117.22.252.106

基本信息:

城市(city): Xi'an

省份(region): Shaanxi

国家(country): China

运营商(isp): ChinaNet Shanxi (SN) Province Network

主机名(hostname): unknown

机构(organization): No.31,Jin-rong Street

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-11 07:59:05

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.22.252.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27998
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.22.252.106.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 01 21:22:47 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 106.252.22.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 106.252.22.117.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
79.137.104.161	attackspambots	\[2019-08-27 15:18:52\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T15:18:52.368-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="442080895121",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/79.137.104.161/63299",ACLName="no_extension_match" \[2019-08-27 15:19:51\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T15:19:51.459-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="442080895121",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/79.137.104.161/64073",ACLName="no_extension_match" \[2019-08-27 15:26:37\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T15:26:37.054-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442080895121",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/79.137.104.161/51280",ACLName="no_extens	2019-08-28 11:43:55
210.14.77.102	attack	2019-08-28T02:19:19.626027abusebot-8.cloudsearch.cf sshd\[2944\]: Invalid user stefan from 210.14.77.102 port 20909	2019-08-28 11:19:26
104.197.145.226	attackspam	Aug 28 04:35:15 mail sshd[4513]: Invalid user mycat from 104.197.145.226 Aug 28 04:35:15 mail sshd[4513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.197.145.226 Aug 28 04:35:15 mail sshd[4513]: Invalid user mycat from 104.197.145.226 Aug 28 04:35:17 mail sshd[4513]: Failed password for invalid user mycat from 104.197.145.226 port 33754 ssh2 Aug 28 04:48:01 mail sshd[24531]: Invalid user sysadmin from 104.197.145.226 ...	2019-08-28 11:25:45
199.116.169.254	attackbots	Port Scan: TCP/53	2019-08-28 11:24:08
190.156.190.39	attackbots	namecheap spam	2019-08-28 10:50:02
45.81.35.46	attackbotsspam	Aug 26 19:49:21 h2421860 postfix/postscreen[1846]: CONNECT from [45.81.35.46]:40182 to [85.214.119.52]:25 Aug 26 19:49:21 h2421860 postfix/dnsblog[1849]: addr 45.81.35.46 listed by domain zen.spamhaus.org as 127.0.0.3 Aug 26 19:49:21 h2421860 postfix/dnsblog[1853]: addr 45.81.35.46 listed by domain Unknown.trblspam.com as 185.53.179.7 Aug 26 19:49:21 h2421860 postfix/dnsblog[1854]: addr 45.81.35.46 listed by domain dnsbl.sorbs.net as 127.0.0.6 Aug 26 19:49:21 h2421860 postfix/dnsblog[1850]: addr 45.81.35.46 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 26 19:49:27 h2421860 postfix/postscreen[1846]: DNSBL rank 7 for [45.81.35.46]:40182 Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.81.35.46	2019-08-28 11:40:46
118.163.133.178	attackbotsspam	23/tcp 23/tcp [2019-07-02/08-27]2pkt	2019-08-28 11:17:36
124.158.13.210	attackspambots	445/tcp 445/tcp 445/tcp... [2019-06-29/08-27]16pkt,1pt.(tcp)	2019-08-28 10:52:29
88.208.244.171	attack	Automatic report - Banned IP Access	2019-08-28 11:22:22
114.236.6.213	attack	Aug 27 00:46:57 minden010 sshd[9446]: Failed password for r.r from 114.236.6.213 port 33657 ssh2 Aug 27 00:47:01 minden010 sshd[9446]: Failed password for r.r from 114.236.6.213 port 33657 ssh2 Aug 27 00:47:03 minden010 sshd[9446]: Failed password for r.r from 114.236.6.213 port 33657 ssh2 Aug 27 00:47:06 minden010 sshd[9446]: Failed password for r.r from 114.236.6.213 port 33657 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.236.6.213	2019-08-28 11:26:35
193.188.22.12	attack	Aug 28 04:05:29 srv2 sshd\[12673\]: Invalid user test from 193.188.22.12 port 53377 Aug 28 04:05:29 srv2 sshd\[12675\]: Invalid user demo from 193.188.22.12 port 54104 Aug 28 04:05:30 srv2 sshd\[12677\]: Invalid user gast from 193.188.22.12 port 54217	2019-08-28 10:55:26
125.215.207.40	attackspam	2019-08-28T02:41:31.098097abusebot.cloudsearch.cf sshd\[7083\]: Invalid user postgres from 125.215.207.40 port 51051	2019-08-28 10:44:20
163.172.207.104	attackbots	\[2019-08-27 23:09:02\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T23:09:02.783-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00011972592277524",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/64835",ACLName="no_extension_match" \[2019-08-27 23:11:05\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T23:11:05.724-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="972595725702",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/49661",ACLName="no_extension_match" \[2019-08-27 23:13:13\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-27T23:13:13.879-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="000011972592277524",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/54185",ACLName	2019-08-28 11:27:53
188.15.100.200	attack	Aug 27 20:33:45 MK-Soft-VM4 sshd\[21430\]: Invalid user vi from 188.15.100.200 port 46662 Aug 27 20:33:45 MK-Soft-VM4 sshd\[21430\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.15.100.200 Aug 27 20:33:47 MK-Soft-VM4 sshd\[21430\]: Failed password for invalid user vi from 188.15.100.200 port 46662 ssh2 ...	2019-08-28 11:16:35
120.92.102.121	attackspambots	Aug 28 05:50:32 srv-4 sshd\[10065\]: Invalid user server from 120.92.102.121 Aug 28 05:50:32 srv-4 sshd\[10065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.102.121 Aug 28 05:50:33 srv-4 sshd\[10065\]: Failed password for invalid user server from 120.92.102.121 port 42424 ssh2 ...	2019-08-28 11:28:41

最近上报的IP列表

112.220.72.116	67.215.20.217	221.12.58.156	36.73.165.125
31.179.239.131	79.198.157.227	68.223.1.34	67.217.14.149
188.34.86.26	192.236.161.70	71.41.150.121	155.201.76.236
93.92.202.217	128.175.213.119	220.69.33.171	42.1.215.18
185.108.88.26	46.18.200.249	85.115.248.80	23.253.183.115