cNotes 検索 一覧 カテゴリ

不正なSIP着信 58

Published: 2013/03/21

最近のSIP攻撃元。

あいかわらずUS、CNを中心に世界中からきてますが、PS(パレスチナ)のバリエーションが増えてますかね。

CountryCode=「A1」はAnonymous Proxy経由であること示しているようですので、プロキシサーバー経由で送信元を隠蔽して攻撃してきているものと思われます。このIPの所在自体はUSです。

IPnameASAS nameCountry
211.154.154.238NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetCN
218.94.113.5NONE4134CHINANET-BACKBONE_No.31Jin-rong_StreetCN
61.151.254.38NONE4812CHINANET-SH-AP_China_Telecom_(Group)CN
178.255.197.10magento02.qweb.nl.5580ATRATO_Atrato_IP_NetworksNL
192.100.213.48NONE6503Axtel_S.A.B._de_C.V.MX
178.124.163.163mm-163-163-124-178.static.mgts.by.6697BELPAK-AS_Republican_Unitary_Telecommunication_Enterprise_BeltelecomBY
217.153.76.213NONE6714ATOMNET_GTS_Poland_Sp._z_o.o.PL
85.25.131.10bravo531.startdedicated.com.8972PLUSSERVER-AS_intergenia_AGDE
85.25.132.26bravo448.startdedicated.com.8972PLUSSERVER-AS_intergenia_AGDE
187.8.230.130187-8-230-130.customer.tdatabrasil.net.br.10429Telefonica_Data_S.A.BR
199.255.213.191199-255-213-191.anchorfree.com.11346CRITICAL-1_Critical_Issue_Inc.A1
64.74.143.164-74-143-1.compute.santa-clara.internapcloud.net.12182INTERNAP-2BLK_-_Internap_Network_Services_CorporationUS
188.161.12.176NONE12975PALTEL-AS_PALTEL_Autonomous_SystemPS
188.161.14.172NONE12975PALTEL-AS_PALTEL_Autonomous_SystemPS
188.161.255.53NONE12975PALTEL-AS_PALTEL_Autonomous_SystemPS
213.244.66.70NONE12975PALTEL-AS_PALTEL_Autonomous_SystemPS
178.255.225.94ns1.acc.static.occ.io.13287NIXVAL_NIXVAL_Data_CenterES
189.204.28.69customer-mred-69.static.metrored.net.mx.13591Brasil_Telecom_Comunicação_MultimidiaMX
187.245.155.94customer-GDL-155-94.megared.net.mx.13999Mega_Cable_S.A._de_C.V.MX
31.222.171.10031-222-171-100.static.cloud-ips.co.uk.15395Rackspace_Ltd.GB
37.8.101.13NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.10.147NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.109.165NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.109.93NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.110.152NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.11.67NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.15.50NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.57.179NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.6.233NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
37.8.9.210NONE15975HADARA-AS_Hadara_Technologies_Private_Shareholding_CompanyPS
46.165.216.79NONE16265LEASEWEB_LeaseWeb_B.V.DE
85.17.185.46s01.inmeso.eu.16265LEASEWEB_LeaseWeb_B.V.NL
178.33.27.181NONE16276OVH_OVH_SystemsNL
37.59.44.65ks399768.kimsufi.com.16276OVH_OVH_SystemsFR
91.121.72.8x1.bghost.info.16276OVH_OVH_SystemsFR
94.23.32.211ns368313.ovh.net.16276OVH_OVH_SystemsFR
192.157.196.100100.196-157-192.rdns.scalabledns.com.18978ENZUINC-US_-_Enzu_IncUS
192.157.196.9999.196-157-192.rdns.scalabledns.com.18978ENZUINC-US_-_Enzu_IncUS
50.57.140.21950-57-140-219.static.cloud-ips.com.19994RACKSPACE_-_Rackspace_HostingUS
50.57.87.14850-57-87-148.static.cloud-ips.com.19994RACKSPACE_-_Rackspace_HostingUS
184.22.57.125184-22-57-125.static.hostnoc.net.21788NOC_-_Network_Operations_Center_Inc.US
103.3.161.10NONE24438DTDIGITAL-AP-AS_BrightHost_Pty_LtdAU
88.198.53.55static.88-198-53-55.clients.your-server.de.24940HETZNER-AS_Hetzner_Online_AGDE
85.195.77.230NONE29066VELIANET-AS_velia.net_Internetdienste_GmbHDE
85.195.77.243NONE29066VELIANET-AS_velia.net_Internetdienste_GmbHDE
85.195.77.244NONE29066VELIANET-AS_velia.net_Internetdienste_GmbHDE
173.0.2.86NONE29791VOXEL-DOT-NET_-_Voxel_Dot_Net_Inc.A1
199.189.87.26eagle505.startdedicated.com.30083SERVER4YOU_-_Hosting_Solutions_International_Inc.US
37.75.208.205NONE31408ORANGE-PALESTINE_Orange_Palestine_Group_Co._for_Technological_Investment_Joint_Stock_Private_CompanyPS
37.75.214.192NONE31408ORANGE-PALESTINE_Orange_Palestine_Group_Co._for_Technological_Investment_Joint_Stock_Private_CompanyPS
5.11.46.62NONE31408ORANGE-PALESTINE_Orange_Palestine_Group_Co._for_Technological_Investment_Joint_Stock_Private_CompanyPS
108.163.158.217NONE32613IWEB-AS_-_iWeb_Technologies_Inc.CA
196.45.144.5mail1.cats-net.com.cats-net.com.32860CATS-NET-NETWORKTZ
166.78.31.35NONE33070RMH-14_-_Rackspace_HostingUS
166.78.48.175NONE33070RMH-14_-_Rackspace_HostingUS
216.172.165.122ana.anachron.gr.36351SOFTLAYER_-_SoftLayer_Technologies_Inc.US
75.126.153.3775.126.153.37-static.reverse.softlayer.com.36351SOFTLAYER_-_SoftLayer_Technologies_Inc.US
192.210.138.12host.colocrossing.com.36352AS-COLOCROSSING_-_ColoCrossingUS
223.4.131.153NONE37963CNNIC-ALIBABA-CN-NET-AP_Alibaba_(China)_Technology_Co._Ltd.CN
42.96.139.24NONE37963CNNIC-ALIBABA-CN-NET-AP_Alibaba_(China)_Technology_Co._Ltd.CN
109.163.234.73ip2.www.28.mktilimitado.in.39743VOXILITY-AS_Voxility_S.R.L.RO
111.93.20.244Static-244.20.93.111.tataidc.co.in.45820TTSL-MEISISP_Tata_Teleservices_ISP_ASIN
64.31.21.130server.mb-e.com.46475LIMESTONENETWORKS_-_Limestone_Networks_Inc.US
69.162.99.202rahmahost.3jenan.com.46475LIMESTONENETWORKS_-_Limestone_Networks_Inc.US
142.0.40.67NONE46664VOLUMEDRIVE_-_VolumeDriveUS
62.113.213.15NONE47447TTM_23Media_GmbHDE
91.217.178.194NONE51699ANTARKTIDA-PLUS-AS_Antarktida-Plus_LLCSC
200.85.154.3ar3.intoservers.net.52270X-Host_SRLAR
176.58.73.38NONE56995NETSTREAM_NetStream_Technology_Joint-Stock_Private_Ltd.PS
185.6.16.142NONE56995NETSTREAM_NetStream_Technology_Joint-Stock_Private_Ltd.PS
193.107.19.154NONE58001IDEALSOLUTION-AS_Ideal_Solution_LtdRU
193.107.19.208NONE58001IDEALSOLUTION-AS_Ideal_Solution_LtdRU

[カテゴリ:IP電話観察日記]

by jyake