5.122.20.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Iran (Islamic Republic of)

运营商(isp): Iran Cell Service and Communication Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 5.122.20.55 on Port 445(SMB)	2020-06-21 01:30:21

相同子网IP讨论:

IP	类型	评论内容	时间
5.122.208.11	attackspam	1581115204 - 02/07/2020 23:40:04 Host: 5.122.208.11/5.122.208.11 Port: 445 TCP Blocked	2020-02-08 06:56:27
5.122.207.251	attackbots	Unauthorized connection attempt from IP address 5.122.207.251 on Port 445(SMB)	2020-01-15 06:09:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.122.20.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21634
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.122.20.55.			IN	A

;; AUTHORITY SECTION:
.			253	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062000 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 21 01:30:16 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 55.20.122.5.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.20.122.5.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.13.107.106	attack	Feb 11 06:50:39 MK-Soft-VM3 sshd[18392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.107.106 Feb 11 06:50:41 MK-Soft-VM3 sshd[18392]: Failed password for invalid user cpa from 106.13.107.106 port 54898 ssh2 ...	2020-02-11 20:51:35
128.199.212.82	attackbotsspam	sshd jail - ssh hack attempt	2020-02-11 20:53:44
106.54.114.248	attackspambots	2020-02-11T12:14:24.366846centos sshd\[17731\]: Invalid user kzt from 106.54.114.248 port 33620 2020-02-11T12:14:24.372832centos sshd\[17731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.114.248 2020-02-11T12:14:26.508881centos sshd\[17731\]: Failed password for invalid user kzt from 106.54.114.248 port 33620 ssh2	2020-02-11 20:47:10
51.89.28.247	attackbots	Feb 11 07:40:27 server sshd\[14124\]: Invalid user kjc from 51.89.28.247 Feb 11 07:40:27 server sshd\[14124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip247.ip-51-89-28.eu Feb 11 07:40:29 server sshd\[14124\]: Failed password for invalid user kjc from 51.89.28.247 port 38998 ssh2 Feb 11 10:02:36 server sshd\[5819\]: Invalid user mgq from 51.89.28.247 Feb 11 10:02:36 server sshd\[5819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip247.ip-51-89-28.eu ...	2020-02-11 20:48:16
186.67.248.5	attackspam	Feb 11 11:41:57 vlre-nyc-1 sshd\[28946\]: Invalid user 156.224.72.112 from 186.67.248.5 Feb 11 11:41:57 vlre-nyc-1 sshd\[28946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.67.248.5 Feb 11 11:41:59 vlre-nyc-1 sshd\[28946\]: Failed password for invalid user 156.224.72.112 from 186.67.248.5 port 60278 ssh2 Feb 11 11:43:49 vlre-nyc-1 sshd\[28983\]: Invalid user 35.221.177.60 from 186.67.248.5 Feb 11 11:43:49 vlre-nyc-1 sshd\[28983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.67.248.5 ...	2020-02-11 20:33:43
67.213.210.231	attackspam	TCP Port Scanning	2020-02-11 21:01:36
122.54.175.202	attack	Feb 10 07:57:48 xxx sshd[30083]: Did not receive identification string from 122.54.175.202 port 9505 Feb 10 08:28:22 xxx sshd[4548]: Invalid user med from 122.54.175.202 port 63653 Feb 10 08:28:22 xxx sshd[4548]: Failed password for invalid user med from 122.54.175.202 port 63653 ssh2 Feb 10 08:28:22 xxx sshd[4548]: Received disconnect from 122.54.175.202 port 63653:11: Bye Bye [preauth] Feb 10 08:28:22 xxx sshd[4548]: Disconnected from 122.54.175.202 port 63653 [preauth] Feb 10 08:33:22 xxx sshd[5523]: Invalid user wbf from 122.54.175.202 port 20658 Feb 10 08:33:22 xxx sshd[5523]: Failed password for invalid user wbf from 122.54.175.202 port 20658 ssh2 Feb 10 08:33:24 xxx sshd[5523]: Received disconnect from 122.54.175.202 port 20658:11: Bye Bye [preauth] Feb 10 08:33:24 xxx sshd[5523]: Disconnected from 122.54.175.202 port 20658 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.54.175.202	2020-02-11 20:40:15
219.85.109.101	attackspambots	1581396547 - 02/11/2020 11:49:07 Host: 219.85.109.101/219.85.109.101 Port: 23 TCP Blocked ...	2020-02-11 20:21:55
156.222.177.0	attackbotsspam	2020-02-1105:48:131j1NT3-0007JI-JJ\<=verena@rs-solution.chH=\(localhost\)[79.164.233.69]:36491P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2513id=696CDA89825678CB17125BE3179B7C86@rs-solution.chT="\;Dbeveryhappytoobtainyourmail\	2020-02-11 20:59:25
80.68.0.142	attackspam	445/tcp 445/tcp 445/tcp [2020-01-29/02-11]3pkt	2020-02-11 20:58:23
191.50.21.2	attackspam	Port probing on unauthorized port 445	2020-02-11 20:33:17
93.27.10.20	attack	Automatic report - SSH Brute-Force Attack	2020-02-11 20:31:01
201.18.75.178	attack	unauthorized connection attempt	2020-02-11 21:03:51
150.107.188.98	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-11 20:34:12
194.180.225.19	attack	Honeypot attack, port: 389, PTR: PTR record not found	2020-02-11 20:39:23

最近上报的IP列表

118.24.239.245	45.148.10.221	109.252.114.30	216.172.109.156
2.82.170.124	94.41.230.244	13.70.199.80	51.178.47.194
103.230.241.16	78.162.33.47	83.172.41.50	1.34.13.221
185.234.219.226	151.141.149.3	74.83.225.231	156.198.3.61
103.93.178.163	4.4.224.229	151.52.101.105	61.179.119.107