122.114.117.70

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Zhengzhou Giant Computer Network Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 13 01:05:49 www sshd\[8395\]: Invalid user wss from 122.114.117.70Aug 13 01:05:51 www sshd\[8395\]: Failed password for invalid user wss from 122.114.117.70 port 44548 ssh2Aug 13 01:11:43 www sshd\[8473\]: Failed password for man from 122.114.117.70 port 33654 ssh2 ...	2019-08-13 06:30:25

类型

评论内容

时间

attack

Aug 13 01:05:49 www sshd\[8395\]: Invalid user wss from 122.114.117.70Aug 13 01:05:51 www sshd\[8395\]: Failed password for invalid user wss from 122.114.117.70 port 44548 ssh2Aug 13 01:11:43 www sshd\[8473\]: Failed password for man from 122.114.117.70 port 33654 ssh2
...

2019-08-13 06:30:25

相同子网IP讨论:

IP	类型	评论内容	时间
122.114.117.57	attackbots	$f2bV_matches	2019-09-02 04:30:30
122.114.117.57	attackbots	Aug 18 05:07:04 lnxmysql61 sshd[26905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.117.57	2019-08-18 13:59:58
122.114.117.57	attackspam	Aug 13 15:10:38 localhost sshd\[3414\]: Invalid user hadoop from 122.114.117.57 port 41687 Aug 13 15:10:38 localhost sshd\[3414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.117.57 Aug 13 15:10:40 localhost sshd\[3414\]: Failed password for invalid user hadoop from 122.114.117.57 port 41687 ssh2	2019-08-13 22:09:25
122.114.117.57	attackspam	Jul 26 11:22:08 OPSO sshd\[28443\]: Invalid user oracle from 122.114.117.57 port 51567 Jul 26 11:22:08 OPSO sshd\[28443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.117.57 Jul 26 11:22:10 OPSO sshd\[28443\]: Failed password for invalid user oracle from 122.114.117.57 port 51567 ssh2 Jul 26 11:24:17 OPSO sshd\[28759\]: Invalid user router from 122.114.117.57 port 32903 Jul 26 11:24:17 OPSO sshd\[28759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.117.57	2019-07-27 00:15:32
122.114.117.57	attackbotsspam	Jul 25 15:31:59 OPSO sshd\[7753\]: Invalid user ubuntu from 122.114.117.57 port 52336 Jul 25 15:31:59 OPSO sshd\[7753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.117.57 Jul 25 15:32:01 OPSO sshd\[7753\]: Failed password for invalid user ubuntu from 122.114.117.57 port 52336 ssh2 Jul 25 15:34:19 OPSO sshd\[8208\]: Invalid user gadmin from 122.114.117.57 port 33670 Jul 25 15:34:19 OPSO sshd\[8208\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.117.57	2019-07-25 21:58:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.114.117.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6557
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.114.117.70.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 13 06:30:20 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 70.117.114.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 70.117.114.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
124.163.228.79	attackbots	Aug 30 14:14:52 pve1 sshd[21919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.163.228.79 Aug 30 14:14:54 pve1 sshd[21919]: Failed password for invalid user bharat from 124.163.228.79 port 33451 ssh2 ...	2020-08-30 23:01:17
206.253.167.10	attack	Aug 30 12:14:30 *** sshd[15641]: Invalid user user from 206.253.167.10	2020-08-30 23:34:21
122.116.239.213	attack	Unauthorized connection attempt detected from IP address 122.116.239.213 to port 23 [T]	2020-08-30 23:25:18
137.59.242.231	attack	1598789689 - 08/30/2020 14:14:49 Host: 137.59.242.231/137.59.242.231 Port: 445 TCP Blocked	2020-08-30 23:06:40
103.4.217.139	attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-30 23:08:36
45.148.10.98	attack	Aug 30 14:37:26 mail postfix/smtpd[501258]: warning: unknown[45.148.10.98]: SASL LOGIN authentication failed: authentication failure Aug 30 15:12:55 mail postfix/smtpd[501639]: warning: unknown[45.148.10.98]: SASL LOGIN authentication failed: authentication failure Aug 30 15:14:32 mail postfix/smtpd[501639]: warning: unknown[45.148.10.98]: SASL LOGIN authentication failed: authentication failure ...	2020-08-30 23:31:05
106.55.145.125	attackbotsspam	Aug 30 03:00:20 web1 sshd\[23673\]: Invalid user cassandra from 106.55.145.125 Aug 30 03:00:20 web1 sshd\[23673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.145.125 Aug 30 03:00:22 web1 sshd\[23673\]: Failed password for invalid user cassandra from 106.55.145.125 port 57812 ssh2 Aug 30 03:04:29 web1 sshd\[24047\]: Invalid user app from 106.55.145.125 Aug 30 03:04:29 web1 sshd\[24047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.145.125	2020-08-30 23:33:23
222.186.30.57	attack	Aug 30 17:13:27 v22019038103785759 sshd\[24938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Aug 30 17:13:29 v22019038103785759 sshd\[24938\]: Failed password for root from 222.186.30.57 port 13467 ssh2 Aug 30 17:13:31 v22019038103785759 sshd\[24938\]: Failed password for root from 222.186.30.57 port 13467 ssh2 Aug 30 17:13:33 v22019038103785759 sshd\[24938\]: Failed password for root from 222.186.30.57 port 13467 ssh2 Aug 30 17:13:36 v22019038103785759 sshd\[24940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root ...	2020-08-30 23:14:17
130.185.155.34	attackbots	Aug 30 16:23:18 pve1 sshd[11980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.185.155.34 Aug 30 16:23:21 pve1 sshd[11980]: Failed password for invalid user testtest from 130.185.155.34 port 53672 ssh2 ...	2020-08-30 23:02:53
122.224.237.234	attackspam	Aug 30 09:04:05 ws19vmsma01 sshd[66598]: Failed password for root from 122.224.237.234 port 47894 ssh2 Aug 30 09:39:19 ws19vmsma01 sshd[98144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.237.234 Aug 30 09:39:21 ws19vmsma01 sshd[98144]: Failed password for invalid user test from 122.224.237.234 port 50777 ssh2 ...	2020-08-30 23:03:35
73.206.49.128	attackbotsspam	Aug 30 21:36:48 doubuntu sshd[20230]: Invalid user pi from 73.206.49.128 port 50074 Aug 30 21:36:48 doubuntu sshd[20229]: Invalid user pi from 73.206.49.128 port 50068 Aug 30 21:36:48 doubuntu sshd[20230]: Connection closed by invalid user pi 73.206.49.128 port 50074 [preauth] ...	2020-08-30 23:12:45
64.183.249.110	attack	(sshd) Failed SSH login from 64.183.249.110 (US/United States/rrcs-64-183-249-110.sw.biz.rr.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 07:28:33 server sshd[6687]: Invalid user gas from 64.183.249.110 port 40331 Aug 30 07:28:36 server sshd[6687]: Failed password for invalid user gas from 64.183.249.110 port 40331 ssh2 Aug 30 08:11:41 server sshd[18316]: Invalid user wzr from 64.183.249.110 port 51584 Aug 30 08:11:43 server sshd[18316]: Failed password for invalid user wzr from 64.183.249.110 port 51584 ssh2 Aug 30 08:14:32 server sshd[18921]: Invalid user software from 64.183.249.110 port 17470	2020-08-30 23:23:48
185.220.102.243	attackbots	2020-08-30T16:49:02+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-08-30 23:11:14
222.186.173.154	attackbots	Aug 30 17:32:00 ip40 sshd[15430]: Failed password for root from 222.186.173.154 port 44552 ssh2 Aug 30 17:32:04 ip40 sshd[15430]: Failed password for root from 222.186.173.154 port 44552 ssh2 ...	2020-08-30 23:33:59
106.12.69.90	attackbots	Aug 30 14:10:44 sip sshd[5169]: Failed password for root from 106.12.69.90 port 42594 ssh2 Aug 30 14:14:31 sip sshd[6223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.90 Aug 30 14:14:33 sip sshd[6223]: Failed password for invalid user ass from 106.12.69.90 port 42962 ssh2	2020-08-30 23:07:12

最近上报的IP列表

138.36.200.173	27.167.174.149	96.83.24.85	185.216.35.232
1.180.165.110	12.10.12.179	219.235.6.221	167.250.90.16
251.122.166.148	144.217.214.25	117.95.213.130	99.42.114.195
200.76.199.184	160.19.97.12	185.203.236.47	52.11.110.39
119.139.198.166	40.89.143.95	170.231.94.97	167.71.127.222