116.0.4.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.0.40.18	attackspambots	445/tcp [2020-08-06]1pkt	2020-08-06 22:19:04
116.0.45.82	attack	Unauthorized connection attempt from IP address 116.0.45.82 on Port 445(SMB)	2020-02-12 01:32:39
116.0.48.234	attackspam	unauthorized connection attempt	2020-01-12 17:48:40
116.0.49.252	attack	Unauthorized connection attempt from IP address 116.0.49.252 on Port 445(SMB)	2019-11-10 04:51:59
116.0.49.58	attackbotsspam	116.0.49.58 - - [18/Oct/2019:07:43:25 -0400] "GET /?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&action=view&manufacturerID=143&productID=9300&linkID=7489&duplicate=0 HTTP/1.1" 200 16656 "https://exitdevice.com/?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&action=view&manufacturerID=143&productID=9300&linkID=7489&duplicate=0" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-18 21:13:00
116.0.45.82	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 17:14:52
116.0.4.122	attackspambots	445/tcp 445/tcp 445/tcp... [2019-07-05/08-12]4pkt,1pt.(tcp)	2019-08-13 07:45:35
116.0.45.82	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 16:51:06
116.0.4.122	attackspambots	445/tcp 445/tcp 445/tcp [2019-07-05/29]3pkt	2019-07-30 15:42:46
116.0.4.122	attackspambots	Port scan and direct access per IP instead of hostname	2019-07-28 17:13:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.0.4.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17415
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.0.4.148.			IN	A

;; AUTHORITY SECTION:
.			163	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 05 04:44:44 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 148.4.0.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 148.4.0.116.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
18.222.232.144	attack	2019-08-08T12:55:37.286754abusebot-5.cloudsearch.cf sshd\[13223\]: Invalid user vikky from 18.222.232.144 port 41614	2019-08-08 21:36:06
35.201.196.94	attackspambots	Aug 8 14:09:28 bouncer sshd\[23669\]: Invalid user elias from 35.201.196.94 port 37532 Aug 8 14:09:28 bouncer sshd\[23669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.201.196.94 Aug 8 14:09:30 bouncer sshd\[23669\]: Failed password for invalid user elias from 35.201.196.94 port 37532 ssh2 ...	2019-08-08 21:03:43
101.187.39.74	attackbots	Aug 8 08:48:19 vps200512 sshd\[4263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.187.39.74 user=root Aug 8 08:48:20 vps200512 sshd\[4263\]: Failed password for root from 101.187.39.74 port 60288 ssh2 Aug 8 08:55:51 vps200512 sshd\[4352\]: Invalid user lia from 101.187.39.74 Aug 8 08:55:51 vps200512 sshd\[4352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.187.39.74 Aug 8 08:55:53 vps200512 sshd\[4352\]: Failed password for invalid user lia from 101.187.39.74 port 55116 ssh2	2019-08-08 20:57:16
40.84.36.250	attackspam	RDP Bruteforce	2019-08-08 21:45:21
187.218.57.29	attackspambots	Aug 8 13:59:45 apollo sshd\[20299\]: Invalid user candy from 187.218.57.29Aug 8 13:59:47 apollo sshd\[20299\]: Failed password for invalid user candy from 187.218.57.29 port 58336 ssh2Aug 8 14:09:31 apollo sshd\[20320\]: Invalid user toto from 187.218.57.29 ...	2019-08-08 21:02:47
208.123.135.194	attackbots	3389BruteforceFW23	2019-08-08 21:16:00
196.11.231.220	attackbotsspam	Aug 8 12:31:38 microserver sshd[28575]: Invalid user iolanda from 196.11.231.220 port 42111 Aug 8 12:31:38 microserver sshd[28575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.11.231.220 Aug 8 12:31:41 microserver sshd[28575]: Failed password for invalid user iolanda from 196.11.231.220 port 42111 ssh2 Aug 8 12:41:01 microserver sshd[29936]: Invalid user www from 196.11.231.220 port 39574 Aug 8 12:41:01 microserver sshd[29936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.11.231.220 Aug 8 12:59:06 microserver sshd[32218]: Invalid user server from 196.11.231.220 port 34503 Aug 8 12:59:06 microserver sshd[32218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.11.231.220 Aug 8 12:59:08 microserver sshd[32218]: Failed password for invalid user server from 196.11.231.220 port 34503 ssh2 Aug 8 13:08:23 microserver sshd[33534]: Invalid user polly from 196.11.231.220 por	2019-08-08 21:38:05
115.146.122.250	attackspam	115.146.122.250 - - \[08/Aug/2019:14:08:28 +0200\] "POST /wp-login.php HTTP/1.1" 200 2110 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 115.146.122.250 - - \[08/Aug/2019:14:08:31 +0200\] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-08-08 21:33:50
181.48.116.50	attackbots	Aug 8 08:37:36 vps200512 sshd\[4039\]: Invalid user dpn from 181.48.116.50 Aug 8 08:37:36 vps200512 sshd\[4039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50 Aug 8 08:37:38 vps200512 sshd\[4039\]: Failed password for invalid user dpn from 181.48.116.50 port 48038 ssh2 Aug 8 08:41:41 vps200512 sshd\[4170\]: Invalid user download from 181.48.116.50 Aug 8 08:41:41 vps200512 sshd\[4170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50	2019-08-08 20:53:02
117.81.130.34	attackspambots	22/tcp [2019-08-08]1pkt	2019-08-08 21:14:02
143.0.52.117	attackspam	SSH Brute Force	2019-08-08 20:45:29
113.141.28.106	attackspambots	Aug 8 14:07:39 master sshd[4448]: Failed password for invalid user theresa from 113.141.28.106 port 20634 ssh2 Aug 8 14:39:16 master sshd[4811]: Failed password for invalid user peter from 113.141.28.106 port 65437 ssh2 Aug 8 14:44:44 master sshd[4819]: Failed password for root from 113.141.28.106 port 24535 ssh2 Aug 8 14:50:10 master sshd[4836]: Failed password for root from 113.141.28.106 port 48139 ssh2 Aug 8 14:55:32 master sshd[4850]: Failed password for invalid user kab from 113.141.28.106 port 7142 ssh2 Aug 8 15:00:54 master sshd[5168]: Failed password for invalid user ts1 from 113.141.28.106 port 30772 ssh2 Aug 8 15:06:07 master sshd[5197]: Failed password for invalid user fujita from 113.141.28.106 port 54600 ssh2	2019-08-08 21:34:09
87.222.220.8	attackbots	"Inject 2010'a=0"	2019-08-08 20:54:39
45.82.34.88	attackspambots	Aug 8 13:53:28 srv1 postfix/smtpd[29848]: connect from clover.geomaticvista.com[45.82.34.88] Aug x@x Aug 8 13:53:33 srv1 postfix/smtpd[29848]: disconnect from clover.geomaticvista.com[45.82.34.88] Aug 8 13:53:54 srv1 postfix/smtpd[31727]: connect from clover.geomaticvista.com[45.82.34.88] Aug x@x Aug 8 13:53:59 srv1 postfix/smtpd[31727]: disconnect from clover.geomaticvista.com[45.82.34.88] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.82.34.88	2019-08-08 21:26:01
82.119.100.182	attack	Aug 8 12:30:24 db sshd\[10881\]: Invalid user sebastien from 82.119.100.182 Aug 8 12:30:24 db sshd\[10881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-119-100-182.static.chello.sk Aug 8 12:30:27 db sshd\[10881\]: Failed password for invalid user sebastien from 82.119.100.182 port 39809 ssh2 Aug 8 12:35:07 db sshd\[10921\]: Invalid user tomcat5 from 82.119.100.182 Aug 8 12:35:07 db sshd\[10921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-119-100-182.static.chello.sk ...	2019-08-08 21:02:28

Recently Reported IPs

116.0.4.164	116.0.41.68	116.0.4.213	116.0.4.179
116.0.4.210	116.0.4.52	116.0.49.77	116.0.43.146
116.0.43.148	116.0.5.102	116.0.5.230	116.0.5.37
116.58.235.138	116.0.5.46	116.0.5.30	116.0.5.57
116.58.235.14	116.58.235.141	116.58.235.142	116.58.235.144