113.160.200.252

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 113.160.200.252 on Port 445(SMB)	2019-06-25 20:43:13

相同子网IP讨论:

IP	类型	评论内容	时间
113.160.200.20	attackspambots	Unauthorized connection attempt from IP address 113.160.200.20 on Port 445(SMB)	2020-07-08 12:52:56
113.160.200.72	attack	Unauthorized connection attempt from IP address 113.160.200.72 on Port 445(SMB)	2019-11-29 04:06:34
113.160.200.212	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-10-2019 04:50:16.	2019-10-19 16:58:55
113.160.200.153	attackbotsspam	Unauthorized connection attempt from IP address 113.160.200.153 on Port 445(SMB)	2019-08-01 00:15:22
113.160.200.14	attackspambots	Sat, 20 Jul 2019 21:56:06 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 08:51:16
113.160.200.191	attackbots	Unauthorized connection attempt from IP address 113.160.200.191 on Port 445(SMB)	2019-06-28 20:20:17
113.160.200.191	attackspam	Unauthorized connection attempt from IP address 113.160.200.191 on Port 445(SMB)	2019-06-27 00:03:34

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.160.200.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64304
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.160.200.252.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040600 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 16:31:33 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

252.200.160.113.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
252.200.160.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
175.204.91.168	attackbotsspam	Dec 3 21:23:03 hpm sshd\[3964\]: Invalid user rolande from 175.204.91.168 Dec 3 21:23:03 hpm sshd\[3964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168 Dec 3 21:23:05 hpm sshd\[3964\]: Failed password for invalid user rolande from 175.204.91.168 port 40586 ssh2 Dec 3 21:29:21 hpm sshd\[4535\]: Invalid user oskar from 175.204.91.168 Dec 3 21:29:21 hpm sshd\[4535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168	2019-12-04 15:37:51
192.99.12.24	attackspambots	Dec 4 07:29:59 lnxweb62 sshd[5033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.12.24	2019-12-04 15:13:43
49.234.20.181	attack	Dec 4 07:30:04 srv206 sshd[14690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.20.181 user=root Dec 4 07:30:06 srv206 sshd[14690]: Failed password for root from 49.234.20.181 port 49424 ssh2 ...	2019-12-04 15:07:47
216.243.58.154	attackspam	Dec 4 07:29:46 minden010 sshd[20670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.243.58.154 Dec 4 07:29:47 minden010 sshd[20672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.243.58.154 Dec 4 07:29:48 minden010 sshd[20672]: Failed password for invalid user pi from 216.243.58.154 port 54094 ssh2 ...	2019-12-04 15:24:58
54.39.44.47	attackbots	Dec 3 20:24:43 php1 sshd\[24516\]: Invalid user supriya from 54.39.44.47 Dec 3 20:24:43 php1 sshd\[24516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.44.47 Dec 3 20:24:46 php1 sshd\[24516\]: Failed password for invalid user supriya from 54.39.44.47 port 43076 ssh2 Dec 3 20:30:14 php1 sshd\[25025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.44.47 user=backup Dec 3 20:30:16 php1 sshd\[25025\]: Failed password for backup from 54.39.44.47 port 53954 ssh2	2019-12-04 15:06:46
209.97.161.46	attackbots	Dec 4 07:22:03 sip sshd[12889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.161.46 Dec 4 07:22:05 sip sshd[12889]: Failed password for invalid user admin from 209.97.161.46 port 42214 ssh2 Dec 4 07:29:56 sip sshd[12937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.161.46	2019-12-04 15:17:43
36.66.69.33	attackbots	Dec 4 07:50:14 h2177944 sshd\[25582\]: Invalid user monnet from 36.66.69.33 port 4419 Dec 4 07:50:14 h2177944 sshd\[25582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.69.33 Dec 4 07:50:16 h2177944 sshd\[25582\]: Failed password for invalid user monnet from 36.66.69.33 port 4419 ssh2 Dec 4 07:57:25 h2177944 sshd\[25804\]: Invalid user asterisk from 36.66.69.33 port 46527 Dec 4 07:57:25 h2177944 sshd\[25804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.66.69.33 ...	2019-12-04 15:09:34
41.207.184.182	attackbots	Dec 4 07:22:32 xeon sshd[8369]: Failed password for invalid user aghili from 41.207.184.182 port 37728 ssh2	2019-12-04 15:09:05
120.50.111.44	attack	DATE:2019-12-04 07:29:48, IP:120.50.111.44, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-12-04 15:25:53
45.227.253.146	attack	16 attempts against mh-mag-login-ban on web.noxion.com	2019-12-04 15:08:38
95.141.142.46	attack	12/04/2019-01:29:30.275878 95.141.142.46 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-04 15:43:49
72.143.15.82	attackbots	Dec 3 21:05:35 php1 sshd\[7213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.143.15.82 user=root Dec 3 21:05:37 php1 sshd\[7213\]: Failed password for root from 72.143.15.82 port 65104 ssh2 Dec 3 21:12:43 php1 sshd\[8262\]: Invalid user server from 72.143.15.82 Dec 3 21:12:43 php1 sshd\[8262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.143.15.82 Dec 3 21:12:45 php1 sshd\[8262\]: Failed password for invalid user server from 72.143.15.82 port 61143 ssh2	2019-12-04 15:15:37
218.92.0.184	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root Failed password for root from 218.92.0.184 port 23993 ssh2 Failed password for root from 218.92.0.184 port 23993 ssh2 Failed password for root from 218.92.0.184 port 23993 ssh2 Failed password for root from 218.92.0.184 port 23993 ssh2	2019-12-04 15:35:24
111.225.223.45	attack	Dec 4 08:05:17 sd-53420 sshd\[5308\]: Invalid user elexis from 111.225.223.45 Dec 4 08:05:17 sd-53420 sshd\[5308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.225.223.45 Dec 4 08:05:19 sd-53420 sshd\[5308\]: Failed password for invalid user elexis from 111.225.223.45 port 40342 ssh2 Dec 4 08:12:02 sd-53420 sshd\[6561\]: Invalid user 123456789 from 111.225.223.45 Dec 4 08:12:02 sd-53420 sshd\[6561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.225.223.45 ...	2019-12-04 15:38:05
198.27.74.64	attack	198.27.74.64 - - [04/Dec/2019:07:29:58 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.27.74.64 - - [04/Dec/2019:07:29:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2294 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.27.74.64 - - [04/Dec/2019:07:29:58 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.27.74.64 - - [04/Dec/2019:07:29:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2268 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.27.74.64 - - [04/Dec/2019:07:29:59 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.27.74.64 - - [04/Dec/2019:07:30:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2269 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-04 15:12:03

最近上报的IP列表

37.115.14.59	185.220.221.201	1.57.119.173	14.237.233.247
185.200.118.71	178.62.252.89	103.232.123.91	103.99.3.181
81.218.199.121	58.49.13.254	74.194.5.162	185.86.164.103
149.34.20.6	190.151.94.2	113.141.70.46	50.207.57.246
139.199.203.114	128.56.1.7	149.202.214.11	151.236.62.211