220.132.57.92 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 220.132.57.92 to port 4567	2020-02-29 15:53:29

相同子网IP讨论:

IP	类型	评论内容	时间
220.132.57.52	attack	Unauthorized connection attempt detected from IP address 220.132.57.52 to port 81 [J]	2020-03-01 01:16:39
220.132.57.194	attack	Scanning random ports - tries to find possible vulnerable services	2020-02-27 09:14:03
220.132.57.52	attackspam	Telnet/23 MH Probe, BF, Hack -	2020-02-13 10:38:08
220.132.57.245	attackspambots	email spam	2019-12-17 18:11:04
220.132.57.245	attackbotsspam	Lines containing failures of 220.132.57.245 Dec 16 06:45:51 shared01 postfix/smtpd[28256]: connect from 220-132-57-245.HINET-IP.hinet.net[220.132.57.245] Dec 16 06:45:54 shared01 policyd-spf[4038]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=220.132.57.245; helo=220-132-57-245.hinet-ip.hinet.net; envelope-from=x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=220.132.57.245	2019-12-16 18:28:07
220.132.57.245	attack	Sent mail to target address hacked/leaked from abandonia in 2016	2019-07-25 04:18:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.132.57.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23867
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.132.57.92.			IN	A

;; AUTHORITY SECTION:
.			252	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022900 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 29 15:53:20 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

92.57.132.220.in-addr.arpa domain name pointer 220-132-57-92.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
92.57.132.220.in-addr.arpa	name = 220-132-57-92.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
112.6.231.114	attackspam	May 10 00:02:53 sip sshd[23782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.6.231.114 May 10 00:02:54 sip sshd[23782]: Failed password for invalid user yuri from 112.6.231.114 port 59551 ssh2 May 10 00:10:12 sip sshd[26536]: Failed password for root from 112.6.231.114 port 57518 ssh2	2020-05-10 06:46:28
177.125.40.172	attackspambots	May 9 22:06:47 mail.srvfarm.net postfix/smtps/smtpd[2324965]: warning: unknown[177.125.40.172]: SASL PLAIN authentication failed: May 9 22:06:47 mail.srvfarm.net postfix/smtps/smtpd[2324965]: lost connection after AUTH from unknown[177.125.40.172] May 9 22:11:41 mail.srvfarm.net postfix/smtps/smtpd[2325542]: warning: unknown[177.125.40.172]: SASL PLAIN authentication failed: May 9 22:11:41 mail.srvfarm.net postfix/smtps/smtpd[2325542]: lost connection after AUTH from unknown[177.125.40.172] May 9 22:14:07 mail.srvfarm.net postfix/smtpd[2338784]: warning: unknown[177.125.40.172]: SASL PLAIN authentication failed:	2020-05-10 06:54:32
117.50.110.210	attackbots	May 9 22:28:36 h2829583 sshd[16926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.110.210	2020-05-10 07:02:38
104.248.182.179	attackspambots	2020-05-10T00:34:34.576900sd-86998 sshd[40065]: Invalid user dcadmin from 104.248.182.179 port 50976 2020-05-10T00:34:34.579471sd-86998 sshd[40065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.182.179 2020-05-10T00:34:34.576900sd-86998 sshd[40065]: Invalid user dcadmin from 104.248.182.179 port 50976 2020-05-10T00:34:36.486398sd-86998 sshd[40065]: Failed password for invalid user dcadmin from 104.248.182.179 port 50976 ssh2 2020-05-10T00:37:40.960055sd-86998 sshd[40488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.182.179 user=root 2020-05-10T00:37:42.736245sd-86998 sshd[40488]: Failed password for root from 104.248.182.179 port 60226 ssh2 ...	2020-05-10 07:03:27
118.25.26.200	attackspambots	srv02 SSH BruteForce Attacks 22 ..	2020-05-10 07:08:44
182.61.172.151	attackbotsspam	20 attempts against mh-ssh on echoip	2020-05-10 06:49:06
46.38.144.32	attackspam	May 10 00:50:30 v22019058497090703 postfix/smtpd[15375]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:51:06 v22019058497090703 postfix/smtpd[15375]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:51:41 v22019058497090703 postfix/smtpd[15375]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-10 06:57:12
218.94.136.90	attackbots	SSH Invalid Login	2020-05-10 07:19:07
185.50.149.12	attack	May 9 23:45:45 mail postfix/smtpd\[14176\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 9 23:46:11 mail postfix/smtpd\[14152\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 10 00:50:48 mail postfix/smtpd\[15356\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 10 00:51:11 mail postfix/smtpd\[15308\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-05-10 06:53:18
35.245.33.180	attackbots	May 9 22:12:21 scw-6657dc sshd[18601]: Failed password for root from 35.245.33.180 port 39544 ssh2 May 9 22:12:21 scw-6657dc sshd[18601]: Failed password for root from 35.245.33.180 port 39544 ssh2 May 9 22:14:25 scw-6657dc sshd[18661]: Invalid user joker from 35.245.33.180 port 35538 ...	2020-05-10 07:05:57
2002:b9ea:d8ce::b9ea:d8ce	attack	May 10 00:44:31 web01.agentur-b-2.de postfix/smtpd[452766]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:44:31 web01.agentur-b-2.de postfix/smtpd[452766]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] May 10 00:48:30 web01.agentur-b-2.de postfix/smtpd[448103]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:48:30 web01.agentur-b-2.de postfix/smtpd[448103]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] May 10 00:52:10 web01.agentur-b-2.de postfix/smtpd[465652]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-10 06:57:46
161.53.178.35	attackbots	May 9 22:28:47 vmd48417 sshd[19307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.53.178.35	2020-05-10 06:43:27
103.9.195.59	attack	SSH brute force attempt	2020-05-10 07:00:44
217.112.142.244	attackspam	May 9 23:25:18 web01.agentur-b-2.de postfix/smtpd[300244]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 9 23:30:14 web01.agentur-b-2.de postfix/smtpd[298866]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 9 23:30:15 web01.agentur-b-2.de postfix/smtpd[293228]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 9 23:30:16 web01.agentur-b-2.de postfix/smtpd[300244]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1	2020-05-10 06:50:26
195.231.3.146	attack	May 10 00:26:20 mellenthin postfix/smtpd[4917]: warning: unknown[195.231.3.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:44:00 mellenthin postfix/smtpd[5815]: warning: unknown[195.231.3.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-10 06:51:29

最近上报的IP列表

54.254.222.113	113.173.38.164	93.150.117.23	36.74.197.63
182.61.105.146	157.230.98.203	113.173.250.203	221.178.185.41
113.173.178.144	113.173.154.170	58.19.12.113	14.186.3.10
170.80.16.19	113.173.124.130	104.197.2.66	64.225.49.188
1.55.47.120	113.173.118.117	113.172.37.215	117.27.40.175