City: unknown
Region: unknown
Country: IANA Special-Purpose Address
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 198.18.0.0 - 198.19.255.255
CIDR: 198.18.0.0/15
NetName: SPECIAL-IPV4-BENCHMARK-TESTING-IANA-RESERVED
NetHandle: NET-198-18-0-0-1
Parent: NET198 (NET-198-0-0-0-0)
NetType: IANA Special Use
OriginAS:
Organization: Internet Assigned Numbers Authority (IANA)
RegDate: 1992-11-23
Updated: 2024-05-24
Comment: Addresses starting with "198.18." or "198.19." are set aside for use in isolated laboratory networks used for benchmarking and performance testing. They should never appear on the Internet and if you see Internet traffic using these addresses, they are being used without permission.
Comment:
Comment: This assignment was made by the IETF, the organization that develops Internet protocols, in RFC 2544, which can be found at:
Comment: http://datatracker.ietf.org/doc/rfc2544
Ref: https://rdap.arin.net/registry/ip/198.18.0.0
OrgName: Internet Assigned Numbers Authority
OrgId: IANA
Address: 12025 Waterfront Drive
Address: Suite 300
City: Los Angeles
StateProv: CA
PostalCode: 90292
Country: US
RegDate:
Updated: 2024-05-24
Ref: https://rdap.arin.net/registry/entity/IANA
OrgTechHandle: IANA-IP-ARIN
OrgTechName: ICANN
OrgTechPhone: +1-310-301-5820
OrgTechEmail: abuse@iana.org
OrgTechRef: https://rdap.arin.net/registry/entity/IANA-IP-ARIN
OrgAbuseHandle: IANA-IP-ARIN
OrgAbuseName: ICANN
OrgAbusePhone: +1-310-301-5820
OrgAbuseEmail: abuse@iana.org
OrgAbuseRef: https://rdap.arin.net/registry/entity/IANA-IP-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.19.0.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36673
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;198.19.0.1. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025110502 1800 900 604800 86400
;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 06 10:52:26 CST 2025
;; MSG SIZE rcvd: 103Host 1.0.19.198.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 1.0.19.198.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 20.185.106.195 | attackspambots | [f2b] sshd bruteforce, retries: 1 |
2020-09-25 09:57:00 |
| 51.143.167.35 | attack | Scanned 3 times in the last 24 hours on port 22 |
2020-09-25 09:48:18 |
| 122.252.234.203 | attackbots | 20/9/24@15:51:51: FAIL: Alarm-Network address from=122.252.234.203 20/9/24@15:51:51: FAIL: Alarm-Network address from=122.252.234.203 ... |
2020-09-25 09:50:45 |
| 81.223.68.174 | attackbotsspam | IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking. |
2020-09-25 09:50:25 |
| 90.176.150.123 | attack | Sep 25 02:26:54 rocket sshd[14025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.176.150.123 Sep 25 02:26:56 rocket sshd[14025]: Failed password for invalid user conectar from 90.176.150.123 port 54585 ssh2 ... |
2020-09-25 09:44:59 |
| 5.255.253.175 | attack | [Fri Sep 25 02:51:48.422282 2020] [:error] [pid 16463:tid 140589363676928] [client 5.255.253.175:42582] [client 5.255.253.175] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "756"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "X2z41HZgw1gzcFSlmDjlNgAAAIg"] ... |
2020-09-25 09:54:14 |
| 218.92.0.173 | attackspam | Sep 25 01:47:20 ip-172-31-61-156 sshd[18057]: Failed password for root from 218.92.0.173 port 30691 ssh2 Sep 25 01:47:24 ip-172-31-61-156 sshd[18057]: Failed password for root from 218.92.0.173 port 30691 ssh2 Sep 25 01:47:27 ip-172-31-61-156 sshd[18057]: Failed password for root from 218.92.0.173 port 30691 ssh2 Sep 25 01:47:27 ip-172-31-61-156 sshd[18057]: error: maximum authentication attempts exceeded for root from 218.92.0.173 port 30691 ssh2 [preauth] Sep 25 01:47:27 ip-172-31-61-156 sshd[18057]: Disconnecting: Too many authentication failures [preauth] ... |
2020-09-25 09:51:44 |
| 184.68.152.178 | attackspambots | Unauthorised access (Sep 24) SRC=184.68.152.178 LEN=40 TTL=241 ID=19954 DF TCP DPT=23 WINDOW=14600 SYN |
2020-09-25 09:21:29 |
| 52.188.148.170 | attackspam | Sep 25 03:19:46 [host] sshd[24683]: Invalid user c Sep 25 03:19:46 [host] sshd[24683]: pam_unix(sshd: Sep 25 03:19:47 [host] sshd[24683]: Failed passwor |
2020-09-25 09:26:32 |
| 88.20.216.110 | attackbotsspam | Sep 25 00:06:19 buvik sshd[16607]: Invalid user support from 88.20.216.110 Sep 25 00:06:19 buvik sshd[16607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.20.216.110 Sep 25 00:06:22 buvik sshd[16607]: Failed password for invalid user support from 88.20.216.110 port 38318 ssh2 ... |
2020-09-25 09:19:47 |
| 170.210.214.50 | attackspambots | fail2ban -- 170.210.214.50 ... |
2020-09-25 09:18:45 |
| 92.219.48.156 | attack | Automatic report - Banned IP Access |
2020-09-25 09:57:15 |
| 52.188.179.13 | attack | Sep 23 17:49:19 master sshd[17410]: Failed password for root from 52.188.179.13 port 14609 ssh2 Sep 23 22:07:35 master sshd[26183]: Failed password for root from 52.188.179.13 port 27050 ssh2 Sep 25 04:07:14 master sshd[19959]: Failed password for invalid user groupin from 52.188.179.13 port 27834 ssh2 |
2020-09-25 09:55:48 |
| 40.77.104.58 | attackspambots | Sep 25 02:47:07 vps639187 sshd\[27099\]: Invalid user dromedian from 40.77.104.58 port 1536 Sep 25 02:47:07 vps639187 sshd\[27099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.77.104.58 Sep 25 02:47:09 vps639187 sshd\[27099\]: Failed password for invalid user dromedian from 40.77.104.58 port 1536 ssh2 ... |
2020-09-25 09:22:54 |
| 218.92.0.249 | attackspam | Sep 25 01:37:42 scw-6657dc sshd[1916]: Failed password for root from 218.92.0.249 port 26600 ssh2 Sep 25 01:37:42 scw-6657dc sshd[1916]: Failed password for root from 218.92.0.249 port 26600 ssh2 Sep 25 01:37:45 scw-6657dc sshd[1916]: Failed password for root from 218.92.0.249 port 26600 ssh2 ... |
2020-09-25 09:43:30 |