城市(city): unknown
省份(region): unknown
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 104.140.148.58 | attackspam | firewall-block, port(s): 161/udp |
2019-09-21 04:37:23 |
| 104.140.148.58 | attack | Sep 11 14:57:21 localhost kernel: [1966058.443067] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=2495 PROTO=TCP SPT=65325 DPT=987 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 14:57:21 localhost kernel: [1966058.443093] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=2495 PROTO=TCP SPT=65325 DPT=987 SEQ=3815533082 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (020405B4) Sep 11 14:59:52 localhost kernel: [1966209.518449] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=43417 PROTO=TCP SPT=64300 DPT=5910 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 11 14:59:52 localhost kernel: [1966209.518469] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=104.140.148.58 DST=[mungedIP2] LEN=4 |
2019-09-12 03:13:24 |
| 104.140.148.58 | attackspam | 23.08.2019 20:09:25 Connection to port 21 blocked by firewall |
2019-08-24 04:38:34 |
| 104.140.148.58 | attackbotsspam | Automatic report - Port Scan Attack |
2019-07-30 03:10:28 |
| 104.140.148.58 | attackbots | 8444/tcp 21/tcp 5900/tcp... [2019-06-13/07-24]35pkt,13pt.(tcp),1pt.(udp) |
2019-07-26 11:47:12 |
| 104.140.148.58 | attackbotsspam | " " |
2019-07-25 06:38:18 |
| 104.140.148.58 | attackspambots | 22.07.2019 18:53:41 Connection to port 3306 blocked by firewall |
2019-07-23 05:55:25 |
| 104.140.148.58 | attackbots | RDP brute force attack detected by fail2ban |
2019-07-18 14:04:36 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 104.140.0.0 - 104.140.255.255
CIDR: 104.140.0.0/16
NetName: EONIX
NetHandle: NET-104-140-0-0-1
Parent: NET104 (NET-104-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Eonix Corporation (EONIX)
RegDate: 2014-06-20
Updated: 2019-02-28
Comment: Please use the below contact information to report suspected security issues specific to traffic emanating from net blocks in this range, including the distribution of malicious content or other illicit or illegal material.
Comment:
Comment: For SPAM and other abuse issues, please contact:
Comment: * net-abuse@eonix.net
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * legal@eonix.net
Comment:
Comment: For Routing, Peering or DNS issues, please contact:
Comment: * noc@eonix.net
Ref: https://rdap.arin.net/registry/ip/104.140.0.0
OrgName: Eonix Corporation
OrgId: EONIX
Address: 9107 W Russell Rd Suite 100
City: Las Vegas
StateProv: NV
PostalCode: 89148
Country: US
RegDate: 2006-05-31
Updated: 2025-10-16
Comment: Please use the below contact information to report suspected security issues specific to traffic emanating from net blocks in this range, including the distribution of malicious content or other illicit or illegal material.
Comment:
Comment: For SPAM and other abuse issues, please contact:
Comment: * net-abuse@eonix.net
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * legal@eonix.net
Comment:
Comment: For Routing, Peering or DNS issues, please contact:
Comment: * noc@eonix.net
Ref: https://rdap.arin.net/registry/entity/EONIX
OrgTechHandle: EDM7-ARIN
OrgTechName: Eonix DNS Management
OrgTechPhone: +1-877-841-3341
OrgTechEmail: 902214@serverhub.com
OrgTechRef: https://rdap.arin.net/registry/entity/EDM7-ARIN
OrgAbuseHandle: NTS22-ARIN
OrgAbuseName: Network Trust and Safety
OrgAbusePhone: +1-702-605-2981
OrgAbuseEmail: net-admin@eonix.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/NTS22-ARIN
OrgNOCHandle: NOC31884-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-702-605-2981
OrgNOCEmail: noc@eonix.net
OrgNOCRef: https://rdap.arin.net/registry/entity/NOC31884-ARIN
OrgAbuseHandle: NTS29-ARIN
OrgAbuseName: Network Trust and Safety
OrgAbusePhone: +1-702-605-2981
OrgAbuseEmail: net-admin@eonix.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/NTS29-ARIN
OrgDNSHandle: EDM7-ARIN
OrgDNSName: Eonix DNS Management
OrgDNSPhone: +1-877-841-3341
OrgDNSEmail: 902214@serverhub.com
OrgDNSRef: https://rdap.arin.net/registry/entity/EDM7-ARIN
OrgTechHandle: NOC31884-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-702-605-2981
OrgTechEmail: noc@eonix.net
OrgTechRef: https://rdap.arin.net/registry/entity/NOC31884-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.140.148.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.140.148.70. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026022600 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 26 14:00:59 CST 2026
;; MSG SIZE rcvd: 107Host 70.148.140.104.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 70.148.140.104.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 117.192.236.182 | attackspambots | Unauthorized connection attempt from IP address 117.192.236.182 on Port 445(SMB) |
2019-10-31 23:46:50 |
| 139.59.41.170 | attackbots | Oct 31 11:58:30 mail sshd\[40413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.170 user=root ... |
2019-11-01 00:14:22 |
| 134.175.154.22 | attackspam | Invalid user hztc from 134.175.154.22 port 33582 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.22 Failed password for invalid user hztc from 134.175.154.22 port 33582 ssh2 Invalid user oleg!@\# from 134.175.154.22 port 44660 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.22 |
2019-10-31 23:44:31 |
| 190.85.234.215 | attackbots | Oct 31 14:21:44 anodpoucpklekan sshd[81816]: Invalid user dayat from 190.85.234.215 port 59368 ... |
2019-10-31 23:52:44 |
| 94.191.50.165 | attack | SSH Bruteforce attempt |
2019-11-01 00:01:41 |
| 46.218.138.197 | attack | Unauthorized connection attempt from IP address 46.218.138.197 on Port 445(SMB) |
2019-11-01 00:05:16 |
| 106.53.19.186 | attackbots | Oct 31 15:01:10 dedicated sshd[20364]: Invalid user passw0rd from 106.53.19.186 port 46382 |
2019-10-31 23:29:46 |
| 106.12.77.199 | attackspambots | Oct 31 16:26:04 minden010 sshd[16042]: Failed password for root from 106.12.77.199 port 40710 ssh2 Oct 31 16:31:24 minden010 sshd[19705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.199 Oct 31 16:31:26 minden010 sshd[19705]: Failed password for invalid user eee from 106.12.77.199 port 48138 ssh2 ... |
2019-10-31 23:59:51 |
| 93.184.151.254 | attackbots | Port 1433 Scan |
2019-10-31 23:32:08 |
| 122.154.241.134 | attackbots | Oct 31 04:50:06 eddieflores sshd\[10739\]: Invalid user maria from 122.154.241.134 Oct 31 04:50:06 eddieflores sshd\[10739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.241.134 Oct 31 04:50:08 eddieflores sshd\[10739\]: Failed password for invalid user maria from 122.154.241.134 port 43576 ssh2 Oct 31 04:55:12 eddieflores sshd\[11116\]: Invalid user patroy from 122.154.241.134 Oct 31 04:55:12 eddieflores sshd\[11116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.241.134 |
2019-10-31 23:38:05 |
| 51.75.37.174 | attackspam | detected by Fail2Ban |
2019-11-01 00:10:39 |
| 106.13.53.173 | attackbots | 2019-10-31T13:17:49.744588abusebot-8.cloudsearch.cf sshd\[29725\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 user=root |
2019-10-31 23:57:55 |
| 73.164.13.142 | attackbotsspam | SSH-bruteforce attempts |
2019-11-01 00:02:00 |
| 124.152.76.213 | attackspambots | Oct 31 16:07:37 DAAP sshd[15597]: Invalid user sreedevi from 124.152.76.213 port 57620 ... |
2019-10-31 23:44:51 |
| 5.10.66.243 | attack | Oct 31 16:36:35 mail postfix/smtpd[31718]: warning: f3.42.0a05.ip4.static.sl-reverse.com[5.10.66.243]: SASL PLAIN authentication failed: |
2019-10-31 23:42:11 |