122.114.161.112

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Zhengzhou Giant Computer Network Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Host Scan	2020-04-10 19:14:40

相同子网IP讨论:

IP	类型	评论内容	时间
122.114.161.19	attackspambots	Invalid user gb from 122.114.161.19 port 38734	2019-10-29 06:46:51
122.114.161.19	attackbots	Oct 28 05:16:23 localhost sshd\[664\]: Invalid user rails from 122.114.161.19 port 52314 Oct 28 05:16:23 localhost sshd\[664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.161.19 Oct 28 05:16:25 localhost sshd\[664\]: Failed password for invalid user rails from 122.114.161.19 port 52314 ssh2	2019-10-28 12:35:55
122.114.161.19	attackspam	Oct 11 23:36:35 hcbbdb sshd\[21010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.161.19 user=root Oct 11 23:36:38 hcbbdb sshd\[21010\]: Failed password for root from 122.114.161.19 port 42328 ssh2 Oct 11 23:41:24 hcbbdb sshd\[21537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.161.19 user=root Oct 11 23:41:25 hcbbdb sshd\[21537\]: Failed password for root from 122.114.161.19 port 41208 ssh2 Oct 11 23:45:36 hcbbdb sshd\[21976\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.161.19 user=root	2019-10-12 10:59:26
122.114.161.19	attack	Oct 8 22:00:56 [host] sshd[16159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.161.19 user=root Oct 8 22:00:58 [host] sshd[16159]: Failed password for root from 122.114.161.19 port 45666 ssh2 Oct 8 22:06:17 [host] sshd[16285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.161.19 user=root	2019-10-09 04:19:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.114.161.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19935
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.114.161.112.		IN	A

;; AUTHORITY SECTION:
.			328	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041000 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 19:14:34 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 112.161.114.122.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 112.161.114.122.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
106.13.118.102	attack	Jul 26 05:12:20 gw1 sshd[5088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.102 Jul 26 05:12:21 gw1 sshd[5088]: Failed password for invalid user lager from 106.13.118.102 port 37452 ssh2 ...	2020-07-26 08:20:30
113.98.117.119	attack	Brute-force attempt banned	2020-07-26 08:11:43
182.61.25.156	attackspam	Jul 26 01:40:17 ns381471 sshd[7495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.25.156 Jul 26 01:40:19 ns381471 sshd[7495]: Failed password for invalid user ark from 182.61.25.156 port 59224 ssh2	2020-07-26 08:01:28
156.96.155.3	attack	[2020-07-25 19:51:19] NOTICE[1248][C-00000429] chan_sip.c: Call from '' (156.96.155.3:49928) to extension '00441235619357' rejected because extension not found in context 'public'. [2020-07-25 19:51:19] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-25T19:51:19.125-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441235619357",SessionID="0x7f272004f2e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.155.3/49928",ACLName="no_extension_match" [2020-07-25 19:54:36] NOTICE[1248][C-00000430] chan_sip.c: Call from '' (156.96.155.3:54814) to extension '00441235619357' rejected because extension not found in context 'public'. [2020-07-25 19:54:36] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-25T19:54:36.509-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441235619357",SessionID="0x7f27200369e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96. ...	2020-07-26 08:07:28
77.40.61.187	attackspambots	IP: 77.40.61.187 Ports affected Simple Mail Transfer (25) Abuse Confidence rating 30% Found in DNSBL('s) ASN Details AS12389 Rostelecom Russia (RU) CIDR 77.40.0.0/17 Log Date: 25/07/2020 10:55:36 PM UTC	2020-07-26 08:12:05
222.186.169.194	attack	Scanned 33 times in the last 24 hours on port 22	2020-07-26 08:08:11
94.139.164.73	attackspam	Ssh brute force	2020-07-26 08:03:06
175.24.82.208	attackbotsspam	Jul 26 01:24:53 abendstille sshd\[23357\]: Invalid user pm from 175.24.82.208 Jul 26 01:24:53 abendstille sshd\[23357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.82.208 Jul 26 01:24:55 abendstille sshd\[23357\]: Failed password for invalid user pm from 175.24.82.208 port 42784 ssh2 Jul 26 01:30:22 abendstille sshd\[29233\]: Invalid user ustin from 175.24.82.208 Jul 26 01:30:22 abendstille sshd\[29233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.82.208 ...	2020-07-26 08:21:17
89.248.172.196	attackbots	Automatic report - Port Scan	2020-07-26 08:03:37
117.36.174.13	attack	IP reached maximum auth failures	2020-07-26 08:22:45
222.73.201.96	attack	fail2ban detected bruce force on ssh iptables	2020-07-26 08:08:34
219.134.216.227	attackspam	2020-07-26T01:46:19.336401vps773228.ovh.net sshd[24649]: Failed password for invalid user admin from 219.134.216.227 port 50907 ssh2 2020-07-26T01:52:46.921217vps773228.ovh.net sshd[24709]: Invalid user smbuser from 219.134.216.227 port 49661 2020-07-26T01:52:46.936932vps773228.ovh.net sshd[24709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.134.216.227 2020-07-26T01:52:46.921217vps773228.ovh.net sshd[24709]: Invalid user smbuser from 219.134.216.227 port 49661 2020-07-26T01:52:49.210412vps773228.ovh.net sshd[24709]: Failed password for invalid user smbuser from 219.134.216.227 port 49661 ssh2 ...	2020-07-26 08:23:21
106.12.38.70	attackspam	Invalid user msf from 106.12.38.70 port 39462	2020-07-26 12:01:15
114.98.126.14	attackspam	2020-07-26T02:16:40.187419ks3355764 sshd[9106]: Invalid user vbox from 114.98.126.14 port 33464 2020-07-26T02:16:42.342930ks3355764 sshd[9106]: Failed password for invalid user vbox from 114.98.126.14 port 33464 ssh2 ...	2020-07-26 08:20:04
187.16.96.35	attackspambots	(sshd) Failed SSH login from 187.16.96.35 (BR/Brazil/mvx-187-16-96-35.mundivox.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 26 01:54:09 amsweb01 sshd[19869]: Invalid user mike from 187.16.96.35 port 50018 Jul 26 01:54:11 amsweb01 sshd[19869]: Failed password for invalid user mike from 187.16.96.35 port 50018 ssh2 Jul 26 02:01:23 amsweb01 sshd[20959]: Invalid user teng from 187.16.96.35 port 56656 Jul 26 02:01:24 amsweb01 sshd[20959]: Failed password for invalid user teng from 187.16.96.35 port 56656 ssh2 Jul 26 02:05:30 amsweb01 sshd[21468]: Invalid user stanley from 187.16.96.35 port 58498	2020-07-26 08:18:54

最近上报的IP列表

110.174.245.210	62.80.104.237	200.98.117.113	81.23.121.82
94.177.203.181	106.54.140.71	164.132.199.63	58.49.76.100
220.77.136.229	51.178.41.242	180.177.212.2	36.82.118.92
219.154.230.254	207.180.198.112	171.96.107.100	51.141.185.58
218.145.211.119	124.119.68.175	183.98.129.116	154.66.123.210