116.196.104.34

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.196.104.139	attack	Jul 23 16:38:33 firewall sshd[12427]: Invalid user magento from 116.196.104.139 Jul 23 16:38:35 firewall sshd[12427]: Failed password for invalid user magento from 116.196.104.139 port 34822 ssh2 Jul 23 16:47:10 firewall sshd[12786]: Invalid user sonarqube from 116.196.104.139 ...	2020-07-24 03:50:43
116.196.104.139	attack	Jul 23 07:59:27 home sshd[245496]: Invalid user chj from 116.196.104.139 port 52564 Jul 23 07:59:27 home sshd[245496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.139 Jul 23 07:59:27 home sshd[245496]: Invalid user chj from 116.196.104.139 port 52564 Jul 23 07:59:29 home sshd[245496]: Failed password for invalid user chj from 116.196.104.139 port 52564 ssh2 Jul 23 08:03:11 home sshd[245869]: Invalid user biadmin from 116.196.104.139 port 40674 ...	2020-07-23 17:28:26
116.196.104.100	attack	Apr 24 02:32:08 ns392434 sshd[3795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 user=root Apr 24 02:32:10 ns392434 sshd[3795]: Failed password for root from 116.196.104.100 port 51480 ssh2 Apr 24 02:45:50 ns392434 sshd[4563]: Invalid user tom from 116.196.104.100 port 37663 Apr 24 02:45:50 ns392434 sshd[4563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 Apr 24 02:45:50 ns392434 sshd[4563]: Invalid user tom from 116.196.104.100 port 37663 Apr 24 02:45:52 ns392434 sshd[4563]: Failed password for invalid user tom from 116.196.104.100 port 37663 ssh2 Apr 24 02:51:50 ns392434 sshd[4796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 user=root Apr 24 02:51:51 ns392434 sshd[4796]: Failed password for root from 116.196.104.100 port 39378 ssh2 Apr 24 02:57:41 ns392434 sshd[5017]: Invalid user iq from 116.196.104.100 port 41093	2020-04-26 19:42:02
116.196.104.100	attackspam	ssh brute force	2020-04-21 16:07:53
116.196.104.100	attackspambots	Apr 11 23:51:39 ny01 sshd[6780]: Failed password for root from 116.196.104.100 port 55187 ssh2 Apr 11 23:54:21 ny01 sshd[7109]: Failed password for root from 116.196.104.100 port 40913 ssh2	2020-04-12 13:32:12
116.196.104.100	attackbotsspam	Apr 2 07:57:16 vps647732 sshd[23093]: Failed password for root from 116.196.104.100 port 58428 ssh2 ...	2020-04-02 14:50:22
116.196.104.100	attackspam	DATE:2020-03-30 07:59:07, IP:116.196.104.100, PORT:ssh SSH brute force auth (docker-dc)	2020-03-30 14:50:31
116.196.104.100	attackspambots	SSH login attempts.	2020-03-29 15:28:15
116.196.104.100	attack	Tried sshing with brute force.	2020-02-05 05:47:30
116.196.104.100	attackbots	Jan 21 17:38:35 hosting sshd[3536]: Invalid user check from 116.196.104.100 port 50512 ...	2020-01-21 23:27:42
116.196.104.1	attackbots	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:09:53
116.196.104.100	attack	Dec 27 08:28:39 silence02 sshd[13838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 Dec 27 08:28:41 silence02 sshd[13838]: Failed password for invalid user arlet from 116.196.104.100 port 52722 ssh2 Dec 27 08:33:48 silence02 sshd[13973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100	2019-12-27 15:38:48
116.196.104.100	attackspambots	2019-09-29T00:37:37.227314suse-nuc sshd[19942]: Invalid user webmaster from 116.196.104.100 port 47336 ...	2019-11-30 02:32:54
116.196.104.100	attackspam	Nov 26 16:03:07 eventyay sshd[22645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 Nov 26 16:03:09 eventyay sshd[22645]: Failed password for invalid user P4sswort!234 from 116.196.104.100 port 41953 ssh2 Nov 26 16:11:12 eventyay sshd[22784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 ...	2019-11-26 23:24:03
116.196.104.100	attackbots	Nov 16 06:11:52 host sshd[30580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.104.100 Nov 16 06:11:52 host sshd[30580]: Invalid user aclin from 116.196.104.100 port 41641 Nov 16 06:11:53 host sshd[30580]: Failed password for invalid user aclin from 116.196.104.100 port 41641 ssh2 ...	2019-11-16 13:35:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.196.104.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.196.104.34.			IN	A

;; AUTHORITY SECTION:
.			399	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 17:43:26 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 34.104.196.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.104.196.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.26.115.108	attackbotsspam	Unauthorised access (Jul 13) SRC=176.26.115.108 LEN=44 TTL=56 ID=61949 TCP DPT=23 WINDOW=28034 SYN	2019-07-14 03:54:21
88.89.54.108	attack	Jul 13 19:16:48 localhost sshd\[65661\]: Invalid user test2 from 88.89.54.108 port 55428 Jul 13 19:16:48 localhost sshd\[65661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.89.54.108 Jul 13 19:16:50 localhost sshd\[65661\]: Failed password for invalid user test2 from 88.89.54.108 port 55428 ssh2 Jul 13 19:27:03 localhost sshd\[66151\]: Invalid user hendi from 88.89.54.108 port 57746 Jul 13 19:27:03 localhost sshd\[66151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.89.54.108 ...	2019-07-14 03:35:46
119.153.168.102	attack	Lines containing failures of 119.153.168.102 Jul 13 16:52:28 mellenthin postfix/smtpd[31569]: connect from unknown[119.153.168.102] Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=119.153.168.102	2019-07-14 03:54:53
157.230.98.238	attackspam	SSH Brute Force, server-1 sshd[6135]: Failed password for invalid user brian from 157.230.98.238 port 33270 ssh2	2019-07-14 04:09:12
213.136.88.141	attackbotsspam	Jul 13 18:05:22 rpi sshd[2493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.88.141 Jul 13 18:05:24 rpi sshd[2493]: Failed password for invalid user test123 from 213.136.88.141 port 53044 ssh2	2019-07-14 03:32:21
1.236.151.31	attack	Jul 13 21:32:58 nextcloud sshd\[18210\]: Invalid user david from 1.236.151.31 Jul 13 21:32:58 nextcloud sshd\[18210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.236.151.31 Jul 13 21:33:00 nextcloud sshd\[18210\]: Failed password for invalid user david from 1.236.151.31 port 53962 ssh2 ...	2019-07-14 03:36:19
124.156.185.149	attackspambots	RDP Bruteforce	2019-07-14 03:53:52
104.248.181.156	attackspambots	Jul 13 15:31:45 plusreed sshd[11728]: Invalid user admin from 104.248.181.156 ...	2019-07-14 03:39:44
5.112.17.108	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-13 13:37:52,738 INFO [shellcode_manager] (5.112.17.108) no match, writing hexdump (51d6b4a5fee6885fa2bb25020e1816c5 :2309521) - MS17010 (EternalBlue)	2019-07-14 03:37:12
185.153.196.191	attack	13.07.2019 18:18:54 Connection to port 12429 blocked by firewall	2019-07-14 03:39:28
130.193.249.39	attackbotsspam	Lines containing failures of 130.193.249.39 Jul 13 16:53:02 mellenthin postfix/smtpd[1487]: connect from unknown[130.193.249.39] Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=130.193.249.39	2019-07-14 04:01:04
118.24.255.191	attackspambots	Jul 13 21:35:36 s64-1 sshd[2924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.255.191 Jul 13 21:35:37 s64-1 sshd[2924]: Failed password for invalid user ftptest from 118.24.255.191 port 52126 ssh2 Jul 13 21:41:48 s64-1 sshd[3005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.255.191 ...	2019-07-14 03:52:06
221.159.190.140	attackspambots	Jul 13 20:21:27 rpi sshd[4675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.159.190.140 Jul 13 20:21:29 rpi sshd[4675]: Failed password for invalid user server from 221.159.190.140 port 51078 ssh2	2019-07-14 04:00:25
190.79.178.88	attack	Jul 13 14:35:40 aat-srv002 sshd[18115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.79.178.88 Jul 13 14:35:43 aat-srv002 sshd[18115]: Failed password for invalid user ts3 from 190.79.178.88 port 35112 ssh2 Jul 13 14:42:09 aat-srv002 sshd[18271]: Failed password for root from 190.79.178.88 port 43556 ssh2 ...	2019-07-14 04:04:05
13.82.134.94	attackbotsspam	TCP port 23 (Telnet) attempt blocked by firewall. [2019-07-13 17:39:57]	2019-07-14 03:43:45

Recently Reported IPs

118.99.86.143	118.99.86.149	116.196.106.18	116.196.108.12
116.196.125.51	116.196.91.172	118.99.87.98	118.99.88.101
118.99.87.9	118.99.88.112	118.99.88.106	118.99.88.119
118.99.88.102	118.99.88.116	118.99.87.96	118.99.88.107
118.99.88.120	118.99.87.87	118.99.88.124	118.99.88.147