220.133.96.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	34567/tcp [2019-07-30]1pkt	2019-07-31 04:55:58

相同子网IP讨论:

IP	类型	评论内容	时间
220.133.96.68	attackbots	Fail2Ban Ban Triggered	2020-02-09 05:18:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.133.96.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60458
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.133.96.106.			IN	A

;; AUTHORITY SECTION:
.			440	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073002 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 04:55:52 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

106.96.133.220.in-addr.arpa domain name pointer host.polaris.idv.tw.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
106.96.133.220.in-addr.arpa	name = host.polaris.idv.tw.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
52.231.205.120	attackspambots	Dec 8 19:48:13 sd-53420 sshd\[27307\]: Invalid user stet from 52.231.205.120 Dec 8 19:48:13 sd-53420 sshd\[27307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.205.120 Dec 8 19:48:14 sd-53420 sshd\[27307\]: Failed password for invalid user stet from 52.231.205.120 port 56874 ssh2 Dec 8 19:55:33 sd-53420 sshd\[28595\]: Invalid user blaine from 52.231.205.120 Dec 8 19:55:33 sd-53420 sshd\[28595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.205.120 ...	2019-12-09 03:13:15
85.195.52.41	attack	Triggered by Fail2Ban at Vostok web server	2019-12-09 02:50:18
62.164.176.194	attack	62.164.176.194 - - \[08/Dec/2019:14:53:13 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 62.164.176.194 - - \[08/Dec/2019:14:53:14 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-12-09 03:17:25
158.69.110.31	attack	Dec 8 18:55:25 server sshd\[17016\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.110.31 user=root Dec 8 18:55:27 server sshd\[17016\]: Failed password for root from 158.69.110.31 port 35050 ssh2 Dec 8 19:01:02 server sshd\[18842\]: Invalid user sansforensics from 158.69.110.31 Dec 8 19:01:02 server sshd\[18842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.110.31 Dec 8 19:01:04 server sshd\[18842\]: Failed password for invalid user sansforensics from 158.69.110.31 port 47276 ssh2 ...	2019-12-09 02:47:35
12.244.187.30	attack	Dec 8 17:10:49 vtv3 sshd[5437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.244.187.30 Dec 8 17:10:51 vtv3 sshd[5437]: Failed password for invalid user nathan from 12.244.187.30 port 33928 ssh2 Dec 8 17:18:58 vtv3 sshd[9610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.244.187.30 Dec 8 17:31:38 vtv3 sshd[16669]: Failed password for root from 12.244.187.30 port 46472 ssh2 Dec 8 17:37:10 vtv3 sshd[19771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.244.187.30 Dec 8 17:37:12 vtv3 sshd[19771]: Failed password for invalid user rpm from 12.244.187.30 port 56432 ssh2 Dec 8 17:48:00 vtv3 sshd[25483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.244.187.30 Dec 8 17:48:03 vtv3 sshd[25483]: Failed password for invalid user postgres from 12.244.187.30 port 48154 ssh2 Dec 8 17:53:34 vtv3 sshd[28799]: Failed password for daemo	2019-12-09 02:56:46
51.68.231.103	attack	Dec 8 18:19:31 dedicated sshd[5469]: Invalid user goldie from 51.68.231.103 port 56476	2019-12-09 03:01:05
129.226.188.41	attack	SSH invalid-user multiple login attempts	2019-12-09 02:43:19
194.78.211.102	attackbots	SMB 445 Hit @ plonkatronixBL	2019-12-09 03:18:16
79.137.72.98	attackbots	Dec 8 13:38:55 plusreed sshd[7251]: Invalid user rpc from 79.137.72.98 ...	2019-12-09 02:45:20
117.66.149.229	attackspam	Dec 8 09:52:42 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:52:52 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:00 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:12 esmtp postfix/smtpd[12184]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:20 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.66.149.229	2019-12-09 03:08:50
87.117.48.82	attackspam	Honeypot attack, port: 445, PTR: 82.48.117.87.donpac.ru.	2019-12-09 03:12:55
66.70.206.215	attack	Dec 8 20:09:59 meumeu sshd[6146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.206.215 Dec 8 20:10:01 meumeu sshd[6146]: Failed password for invalid user admin from 66.70.206.215 port 55776 ssh2 Dec 8 20:14:54 meumeu sshd[6793]: Failed password for sync from 66.70.206.215 port 35080 ssh2 ...	2019-12-09 03:15:01
110.188.70.99	attack	Brute-force attempt banned	2019-12-09 02:53:48
159.65.152.201	attack	Dec 8 19:32:47 ns382633 sshd\[13261\]: Invalid user guest from 159.65.152.201 port 50480 Dec 8 19:32:47 ns382633 sshd\[13261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.152.201 Dec 8 19:32:49 ns382633 sshd\[13261\]: Failed password for invalid user guest from 159.65.152.201 port 50480 ssh2 Dec 8 19:40:27 ns382633 sshd\[14967\]: Invalid user yarian from 159.65.152.201 port 49334 Dec 8 19:40:27 ns382633 sshd\[14967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.152.201	2019-12-09 02:45:02
139.217.234.68	attackbotsspam	2019-12-04 11:48:03,525 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 12:22:00,696 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 12:56:38,047 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 13:31:23,532 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 14:06:16,465 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 ...	2019-12-09 02:55:29

最近上报的IP列表

13.52.74.92	109.116.14.186	213.32.23.58	22.218.190.84
192.99.42.138	123.27.117.66	113.172.19.111	180.126.15.60
121.55.149.180	192.171.18.153	159.203.123.99	94.50.118.112
14.244.103.149	157.32.228.255	113.203.253.17	176.113.234.72
152.136.46.241	14.168.194.229	219.232.141.5	201.24.185.199