220.132.57.92 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 220.132.57.92 to port 4567	2020-02-29 15:53:29

相同子网IP讨论:

IP	类型	评论内容	时间
220.132.57.52	attack	Unauthorized connection attempt detected from IP address 220.132.57.52 to port 81 [J]	2020-03-01 01:16:39
220.132.57.194	attack	Scanning random ports - tries to find possible vulnerable services	2020-02-27 09:14:03
220.132.57.52	attackspam	Telnet/23 MH Probe, BF, Hack -	2020-02-13 10:38:08
220.132.57.245	attackspambots	email spam	2019-12-17 18:11:04
220.132.57.245	attackbotsspam	Lines containing failures of 220.132.57.245 Dec 16 06:45:51 shared01 postfix/smtpd[28256]: connect from 220-132-57-245.HINET-IP.hinet.net[220.132.57.245] Dec 16 06:45:54 shared01 policyd-spf[4038]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=220.132.57.245; helo=220-132-57-245.hinet-ip.hinet.net; envelope-from=x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=220.132.57.245	2019-12-16 18:28:07
220.132.57.245	attack	Sent mail to target address hacked/leaked from abandonia in 2016	2019-07-25 04:18:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.132.57.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23867
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.132.57.92.			IN	A

;; AUTHORITY SECTION:
.			252	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022900 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 15:53:20 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

92.57.132.220.in-addr.arpa domain name pointer 220-132-57-92.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
92.57.132.220.in-addr.arpa	name = 220-132-57-92.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.217.15.176	attackbots	Jan 26 01:02:54 hosting sshd[28519]: Invalid user gpadmin from 95.217.15.176 port 43612 ...	2020-01-26 06:07:23
46.101.88.10	attackbots	Jan 25 22:26:38 icecube sshd[3647]: Failed password for invalid user ubuntu from 46.101.88.10 port 23696 ssh2	2020-01-26 05:52:19
114.199.116.195	attack	proto=tcp . spt=43539 . dpt=25 . Found on Blocklist de (606)	2020-01-26 06:01:47
217.128.84.134	attackbots	2020-01-25T22:12:25.326648shield sshd\[474\]: Invalid user hashimoto from 217.128.84.134 port 35990 2020-01-25T22:12:25.334828shield sshd\[474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.128.84.134 2020-01-25T22:12:27.199462shield sshd\[474\]: Failed password for invalid user hashimoto from 217.128.84.134 port 35990 ssh2 2020-01-25T22:18:12.970234shield sshd\[2334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.128.84.134 user=root 2020-01-25T22:18:15.135752shield sshd\[2334\]: Failed password for root from 217.128.84.134 port 59268 ssh2	2020-01-26 06:23:47
185.53.88.98	attack	[2020-01-25 17:08:07] NOTICE[1148] chan_sip.c: Registration from '"201" ' failed for '185.53.88.98:5199' - Wrong password [2020-01-25 17:08:07] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-25T17:08:07.641-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="201",SessionID="0x7fd82c1014f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.98/5199",Challenge="0d623374",ReceivedChallenge="0d623374",ReceivedHash="d4fd6041228ad72c5bc02fd7f359c490" [2020-01-25 17:08:07] NOTICE[1148] chan_sip.c: Registration from '"201" ' failed for '185.53.88.98:5199' - Wrong password [2020-01-25 17:08:07] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-25T17:08:07.749-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="201",SessionID="0x7fd82c5467a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.9 ...	2020-01-26 06:14:27
80.211.71.124	attackspam	Unauthorized connection attempt detected from IP address 80.211.71.124 to port 2220 [J]	2020-01-26 06:24:57
192.199.53.131	attackbotsspam	proto=tcp . spt=36457 . dpt=25 . Found on Dark List de (608)	2020-01-26 05:57:28
180.254.137.87	attack	1579986782 - 01/25/2020 22:13:02 Host: 180.254.137.87/180.254.137.87 Port: 445 TCP Blocked	2020-01-26 06:03:58
213.238.179.93	attackbotsspam	Unauthorized connection attempt detected from IP address 213.238.179.93 to port 2220 [J]	2020-01-26 06:22:51
114.216.202.208	attackspam	Unauthorized connection attempt detected from IP address 114.216.202.208 to port 2220 [J]	2020-01-26 05:59:36
17.248.146.201	attackbots	firewall-block, port(s): 52189/tcp	2020-01-26 06:04:35
79.190.223.118	attackbots	Jan 25 11:08:36 php1 sshd\[24281\]: Invalid user administrator from 79.190.223.118 Jan 25 11:08:36 php1 sshd\[24281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=isq118.internetdsl.tpnet.pl Jan 25 11:08:38 php1 sshd\[24281\]: Failed password for invalid user administrator from 79.190.223.118 port 60854 ssh2 Jan 25 11:13:36 php1 sshd\[25091\]: Invalid user admin from 79.190.223.118 Jan 25 11:13:36 php1 sshd\[25091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=isq118.internetdsl.tpnet.pl	2020-01-26 05:47:39
182.61.21.155	attackbotsspam	$f2bV_matches	2020-01-26 05:54:34
209.141.57.211	attack	Jan 25 22:20:57 raspberrypi sshd[1296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.57.211 user=root Jan 25 22:20:59 raspberrypi sshd[1296]: Failed password for invalid user root from 209.141.57.211 port 35656 ssh2 ...	2020-01-26 06:18:06
189.176.90.207	attackspambots	Automatic report - Port Scan Attack	2020-01-26 06:09:43

最近上报的IP列表

54.254.222.113	113.173.38.164	93.150.117.23	36.74.197.63
182.61.105.146	157.230.98.203	113.173.250.203	221.178.185.41
113.173.178.144	113.173.154.170	58.19.12.113	14.186.3.10
170.80.16.19	113.173.124.130	104.197.2.66	64.225.49.188
1.55.47.120	113.173.118.117	113.172.37.215	117.27.40.175