218.148.164.4 - IPInfo

基本信息:

城市(city): Bucheon-si

省份(region): Gyeonggi-do

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.148.164.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;218.148.164.4.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021002 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 11:57:24 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 4.164.148.218.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.164.148.218.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
115.236.100.114	attack	Aug 9 19:14:25 localhost sshd\[126577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.100.114 user=root Aug 9 19:14:27 localhost sshd\[126577\]: Failed password for root from 115.236.100.114 port 26736 ssh2 Aug 9 19:18:47 localhost sshd\[126738\]: Invalid user alex from 115.236.100.114 port 36806 Aug 9 19:18:47 localhost sshd\[126738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.100.114 Aug 9 19:18:49 localhost sshd\[126738\]: Failed password for invalid user alex from 115.236.100.114 port 36806 ssh2 ...	2019-08-10 03:27:10
51.254.34.87	attack	Aug 9 21:00:52 SilenceServices sshd[22391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.34.87 Aug 9 21:00:55 SilenceServices sshd[22391]: Failed password for invalid user demo2 from 51.254.34.87 port 38848 ssh2 Aug 9 21:06:46 SilenceServices sshd[26805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.34.87	2019-08-10 03:21:06
116.62.247.38	attack	20 attempts against mh-ssh on hill.magehost.pro	2019-08-10 03:42:23
165.22.187.244	attack	08/09/2019-14:54:22.512629 165.22.187.244 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 7	2019-08-10 03:56:13
103.52.52.22	attack	Aug 9 21:29:25 OPSO sshd\[16433\]: Invalid user temp from 103.52.52.22 port 59529 Aug 9 21:29:25 OPSO sshd\[16433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.52.22 Aug 9 21:29:27 OPSO sshd\[16433\]: Failed password for invalid user temp from 103.52.52.22 port 59529 ssh2 Aug 9 21:33:43 OPSO sshd\[17140\]: Invalid user library from 103.52.52.22 port 52954 Aug 9 21:33:43 OPSO sshd\[17140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.52.22	2019-08-10 03:41:11
203.142.69.203	attack	Aug 9 20:47:19 OPSO sshd\[10962\]: Invalid user savaiko from 203.142.69.203 port 60084 Aug 9 20:47:19 OPSO sshd\[10962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203 Aug 9 20:47:21 OPSO sshd\[10962\]: Failed password for invalid user savaiko from 203.142.69.203 port 60084 ssh2 Aug 9 20:52:17 OPSO sshd\[11587\]: Invalid user luci from 203.142.69.203 port 57444 Aug 9 20:52:17 OPSO sshd\[11587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.142.69.203	2019-08-10 03:54:06
63.83.73.227	attack	Aug 9 19:35:29 smtp postfix/smtpd[22055]: NOQUEUE: reject: RCPT from taste.jdmbrosllc.com[63.83.73.227]: 554 5.7.1 Service unavailable; Client host [63.83.73.227] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= ...	2019-08-10 03:23:06
180.76.246.220	attackspambots	Aug 9 20:43:43 microserver sshd[629]: Invalid user cas from 180.76.246.220 port 39958 Aug 9 20:43:43 microserver sshd[629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.246.220 Aug 9 20:43:45 microserver sshd[629]: Failed password for invalid user cas from 180.76.246.220 port 39958 ssh2 Aug 9 20:47:33 microserver sshd[1256]: Invalid user cod2 from 180.76.246.220 port 42402 Aug 9 20:47:33 microserver sshd[1256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.246.220 Aug 9 20:58:39 microserver sshd[2708]: Invalid user process from 180.76.246.220 port 49362 Aug 9 20:58:39 microserver sshd[2708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.246.220 Aug 9 20:58:42 microserver sshd[2708]: Failed password for invalid user process from 180.76.246.220 port 49362 ssh2 Aug 9 21:02:17 microserver sshd[3326]: Invalid user Administrator from 180.76.246.220 port 51580 A	2019-08-10 03:33:48
115.73.219.208	attack	Probing for vulnerable services	2019-08-10 03:59:14
1.164.25.29	attack	Aug 9 13:32:43 localhost kernel: [16616157.034186] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.164.25.29 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=58162 PROTO=TCP SPT=51947 DPT=139 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 9 13:32:43 localhost kernel: [16616157.034213] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.164.25.29 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=58162 PROTO=TCP SPT=51947 DPT=139 SEQ=3500704711 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (020405AC) Aug 9 13:34:13 localhost kernel: [16616246.849035] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.164.25.29 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=36883 PROTO=TCP SPT=52036 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 9 13:34:13 localhost kernel: [16616246.849062] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.164.25.29 DST=[mungedIP2] LEN=44 TOS=0	2019-08-10 04:05:00
67.205.11.86	attackbots	Automatic report - Banned IP Access	2019-08-10 03:20:21
5.26.250.185	attackbotsspam	Aug 9 22:42:22 yabzik sshd[10600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.26.250.185 Aug 9 22:42:24 yabzik sshd[10600]: Failed password for invalid user silentios from 5.26.250.185 port 33950 ssh2 Aug 9 22:47:09 yabzik sshd[12071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.26.250.185	2019-08-10 04:04:40
203.230.6.175	attackbotsspam	2019-08-09T19:38:32.728101abusebot-6.cloudsearch.cf sshd\[31401\]: Invalid user gamma from 203.230.6.175 port 34446	2019-08-10 03:53:21
185.128.114.243	attackbots	Multiple failed RDP login attempts	2019-08-10 03:54:30
177.66.236.62	attack	SASL Brute Force	2019-08-10 03:54:53

最近上报的IP列表

120.23.101.182	242.16.207.98	235.28.105.225	28.143.221.109
72.114.240.148	50.232.219.76	66.107.36.48	211.164.103.116
178.150.152.255	192.144.238.134	234.221.169.158	152.11.135.254
110.250.179.219	18.127.61.190	106.194.20.218	155.70.95.120
221.63.145.16	155.62.116.143	41.100.153.190	51.50.52.140