118.93.108.132

基本信息:

城市(city): Christchurch

省份(region): Canterbury

国家(country): New Zealand

运营商(isp): Vodafone

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.93.108.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61383
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.93.108.132.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102001 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 03:18:16 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

132.108.93.118.in-addr.arpa domain name pointer 118-93-108-132.dsl.dyn.ihug.co.nz.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
132.108.93.118.in-addr.arpa	name = 118-93-108-132.dsl.dyn.ihug.co.nz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
60.250.80.216	attack	Jun 28 13:42:24 debian-2gb-nbg1-2 kernel: \[15603192.704235\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=60.250.80.216 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=9103 PROTO=TCP SPT=52536 DPT=13314 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-28 19:50:36
106.13.173.73	attackspam	unauthorized connection attempt	2020-06-28 20:04:23
213.254.16.30	attack	Unauthorised access (Jun 28) SRC=213.254.16.30 LEN=52 TTL=123 ID=8766 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-28 20:02:09
51.68.196.163	attack	$f2bV_matches	2020-06-28 19:32:28
161.35.201.124	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-28 19:45:20
111.161.74.100	attackspambots	$f2bV_matches	2020-06-28 20:08:02
177.152.124.23	attackspambots	SSH Brute Force	2020-06-28 19:39:01
178.128.219.170	attack	TCP (SYN) 178.128.219.170:51461 -> port 11373, len 44	2020-06-28 20:03:03
180.246.228.9	attack	Jun 27 02:42:36 finn sshd[11699]: Invalid user adi from 180.246.228.9 port 41930 Jun 27 02:42:36 finn sshd[11699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.246.228.9 Jun 27 02:42:38 finn sshd[11699]: Failed password for invalid user adi from 180.246.228.9 port 41930 ssh2 Jun 27 02:42:38 finn sshd[11699]: Received disconnect from 180.246.228.9 port 41930:11: Bye Bye [preauth] Jun 27 02:42:38 finn sshd[11699]: Disconnected from 180.246.228.9 port 41930 [preauth] Jun 27 02:58:01 finn sshd[15544]: Invalid user test_user1 from 180.246.228.9 port 47152 Jun 27 02:58:01 finn sshd[15544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.246.228.9 Jun 27 02:58:03 finn sshd[15544]: Failed password for invalid user test_user1 from 180.246.228.9 port 47152 ssh2 Jun 27 02:58:04 finn sshd[15544]: Received disconnect from 180.246.228.9 port 47152:11: Bye Bye [preauth] Jun 27 02:58:04 finn sshd........ -------------------------------	2020-06-28 19:37:13
182.160.115.130	attackbots	Jun 26 03:55:40 ntop sshd[28569]: Invalid user eva from 182.160.115.130 port 52292 Jun 26 03:55:40 ntop sshd[28569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.160.115.130 Jun 26 03:55:42 ntop sshd[28569]: Failed password for invalid user eva from 182.160.115.130 port 52292 ssh2 Jun 26 03:55:43 ntop sshd[28569]: Received disconnect from 182.160.115.130 port 52292:11: Bye Bye [preauth] Jun 26 03:55:43 ntop sshd[28569]: Disconnected from invalid user eva 182.160.115.130 port 52292 [preauth] Jun 26 03:56:29 ntop sshd[28605]: User r.r from 182.160.115.130 not allowed because not listed in AllowUsers Jun 26 03:56:29 ntop sshd[28605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.160.115.130 user=r.r Jun 26 03:56:30 ntop sshd[28605]: Failed password for invalid user r.r from 182.160.115.130 port 60544 ssh2 Jun 26 03:56:32 ntop sshd[28605]: Received disconnect from 182.160.115.130 ........ -------------------------------	2020-06-28 19:59:55
98.33.5.7	attackspam	2020-06-28T05:47:39.886324ns386461 sshd\[8026\]: Invalid user admin from 98.33.5.7 port 36548 2020-06-28T05:47:40.044739ns386461 sshd\[8026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.33.5.7 2020-06-28T05:47:42.487904ns386461 sshd\[8026\]: Failed password for invalid user admin from 98.33.5.7 port 36548 ssh2 2020-06-28T05:47:44.011549ns386461 sshd\[8032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.33.5.7 user=root 2020-06-28T05:47:46.004207ns386461 sshd\[8032\]: Failed password for root from 98.33.5.7 port 36718 ssh2 ...	2020-06-28 19:42:35
47.95.239.170	attackbotsspam	unauthorized connection attempt	2020-06-28 19:31:18
88.214.26.97	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-28T09:03:47Z and 2020-06-28T10:25:39Z	2020-06-28 19:25:03
58.102.31.36	attack	Jun 28 09:57:50 jumpserver sshd[258001]: Invalid user cwl from 58.102.31.36 port 41016 Jun 28 09:57:53 jumpserver sshd[258001]: Failed password for invalid user cwl from 58.102.31.36 port 41016 ssh2 Jun 28 09:59:29 jumpserver sshd[258005]: Invalid user cacti from 58.102.31.36 port 33688 ...	2020-06-28 20:04:41
1.55.108.58	attackbots	2020-06-27 22:41:51.946579-0500 localhost smtpd[52166]: NOQUEUE: reject: RCPT from unknown[1.55.108.58]: 554 5.7.1 Service unavailable; Client host [1.55.108.58] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/1.55.108.58; from= to= proto=ESMTP helo=<[1.55.108.58]>	2020-06-28 19:27:02

最近上报的IP列表

103.75.35.6	219.183.22.197	185.164.136.243	74.131.104.190
185.8.174.170	8.9.231.152	23.251.154.198	60.98.167.157
76.213.59.87	49.205.182.250	186.210.157.152	143.95.140.37
122.161.103.100	118.209.197.185	67.64.166.246	14.120.30.11
52.76.90.108	70.211.30.238	137.50.174.91	99.154.148.66