128.199.150.11

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Exploited Host.	2020-07-26 04:18:24
attackbots	Apr 11 14:17:00 cvbnet sshd[28067]: Failed password for root from 128.199.150.11 port 44491 ssh2 Apr 11 14:21:05 cvbnet sshd[28106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11 ...	2020-04-11 20:24:17
attackspam	2020-04-08T12:40:10.328780shield sshd\[4304\]: Invalid user gio from 128.199.150.11 port 61534 2020-04-08T12:40:10.332519shield sshd\[4304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11 2020-04-08T12:40:12.521958shield sshd\[4304\]: Failed password for invalid user gio from 128.199.150.11 port 61534 ssh2 2020-04-08T12:42:02.388985shield sshd\[4656\]: Invalid user nginx from 128.199.150.11 port 21617 2020-04-08T12:42:02.393089shield sshd\[4656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.11	2020-04-08 22:48:04
attackbots	Apr 6 17:18:47 legacy sshd[22557]: Failed password for root from 128.199.150.11 port 12920 ssh2 Apr 6 17:23:11 legacy sshd[22630]: Failed password for root from 128.199.150.11 port 15387 ssh2 ...	2020-04-06 23:32:58
attackspambots	SSH login attempts.	2020-04-04 15:09:06
attackspambots	$f2bV_matches	2020-04-03 17:08:54
attackspambots	SSH brute-force attempt	2020-03-31 18:22:01

相同子网IP讨论:

IP	类型	评论内容	时间
128.199.150.228	attackbots	Apr 16 05:51:55 minden010 sshd[28265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Apr 16 05:51:56 minden010 sshd[28265]: Failed password for invalid user albert from 128.199.150.228 port 59642 ssh2 Apr 16 05:55:53 minden010 sshd[29527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 ...	2020-04-16 12:34:03
128.199.150.228	attack	'Fail2Ban'	2020-04-02 03:32:03
128.199.150.215	attackbotsspam	(sshd) Failed SSH login from 128.199.150.215 (SG/Singapore/-): 5 in the last 3600 secs	2020-03-30 19:17:25
128.199.150.228	attackbots	Mar 29 09:15:50 firewall sshd[29575]: Invalid user admin from 128.199.150.228 Mar 29 09:15:52 firewall sshd[29575]: Failed password for invalid user admin from 128.199.150.228 port 42990 ssh2 Mar 29 09:20:28 firewall sshd[29911]: Invalid user access from 128.199.150.228 ...	2020-03-29 20:47:41
128.199.150.228	attack	Mar 24 18:28:55 sigma sshd\[12408\]: Invalid user discordbot from 128.199.150.228Mar 24 18:28:57 sigma sshd\[12408\]: Failed password for invalid user discordbot from 128.199.150.228 port 34518 ssh2 ...	2020-03-25 05:55:10
128.199.150.228	attackbotsspam	Mar 20 18:16:01 srv206 sshd[3185]: Invalid user administrator from 128.199.150.228 ...	2020-03-21 01:23:05
128.199.150.228	attack	Mar 19 18:57:43 plex sshd[6870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 19 18:57:44 plex sshd[6870]: Failed password for root from 128.199.150.228 port 60056 ssh2 Mar 19 18:59:22 plex sshd[6909]: Invalid user cod2 from 128.199.150.228 port 47362 Mar 19 18:59:22 plex sshd[6909]: Invalid user cod2 from 128.199.150.228 port 47362	2020-03-20 03:54:38
128.199.150.228	attackbots	Invalid user ts3user from 128.199.150.228 port 39830	2020-03-12 04:44:19
128.199.150.228	attackbotsspam	Mar 11 15:53:33 itv-usvr-02 sshd[20281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 11 16:00:46 itv-usvr-02 sshd[20502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root Mar 11 16:03:04 itv-usvr-02 sshd[20552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 user=root	2020-03-11 17:19:50
128.199.150.228	attackspam	Mar 10 11:16:11 server sshd\[24362\]: Invalid user ts3server from 128.199.150.228 Mar 10 11:16:11 server sshd\[24362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Mar 10 11:16:12 server sshd\[24362\]: Failed password for invalid user ts3server from 128.199.150.228 port 52476 ssh2 Mar 10 11:22:26 server sshd\[25404\]: Invalid user nisuser1 from 128.199.150.228 Mar 10 11:22:26 server sshd\[25404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 ...	2020-03-10 16:30:25
128.199.150.228	attackbots	detected by Fail2Ban	2020-03-08 16:54:38
128.199.150.228	attackspam	Feb 27 20:16:58 localhost sshd\[15380\]: Invalid user xutong from 128.199.150.228 port 39876 Feb 27 20:16:58 localhost sshd\[15380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Feb 27 20:17:00 localhost sshd\[15380\]: Failed password for invalid user xutong from 128.199.150.228 port 39876 ssh2	2020-02-28 03:30:26
128.199.150.228	attack	Feb 17 05:01:59 hpm sshd\[21236\]: Invalid user nwes from 128.199.150.228 Feb 17 05:01:59 hpm sshd\[21236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228 Feb 17 05:02:00 hpm sshd\[21236\]: Failed password for invalid user nwes from 128.199.150.228 port 48798 ssh2 Feb 17 05:05:44 hpm sshd\[21539\]: Invalid user plex from 128.199.150.228 Feb 17 05:05:44 hpm sshd\[21539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.150.228	2020-02-17 23:08:04
128.199.150.228	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-01-24 01:41:06
128.199.150.228	attackbots	Unauthorized connection attempt detected from IP address 128.199.150.228 to port 2220 [J]	2020-01-06 08:00:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.199.150.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62500
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.199.150.11.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033100 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 18:21:57 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 11.150.199.128.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.150.199.128.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.61.176.53	attackspambots	SSH brute-force: detected 30 distinct usernames within a 24-hour window.	2019-12-24 02:02:45
192.99.151.33	attack	SSH Bruteforce attempt	2019-12-24 02:23:04
129.211.147.123	attackspambots	Nov 28 19:55:49 yesfletchmain sshd\[11491\]: Invalid user matrix from 129.211.147.123 port 38548 Nov 28 19:55:49 yesfletchmain sshd\[11491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.147.123 Nov 28 19:55:51 yesfletchmain sshd\[11491\]: Failed password for invalid user matrix from 129.211.147.123 port 38548 ssh2 Nov 28 19:59:28 yesfletchmain sshd\[11674\]: Invalid user cable from 129.211.147.123 port 46236 Nov 28 19:59:28 yesfletchmain sshd\[11674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.147.123 ...	2019-12-24 02:05:04
142.93.94.86	attackbots	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2019-12-24 02:13:13
185.153.196.80	attack	12/23/2019-12:32:00.597783 185.153.196.80 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-24 02:07:53
114.36.106.128	attackspam	Unauthorized connection attempt detected from IP address 114.36.106.128 to port 445	2019-12-24 02:24:56
124.156.50.145	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 02:05:16
122.114.157.184	attackbots	Dec 23 18:42:47 localhost sshd\[30028\]: Invalid user heile from 122.114.157.184 port 36816 Dec 23 18:42:47 localhost sshd\[30028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.157.184 Dec 23 18:42:49 localhost sshd\[30028\]: Failed password for invalid user heile from 122.114.157.184 port 36816 ssh2	2019-12-24 01:53:49
37.187.99.3	attackbots	Dec 23 16:47:14 vps647732 sshd[28725]: Failed password for root from 37.187.99.3 port 54682 ssh2 ...	2019-12-24 01:57:44
129.211.131.152	attack	Dec 5 19:19:59 yesfletchmain sshd\[25412\]: Invalid user rpm from 129.211.131.152 port 53046 Dec 5 19:19:59 yesfletchmain sshd\[25412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.131.152 Dec 5 19:20:01 yesfletchmain sshd\[25412\]: Failed password for invalid user rpm from 129.211.131.152 port 53046 ssh2 Dec 5 19:26:51 yesfletchmain sshd\[25553\]: Invalid user test from 129.211.131.152 port 58150 Dec 5 19:26:51 yesfletchmain sshd\[25553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.131.152 ...	2019-12-24 02:08:45
124.156.50.171	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 01:50:59
129.211.35.190	attackspambots	Mar 5 00:26:10 dillonfme sshd\[28799\]: Invalid user tz from 129.211.35.190 port 56470 Mar 5 00:26:10 dillonfme sshd\[28799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.35.190 Mar 5 00:26:12 dillonfme sshd\[28799\]: Failed password for invalid user tz from 129.211.35.190 port 56470 ssh2 Mar 5 00:32:28 dillonfme sshd\[28932\]: Invalid user nagios from 129.211.35.190 port 52518 Mar 5 00:32:28 dillonfme sshd\[28932\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.35.190 ...	2019-12-24 01:58:52
91.243.175.243	attackspam	Dec 23 15:51:18 meumeu sshd[23134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.243.175.243 Dec 23 15:51:20 meumeu sshd[23134]: Failed password for invalid user garaffa from 91.243.175.243 port 59074 ssh2 Dec 23 15:57:15 meumeu sshd[23945]: Failed password for root from 91.243.175.243 port 49354 ssh2 ...	2019-12-24 02:15:45
103.254.120.222	attack	Dec 23 16:29:13 [host] sshd[24116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.120.222 user=www-data Dec 23 16:29:14 [host] sshd[24116]: Failed password for www-data from 103.254.120.222 port 33822 ssh2 Dec 23 16:35:41 [host] sshd[24261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.120.222 user=root	2019-12-24 02:10:28
222.186.180.6	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-12-24 02:20:55

最近上报的IP列表

203.147.76.146	180.242.175.200	177.84.218.148	78.129.156.60
36.233.182.24	36.70.121.210	188.162.64.69	180.242.223.243
113.160.224.201	111.167.180.3	36.74.10.61	103.243.141.144
52.142.28.240	52.166.68.207	112.72.94.160	83.211.37.122
94.168.80.13	151.80.66.18	113.183.192.111	27.54.51.69