City: unknown
Region: unknown
Country: China
Internet Service Provider: Zhengzhou Giant Computer Network Technology Co. Ltd
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbots | port scan and connect, tcp 80 (http) |
2020-02-22 08:26:18 |
| attackbotsspam | Unauthorized connection attempt detected from IP address 122.114.109.112 to port 8080 |
2020-01-01 21:57:19 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.114.109.220 | attackspam | Aug 25 15:17:39 vps sshd[14049]: Failed password for root from 122.114.109.220 port 24589 ssh2 Aug 25 15:29:10 vps sshd[14726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Aug 25 15:29:12 vps sshd[14726]: Failed password for invalid user csp from 122.114.109.220 port 19513 ssh2 ... |
2020-08-25 21:33:03 |
| 122.114.109.220 | attackbots | SSH bruteforce |
2020-08-20 19:46:33 |
| 122.114.109.220 | attackspam | malicious Brute-Force reported by https://www.patrick-binder.de ... |
2020-07-22 08:48:49 |
| 122.114.109.220 | attackbots | Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-07-16 16:21:40 |
| 122.114.109.220 | attack | 2020-07-13T07:05:47.901445galaxy.wi.uni-potsdam.de sshd[8789]: Invalid user gis from 122.114.109.220 port 63732 2020-07-13T07:05:47.906455galaxy.wi.uni-potsdam.de sshd[8789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 2020-07-13T07:05:47.901445galaxy.wi.uni-potsdam.de sshd[8789]: Invalid user gis from 122.114.109.220 port 63732 2020-07-13T07:05:49.353058galaxy.wi.uni-potsdam.de sshd[8789]: Failed password for invalid user gis from 122.114.109.220 port 63732 ssh2 2020-07-13T07:08:27.195230galaxy.wi.uni-potsdam.de sshd[9059]: Invalid user alan from 122.114.109.220 port 34131 2020-07-13T07:08:27.200417galaxy.wi.uni-potsdam.de sshd[9059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 2020-07-13T07:08:27.195230galaxy.wi.uni-potsdam.de sshd[9059]: Invalid user alan from 122.114.109.220 port 34131 2020-07-13T07:08:29.279895galaxy.wi.uni-potsdam.de sshd[9059]: Failed password ... |
2020-07-13 14:39:46 |
| 122.114.109.220 | attackbots | Invalid user yuyue from 122.114.109.220 port 59454 |
2020-07-01 01:51:18 |
| 122.114.109.220 | attackbots | Port Scan |
2020-06-23 14:18:06 |
| 122.114.109.220 | attackbots | Jun 12 02:33:34 ns382633 sshd\[21867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 user=root Jun 12 02:33:35 ns382633 sshd\[21867\]: Failed password for root from 122.114.109.220 port 34895 ssh2 Jun 12 02:39:06 ns382633 sshd\[22786\]: Invalid user samia from 122.114.109.220 port 28178 Jun 12 02:39:06 ns382633 sshd\[22786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Jun 12 02:39:08 ns382633 sshd\[22786\]: Failed password for invalid user samia from 122.114.109.220 port 28178 ssh2 |
2020-06-12 08:53:57 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.114.109.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16579
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.114.109.112. IN A
;; AUTHORITY SECTION:
. 580 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400
;; Query time: 506 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 21:57:10 CST 2020
;; MSG SIZE rcvd: 119Host 112.109.114.122.in-addr.arpa not found: 2(SERVFAIL);; Got SERVFAIL reply from 183.60.83.19, trying next server
Server: 183.60.82.98
Address: 183.60.82.98#53
** server can't find 112.109.114.122.in-addr.arpa: SERVFAIL| IP | Type | Details | Datetime |
|---|---|---|---|
| 177.69.237.49 | attack | SSH Brute Force, server-1 sshd[9835]: Failed password for invalid user sanjeev from 177.69.237.49 port 40344 ssh2 |
2019-10-03 17:10:06 |
| 138.68.146.186 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-10-03 17:18:21 |
| 193.70.32.148 | attack | Oct 3 10:42:42 lnxweb61 sshd[17685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.32.148 |
2019-10-03 17:03:02 |
| 101.228.74.0 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-10-03 16:57:44 |
| 103.74.71.143 | normal | Bad ipbaddb not open |
2019-10-03 16:48:16 |
| 103.218.242.190 | attackspambots | Automatic report - Banned IP Access |
2019-10-03 16:45:00 |
| 122.161.192.206 | attackspam | $f2bV_matches |
2019-10-03 17:08:48 |
| 139.199.164.21 | attack | 2019-09-09 12:49:14,062 fail2ban.actions [814]: NOTICE [sshd] Ban 139.199.164.21 2019-09-09 15:58:02,598 fail2ban.actions [814]: NOTICE [sshd] Ban 139.199.164.21 2019-09-09 19:04:54,669 fail2ban.actions [814]: NOTICE [sshd] Ban 139.199.164.21 ... |
2019-10-03 16:34:06 |
| 45.40.204.132 | attackbots | Oct 3 07:55:54 MainVPS sshd[25958]: Invalid user ubuntu from 45.40.204.132 port 49866 Oct 3 07:55:54 MainVPS sshd[25958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.204.132 Oct 3 07:55:54 MainVPS sshd[25958]: Invalid user ubuntu from 45.40.204.132 port 49866 Oct 3 07:55:56 MainVPS sshd[25958]: Failed password for invalid user ubuntu from 45.40.204.132 port 49866 ssh2 Oct 3 07:59:19 MainVPS sshd[26204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.204.132 user=root Oct 3 07:59:22 MainVPS sshd[26204]: Failed password for root from 45.40.204.132 port 60826 ssh2 ... |
2019-10-03 17:16:50 |
| 64.44.61.203 | attackbotsspam | Sep 30 23:08:18 tux postfix/smtpd[4923]: connect from antonie.constancevoigt.com[64.44.61.203] Sep 30 23:08:18 tux postfix/smtpd[4923]: Anonymous TLS connection established from antonie.constancevoigt.com[64.44.61.203]: TLSv1.2 whostnameh cipher AECDH-AES256-SHA (256/256 bhostnames) Sep x@x Sep 30 23:08:22 tux postfix/smtpd[4923]: disconnect from antonie.constancevoigt.com[64.44.61.203] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=64.44.61.203 |
2019-10-03 16:50:07 |
| 106.13.125.84 | attack | 2019-10-03T10:20:03.506268lon01.zurich-datacenter.net sshd\[32097\]: Invalid user ssh from 106.13.125.84 port 49312 2019-10-03T10:20:03.513625lon01.zurich-datacenter.net sshd\[32097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 2019-10-03T10:20:06.009682lon01.zurich-datacenter.net sshd\[32097\]: Failed password for invalid user ssh from 106.13.125.84 port 49312 ssh2 2019-10-03T10:24:55.586938lon01.zurich-datacenter.net sshd\[32192\]: Invalid user ubnt from 106.13.125.84 port 58242 2019-10-03T10:24:55.593429lon01.zurich-datacenter.net sshd\[32192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 ... |
2019-10-03 16:57:11 |
| 115.238.236.74 | attack | Oct 3 10:32:17 OPSO sshd\[27969\]: Invalid user norby from 115.238.236.74 port 38507 Oct 3 10:32:17 OPSO sshd\[27969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 Oct 3 10:32:19 OPSO sshd\[27969\]: Failed password for invalid user norby from 115.238.236.74 port 38507 ssh2 Oct 3 10:36:43 OPSO sshd\[29068\]: Invalid user spy from 115.238.236.74 port 19095 Oct 3 10:36:43 OPSO sshd\[29068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 |
2019-10-03 16:58:52 |
| 159.65.133.212 | attackspambots | Oct 3 03:04:27 plusreed sshd[19681]: Invalid user fanadmin from 159.65.133.212 ... |
2019-10-03 16:59:53 |
| 138.94.114.238 | attackbots | 2019-09-01 07:30:40,465 fail2ban.actions [804]: NOTICE [sshd] Ban 138.94.114.238 2019-09-01 10:41:05,884 fail2ban.actions [804]: NOTICE [sshd] Ban 138.94.114.238 2019-09-01 13:49:54,855 fail2ban.actions [804]: NOTICE [sshd] Ban 138.94.114.238 ... |
2019-10-03 17:04:22 |
| 103.74.71.143 | normal | Bad ipbaddb not open |
2019-10-03 16:47:59 |