122.117.243.20

基本信息:

城市(city): Chiayi City

省份(region): Chiayi

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	ssh brute force	2020-02-23 04:42:15

相同子网IP讨论:

IP	类型	评论内容	时间
122.117.243.222	attack	Attempted connection to port 8080.	2020-06-14 20:22:54
122.117.243.229	attackspam	Port probing on unauthorized port 23	2020-06-14 08:44:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.117.243.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7008
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.117.243.20.			IN	A

;; AUTHORITY SECTION:
.			284	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022200 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 23 04:42:12 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

20.243.117.122.in-addr.arpa domain name pointer 122-117-243-20.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.243.117.122.in-addr.arpa	name = 122-117-243-20.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
23.108.48.9	attackspambots	Registration form abuse	2020-08-30 16:38:26
119.96.171.162	attackbots	Aug 30 07:42:41 santamaria sshd\[18300\]: Invalid user git from 119.96.171.162 Aug 30 07:42:41 santamaria sshd\[18300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.171.162 Aug 30 07:42:43 santamaria sshd\[18300\]: Failed password for invalid user git from 119.96.171.162 port 43676 ssh2 ...	2020-08-30 16:28:28
128.199.182.19	attackspam	Aug 30 07:54:41 server sshd[2405]: Failed password for root from 128.199.182.19 port 42036 ssh2 Aug 30 07:56:57 server sshd[3479]: Failed password for root from 128.199.182.19 port 44740 ssh2 Aug 30 07:59:24 server sshd[4684]: Failed password for invalid user tzq from 128.199.182.19 port 47450 ssh2	2020-08-30 16:30:41
45.94.233.204	attack	Registration form abuse	2020-08-30 16:38:53
159.16.16.122	attack	2020-08-30T05:46:32.293140centos sshd[16699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.16.16.122 2020-08-30T05:46:32.286483centos sshd[16699]: Invalid user user from 159.16.16.122 port 3939 2020-08-30T05:46:33.961287centos sshd[16699]: Failed password for invalid user user from 159.16.16.122 port 3939 ssh2 ...	2020-08-30 16:35:45
177.91.184.169	attack	Attempted Brute Force (dovecot)	2020-08-30 16:42:15
92.241.100.145	attackspambots	Attempted connection to port 445.	2020-08-30 16:57:55
45.95.168.130	attack	Unauthorized connection attempt detected from IP address 45.95.168.130 to port 22 [T]	2020-08-30 16:27:37
211.80.102.186	attackspambots	[ssh] SSH attack	2020-08-30 16:56:48
78.36.97.216	attack	2020-08-30T05:41:02.151495ns386461 sshd\[17365\]: Invalid user kafka from 78.36.97.216 port 47537 2020-08-30T05:41:02.156156ns386461 sshd\[17365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78-36-97-216.static.komi.dslavangard.ru 2020-08-30T05:41:03.853994ns386461 sshd\[17365\]: Failed password for invalid user kafka from 78.36.97.216 port 47537 ssh2 2020-08-30T05:46:41.385162ns386461 sshd\[22840\]: Invalid user felix from 78.36.97.216 port 45080 2020-08-30T05:46:41.387899ns386461 sshd\[22840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78-36-97-216.static.komi.dslavangard.ru ...	2020-08-30 16:32:21
212.83.163.170	attackspam	[2020-08-30 04:42:32] NOTICE[1185] chan_sip.c: Registration from '"222"' failed for '212.83.163.170:7400' - Wrong password [2020-08-30 04:42:32] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-30T04:42:32.213-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="222",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.163.170/7400",Challenge="307483ea",ReceivedChallenge="307483ea",ReceivedHash="a9a39ab8b0c0827cd89b48ef663072b8" [2020-08-30 04:43:23] NOTICE[1185] chan_sip.c: Registration from '"223"' failed for '212.83.163.170:7453' - Wrong password [2020-08-30 04:43:23] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-30T04:43:23.624-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="223",SessionID="0x7f10c41780b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83. ...	2020-08-30 16:51:47
203.66.168.81	attack	SSH Brute-Force attacks	2020-08-30 16:46:59
61.185.198.130	attackspambots	Attempted connection to port 1433.	2020-08-30 16:59:35
117.117.165.131	attackbotsspam	Aug 30 09:47:29 vm1 sshd[23522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.117.165.131 Aug 30 09:47:31 vm1 sshd[23522]: Failed password for invalid user nagios from 117.117.165.131 port 54661 ssh2 ...	2020-08-30 16:41:01
27.184.11.82	attack	Attempted connection to port 2323.	2020-08-30 17:04:10

最近上报的IP列表

176.168.172.24	184.22.231.54	79.202.56.7	125.7.155.134
1.91.100.9	24.199.53.91	126.7.196.108	107.206.95.55
170.231.59.26	99.97.176.134	153.144.52.61	31.85.255.206
67.216.0.62	1.29.189.2	175.208.11.213	98.114.133.118
176.196.120.170	196.136.101.41	101.22.156.156	181.170.89.66