174.138.6.146 - IPInfo

基本信息:

城市(city): Amsterdam

省份(region): North Holland

国家(country): Netherlands

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	F2B jail: sshd. Time: 2019-09-21 14:58:57, Reported by: VKReport	2019-09-21 21:43:04
attack	Invalid user fitri from 174.138.6.146 port 53866	2019-09-21 16:37:30
attackspambots	Sep 19 22:51:21 tux-35-217 sshd\[12423\]: Invalid user ubnt from 174.138.6.146 port 54652 Sep 19 22:51:21 tux-35-217 sshd\[12423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Sep 19 22:51:23 tux-35-217 sshd\[12423\]: Failed password for invalid user ubnt from 174.138.6.146 port 54652 ssh2 Sep 19 22:54:51 tux-35-217 sshd\[12447\]: Invalid user jack from 174.138.6.146 port 39056 Sep 19 22:54:51 tux-35-217 sshd\[12447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 ...	2019-09-20 05:03:22
attack	Reported by AbuseIPDB proxy server.	2019-09-16 11:19:18
attackspam	Automatic report - Banned IP Access	2019-09-08 16:26:26
attackbotsspam	Aug 29 11:41:00 OPSO sshd\[27326\]: Invalid user darkblue from 174.138.6.146 port 42128 Aug 29 11:41:00 OPSO sshd\[27326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 29 11:41:01 OPSO sshd\[27326\]: Failed password for invalid user darkblue from 174.138.6.146 port 42128 ssh2 Aug 29 11:44:44 OPSO sshd\[27842\]: Invalid user lsfadmin from 174.138.6.146 port 58536 Aug 29 11:44:44 OPSO sshd\[27842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146	2019-08-29 17:50:38
attack	Aug 26 16:31:18 itv-usvr-01 sshd[19711]: Invalid user kush from 174.138.6.146 Aug 26 16:31:18 itv-usvr-01 sshd[19711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 26 16:31:18 itv-usvr-01 sshd[19711]: Invalid user kush from 174.138.6.146 Aug 26 16:31:20 itv-usvr-01 sshd[19711]: Failed password for invalid user kush from 174.138.6.146 port 60936 ssh2 Aug 26 16:38:02 itv-usvr-01 sshd[19947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 user=root Aug 26 16:38:04 itv-usvr-01 sshd[19947]: Failed password for root from 174.138.6.146 port 43892 ssh2	2019-08-26 19:52:52
attackspam	Port Scan detected from 174.138.6.146 (NL/Netherlands/-). 4 hits in the last 175 seconds	2019-08-16 02:04:56
attackspam	Aug 13 08:03:14 carla sshd[1677]: Invalid user zimbra from 174.138.6.146 Aug 13 08:03:14 carla sshd[1677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 13 08:03:15 carla sshd[1677]: Failed password for invalid user zimbra from 174.138.6.146 port 59878 ssh2 Aug 13 08:03:15 carla sshd[1678]: Received disconnect from 174.138.6.146: 11: Bye Bye Aug 13 08:21:45 carla sshd[1767]: Invalid user vnc from 174.138.6.146 Aug 13 08:21:45 carla sshd[1767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.6.146 Aug 13 08:21:48 carla sshd[1767]: Failed password for invalid user vnc from 174.138.6.146 port 55196 ssh2 Aug 13 08:21:48 carla sshd[1768]: Received disconnect from 174.138.6.146: 11: Bye Bye Aug 13 08:28:34 carla sshd[1809]: Invalid user lai from 174.138.6.146 Aug 13 08:28:34 carla sshd[1809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r........ -------------------------------	2019-08-14 04:38:39

相同子网IP讨论:

IP	类型	评论内容	时间
174.138.64.163	attackspambots	TCP (SYN) 174.138.64.163:52575 -> port 2273, len 44	2020-09-23 02:32:41
174.138.64.163	attack	TCP port : 2273	2020-09-22 18:37:58
174.138.64.163	attackbots	prod6 ...	2020-09-16 01:44:43
174.138.64.163	attack	<6 unauthorized SSH connections	2020-09-15 17:37:44
174.138.64.163	attack	Port Scan ...	2020-08-31 01:57:02
174.138.64.163	attack	Aug 24 15:46:39 pkdns2 sshd\[10200\]: Invalid user tobias from 174.138.64.163Aug 24 15:46:41 pkdns2 sshd\[10200\]: Failed password for invalid user tobias from 174.138.64.163 port 60598 ssh2Aug 24 15:48:36 pkdns2 sshd\[10294\]: Invalid user dsadm from 174.138.64.163Aug 24 15:48:38 pkdns2 sshd\[10294\]: Failed password for invalid user dsadm from 174.138.64.163 port 33092 ssh2Aug 24 15:50:33 pkdns2 sshd\[10419\]: Invalid user clare from 174.138.64.163Aug 24 15:50:35 pkdns2 sshd\[10419\]: Failed password for invalid user clare from 174.138.64.163 port 33818 ssh2 ...	2020-08-24 23:12:48
174.138.64.163	attackspam	Aug 23 20:58:21 [host] sshd[9121]: pam_unix(sshd:a Aug 23 20:58:23 [host] sshd[9121]: Failed password Aug 23 21:02:30 [host] sshd[9183]: Invalid user te	2020-08-24 04:20:26
174.138.64.163	attackbots	Aug 18 19:48:10 abendstille sshd\[29383\]: Invalid user charles from 174.138.64.163 Aug 18 19:48:10 abendstille sshd\[29383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 Aug 18 19:48:11 abendstille sshd\[29383\]: Failed password for invalid user charles from 174.138.64.163 port 55494 ssh2 Aug 18 19:52:00 abendstille sshd\[1163\]: Invalid user newuser from 174.138.64.163 Aug 18 19:52:00 abendstille sshd\[1163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 ...	2020-08-19 02:06:33
174.138.64.163	attackspambots	TCP ports : 10833 / 17422	2020-08-12 19:06:40
174.138.64.163	attackbotsspam	Unauthorized connection attempt detected from IP address 174.138.64.163 to port 1283	2020-08-03 15:08:06
174.138.64.163	attackspambots	Aug 1 23:23:31 kh-dev-server sshd[7075]: Failed password for root from 174.138.64.163 port 48794 ssh2 ...	2020-08-02 06:23:33
174.138.64.163	attack	TCP (SYN) 174.138.64.163:42183 -> port 31907, len 44	2020-07-31 17:44:48
174.138.64.163	attackspambots	Jul 20 21:31:31 pornomens sshd\[6634\]: Invalid user toshiba from 174.138.64.163 port 48286 Jul 20 21:31:31 pornomens sshd\[6634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 Jul 20 21:31:33 pornomens sshd\[6634\]: Failed password for invalid user toshiba from 174.138.64.163 port 48286 ssh2 ...	2020-07-21 04:40:37
174.138.64.163	attack	Jul 12 20:35:01 web1 sshd\[9227\]: Invalid user indigo from 174.138.64.163 Jul 12 20:35:01 web1 sshd\[9227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 Jul 12 20:35:03 web1 sshd\[9227\]: Failed password for invalid user indigo from 174.138.64.163 port 33868 ssh2 Jul 12 20:38:08 web1 sshd\[9513\]: Invalid user ftp_user from 174.138.64.163 Jul 12 20:38:08 web1 sshd\[9513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163	2020-07-13 14:47:49
174.138.64.163	attackbots	srv02 Mass scanning activity detected Target: 14041 ..	2020-07-12 13:58:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.6.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5106
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;174.138.6.146.			IN	A

;; AUTHORITY SECTION:
.			1507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 14 04:38:34 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 146.6.138.174.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 146.6.138.174.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
207.154.215.119	attackbots	Apr 23 08:25:52 web8 sshd\[23514\]: Invalid user tester from 207.154.215.119 Apr 23 08:25:52 web8 sshd\[23514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.215.119 Apr 23 08:25:53 web8 sshd\[23514\]: Failed password for invalid user tester from 207.154.215.119 port 59512 ssh2 Apr 23 08:35:31 web8 sshd\[28443\]: Invalid user ubuntu from 207.154.215.119 Apr 23 08:35:31 web8 sshd\[28443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.215.119	2020-04-23 16:48:22
125.69.67.19	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 16:56:41
46.165.62.143	attack	1587630888 - 04/23/2020 10:34:48 Host: 46.165.62.143/46.165.62.143 Port: 445 TCP Blocked	2020-04-23 17:24:44
140.246.124.36	attackbotsspam	Apr 23 11:00:17 vps647732 sshd[15336]: Failed password for root from 140.246.124.36 port 49186 ssh2 Apr 23 11:04:27 vps647732 sshd[15448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.124.36 ...	2020-04-23 17:27:18
60.161.154.141	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 17:05:33
35.198.48.78	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-04-23 17:01:18
223.194.33.72	attack	Apr 23 09:30:06 server sshd[46104]: Failed password for invalid user admin from 223.194.33.72 port 58106 ssh2 Apr 23 10:31:58 server sshd[62678]: Failed password for invalid user admin from 223.194.33.72 port 49398 ssh2 Apr 23 10:35:25 server sshd[63610]: Failed password for invalid user ym from 223.194.33.72 port 40268 ssh2	2020-04-23 16:54:16
159.89.16.121	attackspam	Masscan Port Scanning Tool Detection	2020-04-23 17:20:06
142.93.222.215	attackbotsspam	Apr 23 10:56:56 ns382633 sshd\[5822\]: Invalid user xl from 142.93.222.215 port 53680 Apr 23 10:56:56 ns382633 sshd\[5822\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.222.215 Apr 23 10:56:57 ns382633 sshd\[5822\]: Failed password for invalid user xl from 142.93.222.215 port 53680 ssh2 Apr 23 11:09:53 ns382633 sshd\[7940\]: Invalid user admin from 142.93.222.215 port 34670 Apr 23 11:09:53 ns382633 sshd\[7940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.222.215	2020-04-23 17:12:14
60.250.23.233	attackbotsspam	Apr 23 10:49:46 vps sshd[519886]: Failed password for invalid user teste from 60.250.23.233 port 49413 ssh2 Apr 23 10:52:31 vps sshd[535321]: Invalid user admin from 60.250.23.233 port 35755 Apr 23 10:52:31 vps sshd[535321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60-250-23-233.hinet-ip.hinet.net Apr 23 10:52:33 vps sshd[535321]: Failed password for invalid user admin from 60.250.23.233 port 35755 ssh2 Apr 23 10:55:24 vps sshd[551194]: Invalid user test from 60.250.23.233 port 59397 ...	2020-04-23 17:09:08
189.212.198.244	attack	Apr 23 03:17:54 server1 sshd\[23609\]: Failed password for root from 189.212.198.244 port 43361 ssh2 Apr 23 03:21:58 server1 sshd\[25589\]: Invalid user vagrant from 189.212.198.244 Apr 23 03:21:58 server1 sshd\[25589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.212.198.244 Apr 23 03:22:00 server1 sshd\[25589\]: Failed password for invalid user vagrant from 189.212.198.244 port 36801 ssh2 Apr 23 03:26:12 server1 sshd\[27592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.212.198.244 user=root ...	2020-04-23 17:28:54
202.17.144.47	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 17:27:06
212.237.38.79	attackbots	Apr 23 08:30:11 web8 sshd\[25738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.38.79 user=root Apr 23 08:30:13 web8 sshd\[25738\]: Failed password for root from 212.237.38.79 port 59404 ssh2 Apr 23 08:35:25 web8 sshd\[28441\]: Invalid user admin from 212.237.38.79 Apr 23 08:35:25 web8 sshd\[28441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.38.79 Apr 23 08:35:27 web8 sshd\[28441\]: Failed password for invalid user admin from 212.237.38.79 port 45738 ssh2	2020-04-23 16:53:01
27.128.238.14	attack	Apr 23 10:31:59 ovpn sshd\[3553\]: Invalid user admin from 27.128.238.14 Apr 23 10:31:59 ovpn sshd\[3553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.238.14 Apr 23 10:32:01 ovpn sshd\[3553\]: Failed password for invalid user admin from 27.128.238.14 port 49300 ssh2 Apr 23 10:34:54 ovpn sshd\[4311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.238.14 user=root Apr 23 10:34:55 ovpn sshd\[4311\]: Failed password for root from 27.128.238.14 port 50838 ssh2	2020-04-23 17:21:32
51.68.123.192	attackbotsspam	Apr 23 10:35:14 host sshd[14439]: Invalid user admin from 51.68.123.192 port 38146 ...	2020-04-23 17:06:01

最近上报的IP列表

164.68.108.60	105.36.121.209	183.108.19.127	94.34.82.105
209.248.246.119	97.128.16.167	122.209.145.66	69.174.201.200
212.79.176.73	195.158.63.42	181.163.158.209	121.218.210.227
193.31.116.249	182.244.221.181	173.20.223.203	185.180.222.171
159.214.32.189	193.136.135.71	38.59.138.138	176.98.43.228