122.114.109.112

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Zhengzhou Giant Computer Network Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	port scan and connect, tcp 80 (http)	2020-02-22 08:26:18
attackbotsspam	Unauthorized connection attempt detected from IP address 122.114.109.112 to port 8080	2020-01-01 21:57:19

相同子网IP讨论:

IP	类型	评论内容	时间
122.114.109.220	attackspam	Aug 25 15:17:39 vps sshd[14049]: Failed password for root from 122.114.109.220 port 24589 ssh2 Aug 25 15:29:10 vps sshd[14726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Aug 25 15:29:12 vps sshd[14726]: Failed password for invalid user csp from 122.114.109.220 port 19513 ssh2 ...	2020-08-25 21:33:03
122.114.109.220	attackbots	SSH bruteforce	2020-08-20 19:46:33
122.114.109.220	attackspam	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-07-22 08:48:49
122.114.109.220	attackbots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-16 16:21:40
122.114.109.220	attack	2020-07-13T07:05:47.901445galaxy.wi.uni-potsdam.de sshd[8789]: Invalid user gis from 122.114.109.220 port 63732 2020-07-13T07:05:47.906455galaxy.wi.uni-potsdam.de sshd[8789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 2020-07-13T07:05:47.901445galaxy.wi.uni-potsdam.de sshd[8789]: Invalid user gis from 122.114.109.220 port 63732 2020-07-13T07:05:49.353058galaxy.wi.uni-potsdam.de sshd[8789]: Failed password for invalid user gis from 122.114.109.220 port 63732 ssh2 2020-07-13T07:08:27.195230galaxy.wi.uni-potsdam.de sshd[9059]: Invalid user alan from 122.114.109.220 port 34131 2020-07-13T07:08:27.200417galaxy.wi.uni-potsdam.de sshd[9059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 2020-07-13T07:08:27.195230galaxy.wi.uni-potsdam.de sshd[9059]: Invalid user alan from 122.114.109.220 port 34131 2020-07-13T07:08:29.279895galaxy.wi.uni-potsdam.de sshd[9059]: Failed password ...	2020-07-13 14:39:46
122.114.109.220	attackbots	Invalid user yuyue from 122.114.109.220 port 59454	2020-07-01 01:51:18
122.114.109.220	attackbots	Port Scan	2020-06-23 14:18:06
122.114.109.220	attackbots	Jun 12 02:33:34 ns382633 sshd\[21867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 user=root Jun 12 02:33:35 ns382633 sshd\[21867\]: Failed password for root from 122.114.109.220 port 34895 ssh2 Jun 12 02:39:06 ns382633 sshd\[22786\]: Invalid user samia from 122.114.109.220 port 28178 Jun 12 02:39:06 ns382633 sshd\[22786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Jun 12 02:39:08 ns382633 sshd\[22786\]: Failed password for invalid user samia from 122.114.109.220 port 28178 ssh2	2020-06-12 08:53:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.114.109.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16579
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.114.109.112.		IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400

;; Query time: 506 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 21:57:10 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 112.109.114.122.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 112.109.114.122.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
91.201.237.2	attackbotsspam	Mar 10 19:24:48 localhost sshd\[15677\]: Invalid user user from 91.201.237.2 port 54929 Mar 10 19:24:48 localhost sshd\[15677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.201.237.2 Mar 10 19:24:50 localhost sshd\[15677\]: Failed password for invalid user user from 91.201.237.2 port 54929 ssh2	2020-03-11 02:38:02
79.137.72.98	attackspam	Mar 10 08:28:45 sachi sshd\[7256\]: Invalid user ubuntu from 79.137.72.98 Mar 10 08:28:45 sachi sshd\[7256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-79-137-72.eu Mar 10 08:28:47 sachi sshd\[7256\]: Failed password for invalid user ubuntu from 79.137.72.98 port 56367 ssh2 Mar 10 08:33:57 sachi sshd\[7682\]: Invalid user testing from 79.137.72.98 Mar 10 08:33:57 sachi sshd\[7682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-79-137-72.eu	2020-03-11 03:02:16
222.186.180.223	attack	Mar 10 23:55:28 areeb-Workstation sshd[29238]: Failed password for root from 222.186.180.223 port 53360 ssh2 Mar 10 23:55:31 areeb-Workstation sshd[29238]: Failed password for root from 222.186.180.223 port 53360 ssh2 ...	2020-03-11 02:49:43
140.143.17.199	attackbotsspam	SSH invalid-user multiple login try	2020-03-11 02:31:07
119.29.252.252	attackspambots	frenzy	2020-03-11 02:45:14
193.112.62.103	attack	Mar 11 01:10:15 itv-usvr-01 sshd[2422]: Invalid user php from 193.112.62.103 Mar 11 01:10:15 itv-usvr-01 sshd[2422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.62.103 Mar 11 01:10:15 itv-usvr-01 sshd[2422]: Invalid user php from 193.112.62.103 Mar 11 01:10:17 itv-usvr-01 sshd[2422]: Failed password for invalid user php from 193.112.62.103 port 49102 ssh2 Mar 11 01:17:03 itv-usvr-01 sshd[2638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.62.103 user=root Mar 11 01:17:05 itv-usvr-01 sshd[2638]: Failed password for root from 193.112.62.103 port 36018 ssh2	2020-03-11 03:00:32
51.68.121.235	attack	Mar 10 08:28:53 php1 sshd\[7893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.121.235 user=root Mar 10 08:28:55 php1 sshd\[7893\]: Failed password for root from 51.68.121.235 port 33728 ssh2 Mar 10 08:32:39 php1 sshd\[8171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.121.235 user=root Mar 10 08:32:41 php1 sshd\[8171\]: Failed password for root from 51.68.121.235 port 52440 ssh2 Mar 10 08:36:34 php1 sshd\[8471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.121.235 user=root	2020-03-11 02:44:15
118.25.39.110	attackbotsspam	Mar 10 19:17:25 lnxmail61 sshd[6794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.39.110	2020-03-11 02:48:19
92.119.160.12	attack	Time: Tue Mar 10 13:16:07 2020 -0500 IP: 92.119.160.12 (RU/Russia/-) Hits: 11 Blocked: Permanent Block [PS_LIMIT]	2020-03-11 02:48:50
49.88.112.112	attack	Mar 10 19:15:17 dev0-dcde-rnet sshd[3404]: Failed password for root from 49.88.112.112 port 37911 ssh2 Mar 10 19:15:53 dev0-dcde-rnet sshd[3407]: Failed password for root from 49.88.112.112 port 32283 ssh2	2020-03-11 02:59:23
107.145.60.126	attackbots	suspicious action Tue, 10 Mar 2020 15:17:20 -0300	2020-03-11 02:52:19
140.143.161.107	attackbotsspam	SSH Brute-Forcing (server1)	2020-03-11 02:44:40
156.96.157.238	attackbotsspam	[2020-03-10 14:40:38] NOTICE[1148][C-00010a38] chan_sip.c: Call from '' (156.96.157.238:54225) to extension '9011441472928301' rejected because extension not found in context 'public'. [2020-03-10 14:40:38] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-10T14:40:38.863-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441472928301",SessionID="0x7fd82ca9d388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.157.238/54225",ACLName="no_extension_match" [2020-03-10 14:41:55] NOTICE[1148][C-00010a39] chan_sip.c: Call from '' (156.96.157.238:52201) to extension '700441472928301' rejected because extension not found in context 'public'. [2020-03-10 14:41:55] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-10T14:41:55.663-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="700441472928301",SessionID="0x7fd82ca9d388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-03-11 03:03:24
80.82.78.100	attack	80.82.78.100 was recorded 21 times by 11 hosts attempting to connect to the following ports: 41022,41092,48899. Incident counter (4h, 24h, all-time): 21, 116, 21296	2020-03-11 02:31:42
129.28.29.57	attack	2020-03-10T19:16:09.783798vps751288.ovh.net sshd\[10978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.29.57 user=root 2020-03-10T19:16:11.545491vps751288.ovh.net sshd\[10978\]: Failed password for root from 129.28.29.57 port 45004 ssh2 2020-03-10T19:17:00.104043vps751288.ovh.net sshd\[10988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.29.57 user=root 2020-03-10T19:17:02.869099vps751288.ovh.net sshd\[10988\]: Failed password for root from 129.28.29.57 port 53374 ssh2 2020-03-10T19:17:40.814644vps751288.ovh.net sshd\[10990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.29.57 user=root	2020-03-11 02:34:58

最近上报的IP列表

116.9.74.107	115.192.186.43	115.138.150.169	113.128.185.182
210.91.93.146	113.105.184.247	113.88.12.250	113.87.162.3
113.85.100.96	112.87.39.55	111.162.141.54	60.208.177.240
1.133.36.120	197.113.240.231	100.222.9.92	191.112.239.236
111.35.174.132	78.176.169.189	106.213.160.0	110.177.74.27