198.133.16.4 - IPInfo

基本信息:

城市(city): Milford

省份(region): Connecticut

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.133.16.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56077
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;198.133.16.4.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030200 1800 900 604800 86400

;; Query time: 197 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 02 22:38:04 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 4.16.133.198.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 4.16.133.198.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
61.141.64.155	attackspam	Lines containing failures of 61.141.64.155 Oct 30 00:49:04 cdb sshd[13625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.141.64.155 user=r.r Oct 30 00:49:06 cdb sshd[13625]: Failed password for r.r from 61.141.64.155 port 9833 ssh2 Oct 30 00:49:07 cdb sshd[13625]: Received disconnect from 61.141.64.155 port 9833:11: Bye Bye [preauth] Oct 30 00:49:07 cdb sshd[13625]: Disconnected from authenticating user r.r 61.141.64.155 port 9833 [preauth] Oct 30 00:53:29 cdb sshd[14068]: Invalid user test from 61.141.64.155 port 31431 Oct 30 00:53:29 cdb sshd[14068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.141.64.155 Oct 30 00:53:31 cdb sshd[14068]: Failed password for invalid user test from 61.141.64.155 port 31431 ssh2 Oct 30 00:53:31 cdb sshd[14068]: Received disconnect from 61.141.64.155 port 31431:11: Bye Bye [preauth] Oct 30 00:53:31 cdb sshd[14068]: Disconnected from invalid user te........ ------------------------------	2019-10-31 01:47:56
185.176.27.162	attackspambots	Oct 30 18:39:33 mc1 kernel: \[3743495.571204\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.162 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=38891 PROTO=TCP SPT=58087 DPT=1244 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 30 18:40:41 mc1 kernel: \[3743563.823726\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.162 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=33667 PROTO=TCP SPT=58087 DPT=7003 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 30 18:44:06 mc1 kernel: \[3743769.016077\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.162 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=35139 PROTO=TCP SPT=58087 DPT=10881 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-31 01:55:22
202.120.37.249	attackspambots	Oct 30 18:32:28 fr01 sshd[24133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.37.249 user=root Oct 30 18:32:30 fr01 sshd[24133]: Failed password for root from 202.120.37.249 port 52114 ssh2 Oct 30 18:37:09 fr01 sshd[24968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.37.249 user=root Oct 30 18:37:11 fr01 sshd[24968]: Failed password for root from 202.120.37.249 port 34580 ssh2 ...	2019-10-31 01:47:10
122.245.173.75	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/122.245.173.75/ CN - 1H : (754) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 122.245.173.75 CIDR : 122.244.0.0/15 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 11 3H - 39 6H - 75 12H - 150 24H - 306 DateTime : 2019-10-30 12:48:05 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-31 01:57:45
118.24.30.97	attackbotsspam	Oct 30 12:37:46 server sshd[2730]: Failed password for invalid user testftp from 118.24.30.97 port 46432 ssh2 Oct 30 12:42:36 server sshd[3241]: Failed password for invalid user zhouh from 118.24.30.97 port 55408 ssh2 Oct 30 12:47:33 server sshd[3714]: Failed password for uucp from 118.24.30.97 port 35730 ssh2	2019-10-31 02:16:31
94.20.20.240	attackbotsspam	SMB Server BruteForce Attack	2019-10-31 02:17:31
162.243.5.51	attack	Oct 30 03:42:04 www6-3 sshd[25149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.5.51 user=r.r Oct 30 03:42:06 www6-3 sshd[25149]: Failed password for r.r from 162.243.5.51 port 35600 ssh2 Oct 30 03:42:06 www6-3 sshd[25149]: Received disconnect from 162.243.5.51 port 35600:11: Bye Bye [preauth] Oct 30 03:42:06 www6-3 sshd[25149]: Disconnected from 162.243.5.51 port 35600 [preauth] Oct 30 03:50:23 www6-3 sshd[25594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.5.51 user=r.r Oct 30 03:50:25 www6-3 sshd[25594]: Failed password for r.r from 162.243.5.51 port 37294 ssh2 Oct 30 03:50:25 www6-3 sshd[25594]: Received disconnect from 162.243.5.51 port 37294:11: Bye Bye [preauth] Oct 30 03:50:25 www6-3 sshd[25594]: Disconnected from 162.243.5.51 port 37294 [preauth] Oct 30 03:56:26 www6-3 sshd[25981]: Invalid user cacheman from 162.243.5.51 port 50278 Oct 30 03:56:26 www6-3 ss........ -------------------------------	2019-10-31 02:14:00
69.75.91.250	attack	Oct 30 12:47:25 dev postfix/smtpd\[9880\]: warning: rrcs-69-75-91-250.west.biz.rr.com\[69.75.91.250\]: SASL LOGIN authentication failed: authentication failure Oct 30 12:47:26 dev postfix/smtpd\[9880\]: warning: rrcs-69-75-91-250.west.biz.rr.com\[69.75.91.250\]: SASL LOGIN authentication failed: authentication failure Oct 30 12:47:27 dev postfix/smtpd\[9880\]: warning: rrcs-69-75-91-250.west.biz.rr.com\[69.75.91.250\]: SASL LOGIN authentication failed: authentication failure Oct 30 12:47:28 dev postfix/smtpd\[9880\]: warning: rrcs-69-75-91-250.west.biz.rr.com\[69.75.91.250\]: SASL LOGIN authentication failed: authentication failure Oct 30 12:47:29 dev postfix/smtpd\[9880\]: warning: rrcs-69-75-91-250.west.biz.rr.com\[69.75.91.250\]: SASL LOGIN authentication failed: authentication failure	2019-10-31 02:18:31
172.94.125.135	attackspam	$f2bV_matches	2019-10-31 02:05:03
139.199.209.89	attack	Oct 30 13:52:05 plusreed sshd[12522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 user=root Oct 30 13:52:07 plusreed sshd[12522]: Failed password for root from 139.199.209.89 port 37846 ssh2 ...	2019-10-31 02:03:45
46.38.144.57	attack	2019-10-30T18:47:37.338410mail01 postfix/smtpd[17510]: warning: unknown[46.38.144.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-10-30T18:47:45.433182mail01 postfix/smtpd[11455]: warning: unknown[46.38.144.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-10-30T18:47:58.404162mail01 postfix/smtpd[17511]: warning: unknown[46.38.144.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-31 01:53:53
218.92.0.154	attackbots	Oct 30 15:53:38 MK-Soft-Root1 sshd[17154]: Failed password for root from 218.92.0.154 port 26060 ssh2 Oct 30 15:53:41 MK-Soft-Root1 sshd[17154]: Failed password for root from 218.92.0.154 port 26060 ssh2 ...	2019-10-31 01:50:00
49.235.85.62	attackspambots	Lines containing failures of 49.235.85.62 Oct 30 10:40:42 nextcloud sshd[3889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.85.62 user=r.r Oct 30 10:40:44 nextcloud sshd[3889]: Failed password for r.r from 49.235.85.62 port 40934 ssh2 Oct 30 10:40:44 nextcloud sshd[3889]: Received disconnect from 49.235.85.62 port 40934:11: Bye Bye [preauth] Oct 30 10:40:44 nextcloud sshd[3889]: Disconnected from authenticating user r.r 49.235.85.62 port 40934 [preauth] Oct 30 10:56:08 nextcloud sshd[5884]: Invalid user boomi from 49.235.85.62 port 41808 Oct 30 10:56:08 nextcloud sshd[5884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.85.62 Oct 30 10:56:10 nextcloud sshd[5884]: Failed password for invalid user boomi from 49.235.85.62 port 41808 ssh2 Oct 30 10:56:10 nextcloud sshd[5884]: Received disconnect from 49.235.85.62 port 41808:11: Bye Bye [preauth] Oct 30 10:56:10 nextcloud sshd........ ------------------------------	2019-10-31 02:22:41
190.200.238.67	attackbots	DATE:2019-10-30 12:48:28, IP:190.200.238.67, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2019-10-31 01:47:38
117.48.205.14	attackbots	2019-10-30T16:58:02.844779abusebot-2.cloudsearch.cf sshd\[9195\]: Invalid user oseas from 117.48.205.14 port 37638	2019-10-31 01:59:20

最近上报的IP列表

214.91.22.205	133.6.128.241	84.245.145.11	219.205.233.237
139.252.38.142	14.37.249.206	17.217.190.30	65.190.6.112
219.253.17.194	1.173.171.9	48.241.132.11	107.194.137.137
220.134.29.101	102.167.177.161	137.35.114.53	222.167.186.164
150.229.159.11	219.254.73.211	2.54.175.145	212.216.15.171