128.199.150.11

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Exploited Host.	2020-07-26 04:18:24
attackbots	Apr 11 14:17:00 cvbnet sshd[28067]: Failed password for root from 128.199.150.11 port 44491 ssh2 Apr 11 14:21:05 cvbnet sshd[28106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11 ...	2020-04-11 20:24:17
attackspam	2020-04-08T12:40:10.328780shield sshd\[4304\]: Invalid user gio from 128.199.150.11 port 61534 2020-04-08T12:40:10.332519shield sshd\[4304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11 2020-04-08T12:40:12.521958shield sshd\[4304\]: Failed password for invalid user gio from 128.199.150.11 port 61534 ssh2 2020-04-08T12:42:02.388985shield sshd\[4656\]: Invalid user nginx from 128.199.150.11 port 21617 2020-04-08T12:42:02.393089shield sshd\[4656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11	2020-04-08 22:48:04
attackbots	Apr 6 17:18:47 legacy sshd[22557]: Failed password for root from 128.199.150.11 port 12920 ssh2 Apr 6 17:23:11 legacy sshd[22630]: Failed password for root from 128.199.150.11 port 15387 ssh2 ...	2020-04-06 23:32:58
attackspambots	SSH login attempts.	2020-04-04 15:09:06
attackspambots	$f2bV_matches	2020-04-03 17:08:54
attackspambots	SSH brute-force attempt	2020-03-31 18:22:01

相同子网IP讨论:

IP	类型	评论内容	时间
128.199.150.228	attackbots	Apr 16 05:51:55 minden010 sshd[28265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Apr 16 05:51:56 minden010 sshd[28265]: Failed password for invalid user albert from 128.199.150.228 port 59642 ssh2 Apr 16 05:55:53 minden010 sshd[29527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 ...	2020-04-16 12:34:03
128.199.150.228	attack	'Fail2Ban'	2020-04-02 03:32:03
128.199.150.215	attackbotsspam	(sshd) Failed SSH login from 128.199.150.215 (SG/Singapore/-): 5 in the last 3600 secs	2020-03-30 19:17:25
128.199.150.228	attackbots	Mar 29 09:15:50 firewall sshd[29575]: Invalid user admin from 128.199.150.228 Mar 29 09:15:52 firewall sshd[29575]: Failed password for invalid user admin from 128.199.150.228 port 42990 ssh2 Mar 29 09:20:28 firewall sshd[29911]: Invalid user access from 128.199.150.228 ...	2020-03-29 20:47:41
128.199.150.228	attack	Mar 24 18:28:55 sigma sshd\[12408\]: Invalid user discordbot from 128.199.150.228Mar 24 18:28:57 sigma sshd\[12408\]: Failed password for invalid user discordbot from 128.199.150.228 port 34518 ssh2 ...	2020-03-25 05:55:10
128.199.150.228	attackbotsspam	Mar 20 18:16:01 srv206 sshd[3185]: Invalid user administrator from 128.199.150.228 ...	2020-03-21 01:23:05
128.199.150.228	attack	Mar 19 18:57:43 plex sshd[6870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 19 18:57:44 plex sshd[6870]: Failed password for root from 128.199.150.228 port 60056 ssh2 Mar 19 18:59:22 plex sshd[6909]: Invalid user cod2 from 128.199.150.228 port 47362 Mar 19 18:59:22 plex sshd[6909]: Invalid user cod2 from 128.199.150.228 port 47362	2020-03-20 03:54:38
128.199.150.228	attackbots	Invalid user ts3user from 128.199.150.228 port 39830	2020-03-12 04:44:19
128.199.150.228	attackbotsspam	Mar 11 15:53:33 itv-usvr-02 sshd[20281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 11 16:00:46 itv-usvr-02 sshd[20502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 11 16:03:04 itv-usvr-02 sshd[20552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root	2020-03-11 17:19:50
128.199.150.228	attackspam	Mar 10 11:16:11 server sshd\[24362\]: Invalid user ts3server from 128.199.150.228 Mar 10 11:16:11 server sshd\[24362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Mar 10 11:16:12 server sshd\[24362\]: Failed password for invalid user ts3server from 128.199.150.228 port 52476 ssh2 Mar 10 11:22:26 server sshd\[25404\]: Invalid user nisuser1 from 128.199.150.228 Mar 10 11:22:26 server sshd\[25404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 ...	2020-03-10 16:30:25
128.199.150.228	attackbots	detected by Fail2Ban	2020-03-08 16:54:38
128.199.150.228	attackspam	Feb 27 20:16:58 localhost sshd\[15380\]: Invalid user xutong from 128.199.150.228 port 39876 Feb 27 20:16:58 localhost sshd\[15380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Feb 27 20:17:00 localhost sshd\[15380\]: Failed password for invalid user xutong from 128.199.150.228 port 39876 ssh2	2020-02-28 03:30:26
128.199.150.228	attack	Feb 17 05:01:59 hpm sshd\[21236\]: Invalid user nwes from 128.199.150.228 Feb 17 05:01:59 hpm sshd\[21236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Feb 17 05:02:00 hpm sshd\[21236\]: Failed password for invalid user nwes from 128.199.150.228 port 48798 ssh2 Feb 17 05:05:44 hpm sshd\[21539\]: Invalid user plex from 128.199.150.228 Feb 17 05:05:44 hpm sshd\[21539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228	2020-02-17 23:08:04
128.199.150.228	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-01-24 01:41:06
128.199.150.228	attackbots	Unauthorized connection attempt detected from IP address 128.199.150.228 to port 2220 [J]	2020-01-06 08:00:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.199.150.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62500
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.199.150.11.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033100 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 18:21:57 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 11.150.199.128.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.150.199.128.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.84.218.148	attack	firewall-block, port(s): 1433/tcp	2020-03-31 18:48:20
123.20.106.104	attackbots	Mar 30 22:50:36 mailman postfix/smtpd[31608]: NOQUEUE: reject: RCPT from unknown[123.20.106.104]: 554 5.7.1 Service unavailable; Client host [123.20.106.104] blocked using dnsbl.dronebl.org; IRC spam drone (litmus/sdbot/fyle); from= to= proto=ESMTP helo= Mar 30 22:50:37 mailman postfix/smtpd[31608]: NOQUEUE: reject: RCPT from unknown[123.20.106.104]: 554 5.7.1 Service unavailable; Client host [123.20.106.104] blocked using dnsbl.dronebl.org; IRC spam drone (litmus/sdbot/fyle); from= to= proto=ESMTP helo=	2020-03-31 18:29:44
223.71.167.164	attackbots	Unauthorized connection attempt detected from IP address 223.71.167.164 to port 2083	2020-03-31 18:26:46
52.166.68.207	attackbotsspam	firewall-block, port(s): 7067/tcp	2020-03-31 18:55:47
199.188.203.106	attack	xmlrpc attack	2020-03-31 18:43:33
61.136.184.75	attackspambots	Mar 31 16:04:56 itv-usvr-01 sshd[15424]: Invalid user test from 61.136.184.75 Mar 31 16:04:56 itv-usvr-01 sshd[15424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.136.184.75 Mar 31 16:04:56 itv-usvr-01 sshd[15424]: Invalid user test from 61.136.184.75 Mar 31 16:04:58 itv-usvr-01 sshd[15424]: Failed password for invalid user test from 61.136.184.75 port 41681 ssh2 Mar 31 16:08:13 itv-usvr-01 sshd[15549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.136.184.75 user=root Mar 31 16:08:15 itv-usvr-01 sshd[15549]: Failed password for root from 61.136.184.75 port 33159 ssh2	2020-03-31 18:55:03
51.38.130.205	attack	Mar 31 11:56:02 ns381471 sshd[4829]: Failed password for root from 51.38.130.205 port 54646 ssh2 Mar 31 11:59:59 ns381471 sshd[5092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.205	2020-03-31 18:26:32
188.166.232.14	attackspam	Mar 31 09:12:22 host sshd[26777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14 user=root Mar 31 09:12:25 host sshd[26777]: Failed password for root from 188.166.232.14 port 44836 ssh2 ...	2020-03-31 18:47:03
222.255.114.251	attack	IP blocked	2020-03-31 18:52:29
23.76.239.217	attackspam	Mar 31 05:50:24 debian-2gb-nbg1-2 kernel: \[7885679.058365\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=23.76.239.217 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=0 DF PROTO=TCP SPT=80 DPT=62255 WINDOW=29200 RES=0x00 ACK SYN URGP=0	2020-03-31 18:42:22
119.29.16.76	attackbots	Mar 31 11:56:53 vserver sshd\[26571\]: Failed password for root from 119.29.16.76 port 40103 ssh2Mar 31 11:58:58 vserver sshd\[26598\]: Failed password for root from 119.29.16.76 port 51975 ssh2Mar 31 12:01:08 vserver sshd\[26610\]: Invalid user nt from 119.29.16.76Mar 31 12:01:11 vserver sshd\[26610\]: Failed password for invalid user nt from 119.29.16.76 port 63864 ssh2 ...	2020-03-31 18:15:58
141.98.80.27	attack	Mar 31 11:29:32 mail postfix/smtpd\[24255\]: warning: unknown\[141.98.80.27\]: SASL PLAIN authentication failed: \ Mar 31 11:29:49 mail postfix/smtpd\[24255\]: warning: unknown\[141.98.80.27\]: SASL PLAIN authentication failed: \ Mar 31 12:02:30 mail postfix/smtpd\[25135\]: warning: unknown\[141.98.80.27\]: SASL PLAIN authentication failed: \ Mar 31 12:02:47 mail postfix/smtpd\[25158\]: warning: unknown\[141.98.80.27\]: SASL PLAIN authentication failed: \	2020-03-31 18:42:36
49.232.81.191	attack	Mar 31 07:10:54 ourumov-web sshd\[22312\]: Invalid user vd from 49.232.81.191 port 46348 Mar 31 07:10:54 ourumov-web sshd\[22312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.81.191 Mar 31 07:10:56 ourumov-web sshd\[22312\]: Failed password for invalid user vd from 49.232.81.191 port 46348 ssh2 ...	2020-03-31 18:25:21
111.167.180.3	attackspambots	firewall-block, port(s): 23/tcp	2020-03-31 18:51:33
114.67.74.139	attack	Mar 31 10:45:18 haigwepa sshd[17355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.74.139 Mar 31 10:45:20 haigwepa sshd[17355]: Failed password for invalid user deploy from 114.67.74.139 port 48376 ssh2 ...	2020-03-31 18:31:00

最近上报的IP列表

203.147.76.146	180.242.175.200	177.84.218.148	78.129.156.60
36.233.182.24	36.70.121.210	188.162.64.69	180.242.223.243
113.160.224.201	111.167.180.3	36.74.10.61	103.243.141.144
52.142.28.240	52.166.68.207	112.72.94.160	83.211.37.122
94.168.80.13	151.80.66.18	113.183.192.111	27.54.51.69