197.3.235.230
115.114.188.179	66.151.214.215	98.15.116.46	126.167.133.214