220.132.245.94

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 20:21:16,750 INFO [amun_request_handler] PortScan Detected on Port: 445 (220.132.245.94)	2019-07-06 09:23:45

相同子网IP讨论:

IP	类型	评论内容	时间
220.132.245.80	attack	Found on CINS badguys / proto=6 . srcport=14568 . dstport=23 . (1127)	2020-09-17 21:15:49
220.132.245.80	attack	Found on CINS badguys / proto=6 . srcport=14568 . dstport=23 . (1127)	2020-09-17 13:26:57
220.132.245.80	attackbots	Found on CINS badguys / proto=6 . srcport=14568 . dstport=23 . (1127)	2020-09-17 04:32:41
220.132.245.196	attackspam	SmallBizIT.US 1 packets to tcp(23)	2020-05-23 15:56:42
220.132.245.198	attackbotsspam	Honeypot attack, port: 81, PTR: 220-132-245-198.HINET-IP.hinet.net.	2020-05-21 06:18:49
220.132.245.14	attack	SMB Server BruteForce Attack	2019-11-06 18:11:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.132.245.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1393
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.132.245.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 09:23:39 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

94.245.132.220.in-addr.arpa domain name pointer 220-132-245-94.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.245.132.220.in-addr.arpa	name = 220-132-245-94.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.48.206.146	attackbots	Oct 2 07:02:22 tuotantolaitos sshd[4720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.206.146 Oct 2 07:02:24 tuotantolaitos sshd[4720]: Failed password for invalid user admin from 201.48.206.146 port 39872 ssh2 ...	2019-10-02 18:21:49
152.136.84.139	attack	Oct 2 00:08:30 hanapaa sshd\[29611\]: Invalid user oracle from 152.136.84.139 Oct 2 00:08:30 hanapaa sshd\[29611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.84.139 Oct 2 00:08:32 hanapaa sshd\[29611\]: Failed password for invalid user oracle from 152.136.84.139 port 56064 ssh2 Oct 2 00:13:40 hanapaa sshd\[30178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.84.139 user=root Oct 2 00:13:42 hanapaa sshd\[30178\]: Failed password for root from 152.136.84.139 port 39700 ssh2	2019-10-02 18:21:09
198.98.50.112	attackspam	2019-10-02T08:42:41.111008abusebot.cloudsearch.cf sshd\[14610\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.98.50.112 user=root	2019-10-02 18:09:53
49.234.3.90	attackbotsspam	2019-10-02T03:00:27.705199ns525875 sshd\[2938\]: Invalid user test from 49.234.3.90 port 57392 2019-10-02T03:00:27.710924ns525875 sshd\[2938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.3.90 2019-10-02T03:00:29.330112ns525875 sshd\[2938\]: Failed password for invalid user test from 49.234.3.90 port 57392 ssh2 2019-10-02T03:05:09.239861ns525875 sshd\[7179\]: Invalid user vampire from 49.234.3.90 port 38418 ...	2019-10-02 18:10:40
211.157.189.54	attackspambots	Oct 2 10:56:41 jane sshd[6583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.157.189.54 Oct 2 10:56:43 jane sshd[6583]: Failed password for invalid user exec from 211.157.189.54 port 42322 ssh2 ...	2019-10-02 18:28:26
60.12.26.9	attack	Oct 2 07:05:41 localhost sshd\[4026\]: Invalid user oracle from 60.12.26.9 port 39471 Oct 2 07:05:41 localhost sshd\[4026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.12.26.9 Oct 2 07:05:42 localhost sshd\[4026\]: Failed password for invalid user oracle from 60.12.26.9 port 39471 ssh2	2019-10-02 18:33:50
173.184.73.182	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/173.184.73.182/ US - 1H : (1263) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN7029 IP : 173.184.73.182 CIDR : 173.184.0.0/14 PREFIX COUNT : 2115 UNIQUE IP COUNT : 12306432 WYKRYTE ATAKI Z ASN7029 : 1H - 1 3H - 4 6H - 5 12H - 6 24H - 12 DateTime : 2019-10-02 05:45:53 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-02 18:41:48
181.49.117.130	attack	2019-10-02T09:54:09.552710shield sshd\[734\]: Invalid user unpack from 181.49.117.130 port 24838 2019-10-02T09:54:09.556902shield sshd\[734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.130 2019-10-02T09:54:11.605616shield sshd\[734\]: Failed password for invalid user unpack from 181.49.117.130 port 24838 ssh2 2019-10-02T09:59:01.876935shield sshd\[1429\]: Invalid user matt from 181.49.117.130 port 64206 2019-10-02T09:59:01.881043shield sshd\[1429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.130	2019-10-02 18:03:08
204.48.19.178	attackspam	Brute force attempt	2019-10-02 18:33:14
211.94.143.34	attackbots	Oct 1 23:36:58 web9 sshd\[32698\]: Invalid user bogus from 211.94.143.34 Oct 1 23:36:58 web9 sshd\[32698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.94.143.34 Oct 1 23:37:00 web9 sshd\[32698\]: Failed password for invalid user bogus from 211.94.143.34 port 51526 ssh2 Oct 1 23:41:33 web9 sshd\[901\]: Invalid user et from 211.94.143.34 Oct 1 23:41:33 web9 sshd\[901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.94.143.34	2019-10-02 18:41:12
159.203.201.96	attackbots	[portscan] tcp/135 [DCE/RPC] *(RWIN=65535)(10021116)	2019-10-02 18:38:04
132.232.181.252	attack	Automatic report - Banned IP Access	2019-10-02 18:35:12
195.88.66.108	attackbotsspam	Oct 2 12:03:15 herz-der-gamer sshd[5568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.88.66.108 user=root Oct 2 12:03:17 herz-der-gamer sshd[5568]: Failed password for root from 195.88.66.108 port 41057 ssh2 ...	2019-10-02 18:20:41
118.89.27.248	attackbots	Oct 2 11:48:32 lnxded64 sshd[482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.27.248	2019-10-02 18:25:40
194.156.125.208	attackbots	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (mp$ContentZone$TxtMessage="	2019-10-02 18:05:50

最近上报的IP列表

206.196.116.245	245.82.38.3	36.105.44.129	78.155.206.150
201.92.197.54	23.238.115.210	121.142.165.111	248.38.145.136
167.105.42.134	223.97.201.132	201.123.116.113	227.118.184.109
182.76.53.114	88.230.231.27	110.247.169.104	37.79.128.238
108.250.121.190	193.56.29.114	82.157.52.156	144.1.204.255