113.160.201.250

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 113.160.201.250 on Port 445(SMB)	2020-08-14 19:56:30
attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-05-11 02:03:36

相同子网IP讨论:

IP	类型	评论内容	时间
113.160.201.151	attackbotsspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-07-15 18:58:38
113.160.201.200	attackbots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-03-06 06:45:53
113.160.201.171	attack	1578718521 - 01/11/2020 05:55:21 Host: 113.160.201.171/113.160.201.171 Port: 445 TCP Blocked	2020-01-11 15:28:07
113.160.201.219	attack	" "	2019-11-15 15:48:49

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.160.201.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14460
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.160.201.250.		IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051001 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 11 02:03:31 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

250.201.160.113.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
250.201.160.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.211.240.227	attackbotsspam	Honeypot attack, port: 445, PTR: fujikura.com.py.	2020-09-07 21:05:07
37.48.8.209	attack	2020-09-06 18:53:47 1kExvG-000843-9s SMTP connection from 37-48-8-209.nat.epc.tmcz.cz \[37.48.8.209\]:56478 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-09-06 18:54:02 1kExvQ-00084F-8N SMTP connection from 37-48-8-209.nat.epc.tmcz.cz \[37.48.8.209\]:59469 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-09-06 18:54:10 1kExvc-00084g-Cy SMTP connection from 37-48-8-209.nat.epc.tmcz.cz \[37.48.8.209\]:1264 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-09-07 21:20:54
14.142.50.177	attack	Port scan on 1 port(s): 445	2020-09-07 20:56:44
114.84.188.227	attackspambots	2020-09-07T05:09:05.2147351495-001 sshd[55763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.84.188.227 user=root 2020-09-07T05:09:06.7647041495-001 sshd[55763]: Failed password for root from 114.84.188.227 port 15287 ssh2 2020-09-07T05:13:20.0551881495-001 sshd[56090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.84.188.227 user=root 2020-09-07T05:13:22.6136681495-001 sshd[56090]: Failed password for root from 114.84.188.227 port 43370 ssh2 2020-09-07T05:17:32.8247161495-001 sshd[56446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.84.188.227 user=root 2020-09-07T05:17:34.9760061495-001 sshd[56446]: Failed password for root from 114.84.188.227 port 15921 ssh2 ...	2020-09-07 20:53:07
112.85.42.74	attackbotsspam	Sep 7 06:09:20 dignus sshd[2447]: Failed password for root from 112.85.42.74 port 57156 ssh2 Sep 7 06:09:23 dignus sshd[2447]: Failed password for root from 112.85.42.74 port 57156 ssh2 Sep 7 06:09:25 dignus sshd[2447]: Failed password for root from 112.85.42.74 port 57156 ssh2 Sep 7 06:11:29 dignus sshd[2690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.74 user=root Sep 7 06:11:31 dignus sshd[2690]: Failed password for root from 112.85.42.74 port 20044 ssh2 ...	2020-09-07 21:18:26
37.139.20.6	attackspambots	Sep 7 13:56:14 eventyay sshd[23690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.20.6 Sep 7 13:56:16 eventyay sshd[23690]: Failed password for invalid user photography from 37.139.20.6 port 42637 ssh2 Sep 7 14:05:07 eventyay sshd[23898]: Failed password for root from 37.139.20.6 port 45920 ssh2 ...	2020-09-07 21:16:25
124.236.22.12	attackbotsspam	SSH login attempts.	2020-09-07 20:39:57
212.70.149.52	attack	Sep 7 15:04:42 v22019058497090703 postfix/smtpd[30074]: warning: unknown[212.70.149.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 15:05:08 v22019058497090703 postfix/smtpd[30074]: warning: unknown[212.70.149.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 15:05:35 v22019058497090703 postfix/smtpd[30074]: warning: unknown[212.70.149.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-07 21:12:04
191.233.194.161	attack	Sep 7 05:29:21 cho postfix/smtps/smtpd[2396409]: warning: unknown[191.233.194.161]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 05:31:50 cho postfix/smtps/smtpd[2396237]: warning: unknown[191.233.194.161]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 05:34:19 cho postfix/smtps/smtpd[2396237]: warning: unknown[191.233.194.161]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 05:36:49 cho postfix/smtps/smtpd[2396862]: warning: unknown[191.233.194.161]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 05:39:19 cho postfix/smtps/smtpd[2396862]: warning: unknown[191.233.194.161]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-07 21:19:40
143.202.179.12	attackspambots	Automatic report - Port Scan Attack	2020-09-07 21:13:49
187.60.146.18	attack	Icarus honeypot on github	2020-09-07 20:50:06
139.198.122.19	attackspam	Sep 7 12:53:57 jumpserver sshd[42643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.122.19 user=root Sep 7 12:53:59 jumpserver sshd[42643]: Failed password for root from 139.198.122.19 port 48362 ssh2 Sep 7 12:58:44 jumpserver sshd[42674]: Invalid user server from 139.198.122.19 port 48526 ...	2020-09-07 20:59:03
211.159.218.251	attackbotsspam	2020-09-07T14:18:44.948573hostname sshd[10228]: Failed password for invalid user deploy from 211.159.218.251 port 49904 ssh2 2020-09-07T14:22:59.724160hostname sshd[10576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.218.251 user=root 2020-09-07T14:23:01.671972hostname sshd[10576]: Failed password for root from 211.159.218.251 port 41466 ssh2 ...	2020-09-07 20:40:23
218.245.1.169	attack	(sshd) Failed SSH login from 218.245.1.169 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 7 08:33:37 amsweb01 sshd[6756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.245.1.169 user=root Sep 7 08:33:39 amsweb01 sshd[6756]: Failed password for root from 218.245.1.169 port 57818 ssh2 Sep 7 08:38:45 amsweb01 sshd[7474]: Invalid user helper from 218.245.1.169 port 49957 Sep 7 08:38:48 amsweb01 sshd[7474]: Failed password for invalid user helper from 218.245.1.169 port 49957 ssh2 Sep 7 08:41:59 amsweb01 sshd[8273]: Invalid user dbadmin from 218.245.1.169 port 52871	2020-09-07 21:11:33
193.169.253.173	attack	SSH login attempts.	2020-09-07 20:54:48

最近上报的IP列表

83.26.86.146	117.102.83.84	27.79.166.134	194.17.5.165
201.123.121.65	79.181.28.106	134.19.176.21	39.9.199.58
105.96.37.19	172.101.170.241	14.171.146.202	70.89.90.10
183.83.70.215	169.255.77.59	27.75.99.92	189.241.160.241
183.88.243.115	218.250.206.143	192.236.179.149	171.240.187.15