122.246.92.142

基本信息:

城市(city): Ningbo

省份(region): Zhejiang

国家(country): China

运营商(isp): ChinaNet Zhejiang Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Brute force attempt	2020-07-21 08:28:05

相同子网IP讨论:

IP	类型	评论内容	时间
122.246.92.228	attackspam	Aug 24 15:34:33 nandi sshd[5472]: Invalid user jason from 122.246.92.228 Aug 24 15:34:33 nandi sshd[5472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.246.92.228 Aug 24 15:34:35 nandi sshd[5472]: Failed password for invalid user jason from 122.246.92.228 port 37074 ssh2 Aug 24 15:34:35 nandi sshd[5472]: Received disconnect from 122.246.92.228: 11: Bye Bye [preauth] Aug 24 15:54:56 nandi sshd[17194]: Invalid user test1 from 122.246.92.228 Aug 24 15:54:56 nandi sshd[17194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.246.92.228 Aug 24 15:54:59 nandi sshd[17194]: Failed password for invalid user test1 from 122.246.92.228 port 55628 ssh2 Aug 24 15:54:59 nandi sshd[17194]: Received disconnect from 122.246.92.228: 11: Bye Bye [preauth] Aug 24 15:56:51 nandi sshd[18715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.246.92.228 user=r......... -------------------------------	2020-08-27 09:53:11

类型

评论内容

时间

122.246.92.228

attackspam

Aug 24 15:34:33 nandi sshd[5472]: Invalid user jason from 122.246.92.228
Aug 24 15:34:33 nandi sshd[5472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.246.92.228 
Aug 24 15:34:35 nandi sshd[5472]: Failed password for invalid user jason from 122.246.92.228 port 37074 ssh2
Aug 24 15:34:35 nandi sshd[5472]: Received disconnect from 122.246.92.228: 11: Bye Bye [preauth]
Aug 24 15:54:56 nandi sshd[17194]: Invalid user test1 from 122.246.92.228
Aug 24 15:54:56 nandi sshd[17194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.246.92.228 
Aug 24 15:54:59 nandi sshd[17194]: Failed password for invalid user test1 from 122.246.92.228 port 55628 ssh2
Aug 24 15:54:59 nandi sshd[17194]: Received disconnect from 122.246.92.228: 11: Bye Bye [preauth]
Aug 24 15:56:51 nandi sshd[18715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.246.92.228  user=r.........
-------------------------------

2020-08-27 09:53:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.246.92.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15971
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.246.92.142.			IN	A

;; AUTHORITY SECTION:
.			406	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072002 1800 900 604800 86400

;; Query time: 177 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 21 08:28:02 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 142.92.246.122.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.92.246.122.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.232.67.5	attackspambots	Dec 16 14:25:36 dedicated sshd[6969]: Invalid user admin from 185.232.67.5 port 35034	2019-12-16 21:53:14
212.34.246.73	attackbotsspam	Invalid user alain from 212.34.246.73 port 49522	2019-12-16 21:33:55
188.213.165.189	attackspambots	Dec 16 14:01:53 MK-Soft-VM6 sshd[24554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.213.165.189 Dec 16 14:01:55 MK-Soft-VM6 sshd[24554]: Failed password for invalid user prasad from 188.213.165.189 port 39418 ssh2 ...	2019-12-16 21:23:31
115.165.166.193	attackbotsspam	Invalid user gdm from 115.165.166.193 port 47024	2019-12-16 21:25:19
54.37.176.48	attackbotsspam	Lines containing failures of 54.37.176.48 Dec 16 07:13:08 server01 postfix/smtpd[9607]: connect from esserverate.redimmediatelynk.top[54.37.176.48] Dec x@x Dec x@x Dec x@x Dec x@x Dec 16 07:13:54 server01 postfix/smtpd[9607]: disconnect from esserverate.redimmediatelynk.top[54.37.176.48] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=54.37.176.48	2019-12-16 21:51:39
180.242.215.165	attackspam	1576477409 - 12/16/2019 07:23:29 Host: 180.242.215.165/180.242.215.165 Port: 445 TCP Blocked	2019-12-16 21:34:49
93.152.159.11	attackbots	Dec 16 13:38:28 v22018086721571380 sshd[352]: Failed password for invalid user kartel from 93.152.159.11 port 40902 ssh2 Dec 16 13:48:41 v22018086721571380 sshd[1023]: Failed password for invalid user vasilopoulos from 93.152.159.11 port 46874 ssh2	2019-12-16 21:55:33
59.126.75.41	attackbotsspam	Dec 16 07:01:12 extapp sshd[29973]: Failed password for r.r from 59.126.75.41 port 51006 ssh2 Dec 16 07:03:35 extapp sshd[30812]: Invalid user kevin from 59.126.75.41 Dec 16 07:03:37 extapp sshd[30812]: Failed password for invalid user kevin from 59.126.75.41 port 54572 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.126.75.41	2019-12-16 21:20:20
49.73.235.149	attack	Dec 16 01:40:31 php1 sshd\[18497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.235.149 user=root Dec 16 01:40:33 php1 sshd\[18497\]: Failed password for root from 49.73.235.149 port 54509 ssh2 Dec 16 01:49:18 php1 sshd\[19513\]: Invalid user guest from 49.73.235.149 Dec 16 01:49:18 php1 sshd\[19513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.235.149 Dec 16 01:49:20 php1 sshd\[19513\]: Failed password for invalid user guest from 49.73.235.149 port 53534 ssh2	2019-12-16 21:26:11
45.141.85.101	attack	proto=tcp . spt=28865 . dpt=3389 . src=45.141.85.101 . dst=xx.xx.4.1 . (Found on CINS badguys Dec 16) (466)	2019-12-16 21:47:09
218.85.22.206	attackbots	Scanning	2019-12-16 21:30:29
103.4.94.178	attackbots	2019-12-16 00:23:19 H=(103.4.94.178.pern.pk) [103.4.94.178]:50854 I=[192.147.25.65]:25 sender verify fail for : Unrouteable address 2019-12-16 00:23:19 H=(103.4.94.178.pern.pk) [103.4.94.178]:50854 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed 2019-12-16 00:23:19 H=(103.4.94.178.pern.pk) [103.4.94.178]:50854 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed ...	2019-12-16 21:46:46
156.209.83.47	attackbotsspam	Unauthorised access (Dec 16) SRC=156.209.83.47 LEN=52 TTL=113 ID=14158 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-16 21:48:53
188.166.108.161	attack	Invalid user http from 188.166.108.161 port 53346	2019-12-16 21:45:05
58.137.95.5	attackbots	Invalid user caudillo from 58.137.95.5 port 44308	2019-12-16 21:19:32

最近上报的IP列表

18.167.66.127	187.111.7.193	46.25.86.59	208.28.211.102
112.218.76.163	47.170.29.21	42.226.163.194	47.133.221.196
105.14.158.181	68.142.175.70	52.24.38.230	123.63.242.249
54.156.110.78	209.145.223.152	75.182.24.94	98.127.59.7
81.254.133.209	45.238.7.110	217.252.176.191	2.161.30.251