不正なSIP着信 44
Published: 2011/06/02
ここ2週間分。
IP | name | AS | AS name | 国 | 頻度 |
---|---|---|---|---|---|
128.105.104.102 | adsl-02.cs.wisc.edu. | 59 | UW-Madison | US | 11034 |
168.143.155.165 | NONE | 2914 | NTT-COMMUNICATIONS-2914 | US | 1 |
80.196.152.250 | 0x50c498fa.cpe.ge-0-1-0-1101.bllnqu1.customer.tele.dk. | 3292 | TDC | DK | 1 |
125.75.128.136 | 136.128.125.75.gs.dynamic.163data.com.cn. | 4134 | CHINA-TELECOM | CN | 2 |
218.22.26.132 | 132.26.22.218.broad.static.hf.ah.cndata.com. | 4134 | CHINA-TELECOM | CN | 10590 |
61.146.178.173 | NONE | 4134 | CHINA-TELECOM | CN | 2 |
114.78.121.31 | d114-78-121-31.bla22.nsw.optusnet.com.au. | 4804 | MPX-AS | AU | 2 |
203.156.200.233 | NONE | 4812 | CHINANET-SH-AP | CN | 2 |
203.156.200.233 | NONE | 4812 | CHINANET-SH-AP | CN | 2 |
116.255.134.233 | NONE | 4837 | CHINA169-BACKBONE | CN | 1 |
200.111.178.53 | NONE | 6471 | NO_ENTRIES | CL | 1 |
195.96.170.110 | NONE | 6863 | ROSNET-AS | RU | 2 |
195.96.170.110 | NONE | 6863 | ROSNET-AS | RU | 2 |
187.141.91.37 | customer-187-141-91-37-sta.uninet-ide.com.mx. | 8151 | LACNIC-8151 | MX | 2 |
85.88.131.78 | NONE | 8220 | COLT | PT | 2 |
212.16.203.52 | host-203-52.hosts.vtc.ru. | 8920 | VTC-AS | RU | 2 |
58.6.193.145 | dsl-58-6-193-145.wa.westnet.com.au. | 9543 | WESTNET-AS-AP | AU | 2 |
61.19.112.38 | NONE | 9931 | CAT-AP | TH | 1 |
88.191.98.176 | static.bankexam.fr. | 12322 | PROXAD | FR | 151 |
190.145.30.90 | NONE | 14080 | ASN-TELMEX-COLOMBIA | CO | 2 |
66.199.232.98 | 66-199-232-98.reverse.ezzi.net. | 15149 | EZZI-101-BGP | US | 1 |
201.130.192.150 | 201-130-192-150-cable.cybercable.net.mx. | 16960 | LACNIC-16960 | MX | 2 |
220.248.96.20 | NONE | 17621 | CNCGROUP-SH | CN | 1 |
190.187.112.162 | NONE | 19180 | NO_ENTRIES | PE | 1 |
50.56.30.192 | 50-56-30-192.static.cloud-ips.com. | 19994 | RACKSPACE-SAT | US | 63995 |
184.82.41.66 | 184-82-41-66.hostnoc.net. | 21788 | BurstNet | US | 10078 |
67.15.68.34 | ns1.1server4u.com. | 21844 | THEPLANET-AS2 | US | 11001 |
75.125.1.114 | ns1.mylocalnet.com. | 21844 | THEPLANET-AS2 | US | 2 |
200.105.245.44 | corp-200-105-245-44-uio.punto.net.ec. | 22724 | NO_ENTRIES | EC | 2 |
64.235.53.82 | lasvegas-nv-datacenter.com. | 26277 | NO_ENTRIES | US | 2 |
64.85.166.198 | b04s06ur.corenetworks.net. | 30517 | GREAT-LAKES-COMNET | US | 2 |
173.0.50.121 | NONE | 32097 | RoadRunner | US | 13430 |
173.0.61.93 | NONE | 32097 | RoadRunner | US | 1802 |
208.88.8.219 | NONE | 40603 | NO_ENTRIES | US | 2 |
124.217.230.31 | NONE | 45839 | NO_ENTRIES | MY | 2 |
221.177.170.113 | NONE | 56047 | NO_ENTRIES | CN | 1 |
41.72.134.36 | NONE | 65419 | NO_ENTRIES | ZA | 2 |
bruteforceに利用されるIDは、
相変わらず「不正なSIP着信 32」のようなシーケンシャルな数字、単語辞書なものが多いですが、
最近このような意図不明?バグ?なIDが大量に利用されるようになっています。
10/10/60 10/10/61 10/10/62 10/10/63 10/10/64 10/10/65 10/10/66 10/10/67 10/10/68 10/10/69 10/10/70 10/10/71 10/10/72 10/11/60 10/11/61 11/5/60 11/5/61 11/5/62 11/5/63 11/5/64 11/5/65 11/5/66 9/9/69 9/9/70 9/9/71 9/9/72 ac/dc /dev/null /etc/passwd /.,m /.,mn /.,mnb os/2 tcp/ip /usr/group /.,
by jyake