184.105.139.98

基本信息:

城市(city): Fremont

省份(region): California

国家(country): United States

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): Hurricane Electric LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	1600997224 - 09/25/2020 03:27:04 Host: 184.105.139.98/184.105.139.98 Port: 69 UDP Blocked ...	2020-09-25 10:16:32
attackbotsspam	Found on Github Combined on 3 lists / proto=17 . srcport=15284 . dstport=69 . (1131)	2020-09-21 00:32:35
attack	Hit honeypot r.	2020-09-20 16:25:46
attack	Unwanted checking 80 or 443 port ...	2020-09-08 15:12:44
attackspam	TCP (SYN) 184.105.139.98:34615 -> port 2323, len 40	2020-09-08 07:45:30
attack	firewall-block, port(s): 50070/tcp	2020-01-25 04:13:18
attack	Port scan: Attack repeated for 24 hours	2019-11-06 03:38:51
attackspam	Honeypot hit.	2019-09-13 15:01:31

相同子网IP讨论:

IP	类型	评论内容	时间
184.105.139.105	attackproxy	Compromised IP	2024-05-09 23:09:39
184.105.139.109	attackproxy	Vulnerability Scanner	2024-04-30 12:59:43
184.105.139.70	attack	Vulnerability Scanner	2024-04-20 00:30:49
184.105.139.90	botsattackproxy	Ddos bot	2024-04-20 00:26:45
184.105.139.68	attack	Vulnerability Scanner	2024-04-10 01:16:38
184.105.139.69	proxy	VPN fraud	2023-05-15 19:23:33
184.105.139.120	proxy	VPN fraud	2023-05-10 13:17:43
184.105.139.103	proxy	VPN fraud	2023-03-20 14:02:25
184.105.139.99	proxy	VPN fraud	2023-03-20 13:57:09
184.105.139.74	proxy	VPN	2023-01-30 14:03:54
184.105.139.86	proxy	VPN	2023-01-19 13:51:12
184.105.139.124	attackproxy	VPN	2022-12-29 20:40:24
184.105.139.124	attack	VPN	2022-12-29 20:40:21
184.105.139.126	proxy	Attack VPN	2022-12-09 13:59:02
184.105.139.70	attackbotsspam	TCP (SYN) 184.105.139.70:51140 -> port 5900, len 40	2020-10-14 04:24:47

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 184.105.139.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22130
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;184.105.139.98.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 11:20:27 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

98.139.105.184.in-addr.arpa is an alias for 98.64-26.139.105.184.in-addr.arpa.
98.64-26.139.105.184.in-addr.arpa domain name pointer scan-04g.shadowserver.org.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
98.139.105.184.in-addr.arpa	canonical name = 98.64-26.139.105.184.in-addr.arpa.
98.64-26.139.105.184.in-addr.arpa	name = scan-04g.shadowserver.org.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.211.80.60	attackspam	SSH-bruteforce attempts	2019-07-26 23:22:46
120.132.31.120	attackspam	Invalid user hadoop from 120.132.31.120 port 45088	2019-07-26 22:22:17
172.104.55.186	attack	2019-07-26T14:40:29.432096lon01.zurich-datacenter.net sshd\[11042\]: Invalid user ec2-user from 172.104.55.186 port 35404 2019-07-26T14:40:29.438036lon01.zurich-datacenter.net sshd\[11042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li1635-186.members.linode.com 2019-07-26T14:40:30.937014lon01.zurich-datacenter.net sshd\[11042\]: Failed password for invalid user ec2-user from 172.104.55.186 port 35404 ssh2 2019-07-26T14:47:42.323499lon01.zurich-datacenter.net sshd\[11175\]: Invalid user steven from 172.104.55.186 port 34496 2019-07-26T14:47:42.328914lon01.zurich-datacenter.net sshd\[11175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li1635-186.members.linode.com ...	2019-07-26 22:20:34
185.173.35.57	attackspambots	Unauthorized connection attempt from IP address 185.173.35.57 on Port 143(IMAP)	2019-07-26 22:54:48
89.207.131.33	attackspam	SIP brute force	2019-07-26 22:45:45
188.94.229.10	attack	RDP brute force attack detected by fail2ban	2019-07-26 23:06:13
132.248.52.28	attackbots	2019-07-26T14:30:34.828158abusebot-8.cloudsearch.cf sshd\[18181\]: Invalid user ts3 from 132.248.52.28 port 47712	2019-07-26 22:43:58
140.143.206.137	attackspam	Jul 26 16:38:09 eventyay sshd[25466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.206.137 Jul 26 16:38:12 eventyay sshd[25466]: Failed password for invalid user benoit from 140.143.206.137 port 56502 ssh2 Jul 26 16:42:10 eventyay sshd[26558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.206.137 ...	2019-07-26 22:57:38
122.195.200.14	attackbots	Jul 26 16:27:04 MainVPS sshd[25111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.14 user=root Jul 26 16:27:06 MainVPS sshd[25111]: Failed password for root from 122.195.200.14 port 62216 ssh2 Jul 26 16:27:22 MainVPS sshd[25128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.14 user=root Jul 26 16:27:23 MainVPS sshd[25128]: Failed password for root from 122.195.200.14 port 45119 ssh2 Jul 26 16:27:32 MainVPS sshd[25145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.14 user=root Jul 26 16:27:33 MainVPS sshd[25145]: Failed password for root from 122.195.200.14 port 30527 ssh2 ...	2019-07-26 22:32:46
80.242.220.50	attackbots	SMB Server BruteForce Attack	2019-07-26 22:23:55
41.79.49.53	attackspam	20 attempts against mh-ssh on gold.magehost.pro	2019-07-26 23:11:24
211.95.58.148	attack	2019-07-26T13:51:41.974013abusebot-8.cloudsearch.cf sshd\[18013\]: Invalid user analytics from 211.95.58.148 port 16614	2019-07-26 22:11:22
163.171.178.52	attack	Jul 26 10:08:57 xtremcommunity sshd\[25983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.171.178.52 user=root Jul 26 10:08:59 xtremcommunity sshd\[25983\]: Failed password for root from 163.171.178.52 port 53332 ssh2 Jul 26 10:12:10 xtremcommunity sshd\[26105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.171.178.52 user=mysql Jul 26 10:12:12 xtremcommunity sshd\[26105\]: Failed password for mysql from 163.171.178.52 port 54460 ssh2 Jul 26 10:15:24 xtremcommunity sshd\[26148\]: Invalid user lobo from 163.171.178.52 port 55584 Jul 26 10:15:24 xtremcommunity sshd\[26148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.171.178.52 ...	2019-07-26 22:29:26
35.168.51.238	attackbotsspam	Jul 26 16:27:19 eventyay sshd[22535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.168.51.238 Jul 26 16:27:22 eventyay sshd[22535]: Failed password for invalid user alex from 35.168.51.238 port 39900 ssh2 Jul 26 16:31:56 eventyay sshd[23834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.168.51.238 ...	2019-07-26 22:40:58
159.203.89.113	attack	Jul 26 18:10:21 server sshd\[18265\]: Invalid user deb from 159.203.89.113 port 57586 Jul 26 18:10:21 server sshd\[18265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.89.113 Jul 26 18:10:23 server sshd\[18265\]: Failed password for invalid user deb from 159.203.89.113 port 57586 ssh2 Jul 26 18:15:06 server sshd\[28993\]: Invalid user pa from 159.203.89.113 port 52296 Jul 26 18:15:06 server sshd\[28993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.89.113	2019-07-26 23:18:09

最近上报的IP列表

193.70.81.238	61.7.235.211	27.150.169.95	27.72.227.134
14.184.94.24	81.30.200.102	27.8.182.17	81.209.62.45
27.3.249.168	213.148.198.36	77.50.244.115	186.210.70.180
42.113.194.193	24.182.70.23	134.209.236.72	159.89.237.239
23.248.219.52	186.31.64.114	23.228.67.226	101.96.120.31