不正なSIP着信 62
Published: 2013/09/07
8月のSIPサーバーへの攻撃です。
自動でツールが動いてるっぽい感じで、国際電話を掛ける踏み台にしてその課金で儲ける系の攻撃だとは思いますがかなり多くなってます。
PS,USあたりのASが目立つのはいつもどおりです。
IP | name | AS | AS Number | Country | Count |
---|---|---|---|---|---|
204.101.27.220 | NONE | 577 | BACOM_-_Bell_Canada | CA | 13546 |
96.8.100.2 | NONE | 3361 | DF-TUKWILA01_-_Digital_Fortress_Inc. | US | 21556 |
119.192.169.46 | NONE | 4766 | KIXS-AS-KR_Korea_Telecom | KR | 13546 |
81.218.117.14 | bzq-218-117-14.red.bezeqint.net. | 8551 | BEZEQ-INTERNATIONAL-AS_Bezeqint_Internet_Backbone | IL | 1 |
81.218.117.6 | bzq-218-117-6.red.bezeqint.net. | 8551 | BEZEQ-INTERNATIONAL-AS_Bezeqint_Internet_Backbone | IL | 5076 |
85.25.157.173 | static-ip-85-25-157-173.inaddr.ip-pool.com. | 8972 | PLUSSERVER-AS_intergenia_AG | DE | 787 |
85.25.78.20 | static-ip-85-25-78-20.inaddr.ip-pool.com. | 8972 | PLUSSERVER-AS_intergenia_AG | DE | 7742 |
72.22.64.222 | server222.ihsystem.com. | 14872 | YNC_-_@YourNet_Connection_Inc. | US | 9902 |
162.13.9.158 | NONE | 15395 | Rackspace_Ltd. | GB | 23 |
37.8.10.145 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 108617 |
37.8.11.65 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30100 |
37.8.15.134 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 373059 |
37.8.15.220 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 20030 |
37.8.16.221 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 52354 |
37.8.21.237 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30140 |
37.8.25.42 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 74837 |
37.8.28.122 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 50061 |
37.8.30.196 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 129 |
37.8.30.43 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30054 |
37.8.32.116 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 244 |
37.8.34.226 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 19 |
37.8.39.7 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 40062 |
37.8.42.154 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 141 |
37.8.42.176 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 113281 |
37.8.43.143 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 50079 |
37.8.54.34 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 42069 |
37.8.57.178 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 60062 |
37.8.60.225 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 50819 |
37.8.61.119 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 10 |
37.8.72.86 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30082 |
37.8.74.185 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 10032 |
37.8.76.59 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30159 |
37.8.77.148 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 42875 |
37.8.79.247 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30051 |
37.8.8.67 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 40048 |
37.8.88.111 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 110270 |
37.8.9.140 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 48 |
82.205.1.12 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 40 |
82.205.1.133 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 10003 |
82.205.14.108 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 18 |
82.205.14.218 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 90182 |
82.205.19.126 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 66858 |
82.205.21.151 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 32827 |
82.205.23.156 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 30053 |
82.205.23.174 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 20041 |
82.205.26.50 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 97 |
82.205.3.0 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 20019 |
82.205.3.241 | NONE | 15975 | HADARA-AS_Hadara_Technologies_Private_Shareholding_Company | PS | 313478 |
188.165.254.170 | ks381071.kimsufi.com. | 16276 | OVH_OVH_Systems | FR | 253938 |
198.27.70.5 | ns4008594.ip-198-27-70.net. | 16276 | OVH_OVH_Systems | CA | 485 |
91.121.136.136 | ns202175.ovh.net. | 16276 | OVH_OVH_Systems | FR | 579112 |
94.23.165.136 | NONE | 16276 | OVH_OVH_Systems | DE | 114 |
94.23.165.174 | NONE | 16276 | OVH_OVH_Systems | DE | 23 |
94.23.202.102 | ns3346122.ovh.net. | 16276 | OVH_OVH_Systems | FR | 157453 |
54.249.81.161 | ec2-54-249-81-161.ap-northeast-1.compute.amazonaws.com. | 16509 | AMAZON-02_-_Amazon.com_Inc. | JP | 25375 |
114.79.12.113 | NONE | 18004 | WIRELESSNET-ID-AP_WIRELESSNET_AS | ID | 197783 |
192.157.196.99 | 99.196-157-192.rdns.scalabledns.com. | 18978 | ENZUINC-US_-_Enzu_Inc | US | 6286 |
23.31.57.138 | 23-31-57-138-static.hfc.comcastbusiness.net. | 20214 | COMCAST-20214_-_Comcast_Cable_Communications_Holdings_Inc | US | 28072 |
198.15.88.174 | NONE | 20454 | SSASN2_-_SECURED_SERVERS_LLC | US | 20291 |
198.15.88.177 | NONE | 20454 | SSASN2_-_SECURED_SERVERS_LLC | US | 20 |
95.170.83.148 | 95-170-83-148.colo.transip.net. | 20857 | TRANSIP-AS_TransIP_B.V. | NL | 122 |
184.22.245.124 | c50.completecenter.net. | 21788 | NOC_-_Network_Operations_Center_Inc. | US | 9901 |
184.82.23.160 | 184-82-23-160.static.hostnoc.net. | 21788 | NOC_-_Network_Operations_Center_Inc. | US | 20287 |
193.111.136.27 | NONE | 24961 | MYLOC-AS_myLoc_managed_IT_AG | DE | 15215 |
108.59.12.8 | NONE | 30633 | LEASEWEB-US_-_Leaseweb_USA_Inc. | US | 40 |
185.19.223.215 | NONE | 31408 | ORANGE-PALESTINE_Orange_Palestine_Group_Co._for_Technological_Investment_Joint_Stock_Private_Company | PS | 36 |
5.11.44.107 | NONE | 31408 | ORANGE-PALESTINE_Orange_Palestine_Group_Co._for_Technological_Investment_Joint_Stock_Private_Company | PS | 63 |
5.11.44.47 | NONE | 31408 | ORANGE-PALESTINE_Orange_Palestine_Group_Co._for_Technological_Investment_Joint_Stock_Private_Company | PS | 44 |
173.208.159.18 | NONE | 32097 | WII-KC_-_WholeSale_Internet_Inc. | US | 10141 |
204.12.242.186 | NONE | 32097 | WII-KC_-_WholeSale_Internet_Inc. | US | 15239 |
172.245.14.13 | host.8bitmc.com. | 36352 | AS-COLOCROSSING_-_ColoCrossing | US | 20289 |
172.245.24.222 | portal.internalplace.us. | 36352 | AS-COLOCROSSING_-_ColoCrossing | US | 41 |
192.3.6.142 | . | 36352 | AS-COLOCROSSING_-_ColoCrossing | US | 30 |
192.3.6.94 | . | 36352 | AS-COLOCROSSING_-_ColoCrossing | US | 81282 |
42.96.154.182 | NONE | 37963 | CNNIC-ALIBABA-CN-NET-AP_Hangzhou_Alibaba_Advertising_Co.Ltd. | CN | 5076 |
142.0.37.79 | NONE | 46664 | VOLUMEDRIVE_-_VolumeDrive | US | 3521107 |
199.168.139.165 | NONE | 46664 | VOLUMEDRIVE_-_VolumeDrive | US | 198255 |
176.58.69.26 | NONE | 56995 | NETSTREAM_NetStream_Technology_Joint-Stock_Private_Ltd. | PS | 15220 |
37.140.235.115 | NONE | 57872 | PHOENIXNAP-EU_PHOENIX_NAP_LLC. | NL | 1145 |
185.21.196.42 | NONE | 198725 | UT-AS_Ultimum_Technologies_s.r.o. | CZ | 20286 |
by jyake