198.199.119.146

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	465/tcp 587/tcp 3389/tcp... [2020-02-14/25]9pkt,9pt.(tcp)	2020-02-26 02:48:08
attack	Port 27018 scan denied	2020-02-16 19:15:51

相同子网IP讨论:

IP	类型	评论内容	时间
198.199.119.88	proxy	Fraud VPN	2023-05-05 12:58:13
198.199.119.136	attackbots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 07:29:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.199.119.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;198.199.119.146.		IN	A

;; AUTHORITY SECTION:
.			232	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021600 1800 900 604800 86400

;; Query time: 285 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 19:15:48 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

146.119.199.198.in-addr.arpa domain name pointer zg0213a-191.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
146.119.199.198.in-addr.arpa	name = zg0213a-191.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.254.135.14	attack	Sep 6 00:43:06 TORMINT sshd\[26167\]: Invalid user welcome from 182.254.135.14 Sep 6 00:43:06 TORMINT sshd\[26167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.135.14 Sep 6 00:43:08 TORMINT sshd\[26167\]: Failed password for invalid user welcome from 182.254.135.14 port 46730 ssh2 ...	2019-09-06 12:57:08
81.30.208.114	attack	Sep 5 18:55:11 web9 sshd\[9437\]: Invalid user minecraft from 81.30.208.114 Sep 5 18:55:11 web9 sshd\[9437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.114 Sep 5 18:55:13 web9 sshd\[9437\]: Failed password for invalid user minecraft from 81.30.208.114 port 41883 ssh2 Sep 5 19:02:20 web9 sshd\[10708\]: Invalid user arma3server from 81.30.208.114 Sep 5 19:02:20 web9 sshd\[10708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.114	2019-09-06 13:14:17
79.136.21.115	attack	Sep 6 05:58:28 ns3110291 sshd\[20592\]: Invalid user admin from 79.136.21.115 Sep 6 05:58:31 ns3110291 sshd\[20592\]: Failed password for invalid user admin from 79.136.21.115 port 47510 ssh2 Sep 6 05:58:39 ns3110291 sshd\[20594\]: Invalid user ubuntu from 79.136.21.115 Sep 6 05:58:41 ns3110291 sshd\[20594\]: Failed password for invalid user ubuntu from 79.136.21.115 port 47564 ssh2 Sep 6 05:58:49 ns3110291 sshd\[20605\]: Invalid user pi from 79.136.21.115 ...	2019-09-06 12:54:34
220.190.68.59	attack	Automatic report - Port Scan Attack	2019-09-06 13:20:37
125.227.164.62	attackbots	Sep 6 00:07:10 aat-srv002 sshd[8894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.164.62 Sep 6 00:07:12 aat-srv002 sshd[8894]: Failed password for invalid user mc from 125.227.164.62 port 35180 ssh2 Sep 6 00:11:44 aat-srv002 sshd[9005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.164.62 Sep 6 00:11:47 aat-srv002 sshd[9005]: Failed password for invalid user mysql from 125.227.164.62 port 50480 ssh2 ...	2019-09-06 13:21:30
118.184.216.161	attack	Sep 6 06:42:18 vps691689 sshd[8012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.184.216.161 Sep 6 06:42:20 vps691689 sshd[8012]: Failed password for invalid user sysadmin from 118.184.216.161 port 42128 ssh2 Sep 6 06:50:48 vps691689 sshd[8105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.184.216.161 ...	2019-09-06 12:51:31
75.87.52.203	attackbotsspam	Sep 6 00:29:46 xtremcommunity sshd\[26583\]: Invalid user mc from 75.87.52.203 port 35102 Sep 6 00:29:46 xtremcommunity sshd\[26583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.87.52.203 Sep 6 00:29:48 xtremcommunity sshd\[26583\]: Failed password for invalid user mc from 75.87.52.203 port 35102 ssh2 Sep 6 00:34:14 xtremcommunity sshd\[26731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.87.52.203 user=www-data Sep 6 00:34:16 xtremcommunity sshd\[26731\]: Failed password for www-data from 75.87.52.203 port 50608 ssh2 ...	2019-09-06 12:49:43
218.98.26.163	attackspam	Sep 6 06:48:24 saschabauer sshd[13489]: Failed password for root from 218.98.26.163 port 34959 ssh2	2019-09-06 13:00:49
201.174.182.159	attack	$f2bV_matches	2019-09-06 13:47:04
140.207.46.136	attack	SSH Brute-Force reported by Fail2Ban	2019-09-06 13:44:35
185.2.5.24	attack	Automatic report - Banned IP Access	2019-09-06 12:55:39
106.12.93.12	attackspam	Sep 5 19:02:08 aiointranet sshd\[17888\]: Invalid user azerty from 106.12.93.12 Sep 5 19:02:08 aiointranet sshd\[17888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.12 Sep 5 19:02:10 aiointranet sshd\[17888\]: Failed password for invalid user azerty from 106.12.93.12 port 57370 ssh2 Sep 5 19:07:38 aiointranet sshd\[18282\]: Invalid user 123 from 106.12.93.12 Sep 5 19:07:38 aiointranet sshd\[18282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.12	2019-09-06 13:16:51
58.214.9.102	attack	Sep 5 18:51:04 php1 sshd\[17520\]: Invalid user mc from 58.214.9.102 Sep 5 18:51:04 php1 sshd\[17520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.9.102 Sep 5 18:51:06 php1 sshd\[17520\]: Failed password for invalid user mc from 58.214.9.102 port 54684 ssh2 Sep 5 18:57:02 php1 sshd\[18053\]: Invalid user odoo from 58.214.9.102 Sep 5 18:57:02 php1 sshd\[18053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.9.102	2019-09-06 13:06:48
185.86.164.99	attack	B: zzZZzz blocked content access	2019-09-06 13:15:29
212.92.124.161	attackbotsspam	212.92.124.161 - - [12/Aug/2019:12:39:43 +0800] "GET /wordpress/ HTTP/1.1" 404 1065 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 212.92.124.161 - - [12/Aug/2019:12:39:44 +0800] "GET /wp/ HTTP/1.1" 404 1065 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 212.92.124.161 - - [12/Aug/2019:12:39:51 +0800] "GET /blog/ HTTP/1.1" 404 1065 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 212.92.124.161 - - [12/Aug/2019:12:39:52 +0800] "GET /new/ HTTP/1.1" 404 1065 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 212.92.124.161 - - [12/Aug/2019:12:39:53 +0800] "GET /old/ HTTP/1.1" 404 1065 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0" 212.92.124.161 - - [12/Aug/2019:12:39:54 +0800] "GET /test/ HTTP/1.1" 404 1065 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:63.0) Gecko/20100101 Firefox/63.0"	2019-09-06 13:19:35

最近上报的IP列表

176.115.100.53	49.145.192.235	36.37.87.242	77.82.100.53
14.249.165.20	14.164.33.142	218.250.88.84	123.252.230.241
114.32.192.248	2.185.238.155	1.55.140.83	220.134.148.51
203.218.155.21	178.17.99.23	123.194.116.102	123.17.237.208
112.197.108.252	109.172.127.169	88.251.153.155	88.247.185.121