220.136.130.164

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-05-25 01:11:10]	2019-05-25 07:40:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.136.130.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31194
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.136.130.164.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat May 25 07:40:13 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

164.130.136.220.in-addr.arpa domain name pointer 220-136-130-164.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
164.130.136.220.in-addr.arpa	name = 220-136-130-164.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.153.196.230	attackbotsspam	Jul 14 11:15:43 vpn01 sshd[15661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.153.196.230 Jul 14 11:15:45 vpn01 sshd[15661]: Failed password for invalid user 0 from 185.153.196.230 port 57567 ssh2 ...	2020-07-14 17:39:03
212.33.250.241	attack	Jul 14 15:42:13 web1 sshd[7580]: Invalid user kappa from 212.33.250.241 port 40666 Jul 14 15:42:13 web1 sshd[7580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.33.250.241 Jul 14 15:42:13 web1 sshd[7580]: Invalid user kappa from 212.33.250.241 port 40666 Jul 14 15:42:15 web1 sshd[7580]: Failed password for invalid user kappa from 212.33.250.241 port 40666 ssh2 Jul 14 15:46:42 web1 sshd[8676]: Invalid user aptiva from 212.33.250.241 port 49274 Jul 14 15:46:42 web1 sshd[8676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.33.250.241 Jul 14 15:46:42 web1 sshd[8676]: Invalid user aptiva from 212.33.250.241 port 49274 Jul 14 15:46:44 web1 sshd[8676]: Failed password for invalid user aptiva from 212.33.250.241 port 49274 ssh2 Jul 14 15:47:09 web1 sshd[8774]: Invalid user Justin from 212.33.250.241 port 56998 ...	2020-07-14 18:00:34
162.243.129.112	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-07-14 17:53:44
49.235.35.133	attackbots	Invalid user git from 49.235.35.133 port 60244	2020-07-14 17:52:30
141.98.80.52	attackspambots	Jul 14 11:39:22 mail.srvfarm.net postfix/smtpd[3593645]: warning: unknown[141.98.80.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 14 11:39:22 mail.srvfarm.net postfix/smtpd[3593645]: lost connection after AUTH from unknown[141.98.80.52] Jul 14 11:39:26 mail.srvfarm.net postfix/smtpd[3594154]: lost connection after AUTH from unknown[141.98.80.52] Jul 14 11:39:26 mail.srvfarm.net postfix/smtpd[3594659]: lost connection after AUTH from unknown[141.98.80.52] Jul 14 11:39:28 mail.srvfarm.net postfix/smtpd[3593645]: lost connection after AUTH from unknown[141.98.80.52]	2020-07-14 17:54:35
78.128.113.114	attackbots	Jul 14 11:47:58 web01.agentur-b-2.de postfix/smtpd[1285256]: warning: unknown[78.128.113.114]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 14 11:47:58 web01.agentur-b-2.de postfix/smtpd[1285256]: lost connection after AUTH from unknown[78.128.113.114] Jul 14 11:48:03 web01.agentur-b-2.de postfix/smtpd[1291039]: lost connection after AUTH from unknown[78.128.113.114] Jul 14 11:48:07 web01.agentur-b-2.de postfix/smtpd[1291022]: lost connection after AUTH from unknown[78.128.113.114] Jul 14 11:48:12 web01.agentur-b-2.de postfix/smtpd[1285256]: lost connection after AUTH from unknown[78.128.113.114]	2020-07-14 18:08:03
119.8.32.26	attackspam	Hacking	2020-07-14 17:39:44
191.233.232.251	attackbotsspam	Jul 14 10:54:34 vps687878 sshd\[26605\]: Invalid user matias from 191.233.232.251 port 40352 Jul 14 10:54:34 vps687878 sshd\[26605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.233.232.251 Jul 14 10:54:36 vps687878 sshd\[26605\]: Failed password for invalid user matias from 191.233.232.251 port 40352 ssh2 Jul 14 11:02:13 vps687878 sshd\[27285\]: Invalid user arcadia from 191.233.232.251 port 54578 Jul 14 11:02:13 vps687878 sshd\[27285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.233.232.251 ...	2020-07-14 17:42:31
157.245.98.160	attackspam	Jul 14 09:41:23 ws26vmsma01 sshd[113106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.98.160 Jul 14 09:41:25 ws26vmsma01 sshd[113106]: Failed password for invalid user veritas from 157.245.98.160 port 59620 ssh2 ...	2020-07-14 17:56:22
79.153.35.187	attackbotsspam	Hits on port : 22	2020-07-14 18:10:49
123.59.194.224	attack	Jul 14 04:57:27 hcbbdb sshd\[5143\]: Invalid user siti from 123.59.194.224 Jul 14 04:57:27 hcbbdb sshd\[5143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.59.194.224 Jul 14 04:57:29 hcbbdb sshd\[5143\]: Failed password for invalid user siti from 123.59.194.224 port 43440 ssh2 Jul 14 05:00:28 hcbbdb sshd\[5503\]: Invalid user lxy from 123.59.194.224 Jul 14 05:00:28 hcbbdb sshd\[5503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.59.194.224	2020-07-14 18:08:23
167.99.162.47	attackspambots	$f2bV_matches	2020-07-14 17:55:54
157.245.133.78	attackspambots	157.245.133.78 - - [14/Jul/2020:05:49:29 +0200] "POST /wp-login.php HTTP/1.1" 200 3434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-14 17:50:21
221.122.78.202	attackbots	Jul 14 08:52:44 sshd\[29624\]: Invalid user tmm from 221.122.78.202Jul 14 08:52:46 sshd\[29624\]: Failed password for invalid user tmm from 221.122.78.202 port 17383 ssh2 ...	2020-07-14 17:44:52
185.220.101.138	attack	\[Tue Jul 14 11:39:03.184773 2020\] \[authz_core:error\] \[pid 40624\] \[client 185.220.101.138:2950\] AH01630: client denied by server configuration: /usr/lib/cgi-bin/php \[Tue Jul 14 11:39:03.357257 2020\] \[authz_core:error\] \[pid 40624\] \[client 185.220.101.138:2950\] AH01630: client denied by server configuration: /usr/lib/cgi-bin/php5 \[Tue Jul 14 11:39:03.546877 2020\] \[authz_core:error\] \[pid 40624\] \[client 185.220.101.138:2950\] AH01630: client denied by server configuration: /usr/lib/cgi-bin/php4 ...	2020-07-14 18:06:59

最近上报的IP列表

222.252.55.35	117.0.36.28	129.213.97.191	180.250.73.229
5.53.240.85	185.200.118.49	103.88.76.136	103.131.203.113
111.230.244.254	192.99.175.181	118.172.127.132	117.6.132.15
61.178.66.14	36.60.249.138	68.57.35.236	203.210.237.184
103.110.164.190	54.76.90.26	101.99.23.212	78.85.16.96