184.105.139.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	" "	2020-08-05 22:14:25
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-04 23:35:36
attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 11211 resulting in total of 8 scans from 184.105.0.0/16 block.	2020-04-25 22:30:54
attackspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:41:15
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:39:03
attackbots	6379/tcp 5900/tcp 5555/tcp... [2019-06-30/08-28]33pkt,15pt.(tcp),1pt.(udp)	2019-08-30 03:19:45
attack	23/tcp 389/tcp 21/tcp... [2019-05-17/07-16]39pkt,13pt.(tcp),1pt.(udp)	2019-07-17 04:03:16
attackspambots	Honeypot hit.	2019-06-29 20:05:55

相同子网IP讨论:

IP	类型	评论内容	时间
184.105.139.105	attackproxy	Compromised IP	2024-05-09 23:09:39
184.105.139.109	attackproxy	Vulnerability Scanner	2024-04-30 12:59:43
184.105.139.70	attack	Vulnerability Scanner	2024-04-20 00:30:49
184.105.139.90	botsattackproxy	Ddos bot	2024-04-20 00:26:45
184.105.139.68	attack	Vulnerability Scanner	2024-04-10 01:16:38
184.105.139.69	proxy	VPN fraud	2023-05-15 19:23:33
184.105.139.120	proxy	VPN fraud	2023-05-10 13:17:43
184.105.139.103	proxy	VPN fraud	2023-03-20 14:02:25
184.105.139.99	proxy	VPN fraud	2023-03-20 13:57:09
184.105.139.74	proxy	VPN	2023-01-30 14:03:54
184.105.139.86	proxy	VPN	2023-01-19 13:51:12
184.105.139.124	attackproxy	VPN	2022-12-29 20:40:24
184.105.139.124	attack	VPN	2022-12-29 20:40:21
184.105.139.126	proxy	Attack VPN	2022-12-09 13:59:02
184.105.139.70	attackbotsspam	TCP (SYN) 184.105.139.70:51140 -> port 5900, len 40	2020-10-14 04:24:47

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 184.105.139.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56981
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;184.105.139.107.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 16 15:37:51 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

107.139.105.184.in-addr.arpa is an alias for 107.64-26.139.105.184.in-addr.arpa.
107.64-26.139.105.184.in-addr.arpa domain name pointer scan-01k.shadowserver.org.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
107.139.105.184.in-addr.arpa	canonical name = 107.64-26.139.105.184.in-addr.arpa.
107.64-26.139.105.184.in-addr.arpa	name = scan-01k.shadowserver.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.138.74.234	spambotsattack	attack on 2020-07-13 Return-Path: Received: from [217.72.192.66] ([217.72.192.66]) by mx.emig.kundenserver.de (mxeue109 [217.72.192.66]) with ESMTP (Nemesis) id 1MoP2E-1kfC6z37ua-00omtL for ; Mon, 13 Jul 2020 23:15:13 +0200 Received: from reallities.com ([45.138.74.234]) by mx.emig.kundenserver.de (mxeue109 [217.72.192.66]) with ESMTP (Nemesis) id 1M2e9h-1jsbUM358Z-00484e for ; Mon, 13 Jul 2020 23:15:13 +0200 Received: from thing.nutrimment.nl () by mx.emig.kundenserver.de (mxeue110 ) with ESMTP (Nemesis) id 1MeBpR-1kTyvO0IHX-00bLGO for ; Mon, 13 Jul 2020 11:23:53 +0200 Date: Tue, 31 Dec 2105 23:59:59 +0100 From: Ohne Aufwand [Portal fÃ¼r Clevere] To: lilly@online.de Message-ID:	2020-07-14 05:51:22
172.245.180.180	attackbots	Jul 13 22:43:44 inter-technics sshd[3492]: Invalid user meg from 172.245.180.180 port 48814 Jul 13 22:43:44 inter-technics sshd[3492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.180.180 Jul 13 22:43:44 inter-technics sshd[3492]: Invalid user meg from 172.245.180.180 port 48814 Jul 13 22:43:46 inter-technics sshd[3492]: Failed password for invalid user meg from 172.245.180.180 port 48814 ssh2 Jul 13 22:47:11 inter-technics sshd[3705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.180.180 user=testuser Jul 13 22:47:13 inter-technics sshd[3705]: Failed password for testuser from 172.245.180.180 port 46078 ssh2 ...	2020-07-14 06:11:16
212.95.137.19	attack	623. On Jul 13 2020 experienced a Brute Force SSH login attempt -> 38 unique times by 212.95.137.19.	2020-07-14 06:01:43
68.183.193.148	attackbots	SSH Brute-Force. Ports scanning.	2020-07-14 05:50:37
222.186.175.216	attackspambots	Jul 13 18:02:07 NPSTNNYC01T sshd[10851]: Failed password for root from 222.186.175.216 port 14638 ssh2 Jul 13 18:02:20 NPSTNNYC01T sshd[10851]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 14638 ssh2 [preauth] Jul 13 18:02:25 NPSTNNYC01T sshd[10906]: Failed password for root from 222.186.175.216 port 33058 ssh2 ...	2020-07-14 06:09:05
185.229.235.21	attackbots	Unauthorized connection attempt from IP address 185.229.235.21 on Port 445(SMB)	2020-07-14 06:16:53
27.109.129.83	attack	Automatic report - Port Scan Attack	2020-07-14 05:52:58
45.95.168.122	attackspambots	SSH Invalid Login	2020-07-14 05:58:59
163.172.24.40	attackbots	Jul 13 23:33:18 vpn01 sshd[4130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.24.40 Jul 13 23:33:19 vpn01 sshd[4130]: Failed password for invalid user mtc from 163.172.24.40 port 40726 ssh2 ...	2020-07-14 06:05:41
78.195.178.119	attack	Jul 13 22:31:12 pve1 sshd[24228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.195.178.119 Jul 13 22:31:12 pve1 sshd[24230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.195.178.119 ...	2020-07-14 05:48:47
45.153.43.162	attackbotsspam	Unauthorized connection attempt from IP address 45.153.43.162 on Port 445(SMB)	2020-07-14 06:10:08
49.145.8.233	attackbots	Unauthorized connection attempt from IP address 49.145.8.233 on Port 445(SMB)	2020-07-14 05:47:55
190.199.90.17	attack	Port Scan ...	2020-07-14 06:19:17
103.89.176.73	attack	Jul 13 23:48:17 abendstille sshd\[27378\]: Invalid user ftp_user from 103.89.176.73 Jul 13 23:48:17 abendstille sshd\[27378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.89.176.73 Jul 13 23:48:19 abendstille sshd\[27378\]: Failed password for invalid user ftp_user from 103.89.176.73 port 52238 ssh2 Jul 13 23:51:34 abendstille sshd\[30481\]: Invalid user ftpuser from 103.89.176.73 Jul 13 23:51:34 abendstille sshd\[30481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.89.176.73 ...	2020-07-14 05:52:40
195.158.26.238	attackbots	Jul 13 21:31:07 scw-6657dc sshd[23117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.158.26.238 Jul 13 21:31:07 scw-6657dc sshd[23117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.158.26.238 Jul 13 21:31:09 scw-6657dc sshd[23117]: Failed password for invalid user hengda from 195.158.26.238 port 44194 ssh2 ...	2020-07-14 06:12:58

最近上报的IP列表

185.143.221.186	169.243.192.234	77.108.119.154	176.88.201.210
113.197.54.162	185.68.145.2	117.6.87.17	46.166.162.53
201.163.176.203	195.128.158.1	83.221.0.35	196.219.61.99
167.206.202.139	64.222.199.18	110.232.75.242	40.193.14.188
118.123.173.18	117.252.0.162	57.88.137.157	115.78.9.126