122.117.171.29

基本信息:

城市(city): Tainan City

省份(region): Tainan

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 122.117.171.29 to port 81 [J]	2020-01-13 05:17:12

相同子网IP讨论:

IP	类型	评论内容	时间
122.117.171.42	attack	Honeypot attack, port: 81, PTR: 122-117-171-42.HINET-IP.hinet.net.	2020-06-06 10:31:44
122.117.171.31	attack	Hits on port : 8000	2020-05-16 06:37:57
122.117.171.131	attackspambots	Honeypot attack, port: 81, PTR: 122-117-171-131.HINET-IP.hinet.net.	2020-02-14 19:38:04
122.117.171.189	attack	Unauthorized connection attempt detected from IP address 122.117.171.189 to port 4567 [J]	2020-01-18 17:43:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.117.171.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.117.171.29.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011201 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 13 05:17:09 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

29.171.117.122.in-addr.arpa domain name pointer 122-117-171-29.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.171.117.122.in-addr.arpa	name = 122-117-171-29.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
152.249.97.61	attack	Mar 12 14:56:33 meumeu sshd[16720]: Failed password for root from 152.249.97.61 port 53625 ssh2 Mar 12 14:59:13 meumeu sshd[17209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.97.61 Mar 12 14:59:15 meumeu sshd[17209]: Failed password for invalid user hwserver from 152.249.97.61 port 58795 ssh2 ...	2020-03-13 01:33:01
107.174.71.85	attack	Telnet brute force and port scan	2020-03-13 01:57:56
78.253.113.6	attackspam	Automatic report - Port Scan Attack	2020-03-13 01:59:47
77.141.175.126	attackbots	2020-02-27T01:27:09.684Z CLOSE host=77.141.175.126 port=41690 fd=4 time=20.010 bytes=27 ...	2020-03-13 01:52:15
178.128.47.75	attack	Wordpress attack	2020-03-13 02:03:54
218.158.203.129	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-13 01:53:03
80.82.64.110	attackbots	Mar 12 18:55:25 ncomp dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=80.82.64.110, lip=172.31.1.100, session= Mar 12 19:14:56 ncomp dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=80.82.64.110, lip=172.31.1.100, session= Mar 12 19:21:24 ncomp dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 4 secs): user=, method=PLAIN, rip=80.82.64.110, lip=172.31.1.100, session=	2020-03-13 01:56:27
36.226.111.21	attack	Mar 11 20:30:07 hgb10502 sshd[14317]: User r.r from 36.226.111.21 not allowed because not listed in AllowUsers Mar 11 20:30:07 hgb10502 sshd[14317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.226.111.21 user=r.r Mar 11 20:30:09 hgb10502 sshd[14317]: Failed password for invalid user r.r from 36.226.111.21 port 50610 ssh2 Mar 11 20:30:09 hgb10502 sshd[14317]: Received disconnect from 36.226.111.21 port 50610:11: Bye Bye [preauth] Mar 11 20:30:09 hgb10502 sshd[14317]: Disconnected from 36.226.111.21 port 50610 [preauth] Mar 11 20:38:15 hgb10502 sshd[15037]: Invalid user 2 from 36.226.111.21 port 59296 Mar 11 20:38:16 hgb10502 sshd[15037]: Failed password for invalid user 2 from 36.226.111.21 port 59296 ssh2 Mar 11 20:38:17 hgb10502 sshd[15037]: Received disconnect from 36.226.111.21 port 59296:11: Bye Bye [preauth] Mar 11 20:38:17 hgb10502 sshd[15037]: Disconnected from 36.226.111.21 port 59296 [preauth] Mar x@x Mar x@x Mar ........ -------------------------------	2020-03-13 01:42:16
94.23.42.196	attackspambots	94.23.42.196 - - [12/Mar/2020:17:20:55 +0100] "GET /wp-login.php HTTP/1.1" 200 5459 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.42.196 - - [12/Mar/2020:17:20:56 +0100] "POST /wp-login.php HTTP/1.1" 200 6358 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 94.23.42.196 - - [12/Mar/2020:17:20:57 +0100] "POST /xmlrpc.php HTTP/1.1" 200 438 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-13 01:30:56
45.125.65.42	attackspambots	2020-03-12 18:33:21 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=159159\) 2020-03-12 18:33:26 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=159159\) 2020-03-12 18:33:26 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=159159\) 2020-03-12 18:34:55 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=demonstration@no-server.de\) 2020-03-12 18:36:25 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=demonstration@no-server.de\) ...	2020-03-13 01:47:10
77.103.169.125	attack	2020-03-03T13:20:09.969Z CLOSE host=77.103.169.125 port=43658 fd=4 time=40.030 bytes=41 ...	2020-03-13 01:58:09
2a03:b0c0:2:f0::13a:d001	attack	Automatically reported by fail2ban report script (mx1)	2020-03-13 01:47:31
73.202.137.196	attackbots	2019-10-24T09:40:48.815Z CLOSE host=73.202.137.196 port=56090 fd=4 time=30.012 bytes=33 ...	2020-03-13 02:02:22
185.153.45.174	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-13 01:44:06
104.200.134.250	attack	st-nyc1-01 recorded 3 login violations from 104.200.134.250 and was blocked at 2020-03-12 14:43:54. 104.200.134.250 has been blocked on 10 previous occasions. 104.200.134.250's first attempt was recorded at 2020-03-12 11:18:13	2020-03-13 01:37:33

最近上报的IP列表

171.248.159.58	139.189.181.236	104.32.195.50	200.131.71.107
207.135.147.26	237.169.131.109	13.125.172.104	104.60.209.172
154.231.35.255	103.51.176.219	196.150.156.195	65.225.81.205
183.176.175.196	35.90.11.161	88.14.81.173	95.161.37.38
69.71.86.104	227.0.227.116	115.219.148.223	75.174.163.97