113.161.94.103

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	1589373246 - 05/13/2020 14:34:06 Host: 113.161.94.103/113.161.94.103 Port: 445 TCP Blocked	2020-05-14 02:06:15

相同子网IP讨论:

IP	类型	评论内容	时间
113.161.94.124	attackspam	SSH invalid-user multiple login try	2020-08-20 12:27:26
113.161.94.6	attackbotsspam	113.161.94.6 - - [06/Jul/2020:14:55:08 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 113.161.94.6 - - [06/Jul/2020:14:55:15 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 113.161.94.6 - - [06/Jul/2020:14:55:23 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 113.161.94.6 - - [06/Jul/2020:14:55:26 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 113.161.94.6 - - [06/Jul/2020:14:55:39 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 113.1 ...	2020-07-06 22:43:50
113.161.94.77	attackspam	Dovecot Invalid User Login Attempt.	2020-04-13 20:19:53
113.161.94.6	attackbots	failed_logins	2020-02-09 22:40:25
113.161.94.6	attackspambots	Jan 3 05:43:36 vpn01 sshd[23929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.94.6 Jan 3 05:43:39 vpn01 sshd[23929]: Failed password for invalid user admin from 113.161.94.6 port 60723 ssh2 ...	2020-01-03 20:40:28
113.161.94.6	attackbotsspam	113.161.94.6 - - [29/Dec/2019:18:02:34 -0500] "GET /cart/checkout.cfm?page=/etc/passwd&manufacturerID=135&collectionID=268610 HTTP/1.1" 200 16585 "https://bradleysupply.com/cart/checkout.cfm?page=/etc/passwd&manufacturerID=135&collectionID=268610" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-12-30 08:39:00
113.161.94.73	attack	Unauthorized connection attempt detected from IP address 113.161.94.73 to port 445	2019-12-27 05:50:33
113.161.94.6	attack	Sep 29 22:48:00 [munged] sshd[10703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.94.6	2019-09-30 08:51:36
113.161.94.70	attackspambots	Sep 29 06:56:26 taivassalofi sshd[11821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.94.70 Sep 29 06:56:28 taivassalofi sshd[11821]: Failed password for invalid user praveen from 113.161.94.70 port 53180 ssh2 ...	2019-09-29 12:24:01
113.161.94.70	attackbots	Sep 20 16:36:37 plusreed sshd[17861]: Invalid user student from 113.161.94.70 ...	2019-09-21 08:26:17
113.161.94.70	attackspam	Jul 26 00:56:20 mail sshd\[2388\]: Failed password for invalid user oracle from 113.161.94.70 port 44172 ssh2 Jul 26 01:40:15 mail sshd\[3822\]: Invalid user 8 from 113.161.94.70 port 36186 ...	2019-07-26 08:46:27
113.161.94.70	attack	Jul 25 20:18:44 mail sshd\[26415\]: Failed password for invalid user ttf from 113.161.94.70 port 53762 ssh2 Jul 25 20:59:51 mail sshd\[27639\]: Invalid user vbox from 113.161.94.70 port 45760 Jul 25 20:59:51 mail sshd\[27639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.94.70 ...	2019-07-26 04:30:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.161.94.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26743
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.161.94.103.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051301 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 02:06:07 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

103.94.161.113.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.94.161.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
195.54.160.183	attackbots	Sep 25 22:55:17 santamaria sshd\[21764\]: Invalid user alain from 195.54.160.183 Sep 25 22:55:17 santamaria sshd\[21764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.183 Sep 25 22:55:19 santamaria sshd\[21764\]: Failed password for invalid user alain from 195.54.160.183 port 42084 ssh2 ...	2020-09-26 04:57:42
104.131.48.26	attack	Sep 25 23:00:01 journals sshd\[39491\]: Invalid user phion from 104.131.48.26 Sep 25 23:00:01 journals sshd\[39491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 Sep 25 23:00:03 journals sshd\[39491\]: Failed password for invalid user phion from 104.131.48.26 port 39942 ssh2 Sep 25 23:05:51 journals sshd\[40106\]: Invalid user freeswitch from 104.131.48.26 Sep 25 23:05:51 journals sshd\[40106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 ...	2020-09-26 05:02:13
109.196.155.203	attackspam	23/tcp [2020-09-24]1pkt	2020-09-26 05:02:00
125.118.95.158	attackspambots	$f2bV_matches	2020-09-26 05:26:20
145.249.106.130	attack	Brute force blocker - service: exim2 - aantal: 25 - Wed Sep 5 22:00:12 2018	2020-09-26 05:03:12
61.133.232.254	attack	2020-09-25T21:48:42.588795ns386461 sshd\[5467\]: Invalid user phoenix from 61.133.232.254 port 20272 2020-09-25T21:48:42.595031ns386461 sshd\[5467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.254 2020-09-25T21:48:44.510535ns386461 sshd\[5467\]: Failed password for invalid user phoenix from 61.133.232.254 port 20272 ssh2 2020-09-25T22:05:43.203139ns386461 sshd\[21119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.254 user=root 2020-09-25T22:05:44.953865ns386461 sshd\[21119\]: Failed password for root from 61.133.232.254 port 40400 ssh2 ...	2020-09-26 05:14:46
222.186.175.163	attackspambots	Sep 25 22:50:01 nextcloud sshd\[30843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Sep 25 22:50:03 nextcloud sshd\[30843\]: Failed password for root from 222.186.175.163 port 56486 ssh2 Sep 25 22:50:15 nextcloud sshd\[30843\]: Failed password for root from 222.186.175.163 port 56486 ssh2	2020-09-26 05:00:19
152.136.165.226	attackbots	Sep 25 22:01:58 mail sshd[30336]: Failed password for root from 152.136.165.226 port 47220 ssh2	2020-09-26 04:57:59
157.230.220.179	attackbots	Sep 25 19:13:17 serwer sshd\[21464\]: Invalid user teamspeak from 157.230.220.179 port 53758 Sep 25 19:13:17 serwer sshd\[21464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.220.179 Sep 25 19:13:18 serwer sshd\[21464\]: Failed password for invalid user teamspeak from 157.230.220.179 port 53758 ssh2 ...	2020-09-26 04:59:35
206.210.123.98	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 206.210.123.98 (CA/Canada/wan.foresite1.iasl.com): 5 in the last 3600 secs - Wed Sep 5 10:01:28 2018	2020-09-26 05:19:50
49.88.112.118	attack	Sep 25 17:52:25 firewall sshd[21928]: Failed password for root from 49.88.112.118 port 48864 ssh2 Sep 25 17:52:27 firewall sshd[21928]: Failed password for root from 49.88.112.118 port 48864 ssh2 Sep 25 17:52:29 firewall sshd[21928]: Failed password for root from 49.88.112.118 port 48864 ssh2 ...	2020-09-26 05:01:32
52.163.209.253	attack	Sep 25 21:54:57 sigma sshd\[29607\]: Invalid user 157 from 52.163.209.253Sep 25 21:54:59 sigma sshd\[29607\]: Failed password for invalid user 157 from 52.163.209.253 port 63540 ssh2 ...	2020-09-26 05:06:02
141.98.9.163	attackbots	Failed password for invalid user from 141.98.9.163 port 39917 ssh2	2020-09-26 05:08:30
222.186.173.201	attackspam	Sep 25 22:31:00 nextcloud sshd\[11708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Sep 25 22:31:02 nextcloud sshd\[11708\]: Failed password for root from 222.186.173.201 port 13584 ssh2 Sep 25 22:31:37 nextcloud sshd\[12275\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root	2020-09-26 04:57:15
158.46.241.98	attackbotsspam	445/tcp [2020-09-24]1pkt	2020-09-26 04:58:15

最近上报的IP列表

89.117.93.169	218.52.228.218	116.111.12.236	126.243.137.114
217.197.40.220	217.197.39.212	217.112.142.252	213.92.204.124
191.53.249.110	191.53.223.20	191.53.194.74	187.121.221.236
186.216.67.128	185.41.28.118	108.162.210.188	177.129.206.164
177.22.116.147	176.97.48.153	93.83.195.30	170.246.205.136