113.161.196.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sat, 20 Jul 2019 21:54:30 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 13:07:28

相同子网IP讨论:

IP	类型	评论内容	时间
113.161.196.222	attackspam	20/8/2@23:49:20: FAIL: Alarm-Network address from=113.161.196.222 ...	2020-08-03 19:10:22
113.161.196.113	attackspambots	12/13/2019-08:45:35.096678 113.161.196.113 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-13 19:05:28
113.161.196.166	attack	445/tcp [2019-07-30]1pkt	2019-07-31 06:36:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.161.196.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60537
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.161.196.104.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 21 13:07:14 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

104.196.161.113.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
104.196.161.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.148.146.5	attackbotsspam	[munged]::80 123.148.146.5 - - [15/Aug/2019:01:31:28 +0200] "POST /[munged]: HTTP/1.1" 301 505 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" [munged]::80 123.148.146.5 - - [15/Aug/2019:01:31:30 +0200] "POST /[munged]: HTTP/1.1" 301 505 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" [munged]::80 123.148.146.5 - - [15/Aug/2019:01:31:34 +0200] "POST /[munged]: HTTP/1.1" 301 505 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" [munged]::80 123.148.146.5 - - [15/Aug/2019:01:31:37 +0200] "POST /[munged]: HTTP/1.1" 301 505 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" [munged]::80 123.148.146.5 - - [15/Aug/2019:01:31:42 +0200] "POST /[munged]: HTTP/1.1" 301 505 "-" "Mozilla/	2019-08-15 09:10:23
96.248.39.106	attack	Aug 14 20:59:28 plusreed sshd[814]: Invalid user beta from 96.248.39.106 ...	2019-08-15 09:03:20
162.247.74.74	attackspam	Aug 15 02:29:41 vpn01 sshd\[9375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.74 user=root Aug 15 02:29:42 vpn01 sshd\[9375\]: Failed password for root from 162.247.74.74 port 42912 ssh2 Aug 15 02:37:07 vpn01 sshd\[9465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.74 user=root	2019-08-15 09:27:20
222.186.15.110	attack	2019-08-15T00:59:16.507131abusebot-8.cloudsearch.cf sshd\[11856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.110 user=root	2019-08-15 09:09:22
41.39.47.132	attackspam	2019-08-14T20:35:22.371257mizuno.rwx.ovh sshd[18586]: Connection from 41.39.47.132 port 59342 on 78.46.61.178 port 22 2019-08-14T20:35:23.866089mizuno.rwx.ovh sshd[18586]: Invalid user admin from 41.39.47.132 port 59342 2019-08-14T20:35:23.874174mizuno.rwx.ovh sshd[18586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.39.47.132 2019-08-14T20:35:22.371257mizuno.rwx.ovh sshd[18586]: Connection from 41.39.47.132 port 59342 on 78.46.61.178 port 22 2019-08-14T20:35:23.866089mizuno.rwx.ovh sshd[18586]: Invalid user admin from 41.39.47.132 port 59342 2019-08-14T20:35:26.170143mizuno.rwx.ovh sshd[18586]: Failed password for invalid user admin from 41.39.47.132 port 59342 ssh2 ...	2019-08-15 09:01:03
78.130.243.128	attackspam	Aug 15 01:47:12 mail sshd\[14708\]: Invalid user ryan from 78.130.243.128 port 57176 Aug 15 01:47:12 mail sshd\[14708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.130.243.128 ...	2019-08-15 08:54:54
45.14.38.4	attackspambots	Aug 15 00:54:09 www_kotimaassa_fi sshd[26259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 Aug 15 00:54:10 www_kotimaassa_fi sshd[26259]: Failed password for invalid user infoadm from 45.14.38.4 port 34686 ssh2 ...	2019-08-15 09:07:47
59.126.182.197	attack	port scan and connect, tcp 23 (telnet)	2019-08-15 09:00:29
103.129.47.30	attack	Aug 14 19:56:03 aat-srv002 sshd[30202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.47.30 Aug 14 19:56:05 aat-srv002 sshd[30202]: Failed password for invalid user kathi from 103.129.47.30 port 51526 ssh2 Aug 14 20:01:57 aat-srv002 sshd[30409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.47.30 Aug 14 20:01:59 aat-srv002 sshd[30409]: Failed password for invalid user test from 103.129.47.30 port 52970 ssh2 ...	2019-08-15 09:12:29
180.182.47.132	attackspambots	Aug 15 06:18:12 areeb-Workstation sshd\[32131\]: Invalid user asa from 180.182.47.132 Aug 15 06:18:12 areeb-Workstation sshd\[32131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.182.47.132 Aug 15 06:18:14 areeb-Workstation sshd\[32131\]: Failed password for invalid user asa from 180.182.47.132 port 47832 ssh2 ...	2019-08-15 08:56:29
61.239.33.228	attackbots	2019-08-15T01:23:24.417573abusebot-6.cloudsearch.cf sshd\[26718\]: Invalid user gitlab from 61.239.33.228 port 35166	2019-08-15 09:27:57
186.149.30.62	attack	Aug 15 01:35:46 localhost sshd\[21373\]: Invalid user pi from 186.149.30.62 port 50642 Aug 15 01:35:46 localhost sshd\[21375\]: Invalid user pi from 186.149.30.62 port 50650 Aug 15 01:35:46 localhost sshd\[21373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.149.30.62	2019-08-15 08:50:01
81.22.45.252	attack	Aug 15 02:06:01 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=27811 PROTO=TCP SPT=44112 DPT=50122 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-15 09:26:27
222.186.42.94	attackbotsspam	detected by Fail2Ban	2019-08-15 09:20:17
191.53.221.147	attack	Brute force attempt	2019-08-15 08:49:31

最近上报的IP列表

177.43.15.224	79.129.40.177	41.140.220.174	1.52.65.180
222.124.127.144	197.200.100.93	186.88.54.83	91.140.89.33
27.72.153.117	190.201.230.116	177.139.179.190	94.69.228.149
79.130.43.211	61.94.38.30	163.53.196.114	123.28.0.20
115.84.105.92	36.91.194.193	5.133.24.165	194.125.224.17