184.105.139.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): Hurricane Electric LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Hit honeypot r.	2020-09-21 03:34:34
attack	Hit honeypot r.	2020-09-20 19:42:51
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-04 23:38:00
attackspam	Honeypot hit.	2020-05-20 16:09:08
attackspam	548/tcp 6379/tcp 8443/tcp... [2020-01-08/03-05]24pkt,14pt.(tcp),2pt.(udp)	2020-03-05 22:13:03
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:43:08
attackspam	3389BruteforceFW23	2020-01-03 19:09:26
attackbotsspam	firewall-block, port(s): 123/udp	2019-12-26 17:00:27
attackbots	3389/tcp 9200/tcp 123/udp... [2019-09-23/11-23]34pkt,11pt.(tcp),2pt.(udp)	2019-11-23 20:43:23
attack	Honeypot hit.	2019-11-15 16:07:26
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-02 03:43:10
attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-30 03:16:09
attackspam	firewall-block, port(s): 123/udp	2019-07-19 14:55:49
attack	Port scan: Attack repeated for 24 hours	2019-07-02 16:34:37

相同子网IP讨论:

IP	类型	评论内容	时间
184.105.139.105	attackproxy	Compromised IP	2024-05-09 23:09:39
184.105.139.109	attackproxy	Vulnerability Scanner	2024-04-30 12:59:43
184.105.139.70	attack	Vulnerability Scanner	2024-04-20 00:30:49
184.105.139.90	botsattackproxy	Ddos bot	2024-04-20 00:26:45
184.105.139.68	attack	Vulnerability Scanner	2024-04-10 01:16:38
184.105.139.69	proxy	VPN fraud	2023-05-15 19:23:33
184.105.139.120	proxy	VPN fraud	2023-05-10 13:17:43
184.105.139.103	proxy	VPN fraud	2023-03-20 14:02:25
184.105.139.99	proxy	VPN fraud	2023-03-20 13:57:09
184.105.139.74	proxy	VPN	2023-01-30 14:03:54
184.105.139.86	proxy	VPN	2023-01-19 13:51:12
184.105.139.124	attackproxy	VPN	2022-12-29 20:40:24
184.105.139.124	attack	VPN	2022-12-29 20:40:21
184.105.139.126	proxy	Attack VPN	2022-12-09 13:59:02
184.105.139.70	attackbotsspam	TCP (SYN) 184.105.139.70:51140 -> port 5900, len 40	2020-10-14 04:24:47

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 184.105.139.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35461
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;184.105.139.106.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 17 21:26:57 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

106.139.105.184.in-addr.arpa is an alias for 106.64-26.139.105.184.in-addr.arpa.
106.64-26.139.105.184.in-addr.arpa domain name pointer scan-04i.shadowserver.org.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
106.139.105.184.in-addr.arpa	canonical name = 106.64-26.139.105.184.in-addr.arpa.
106.64-26.139.105.184.in-addr.arpa	name = scan-04i.shadowserver.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.61.148.112	attackbotsspam	Invalid user la from 182.61.148.112 port 53226 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.148.112 Failed password for invalid user la from 182.61.148.112 port 53226 ssh2 Invalid user 123 from 182.61.148.112 port 40214 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.148.112	2019-08-11 14:56:23
77.42.111.39	attackbotsspam	DATE:2019-08-11 00:19:52, IP:77.42.111.39, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-11 14:58:46
83.15.183.138	attackbotsspam	Aug 11 09:03:36 MK-Soft-Root2 sshd\[9477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.15.183.138 user=root Aug 11 09:03:37 MK-Soft-Root2 sshd\[9477\]: Failed password for root from 83.15.183.138 port 44465 ssh2 Aug 11 09:08:35 MK-Soft-Root2 sshd\[10149\]: Invalid user romanova from 83.15.183.138 port 63849 Aug 11 09:08:35 MK-Soft-Root2 sshd\[10149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.15.183.138 ...	2019-08-11 15:17:13
162.243.147.46	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-08-11 14:36:33
5.179.112.48	attackspambots	2019-08-11T07:47:13.118647ns1.unifynetsol.net postfix/smtpd\[10438\]: warning: unknown\[5.179.112.48\]: SASL LOGIN authentication failed: authentication failure 2019-08-11T08:27:48.461428ns1.unifynetsol.net postfix/smtpd\[16132\]: warning: unknown\[5.179.112.48\]: SASL LOGIN authentication failed: authentication failure 2019-08-11T09:06:53.886801ns1.unifynetsol.net postfix/smtpd\[21958\]: warning: unknown\[5.179.112.48\]: SASL LOGIN authentication failed: authentication failure 2019-08-11T09:46:33.007997ns1.unifynetsol.net postfix/smtpd\[27558\]: warning: unknown\[5.179.112.48\]: SASL LOGIN authentication failed: authentication failure 2019-08-11T10:26:25.298784ns1.unifynetsol.net postfix/smtpd\[725\]: warning: unknown\[5.179.112.48\]: SASL LOGIN authentication failed: authentication failure	2019-08-11 14:27:56
43.242.215.70	attackspambots	Jan 11 11:54:24 motanud sshd\[12416\]: Invalid user mcadmin from 43.242.215.70 port 5466 Jan 11 11:54:24 motanud sshd\[12416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.242.215.70 Jan 11 11:54:26 motanud sshd\[12416\]: Failed password for invalid user mcadmin from 43.242.215.70 port 5466 ssh2	2019-08-11 14:39:43
107.170.195.246	attackbots	107.170.195.246 - - - [10/Aug/2019:22:18:14 +0000] "GET /manager/text/list HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2019-08-11 15:35:58
221.8.8.251	attackspambots	Aug 10 20:18:58 TORMINT sshd\[4146\]: Invalid user bonec from 221.8.8.251 Aug 10 20:18:58 TORMINT sshd\[4146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.8.8.251 Aug 10 20:19:00 TORMINT sshd\[4146\]: Failed password for invalid user bonec from 221.8.8.251 port 51392 ssh2 ...	2019-08-11 15:03:05
123.206.88.24	attackspambots	Aug 11 01:11:35 localhost sshd\[13728\]: Invalid user fx@123 from 123.206.88.24 Aug 11 01:11:35 localhost sshd\[13728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.88.24 Aug 11 01:11:38 localhost sshd\[13728\]: Failed password for invalid user fx@123 from 123.206.88.24 port 49232 ssh2 Aug 11 01:16:21 localhost sshd\[13909\]: Invalid user danb from 123.206.88.24 Aug 11 01:16:21 localhost sshd\[13909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.88.24 ...	2019-08-11 15:01:53
201.48.206.146	attack	Automatic report - Banned IP Access	2019-08-11 15:09:40
81.130.138.156	attack	$f2bV_matches	2019-08-11 14:42:38
219.76.161.139	attack	Mar 2 11:14:15 motanud sshd\[15048\]: Invalid user topgui from 219.76.161.139 port 54448 Mar 2 11:14:15 motanud sshd\[15048\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.76.161.139 Mar 2 11:14:18 motanud sshd\[15048\]: Failed password for invalid user topgui from 219.76.161.139 port 54448 ssh2	2019-08-11 15:07:03
182.61.106.24	attackspambots	[HTTP script scanning PHP/MYSQL etc]	2019-08-11 15:30:24
89.234.157.254	attackspambots	port scan and connect, tcp 22 (ssh)	2019-08-11 15:28:54
71.205.166.111	attackspam	Aug 11 00:17:51 vserver sshd\[9661\]: Invalid user ubuntu from 71.205.166.111Aug 11 00:17:52 vserver sshd\[9661\]: Failed password for invalid user ubuntu from 71.205.166.111 port 47185 ssh2Aug 11 00:18:56 vserver sshd\[9663\]: Invalid user ubnt from 71.205.166.111Aug 11 00:18:58 vserver sshd\[9663\]: Failed password for invalid user ubnt from 71.205.166.111 port 47300 ssh2 ...	2019-08-11 15:21:59

最近上报的IP列表

85.169.163.238	74.82.47.31	42.108.36.180	200.116.160.38
27.115.124.6	42.113.188.215	40.73.16.40	200.6.237.34
218.166.140.222	5.62.43.231	92.124.206.123	182.74.20.106
123.0.110.137	105.71.10.10	103.53.113.8	68.183.82.90
13.56.181.243	189.149.165.56	177.36.6.252	110.80.47.202