220.132.4.53 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan (Province of China)

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	port 23	2020-05-10 19:44:43

相同子网IP讨论:

IP	类型	评论内容	时间
220.132.4.51	attack	23/tcp [2020-06-11]1pkt	2020-06-12 04:52:45
220.132.4.170	attackbotsspam	TCP (SYN) 220.132.4.170:20997 -> port 23, len 40	2020-06-01 19:54:14
220.132.48.174	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-26 21:51:50
220.132.4.13	attackbotsspam	Port probing on unauthorized port 9000	2020-05-12 17:01:04
220.132.4.198	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-23 08:19:46
220.132.45.86	attackspambots	unauthorized connection attempt	2020-02-26 15:02:07
220.132.4.198	attackspambots	Unauthorized connection attempt detected from IP address 220.132.4.198 to port 23 [J]	2020-02-02 09:22:06
220.132.45.205	attackbotsspam	Unauthorized connection attempt detected from IP address 220.132.45.205 to port 81 [J]	2020-01-27 16:52:22
220.132.4.200	attackspam	Unauthorized connection attempt detected from IP address 220.132.4.200 to port 4567 [J]	2020-01-26 02:29:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.132.4.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34484
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.132.4.53.			IN	A

;; AUTHORITY SECTION:
.			373	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051000 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 19:44:38 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

53.4.132.220.in-addr.arpa domain name pointer 220-132-4-53.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.4.132.220.in-addr.arpa	name = 220-132-4-53.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
58.219.175.30	attackbotsspam	20 attempts against mh-ssh on ice	2020-02-10 05:07:48
85.21.144.6	attack	Feb 9 20:10:31 haigwepa sshd[27979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.21.144.6 Feb 9 20:10:33 haigwepa sshd[27979]: Failed password for invalid user avk from 85.21.144.6 port 57126 ssh2 ...	2020-02-10 04:51:47
138.197.175.236	attackbotsspam	Feb 9 21:28:47 cvbnet sshd[21615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.175.236 Feb 9 21:28:49 cvbnet sshd[21615]: Failed password for invalid user uus from 138.197.175.236 port 41878 ssh2 ...	2020-02-10 04:59:59
51.38.140.25	attack	Feb 9 19:18:30 h2177944 kernel: \[4470339.009143\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.38.140.25 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=20987 PROTO=TCP SPT=49908 DPT=4091 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 19:18:30 h2177944 kernel: \[4470339.009157\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.38.140.25 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=20987 PROTO=TCP SPT=49908 DPT=4091 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 19:48:42 h2177944 kernel: \[4472151.196558\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.38.140.25 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=53676 PROTO=TCP SPT=49908 DPT=4103 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 19:48:42 h2177944 kernel: \[4472151.196572\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.38.140.25 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=53676 PROTO=TCP SPT=49908 DPT=4103 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 9 20:06:15 h2177944 kernel: \[4473203.689136\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=51.38.140.25 DST=85.214.117.9 LEN=	2020-02-10 04:57:34
111.67.197.159	attack	Feb 6 00:26:43 mailserver sshd[27061]: Invalid user zvf from 111.67.197.159 Feb 6 00:26:43 mailserver sshd[27061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.197.159 Feb 6 00:26:45 mailserver sshd[27061]: Failed password for invalid user zvf from 111.67.197.159 port 38812 ssh2 Feb 6 00:26:46 mailserver sshd[27061]: Received disconnect from 111.67.197.159 port 38812:11: Bye Bye [preauth] Feb 6 00:26:46 mailserver sshd[27061]: Disconnected from 111.67.197.159 port 38812 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=111.67.197.159	2020-02-10 05:22:01
175.6.133.182	attackbots	Unauthorized connection attempt from IP address 175.6.133.182 on Port 25(SMTP)	2020-02-10 05:25:21
218.150.231.188	attackspambots	Feb 9 19:23:59 marvibiene sshd[65056]: Invalid user oiq from 218.150.231.188 port 47940 Feb 9 19:23:59 marvibiene sshd[65056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.150.231.188 Feb 9 19:23:59 marvibiene sshd[65056]: Invalid user oiq from 218.150.231.188 port 47940 Feb 9 19:24:00 marvibiene sshd[65056]: Failed password for invalid user oiq from 218.150.231.188 port 47940 ssh2 ...	2020-02-10 05:25:45
171.11.109.57	attackspam	Port probing on unauthorized port 445	2020-02-10 05:03:11
24.220.130.95	attackbotsspam	Brute forcing email accounts	2020-02-10 04:58:52
197.210.226.80	attackspambots	Unauthorized connection attempt detected from IP address 197.210.226.80 to port 445	2020-02-10 05:14:33
113.172.97.154	attackspam	2020-02-09T14:28:36.179836ns386461 sshd\[9181\]: Invalid user admin from 113.172.97.154 port 42006 2020-02-09T14:28:36.183012ns386461 sshd\[9181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.97.154 2020-02-09T14:28:38.618533ns386461 sshd\[9181\]: Failed password for invalid user admin from 113.172.97.154 port 42006 ssh2 2020-02-09T14:28:42.919695ns386461 sshd\[9252\]: Invalid user admin from 113.172.97.154 port 42033 2020-02-09T14:28:42.926085ns386461 sshd\[9252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.97.154 ...	2020-02-10 05:18:50
222.252.181.245	attackspambots	1581254940 - 02/09/2020 14:29:00 Host: 222.252.181.245/222.252.181.245 Port: 445 TCP Blocked	2020-02-10 05:13:02
189.8.68.56	attack	SSH Brute-Force reported by Fail2Ban	2020-02-10 05:04:25
51.91.8.146	attackbotsspam	Ssh brute force	2020-02-10 05:23:42
218.92.0.191	attackspam	Feb 9 21:46:56 dcd-gentoo sshd[13582]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Feb 9 21:46:58 dcd-gentoo sshd[13582]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Feb 9 21:46:56 dcd-gentoo sshd[13582]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Feb 9 21:46:58 dcd-gentoo sshd[13582]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Feb 9 21:46:56 dcd-gentoo sshd[13582]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Feb 9 21:46:58 dcd-gentoo sshd[13582]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Feb 9 21:46:58 dcd-gentoo sshd[13582]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 12224 ssh2 ...	2020-02-10 04:53:48

最近上报的IP列表

62.90.226.188	119.148.35.143	95.110.235.145	117.157.99.102
113.96.134.183	94.76.97.127	36.70.90.107	197.44.49.170
187.220.127.253	36.81.4.248	203.59.97.181	182.56.68.137
1.199.73.17	220.191.230.83	103.218.242.102	94.230.121.148
46.98.123.50	89.22.148.137	49.232.160.134	137.24.150.110