195.158.22.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uzbekistan

运营商(isp): Uzbektelekom Joint Stock Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Nov 4 00:21:12 mailman postfix/smtpd[25920]: NOQUEUE: reject: RCPT from unknown[195.158.22.4]: 554 5.7.1 Service unavailable; Client host [195.158.22.4] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/195.158.22.4; from= to= proto=ESMTP helo=<[195.158.22.4]> Nov 4 00:24:18 mailman postfix/smtpd[26005]: NOQUEUE: reject: RCPT from unknown[195.158.22.4]: 554 5.7.1 Service unavailable; Client host [195.158.22.4] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/195.158.22.4; from= to= proto=ESMTP helo=<[195.158.22.4]>	2019-11-04 19:24:00

类型

评论内容

时间

attack

Nov  4 00:21:12 mailman postfix/smtpd[25920]: NOQUEUE: reject: RCPT from unknown[195.158.22.4]: 554 5.7.1 Service unavailable; Client host [195.158.22.4] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/195.158.22.4; from= to= proto=ESMTP helo=<[195.158.22.4]>
Nov  4 00:24:18 mailman postfix/smtpd[26005]: NOQUEUE: reject: RCPT from unknown[195.158.22.4]: 554 5.7.1 Service unavailable; Client host [195.158.22.4] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/195.158.22.4; from= to= proto=ESMTP helo=<[195.158.22.4]>

2019-11-04 19:24:00

相同子网IP讨论:

IP	类型	评论内容	时间
195.158.22.5	attack	Honeypot hit: misc	2020-08-28 18:02:36
195.158.227.51	attackbotsspam	Jun 6 09:27:09 mail.srvfarm.net postfix/smtpd[3608955]: warning: unknown[195.158.227.51]: SASL PLAIN authentication failed: Jun 6 09:27:09 mail.srvfarm.net postfix/smtpd[3608955]: lost connection after AUTH from unknown[195.158.227.51] Jun 6 09:33:25 mail.srvfarm.net postfix/smtps/smtpd[3611041]: warning: unknown[195.158.227.51]: SASL PLAIN authentication failed: Jun 6 09:33:25 mail.srvfarm.net postfix/smtps/smtpd[3611041]: lost connection after AUTH from unknown[195.158.227.51] Jun 6 09:36:54 mail.srvfarm.net postfix/smtps/smtpd[3611034]: warning: unknown[195.158.227.51]: SASL PLAIN authentication failed:	2020-06-08 00:08:13
195.158.220.39	attackbots	Unauthorized connection attempt from IP address 195.158.220.39 on Port 445(SMB)	2020-05-03 21:08:50
195.158.229.20	attackbots	[portscan] Port scan	2019-09-24 08:03:06
195.158.22.22	attack	IP: 195.158.22.22 ASN: AS8193 Uzbektelekom Joint Stock Company Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 2/08/2019 8:48:45 AM UTC	2019-08-02 19:50:53
195.158.229.20	attackbotsspam	[portscan] Port scan	2019-07-10 04:57:54

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.158.22.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13639
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.158.22.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 15:02:54 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 4.22.158.195.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 4.22.158.195.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
1.34.160.50	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 2 - port: 4567 proto: TCP cat: Misc Attack	2020-04-17 06:51:55
78.38.98.152	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 9530 proto: TCP cat: Misc Attack	2020-04-17 07:08:12
1.227.37.35	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 1 - port: 23 proto: TCP cat: Misc Attack	2020-04-17 06:51:22
185.175.93.104	attack	04/16/2020-18:32:14.522721 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-17 06:54:34
185.216.140.252	attackspam	Port 1345 scan denied	2020-04-17 06:53:34
87.251.74.11	attack	Multiport scan : 29 ports scanned 233 577 686 899 995 1370 2240 2772 3275 4441 6255 6490 7175 7290 7450 7455 7654 8310 8460 9180 9340 9480 9545 19199 22622 27777 33338 44433 57777	2020-04-17 07:05:15
87.251.74.15	attackspambots	Multiport scan : 26 ports scanned 2035 2086 2104 2123 2141 2142 2184 2194 2196 2213 2252 2286 2335 2383 2649 2720 2725 2739 2770 2812 2846 2903 2940 2950 2955 2998	2020-04-17 07:05:00
222.128.43.40	attackbotsspam	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-04-17 06:52:33
45.56.91.156	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 26 - port: 23475 proto: TCP cat: Misc Attack	2020-04-17 06:48:00
27.68.32.70	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 12 - port: 9530 proto: TCP cat: Misc Attack	2020-04-17 07:17:01
151.229.240.33	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-17 06:57:30
37.49.225.166	attack	Port 32993 scan denied	2020-04-17 06:49:23
104.140.188.6	attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-04-17 07:00:36
80.82.77.189	attackbots	Excessive Port-Scanning	2020-04-17 07:07:39
45.88.104.99	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 27 - port: 7420 proto: TCP cat: Misc Attack	2020-04-17 07:16:00

最近上报的IP列表

202.175.187.74	197.248.30.25	195.158.31.181	189.112.81.67
109.228.227.207	172.247.194.2	42.9.174.138	109.100.2.99
154.40.174.194	62.117.92.100	186.96.254.239	185.244.25.190
117.102.66.128	117.3.65.7	110.137.147.50	103.231.252.120
80.14.81.12	80.13.21.150	77.241.243.26	59.63.166.43