220.132.221.85

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/220.132.221.85/ TW - 1H : (226) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 220.132.221.85 CIDR : 220.132.192.0/18 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 23 3H - 53 6H - 66 12H - 96 24H - 158 DateTime : 2019-10-01 05:53:01 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-01 13:56:21

类型

评论内容

时间

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/220.132.221.85/ 
 TW - 1H : (226)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TW 
 NAME ASN : ASN3462 
 
 IP : 220.132.221.85 
 
 CIDR : 220.132.192.0/18 
 
 PREFIX COUNT : 390 
 
 UNIQUE IP COUNT : 12267520 
 
 
 WYKRYTE ATAKI Z ASN3462 :  
  1H - 23 
  3H - 53 
  6H - 66 
 12H - 96 
 24H - 158 
 
 DateTime : 2019-10-01 05:53:01 
 
 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN  - data recovery

2019-10-01 13:56:21

相同子网IP讨论:

IP	类型	评论内容	时间
220.132.221.28	attackbotsspam	port 23	2020-05-29 15:08:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.132.221.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35689
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.132.221.85.			IN	A

;; AUTHORITY SECTION:
.			493	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100100 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 01 13:56:05 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

85.221.132.220.in-addr.arpa domain name pointer 220-132-221-85.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.221.132.220.in-addr.arpa	name = 220-132-221-85.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
212.64.54.49	attackspam	Aug 4 09:27:59 scw-6657dc sshd[19919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.54.49 user=root Aug 4 09:27:59 scw-6657dc sshd[19919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.54.49 user=root Aug 4 09:28:00 scw-6657dc sshd[19919]: Failed password for root from 212.64.54.49 port 50108 ssh2 ...	2020-08-04 18:09:45
66.70.142.214	attackspambots	2020-08-04T12:21:55.956207vps751288.ovh.net sshd\[17484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.142.214 user=root 2020-08-04T12:21:58.447735vps751288.ovh.net sshd\[17484\]: Failed password for root from 66.70.142.214 port 52668 ssh2 2020-08-04T12:25:23.781350vps751288.ovh.net sshd\[17532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.142.214 user=root 2020-08-04T12:25:25.495041vps751288.ovh.net sshd\[17532\]: Failed password for root from 66.70.142.214 port 41970 ssh2 2020-08-04T12:28:55.896579vps751288.ovh.net sshd\[17572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.142.214 user=root	2020-08-04 18:36:07
139.59.169.37	attack	Aug 4 11:23:28 sip sshd[1186515]: Failed password for root from 139.59.169.37 port 33838 ssh2 Aug 4 11:28:12 sip sshd[1186541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.37 user=root Aug 4 11:28:14 sip sshd[1186541]: Failed password for root from 139.59.169.37 port 45348 ssh2 ...	2020-08-04 17:59:19
201.149.82.181	attack	Unauthorised access (Aug 4) SRC=201.149.82.181 LEN=40 TOS=0x08 PREC=0x40 TTL=230 ID=20631 TCP DPT=445 WINDOW=1024 SYN	2020-08-04 18:23:17
222.186.173.201	attackbotsspam	Aug 4 12:31:34 jane sshd[13867]: Failed password for root from 222.186.173.201 port 44304 ssh2 Aug 4 12:31:39 jane sshd[13867]: Failed password for root from 222.186.173.201 port 44304 ssh2 ...	2020-08-04 18:33:22
112.85.42.237	attackspam	Aug 4 05:48:51 NPSTNNYC01T sshd[11277]: Failed password for root from 112.85.42.237 port 28492 ssh2 Aug 4 05:48:53 NPSTNNYC01T sshd[11277]: Failed password for root from 112.85.42.237 port 28492 ssh2 Aug 4 05:48:55 NPSTNNYC01T sshd[11277]: Failed password for root from 112.85.42.237 port 28492 ssh2 ...	2020-08-04 18:28:22
96.125.168.246	attackspambots	96.125.168.246 - - [04/Aug/2020:10:43:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2013 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 96.125.168.246 - - [04/Aug/2020:10:43:22 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 96.125.168.246 - - [04/Aug/2020:10:43:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1993 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 18:18:07
46.146.136.8	attackspam	Tried sshing with brute force.	2020-08-04 18:29:55
51.158.20.200	attackspam	2020-08-04T04:59:11.1071101495-001 sshd[10508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.20.200 user=root 2020-08-04T04:59:12.4602281495-001 sshd[10508]: Failed password for root from 51.158.20.200 port 52923 ssh2 2020-08-04T05:02:52.7655091495-001 sshd[10778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.20.200 user=root 2020-08-04T05:02:54.4597371495-001 sshd[10778]: Failed password for root from 51.158.20.200 port 44901 ssh2 2020-08-04T05:06:41.6487351495-001 sshd[10991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.20.200 user=root 2020-08-04T05:06:43.7796091495-001 sshd[10991]: Failed password for root from 51.158.20.200 port 24132 ssh2 ...	2020-08-04 18:27:27
159.65.11.115	attackspam	Aug 4 11:26:34 OPSO sshd\[27993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.11.115 user=root Aug 4 11:26:36 OPSO sshd\[27993\]: Failed password for root from 159.65.11.115 port 60458 ssh2 Aug 4 11:31:34 OPSO sshd\[28811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.11.115 user=root Aug 4 11:31:35 OPSO sshd\[28811\]: Failed password for root from 159.65.11.115 port 52530 ssh2 Aug 4 11:35:54 OPSO sshd\[29833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.11.115 user=root	2020-08-04 17:53:48
83.103.59.192	attack	leo_www	2020-08-04 18:32:51
167.172.36.232	attackspambots	Aug 4 00:04:37 web9 sshd\[6079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.36.232 user=root Aug 4 00:04:39 web9 sshd\[6079\]: Failed password for root from 167.172.36.232 port 38454 ssh2 Aug 4 00:07:42 web9 sshd\[6560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.36.232 user=root Aug 4 00:07:44 web9 sshd\[6560\]: Failed password for root from 167.172.36.232 port 37962 ssh2 Aug 4 00:10:50 web9 sshd\[6936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.36.232 user=root	2020-08-04 18:32:19
103.133.90.140	attackspambots	1900/udp [2020-08-04]1pkt	2020-08-04 17:58:25
120.34.165.120	attackspambots	Jul 31 19:11:43 xxxxxxx4 sshd[6183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.34.165.120 user=r.r Jul 31 19:11:44 xxxxxxx4 sshd[6183]: Failed password for r.r from 120.34.165.120 port 1656 ssh2 Jul 31 19:25:05 xxxxxxx4 sshd[7797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.34.165.120 user=r.r Jul 31 19:25:07 xxxxxxx4 sshd[7797]: Failed password for r.r from 120.34.165.120 port 1520 ssh2 Jul 31 19:27:54 xxxxxxx4 sshd[8660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.34.165.120 user=r.r Jul 31 19:27:57 xxxxxxx4 sshd[8660]: Failed password for r.r from 120.34.165.120 port 4530 ssh2 Jul 31 19:33:35 xxxxxxx4 sshd[9304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.34.165.120 user=r.r Jul 31 19:33:37 xxxxxxx4 sshd[9304]: Failed password for r.r from 120.34.165.120 port 3244 ssh2 J........ ------------------------------	2020-08-04 18:35:18
179.191.123.46	attackspambots	Aug 4 12:12:18 OPSO sshd\[4130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.191.123.46 user=root Aug 4 12:12:20 OPSO sshd\[4130\]: Failed password for root from 179.191.123.46 port 46770 ssh2 Aug 4 12:15:13 OPSO sshd\[4707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.191.123.46 user=root Aug 4 12:15:15 OPSO sshd\[4707\]: Failed password for root from 179.191.123.46 port 38168 ssh2 Aug 4 12:18:03 OPSO sshd\[5061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.191.123.46 user=root	2020-08-04 18:28:35

最近上报的IP列表

61.15.132.255	1.229.99.188	124.168.156.38	42.70.166.20
2400:6180:0:d0::34:2001	34.76.24.54	95.216.27.209	176.119.24.140
217.28.137.60	169.172.63.246	222.254.24.109	38.186.7.223
108.218.128.127	188.113.219.156	40.55.159.26	167.187.82.216
196.228.241.10	58.72.43.143	180.241.134.98	70.248.24.216