122.114.109.220

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Zhengzhou Giant Computer Network Technology Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 25 15:17:39 vps sshd[14049]: Failed password for root from 122.114.109.220 port 24589 ssh2 Aug 25 15:29:10 vps sshd[14726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Aug 25 15:29:12 vps sshd[14726]: Failed password for invalid user csp from 122.114.109.220 port 19513 ssh2 ...	2020-08-25 21:33:03
attackbots	SSH bruteforce	2020-08-20 19:46:33
attackspam	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-07-22 08:48:49
attackbots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-16 16:21:40
attack	2020-07-13T07:05:47.901445galaxy.wi.uni-potsdam.de sshd[8789]: Invalid user gis from 122.114.109.220 port 63732 2020-07-13T07:05:47.906455galaxy.wi.uni-potsdam.de sshd[8789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 2020-07-13T07:05:47.901445galaxy.wi.uni-potsdam.de sshd[8789]: Invalid user gis from 122.114.109.220 port 63732 2020-07-13T07:05:49.353058galaxy.wi.uni-potsdam.de sshd[8789]: Failed password for invalid user gis from 122.114.109.220 port 63732 ssh2 2020-07-13T07:08:27.195230galaxy.wi.uni-potsdam.de sshd[9059]: Invalid user alan from 122.114.109.220 port 34131 2020-07-13T07:08:27.200417galaxy.wi.uni-potsdam.de sshd[9059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 2020-07-13T07:08:27.195230galaxy.wi.uni-potsdam.de sshd[9059]: Invalid user alan from 122.114.109.220 port 34131 2020-07-13T07:08:29.279895galaxy.wi.uni-potsdam.de sshd[9059]: Failed password ...	2020-07-13 14:39:46
attackbots	Invalid user yuyue from 122.114.109.220 port 59454	2020-07-01 01:51:18
attackbots	Port Scan	2020-06-23 14:18:06
attackbots	Jun 12 02:33:34 ns382633 sshd\[21867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 user=root Jun 12 02:33:35 ns382633 sshd\[21867\]: Failed password for root from 122.114.109.220 port 34895 ssh2 Jun 12 02:39:06 ns382633 sshd\[22786\]: Invalid user samia from 122.114.109.220 port 28178 Jun 12 02:39:06 ns382633 sshd\[22786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Jun 12 02:39:08 ns382633 sshd\[22786\]: Failed password for invalid user samia from 122.114.109.220 port 28178 ssh2	2020-06-12 08:53:57

Comments on same subnet:

IP	Type	Details	Datetime
122.114.109.112	attackbots	port scan and connect, tcp 80 (http)	2020-02-22 08:26:18
122.114.109.112	attackbotsspam	Unauthorized connection attempt detected from IP address 122.114.109.112 to port 8080	2020-01-01 21:57:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.114.109.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54630
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.114.109.220.		IN	A

;; AUTHORITY SECTION:
.			235	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061102 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 12 08:53:53 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 220.109.114.122.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 220.109.114.122.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.200.165.32	attackbotsspam	May 12 06:22:44 vps647732 sshd[20816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.200.165.32 May 12 06:22:46 vps647732 sshd[20816]: Failed password for invalid user cloud-user from 35.200.165.32 port 58712 ssh2 ...	2020-05-12 12:37:43
187.108.76.110	attack	port 23	2020-05-12 13:07:37
96.78.175.36	attack	May 12 05:54:51 sso sshd[729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.36 May 12 05:54:52 sso sshd[729]: Failed password for invalid user support from 96.78.175.36 port 42624 ssh2 ...	2020-05-12 12:43:16
14.29.215.5	attack	May 12 04:54:20 l03 sshd[14428]: Invalid user marie from 14.29.215.5 port 47003 ...	2020-05-12 13:10:19
152.136.18.142	attack	May 12 11:59:05 webhost01 sshd[6018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.18.142 May 12 11:59:07 webhost01 sshd[6018]: Failed password for invalid user admin from 152.136.18.142 port 55776 ssh2 ...	2020-05-12 13:03:00
111.231.77.115	attackbots	May 12 06:43:02 eventyay sshd[25766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.77.115 May 12 06:43:04 eventyay sshd[25766]: Failed password for invalid user marx from 111.231.77.115 port 33240 ssh2 May 12 06:47:23 eventyay sshd[25883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.77.115 ...	2020-05-12 12:48:46
195.54.167.11	attackspam	May 12 06:20:01 [host] kernel: [5885955.025515] [U May 12 06:30:22 [host] kernel: [5886575.361776] [U May 12 06:30:36 [host] kernel: [5886589.450530] [U May 12 06:47:51 [host] kernel: [5887624.575638] [U May 12 06:50:10 [host] kernel: [5887763.621641] [U May 12 06:58:45 [host] kernel: [5888278.540238] [U	2020-05-12 13:00:40
176.67.80.4	attack	[2020-05-12 00:57:10] NOTICE[1157] chan_sip.c: Registration from '' failed for '176.67.80.4:63077' - Wrong password [2020-05-12 00:57:10] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-12T00:57:10.110-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7898",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.67.80.4/63077",Challenge="13872142",ReceivedChallenge="13872142",ReceivedHash="53d9286f6c0a17cb6ed14b7c0ebcff5b" [2020-05-12 00:57:28] NOTICE[1157] chan_sip.c: Registration from '' failed for '176.67.80.4:56474' - Wrong password [2020-05-12 00:57:28] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-12T00:57:28.836-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="999",SessionID="0x7f5f106f5588",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.67.80.4/56474",Ch ...	2020-05-12 13:14:54
81.30.204.10	attackbotsspam	Port probing on unauthorized port 81	2020-05-12 13:14:08
45.142.195.8	attackspam	2020-05-12 07:44:29 dovecot_login authenticator failed for \(User\) \[45.142.195.8\]: 535 Incorrect authentication data \(set_id=xiaogan@org.ua\)2020-05-12 07:44:54 dovecot_login authenticator failed for \(User\) \[45.142.195.8\]: 535 Incorrect authentication data \(set_id=xianning@org.ua\)2020-05-12 07:45:20 dovecot_login authenticator failed for \(User\) \[45.142.195.8\]: 535 Incorrect authentication data \(set_id=xiangxi@org.ua\) ...	2020-05-12 12:47:45
51.79.57.12	attackbotsspam	SIP Server BruteForce Attack	2020-05-12 13:14:21
157.230.151.241	attackspambots	k+ssh-bruteforce	2020-05-12 12:50:41
61.244.196.102	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-12 12:59:49
182.52.136.54	attackspambots	May 12 05:54:55 163-172-32-151 sshd[13315]: Invalid user system from 182.52.136.54 port 56693 ...	2020-05-12 12:38:50
112.85.42.172	attackbotsspam	May 12 06:39:10 home sshd[23291]: Failed password for root from 112.85.42.172 port 46626 ssh2 May 12 06:39:23 home sshd[23291]: error: maximum authentication attempts exceeded for root from 112.85.42.172 port 46626 ssh2 [preauth] May 12 06:39:34 home sshd[23411]: Failed password for root from 112.85.42.172 port 16954 ssh2 ...	2020-05-12 12:47:04

Recently Reported IPs

187.212.202.116	123.248.34.185	182.73.136.78	219.190.226.252
106.52.115.154	1.194.79.69	185.48.28.211	36.86.147.99
109.84.167.226	89.248.167.139	107.208.27.175	106.52.92.220
5.141.89.14	54.73.137.136	62.73.65.74	208.242.151.45
98.250.163.164	138.181.165.247	122.51.52.154	191.209.158.234