196.207.148.19

Basic Info

City: unknown

Region: unknown

Country: Kenya

Internet Service Provider: Wananchi Group Kenya

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Port probing on unauthorized port 1433	2020-06-23 01:59:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.207.148.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20543
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;196.207.148.19.			IN	A

;; AUTHORITY SECTION:
.			212	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062201 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 23 01:59:29 CST 2020
;; MSG SIZE  rcvd: 118

Host info

;; connection timed out; no servers could be reached

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 19.148.207.196.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.136.111.246	attackspambots	Feb 9 18:06:08 tuotantolaitos sshd[22901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.136.111.246 Feb 9 18:06:10 tuotantolaitos sshd[22901]: Failed password for invalid user vch from 82.136.111.246 port 50318 ssh2 ...	2020-02-10 00:27:44
222.186.15.166	attackbots	Feb 9 17:09:14 MK-Soft-VM3 sshd[25953]: Failed password for root from 222.186.15.166 port 49447 ssh2 Feb 9 17:09:17 MK-Soft-VM3 sshd[25953]: Failed password for root from 222.186.15.166 port 49447 ssh2 ...	2020-02-10 00:09:30
79.77.17.135	attackspam	Automatic report - Port Scan Attack	2020-02-10 00:08:15
128.199.44.102	attackspam	Feb 9 10:58:40 plusreed sshd[4403]: Invalid user rb from 128.199.44.102 ...	2020-02-10 00:14:00
196.29.167.250	attackspambots	445/tcp [2020-02-09]1pkt	2020-02-10 00:00:26
68.183.178.162	attackbotsspam	Feb 9 17:12:56 MK-Soft-VM3 sshd[26102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.178.162 Feb 9 17:12:57 MK-Soft-VM3 sshd[26102]: Failed password for invalid user fii from 68.183.178.162 port 35428 ssh2 ...	2020-02-10 00:16:38
51.38.140.6	attackspam	22/tcp 22/tcp [2020-02-09]2pkt	2020-02-09 23:54:11
84.186.25.63	attackbots	2020-02-09T06:36:07.279169linuxbox sshd[47834]: Invalid user fmi from 84.186.25.63 port 21711 ...	2020-02-10 00:15:39
141.98.80.173	attackspam	Feb 9 17:39:34 ncomp sshd[14208]: Invalid user admin from 141.98.80.173 Feb 9 17:39:34 ncomp sshd[14208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.80.173 Feb 9 17:39:34 ncomp sshd[14208]: Invalid user admin from 141.98.80.173 Feb 9 17:39:36 ncomp sshd[14208]: Failed password for invalid user admin from 141.98.80.173 port 12707 ssh2	2020-02-09 23:58:22
118.144.137.109	attackbotsspam	Feb 9 18:17:06 www1 sshd\[22352\]: Invalid user pwf from 118.144.137.109Feb 9 18:17:08 www1 sshd\[22352\]: Failed password for invalid user pwf from 118.144.137.109 port 26796 ssh2Feb 9 18:20:29 www1 sshd\[22802\]: Invalid user ozw from 118.144.137.109Feb 9 18:20:31 www1 sshd\[22802\]: Failed password for invalid user ozw from 118.144.137.109 port 47227 ssh2Feb 9 18:23:44 www1 sshd\[22999\]: Invalid user kmg from 118.144.137.109Feb 9 18:23:46 www1 sshd\[22999\]: Failed password for invalid user kmg from 118.144.137.109 port 27445 ssh2 ...	2020-02-10 00:36:07
185.176.27.6	attackbots	Feb 9 17:05:54 h2177944 kernel: \[4462384.701434\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37898 PROTO=TCP SPT=55796 DPT=5797 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 17:05:54 h2177944 kernel: \[4462384.701449\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37898 PROTO=TCP SPT=55796 DPT=5797 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 17:07:04 h2177944 kernel: \[4462454.141720\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=1762 PROTO=TCP SPT=55796 DPT=4740 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 17:07:04 h2177944 kernel: \[4462454.141735\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.6 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=1762 PROTO=TCP SPT=55796 DPT=4740 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 17:09:44 h2177944 kernel: \[4462614.991987\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.6 DST=85.214.117.9 LEN=40	2020-02-10 00:10:27
106.13.111.19	attackbots	Feb 9 17:16:49 plex sshd[30531]: Invalid user sik from 106.13.111.19 port 39984	2020-02-10 00:33:44
211.26.123.219	attackbotsspam	Feb 9 13:35:18 prox sshd[27222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.26.123.219	2020-02-10 00:31:49
129.204.147.84	attackspam	(sshd) Failed SSH login from 129.204.147.84 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 9 17:14:33 ubnt-55d23 sshd[2821]: Invalid user cqn from 129.204.147.84 port 37246 Feb 9 17:14:35 ubnt-55d23 sshd[2821]: Failed password for invalid user cqn from 129.204.147.84 port 37246 ssh2	2020-02-10 00:32:55
49.232.4.101	attack	2020-02-09T10:03:51.6751841495-001 sshd[24438]: Invalid user hhf from 49.232.4.101 port 39888 2020-02-09T10:03:51.6783181495-001 sshd[24438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.4.101 2020-02-09T10:03:51.6751841495-001 sshd[24438]: Invalid user hhf from 49.232.4.101 port 39888 2020-02-09T10:03:53.3523781495-001 sshd[24438]: Failed password for invalid user hhf from 49.232.4.101 port 39888 ssh2 2020-02-09T10:07:45.7653741495-001 sshd[24632]: Invalid user vym from 49.232.4.101 port 34116 2020-02-09T10:07:45.7687071495-001 sshd[24632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.4.101 2020-02-09T10:07:45.7653741495-001 sshd[24632]: Invalid user vym from 49.232.4.101 port 34116 2020-02-09T10:07:47.8986331495-001 sshd[24632]: Failed password for invalid user vym from 49.232.4.101 port 34116 ssh2 2020-02-09T10:11:56.4002081495-001 sshd[24876]: Invalid user dw from 49.232.4.101 port 5 ...	2020-02-10 00:14:21

Recently Reported IPs

128.225.141.40	198.89.108.140	69.39.167.131	194.125.201.149
124.123.177.101	103.51.20.110	77.222.117.205	123.194.18.151
92.242.45.107	179.85.161.39	113.184.127.6	155.227.112.112
153.234.235.141	5.239.115.117	82.66.153.8	150.136.208.168
79.134.4.179	223.215.35.84	220.162.164.239	203.148.84.6