174.138.6.146 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	F2B jail: sshd. Time: 2019-09-21 14:58:57, Reported by: VKReport	2019-09-21 21:43:04
attack	Invalid user fitri from 174.138.6.146 port 53866	2019-09-21 16:37:30
attackspambots	Sep 19 22:51:21 tux-35-217 sshd\[12423\]: Invalid user ubnt from 174.138.6.146 port 54652 Sep 19 22:51:21 tux-35-217 sshd\[12423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Sep 19 22:51:23 tux-35-217 sshd\[12423\]: Failed password for invalid user ubnt from 174.138.6.146 port 54652 ssh2 Sep 19 22:54:51 tux-35-217 sshd\[12447\]: Invalid user jack from 174.138.6.146 port 39056 Sep 19 22:54:51 tux-35-217 sshd\[12447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 ...	2019-09-20 05:03:22
attack	Reported by AbuseIPDB proxy server.	2019-09-16 11:19:18
attackspam	Automatic report - Banned IP Access	2019-09-08 16:26:26
attackbotsspam	Aug 29 11:41:00 OPSO sshd\[27326\]: Invalid user darkblue from 174.138.6.146 port 42128 Aug 29 11:41:00 OPSO sshd\[27326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 29 11:41:01 OPSO sshd\[27326\]: Failed password for invalid user darkblue from 174.138.6.146 port 42128 ssh2 Aug 29 11:44:44 OPSO sshd\[27842\]: Invalid user lsfadmin from 174.138.6.146 port 58536 Aug 29 11:44:44 OPSO sshd\[27842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146	2019-08-29 17:50:38
attack	Aug 26 16:31:18 itv-usvr-01 sshd[19711]: Invalid user kush from 174.138.6.146 Aug 26 16:31:18 itv-usvr-01 sshd[19711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 26 16:31:18 itv-usvr-01 sshd[19711]: Invalid user kush from 174.138.6.146 Aug 26 16:31:20 itv-usvr-01 sshd[19711]: Failed password for invalid user kush from 174.138.6.146 port 60936 ssh2 Aug 26 16:38:02 itv-usvr-01 sshd[19947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 user=root Aug 26 16:38:04 itv-usvr-01 sshd[19947]: Failed password for root from 174.138.6.146 port 43892 ssh2	2019-08-26 19:52:52
attackspam	Port Scan detected from 174.138.6.146 (NL/Netherlands/-). 4 hits in the last 175 seconds	2019-08-16 02:04:56
attackspam	Aug 13 08:03:14 carla sshd[1677]: Invalid user zimbra from 174.138.6.146 Aug 13 08:03:14 carla sshd[1677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 13 08:03:15 carla sshd[1677]: Failed password for invalid user zimbra from 174.138.6.146 port 59878 ssh2 Aug 13 08:03:15 carla sshd[1678]: Received disconnect from 174.138.6.146: 11: Bye Bye Aug 13 08:21:45 carla sshd[1767]: Invalid user vnc from 174.138.6.146 Aug 13 08:21:45 carla sshd[1767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 13 08:21:48 carla sshd[1767]: Failed password for invalid user vnc from 174.138.6.146 port 55196 ssh2 Aug 13 08:21:48 carla sshd[1768]: Received disconnect from 174.138.6.146: 11: Bye Bye Aug 13 08:28:34 carla sshd[1809]: Invalid user lai from 174.138.6.146 Aug 13 08:28:34 carla sshd[1809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r........ -------------------------------	2019-08-14 04:38:39

相同子网IP讨论:

IP	类型	评论内容	时间
174.138.64.163	attackspambots	TCP (SYN) 174.138.64.163:52575 -> port 2273, len 44	2020-09-23 02:32:41
174.138.64.163	attack	TCP port : 2273	2020-09-22 18:37:58
174.138.64.163	attackbots	prod6 ...	2020-09-16 01:44:43
174.138.64.163	attack	<6 unauthorized SSH connections	2020-09-15 17:37:44
174.138.64.163	attack	Port Scan ...	2020-08-31 01:57:02
174.138.64.163	attack	Aug 24 15:46:39 pkdns2 sshd\[10200\]: Invalid user tobias from 174.138.64.163Aug 24 15:46:41 pkdns2 sshd\[10200\]: Failed password for invalid user tobias from 174.138.64.163 port 60598 ssh2Aug 24 15:48:36 pkdns2 sshd\[10294\]: Invalid user dsadm from 174.138.64.163Aug 24 15:48:38 pkdns2 sshd\[10294\]: Failed password for invalid user dsadm from 174.138.64.163 port 33092 ssh2Aug 24 15:50:33 pkdns2 sshd\[10419\]: Invalid user clare from 174.138.64.163Aug 24 15:50:35 pkdns2 sshd\[10419\]: Failed password for invalid user clare from 174.138.64.163 port 33818 ssh2 ...	2020-08-24 23:12:48
174.138.64.163	attackspam	Aug 23 20:58:21 [host] sshd[9121]: pam_unix(sshd:a Aug 23 20:58:23 [host] sshd[9121]: Failed password Aug 23 21:02:30 [host] sshd[9183]: Invalid user te	2020-08-24 04:20:26
174.138.64.163	attackbots	Aug 18 19:48:10 abendstille sshd\[29383\]: Invalid user charles from 174.138.64.163 Aug 18 19:48:10 abendstille sshd\[29383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 Aug 18 19:48:11 abendstille sshd\[29383\]: Failed password for invalid user charles from 174.138.64.163 port 55494 ssh2 Aug 18 19:52:00 abendstille sshd\[1163\]: Invalid user newuser from 174.138.64.163 Aug 18 19:52:00 abendstille sshd\[1163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 ...	2020-08-19 02:06:33
174.138.64.163	attackspambots	TCP ports : 10833 / 17422	2020-08-12 19:06:40
174.138.64.163	attackbotsspam	Unauthorized connection attempt detected from IP address 174.138.64.163 to port 1283	2020-08-03 15:08:06
174.138.64.163	attackspambots	Aug 1 23:23:31 kh-dev-server sshd[7075]: Failed password for root from 174.138.64.163 port 48794 ssh2 ...	2020-08-02 06:23:33
174.138.64.163	attack	TCP (SYN) 174.138.64.163:42183 -> port 31907, len 44	2020-07-31 17:44:48
174.138.64.163	attackspambots	Jul 20 21:31:31 pornomens sshd\[6634\]: Invalid user toshiba from 174.138.64.163 port 48286 Jul 20 21:31:31 pornomens sshd\[6634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 Jul 20 21:31:33 pornomens sshd\[6634\]: Failed password for invalid user toshiba from 174.138.64.163 port 48286 ssh2 ...	2020-07-21 04:40:37
174.138.64.163	attack	Jul 12 20:35:01 web1 sshd\[9227\]: Invalid user indigo from 174.138.64.163 Jul 12 20:35:01 web1 sshd\[9227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 Jul 12 20:35:03 web1 sshd\[9227\]: Failed password for invalid user indigo from 174.138.64.163 port 33868 ssh2 Jul 12 20:38:08 web1 sshd\[9513\]: Invalid user ftp_user from 174.138.64.163 Jul 12 20:38:08 web1 sshd\[9513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163	2020-07-13 14:47:49
174.138.64.163	attackbots	srv02 Mass scanning activity detected Target: 14041 ..	2020-07-12 13:58:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.6.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5106
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;174.138.6.146.			IN	A

;; AUTHORITY SECTION:
.			1507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 14 04:38:34 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 146.6.138.174.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 146.6.138.174.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
170.211.0.5	attack	GET THE FUCK OFF MY PHONE. YASICK FUCKS!	2022-09-21 04:03:28
68.183.130.128	attack	Sep 15 09:52:09 host sshd[15076]: Invalid user dell from 104.248.48.162 port 37303 Sep 15 09:52:09 host sshd[15092]: Invalid user aadmin from 104.248.48.162 port 37153 Sep 15 09:52:09 host sshd[15079]: Invalid user grid from 104.248.48.162 port 37421 Sep 15 09:52:09 host sshd[15086]: Invalid user admin from 104.248.48.162 port 37165	2022-09-15 11:23:34
161.35.208.13	attack	Sep 27 02:25:06 host sshd[849200]: Failed password for root from 161.35.208.13 port 44004 ssh2 Sep 27 02:25:06 host sshd[849194]: Failed password for root from 161.35.208.13 port 44000 ssh2 Sep 27 02:25:06 host sshd[849203]: Failed password for root from 161.35.208.13 port 44006 ssh2	2022-09-27 14:34:48
39.49.44.69	spam	extortion	2022-09-06 00:41:58
2001: DB8: 0: 0: 8: 800: 200C: 417A	spambotsattackproxynormal	2001: DB8: 0: 0: 8: 800: 200C: 417A	2022-09-04 22:45:29
117.184.37.20	attack	Brute-Force to Windows RDP	2022-09-17 11:26:27
186.65.114.215	attack	tried logging into my account, please ban	2022-09-07 01:17:26
84.17.43.243	spambotsattack	bot that uses leaked databases for account hijacking	2022-09-11 19:01:48
45.95.147.10	attack	DDoS	2022-09-12 12:44:10
207.154.222.43	attack	he is hack my roter	2022-09-30 05:53:46
103.76.14.23	spamnormal	Woy bangsat akun kuh balik aken ora sing smula,,tek edek edek sra bangsat weruh kita gh sra kuh	2022-10-01 18:00:58
103.196.234.165	spamattack	Trying to log in in others' facebook account	2022-09-13 00:35:27
110.137.195.237	spamattack	110.137.195.237	2022-09-06 14:09:24
46.3.197.22	spam	Spoofing email address posting to online forms and sending spam emails. Even though email server has DMARC most online forms auto respond ending up with lots of unwanted subscribes and bounced email.	2022-09-14 09:13:46
103.76.14.23	spamnormal	Woy bangsat akun kuh balik aken ora sing smula,,tek edek edek sra bangsat weruh kita gh sra kuh	2022-10-01 18:00:52

最近上报的IP列表

164.68.108.60	105.36.121.209	183.108.19.127	94.34.82.105
209.248.246.119	97.128.16.167	122.209.145.66	69.174.201.200
212.79.176.73	195.158.63.42	181.163.158.209	121.218.210.227
193.31.116.249	182.244.221.181	173.20.223.203	185.180.222.171
159.214.32.189	193.136.135.71	38.59.138.138	176.98.43.228