113.160.196.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): VNPT Corp

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 13:49:16,493 INFO [shellcode_manager] (113.160.196.134) no match, writing hexdump (22574ea35f7af1748b4239f2629cd802 :2259254) - MS17010 (EternalBlue)	2019-07-27 01:18:34

类型

评论内容

时间

attackbots

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 13:49:16,493 INFO [shellcode_manager] (113.160.196.134) no match, writing hexdump (22574ea35f7af1748b4239f2629cd802 :2259254) - MS17010 (EternalBlue)

2019-07-27 01:18:34

相同子网IP讨论:

IP	类型	评论内容	时间
113.160.196.89	attackbots	20/10/5@16:40:23: FAIL: Alarm-Network address from=113.160.196.89 20/10/5@16:40:23: FAIL: Alarm-Network address from=113.160.196.89 ...	2020-10-07 07:49:33
113.160.196.89	attackbotsspam	20/10/5@16:40:23: FAIL: Alarm-Network address from=113.160.196.89 20/10/5@16:40:23: FAIL: Alarm-Network address from=113.160.196.89 ...	2020-10-07 00:20:20
113.160.196.89	attackbotsspam	20/10/5@16:40:23: FAIL: Alarm-Network address from=113.160.196.89 20/10/5@16:40:23: FAIL: Alarm-Network address from=113.160.196.89 ...	2020-10-06 16:09:51
113.160.196.201	attackspam	Port scan: Attack repeated for 24 hours	2020-03-24 12:24:46
113.160.196.91	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-02-26 02:58:27
113.160.196.91	attackbotsspam	Unauthorized connection attempt detected from IP address 113.160.196.91 to port 445	2019-12-24 16:44:42
113.160.196.118	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 23-09-2019 04:55:21.	2019-09-23 14:52:02
113.160.196.28	attack	Unauthorised access (Jul 8) SRC=113.160.196.28 LEN=52 TTL=116 ID=30627 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-08 21:57:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.160.196.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52844
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.160.196.134.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 27 01:18:11 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

134.196.160.113.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
134.196.160.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
79.127.126.198	attack	loopsrockreggae.com 79.127.126.198 [21/Dec/2019:07:26:07 +0100] "POST /wp-login.php HTTP/1.1" 200 6279 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" loopsrockreggae.com 79.127.126.198 [21/Dec/2019:07:26:08 +0100] "POST /xmlrpc.php HTTP/1.1" 200 4071 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-21 18:45:16
164.132.57.16	attackbots	k+ssh-bruteforce	2019-12-21 18:40:52
49.89.252.164	attackspam	/inc/md5.asp	2019-12-21 18:44:24
51.83.98.52	attackbots	Fail2Ban - SSH Bruteforce Attempt	2019-12-21 18:51:21
140.246.124.36	attackspam	Dec 21 08:59:24 localhost sshd\[31108\]: Invalid user guest from 140.246.124.36 Dec 21 08:59:24 localhost sshd\[31108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.124.36 Dec 21 08:59:27 localhost sshd\[31108\]: Failed password for invalid user guest from 140.246.124.36 port 44930 ssh2 Dec 21 09:06:55 localhost sshd\[31594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.124.36 user=root Dec 21 09:06:57 localhost sshd\[31594\]: Failed password for root from 140.246.124.36 port 41116 ssh2 ...	2019-12-21 18:24:36
51.68.64.220	attack	Invalid user roobik from 51.68.64.220 port 57200	2019-12-21 18:32:21
129.144.60.201	attackbotsspam	detected by Fail2Ban	2019-12-21 18:23:41
218.18.101.84	attack	Dec 21 09:11:31 server sshd\[24184\]: Invalid user koppes from 218.18.101.84 Dec 21 09:11:31 server sshd\[24184\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.18.101.84 Dec 21 09:11:32 server sshd\[24184\]: Failed password for invalid user koppes from 218.18.101.84 port 40268 ssh2 Dec 21 09:26:18 server sshd\[28096\]: Invalid user donne from 218.18.101.84 Dec 21 09:26:18 server sshd\[28096\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.18.101.84 ...	2019-12-21 18:33:53
103.97.124.200	attackbotsspam	Dec 21 00:17:30 sachi sshd\[14128\]: Invalid user rx from 103.97.124.200 Dec 21 00:17:30 sachi sshd\[14128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.97.124.200 Dec 21 00:17:32 sachi sshd\[14128\]: Failed password for invalid user rx from 103.97.124.200 port 34058 ssh2 Dec 21 00:25:15 sachi sshd\[14815\]: Invalid user ed from 103.97.124.200 Dec 21 00:25:15 sachi sshd\[14815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.97.124.200	2019-12-21 18:40:28
185.156.73.64	attackspam	12/21/2019-01:26:13.725619 185.156.73.64 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-21 18:39:23
54.37.204.154	attackspam	Dec 21 08:39:37 markkoudstaal sshd[2620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154 Dec 21 08:39:38 markkoudstaal sshd[2620]: Failed password for invalid user quezada from 54.37.204.154 port 57396 ssh2 Dec 21 08:44:30 markkoudstaal sshd[3198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154	2019-12-21 18:49:30
91.121.115.148	attackspam	$f2bV_matches	2019-12-21 18:17:45
159.65.176.156	attackspambots	Brute-force attempt banned	2019-12-21 18:30:08
195.154.169.244	attackbotsspam	Fail2Ban - SSH Bruteforce Attempt	2019-12-21 18:46:04
112.215.113.10	attack	2019-12-21T09:37:28.711016shield sshd\[19480\]: Invalid user server from 112.215.113.10 port 34602 2019-12-21T09:37:28.715501shield sshd\[19480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10 2019-12-21T09:37:30.891161shield sshd\[19480\]: Failed password for invalid user server from 112.215.113.10 port 34602 ssh2 2019-12-21T09:44:49.187916shield sshd\[22538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.113.10 user=root 2019-12-21T09:44:51.238135shield sshd\[22538\]: Failed password for root from 112.215.113.10 port 58669 ssh2	2019-12-21 18:14:03

最近上报的IP列表

49.206.9.111	99.83.31.232	91.202.92.12	39.229.104.130
1.47.142.190	59.106.254.198	106.200.246.106	205.232.230.198
200.179.245.219	82.134.251.195	139.5.131.87	86.123.17.30
12.184.249.195	189.225.60.66	101.128.68.185	186.249.196.107
175.193.91.171	122.241.84.205	113.2.118.148	223.83.52.131