104.151.2.106 - IPInfo

Basic Info

City: Nürnberg

Region: Bayern

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.151.246.108	attackbots	SIP attack	2020-10-08 02:46:22
104.151.246.108	attackspambots	SIP attack	2020-10-07 19:00:10
104.151.24.251	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 13-03-2020 12:45:14.	2020-03-14 03:05:07
104.151.22.170	attackspambots	2020-03-13 00:21:12(GMT+8) - /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	2020-03-13 00:30:54
104.151.219.114	attackbots	20/2/10@08:39:29: FAIL: Alarm-Network address from=104.151.219.114 20/2/10@08:39:29: FAIL: Alarm-Network address from=104.151.219.114 ...	2020-02-11 01:41:41
104.151.234.212	attackspambots	Wordpress XMLRPC attack	2019-12-09 08:14:24
104.151.211.4	attackbots	Automatic report - Banned IP Access	2019-11-23 04:22:37
104.151.219.10	attackbotsspam	3389BruteforceFW21	2019-11-17 19:44:48
104.151.231.210	attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2019-11-11 02:21:17
104.151.231.194	attackspambots	Honeypot attack, port: 445, PTR: 194.231-151-104.rdns.scalabledns.com.	2019-10-31 14:45:21
104.151.24.9	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 20-10-2019 21:25:18.	2019-10-21 06:36:43
104.151.28.87	attackbots	(From noreply@gplforest5549.live) Hello There, Are you presently working with Wordpress/Woocommerce or maybe do you intend to use it as time goes on ? We offer over 2500 premium plugins as well as themes 100 percent free to download : http://trunch.xyz/PB3mh Cheers, Valerie	2019-10-13 20:49:10
104.151.234.136	attackbotsspam	Trying to authenticate into phone servers.	2019-09-13 00:09:25
104.151.23.2	attackbotsspam	Port Scan: TCP/445	2019-08-05 04:14:08
104.151.22.149	attack	Automatic report - Web App Attack	2019-07-07 13:42:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.151.2.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.151.2.106.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024060300 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 03 16:40:40 CST 2024
;; MSG SIZE  rcvd: 106

Host info

106.2.151.104.in-addr.arpa domain name pointer i6897026A.versanet.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.2.151.104.in-addr.arpa	name = i6897026A.versanet.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.176.35.81	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-02-06 08:11:53
189.7.17.61	attack	Unauthorized connection attempt detected from IP address 189.7.17.61 to port 2220 [J]	2020-02-06 07:59:50
163.172.45.60	attackbotsspam	163.172.45.60 - - \[06/Feb/2020:01:26:27 +0100\] "POST /wp-login.php HTTP/1.0" 200 7672 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 163.172.45.60 - - \[06/Feb/2020:01:26:28 +0100\] "POST /wp-login.php HTTP/1.0" 200 7502 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 163.172.45.60 - - \[06/Feb/2020:01:26:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 7496 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-02-06 08:28:32
111.231.132.94	attackbots	Unauthorized connection attempt detected from IP address 111.231.132.94 to port 2220 [J]	2020-02-06 08:20:06
162.243.10.55	attackspambots	$f2bV_matches	2020-02-06 08:19:07
31.41.84.17	attackspambots	Automatic report - Port Scan Attack	2020-02-06 08:30:27
129.204.67.235	attackspam	Tried sshing with brute force.	2020-02-06 08:15:23
180.71.47.198	attackspambots	Feb 5 14:10:01 sachi sshd\[1126\]: Invalid user dtf from 180.71.47.198 Feb 5 14:10:01 sachi sshd\[1126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.71.47.198 Feb 5 14:10:03 sachi sshd\[1126\]: Failed password for invalid user dtf from 180.71.47.198 port 37108 ssh2 Feb 5 14:12:24 sachi sshd\[1296\]: Invalid user kd from 180.71.47.198 Feb 5 14:12:24 sachi sshd\[1296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.71.47.198	2020-02-06 08:29:40
89.205.126.245	attackspambots	Unauthorized connection attempt detected from IP address 89.205.126.245 to port 26 [J]	2020-02-06 07:47:50
181.30.28.247	attackbots	Unauthorized connection attempt detected from IP address 181.30.28.247 to port 2220 [J]	2020-02-06 08:27:09
218.92.0.158	attackbotsspam	2020-02-06T00:14:07.416Z CLOSE host=218.92.0.158 port=47527 fd=4 time=20.011 bytes=8 ...	2020-02-06 08:14:27
5.9.155.37	attackspambots	20 attempts against mh-misbehave-ban on leaf	2020-02-06 08:02:32
41.74.112.15	attackspambots	Feb 6 00:55:30 plex sshd[8350]: Invalid user sbdc from 41.74.112.15 port 60015	2020-02-06 07:57:57
123.140.114.196	attackbotsspam	Feb 5 13:48:22 hpm sshd\[22223\]: Invalid user cxf from 123.140.114.196 Feb 5 13:48:22 hpm sshd\[22223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.140.114.196 Feb 5 13:48:24 hpm sshd\[22223\]: Failed password for invalid user cxf from 123.140.114.196 port 34714 ssh2 Feb 5 13:52:05 hpm sshd\[22625\]: Invalid user avk from 123.140.114.196 Feb 5 13:52:05 hpm sshd\[22625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.140.114.196	2020-02-06 08:12:16
35.182.38.96	attackbots	serveres are UTC Lines containing failures of 35.182.38.96 Feb 3 17:42:33 tux2 sshd[25279]: Failed password for r.r from 35.182.38.96 port 34390 ssh2 Feb 3 17:42:33 tux2 sshd[25279]: Received disconnect from 35.182.38.96 port 34390:11: Bye Bye [preauth] Feb 3 17:42:33 tux2 sshd[25279]: Disconnected from authenticating user r.r 35.182.38.96 port 34390 [preauth] Feb 3 17:46:43 tux2 sshd[25511]: Invalid user romani from 35.182.38.96 port 43524 Feb 3 17:46:43 tux2 sshd[25511]: Failed password for invalid user romani from 35.182.38.96 port 43524 ssh2 Feb 3 17:46:43 tux2 sshd[25511]: Received disconnect from 35.182.38.96 port 43524:11: Bye Bye [preauth] Feb 3 17:46:43 tux2 sshd[25511]: Disconnected from invalid user romani 35.182.38.96 port 43524 [preauth] Feb 3 17:51:58 tux2 sshd[25806]: Invalid user spider from 35.182.38.96 port 45746 Feb 3 17:51:58 tux2 sshd[25806]: Failed password for invalid user spider from 35.182.38.96 port 45746 ssh2 Feb 3 17:51:58 tux2 sshd........ ------------------------------	2020-02-06 08:20:58

Recently Reported IPs

6.96.184.225	81.48.35.94	52.47.48.74	228.50.46.74
14.128.19.126	142.156.48.117	242.132.174.31	31.242.178.96
167.130.111.41	87.138.241.226	204.53.217.223	219.135.10.63
114.95.7.231	116.51.239.128	15.41.232.69	83.78.89.90
33.106.140.120	18.111.102.202	121.152.215.98	184.24.243.58