124.207.105.116

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Teletron Telecom Engineering Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	fail2ban	2019-12-11 16:09:10
attackspam	Oct 1 11:47:36 vps691689 sshd[2727]: Failed password for root from 124.207.105.116 port 40570 ssh2 Oct 1 11:51:59 vps691689 sshd[2792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.105.116 ...	2019-10-01 19:24:42
attackbots	Sep 28 00:54:29 pkdns2 sshd\[63305\]: Invalid user jessica from 124.207.105.116Sep 28 00:54:31 pkdns2 sshd\[63305\]: Failed password for invalid user jessica from 124.207.105.116 port 38032 ssh2Sep 28 00:58:13 pkdns2 sshd\[63507\]: Invalid user english from 124.207.105.116Sep 28 00:58:16 pkdns2 sshd\[63507\]: Failed password for invalid user english from 124.207.105.116 port 40628 ssh2Sep 28 01:01:53 pkdns2 sshd\[63680\]: Invalid user admin from 124.207.105.116Sep 28 01:01:55 pkdns2 sshd\[63680\]: Failed password for invalid user admin from 124.207.105.116 port 43224 ssh2 ...	2019-09-28 06:14:40
attack	Sep 15 20:33:55 xtremcommunity sshd\[126258\]: Invalid user mashad from 124.207.105.116 port 39108 Sep 15 20:33:55 xtremcommunity sshd\[126258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.105.116 Sep 15 20:33:57 xtremcommunity sshd\[126258\]: Failed password for invalid user mashad from 124.207.105.116 port 39108 ssh2 Sep 15 20:37:54 xtremcommunity sshd\[126352\]: Invalid user uisfs from 124.207.105.116 port 45216 Sep 15 20:37:54 xtremcommunity sshd\[126352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.105.116 ...	2019-09-16 08:45:28

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.207.105.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42295
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.207.105.116.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091501 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 16 08:45:23 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 116.105.207.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 116.105.207.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.115.147.153	attack	Honeypot attack, port: 23, PTR: 59-115-147-153.dynamic-ip.hinet.net.	2019-10-20 15:20:32
49.88.112.76	attackspambots	2019-10-20T06:29:19.126928abusebot-3.cloudsearch.cf sshd\[16464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76 user=root	2019-10-20 15:27:32
62.213.64.118	attack	[portscan] Port scan	2019-10-20 15:21:58
121.138.213.2	attack	SSH brutforce	2019-10-20 15:13:01
113.108.126.25	attackspam	Oct 20 05:53:00 host proftpd[47784]: 0.0.0.0 (113.108.126.25[113.108.126.25]) - USER anonymous: no such user found from 113.108.126.25 [113.108.126.25] to 62.210.146.38:21 ...	2019-10-20 15:28:19
124.156.117.111	attackspam	Oct 19 20:36:09 hanapaa sshd\[3444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.117.111 user=backup Oct 19 20:36:11 hanapaa sshd\[3444\]: Failed password for backup from 124.156.117.111 port 34154 ssh2 Oct 19 20:40:40 hanapaa sshd\[3903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.117.111 user=root Oct 19 20:40:41 hanapaa sshd\[3903\]: Failed password for root from 124.156.117.111 port 44304 ssh2 Oct 19 20:45:11 hanapaa sshd\[4260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.117.111 user=root	2019-10-20 15:07:13
223.247.223.194	attack	Oct 16 13:35:14 ovpn sshd[6763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 user=r.r Oct 16 13:35:16 ovpn sshd[6763]: Failed password for r.r from 223.247.223.194 port 42876 ssh2 Oct 16 13:35:16 ovpn sshd[6763]: Received disconnect from 223.247.223.194 port 42876:11: Bye Bye [preauth] Oct 16 13:35:16 ovpn sshd[6763]: Disconnected from 223.247.223.194 port 42876 [preauth] Oct 16 13:59:40 ovpn sshd[11417]: Invalid user ncim from 223.247.223.194 Oct 16 13:59:40 ovpn sshd[11417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 Oct 16 13:59:42 ovpn sshd[11417]: Failed password for invalid user ncim from 223.247.223.194 port 35876 ssh2 Oct 16 13:59:42 ovpn sshd[11417]: Received disconnect from 223.247.223.194 port 35876:11: Bye Bye [preauth] Oct 16 13:59:42 ovpn sshd[11417]: Disconnected from 223.247.223.194 port 35876 [preauth] ........ ----------------------------------------------- https://www.b	2019-10-20 15:30:25
194.32.159.253	attackbotsspam	[portscan] Port scan	2019-10-20 15:35:28
222.186.175.215	attack	Oct 20 09:03:52 legacy sshd[7641]: Failed password for root from 222.186.175.215 port 8852 ssh2 Oct 20 09:03:56 legacy sshd[7641]: Failed password for root from 222.186.175.215 port 8852 ssh2 Oct 20 09:04:01 legacy sshd[7641]: Failed password for root from 222.186.175.215 port 8852 ssh2 Oct 20 09:04:05 legacy sshd[7641]: Failed password for root from 222.186.175.215 port 8852 ssh2 ...	2019-10-20 15:14:00
106.13.119.163	attackspambots	Oct 20 06:57:52 xeon sshd[43336]: Failed password for invalid user ftpuser from 106.13.119.163 port 48860 ssh2	2019-10-20 15:06:48
203.110.166.51	attackbots	$f2bV_matches	2019-10-20 15:07:39
59.63.169.50	attack	Oct 20 09:13:13 MainVPS sshd[1968]: Invalid user teamspeak from 59.63.169.50 port 35896 Oct 20 09:13:13 MainVPS sshd[1968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.169.50 Oct 20 09:13:13 MainVPS sshd[1968]: Invalid user teamspeak from 59.63.169.50 port 35896 Oct 20 09:13:15 MainVPS sshd[1968]: Failed password for invalid user teamspeak from 59.63.169.50 port 35896 ssh2 Oct 20 09:18:02 MainVPS sshd[2337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.169.50 user=root Oct 20 09:18:05 MainVPS sshd[2337]: Failed password for root from 59.63.169.50 port 44604 ssh2 ...	2019-10-20 15:39:24
211.223.9.42	attackspambots	Fail2Ban - FTP Abuse Attempt	2019-10-20 15:30:49
81.240.88.22	attackbotsspam	Oct 20 06:53:19 taivassalofi sshd[136143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.240.88.22 Oct 20 06:53:21 taivassalofi sshd[136143]: Failed password for invalid user corlene from 81.240.88.22 port 62204 ssh2 ...	2019-10-20 15:17:20
62.234.190.190	attackspam	Oct 20 08:42:39 ns381471 sshd[28809]: Failed password for root from 62.234.190.190 port 55674 ssh2 Oct 20 08:47:55 ns381471 sshd[28974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.190.190 Oct 20 08:47:57 ns381471 sshd[28974]: Failed password for invalid user test from 62.234.190.190 port 34644 ssh2	2019-10-20 15:32:34

Recently Reported IPs

113.183.192.90	133.39.34.71	159.203.201.66	125.231.113.25
113.131.200.28	137.200.170.127	114.30.134.10	49.83.1.48
49.234.115.143	148.187.246.98	141.255.32.128	220.129.232.157
195.242.219.224	92.200.110.193	11.1.229.137	93.101.17.250
66.249.79.144	167.37.107.150	223.13.37.109	79.239.205.44