113.20.100.101

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): CMC Telecom Infrastructure Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 445, PTR: static.cmcti.vn.	2020-02-26 07:45:47

相同子网IP讨论:

IP	类型	评论内容	时间
113.20.100.186	attack	1592827467 - 06/22/2020 14:04:27 Host: 113.20.100.186/113.20.100.186 Port: 445 TCP Blocked	2020-06-23 00:07:12
113.20.100.155	attackspam	Automatic report - Port Scan	2020-04-22 15:30:57
113.20.100.73	attack	1586663256 - 04/12/2020 05:47:36 Host: 113.20.100.73/113.20.100.73 Port: 445 TCP Blocked	2020-04-12 19:48:54
113.20.100.121	attackbots	20/4/9@09:01:49: FAIL: Alarm-Network address from=113.20.100.121 ...	2020-04-10 00:03:16
113.20.100.20	attack	445/tcp [2020-04-01]1pkt	2020-04-01 22:16:37
113.20.100.235	attackspambots	Honeypot attack, port: 445, PTR: static.cmcti.vn.	2020-03-01 15:13:32
113.20.100.174	attackspam	Unauthorized connection attempt from IP address 113.20.100.174 on Port 445(SMB)	2020-02-03 20:29:23
113.20.100.173	attack	Unauthorized connection attempt from IP address 113.20.100.173 on Port 445(SMB)	2019-12-30 23:40:18
113.20.100.3	attackspam	Sun, 21 Jul 2019 18:29:07 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 02:55:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.20.100.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1378
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.20.100.101.			IN	A

;; AUTHORITY SECTION:
.			275	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022501 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 07:45:44 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

101.100.20.113.in-addr.arpa domain name pointer static.cmcti.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
101.100.20.113.in-addr.arpa	name = static.cmcti.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
168.243.232.149	attack	Jul 6 13:33:41 srv-4 sshd\[32684\]: Invalid user tesa from 168.243.232.149 Jul 6 13:33:41 srv-4 sshd\[32684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.243.232.149 Jul 6 13:33:43 srv-4 sshd\[32684\]: Failed password for invalid user tesa from 168.243.232.149 port 54985 ssh2 ...	2019-07-06 19:12:43
116.72.48.49	attackbotsspam	Telnet Server BruteForce Attack	2019-07-06 19:03:07
51.75.65.72	attackbots	Jul 6 05:10:34 plusreed sshd[9651]: Invalid user default from 51.75.65.72 ...	2019-07-06 18:54:01
222.248.233.220	attackspambots	Jul 6 07:11:28 ubuntu-2gb-nbg1-dc3-1 sshd[4555]: Failed password for root from 222.248.233.220 port 14005 ssh2 Jul 6 07:11:32 ubuntu-2gb-nbg1-dc3-1 sshd[4555]: error: maximum authentication attempts exceeded for root from 222.248.233.220 port 14005 ssh2 [preauth] ...	2019-07-06 18:30:14
107.170.238.143	attackspam	Port Scan detected from 107.170.238.143 (US/United States/zg-0301d-42.stretchoid.com). 4 hits in the last 161 seconds	2019-07-06 18:36:53
187.28.50.230	attackspam	2019-07-06T08:12:32.639781cavecanem sshd[21937]: Invalid user mcadmin from 187.28.50.230 port 36891 2019-07-06T08:12:32.642337cavecanem sshd[21937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.28.50.230 2019-07-06T08:12:32.639781cavecanem sshd[21937]: Invalid user mcadmin from 187.28.50.230 port 36891 2019-07-06T08:12:34.972222cavecanem sshd[21937]: Failed password for invalid user mcadmin from 187.28.50.230 port 36891 ssh2 2019-07-06T08:15:57.670167cavecanem sshd[22853]: Invalid user mailsite from 187.28.50.230 port 50115 2019-07-06T08:15:57.672652cavecanem sshd[22853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.28.50.230 2019-07-06T08:15:57.670167cavecanem sshd[22853]: Invalid user mailsite from 187.28.50.230 port 50115 2019-07-06T08:15:59.476004cavecanem sshd[22853]: Failed password for invalid user mailsite from 187.28.50.230 port 50115 ssh2 2019-07-06T08:19:15.569104cavecanem sshd[2371 ...	2019-07-06 19:04:33
185.176.27.174	attackbotsspam	Multiport scan : 13 ports scanned 2908 2909 2910 4489 22768 22769 22770 33889 33890 33899 54505 54506 54507	2019-07-06 18:56:37
51.39.129.232	attackbots	2019-07-03 16:48:22 H=([51.39.129.232]) [51.39.129.232]:54262 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=51.39.129.232) 2019-07-03 16:48:22 unexpected disconnection while reading SMTP command from ([51.39.129.232]) [51.39.129.232]:54262 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-07-03 18:15:24 H=([51.39.129.232]) [51.39.129.232]:37934 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=51.39.129.232) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.39.129.232	2019-07-06 19:10:46
92.119.160.125	attackspambots	06.07.2019 10:47:52 Connection to port 3312 blocked by firewall	2019-07-06 18:49:30
77.75.78.162	attack	Automatic report - Web App Attack	2019-07-06 18:31:21
112.80.33.146	attack	2019-07-06T13:37:55.401639luisaranguren sshd[15750]: Connection from 112.80.33.146 port 13178 on 10.10.10.6 port 22 2019-07-06T13:37:59.772607luisaranguren sshd[15750]: error: PAM: Authentication failure for root from 112.80.33.146 2019-07-06T13:37:59.773008luisaranguren sshd[15750]: Failed keyboard-interactive/pam for root from 112.80.33.146 port 13178 ssh2 2019-07-06T13:37:55.401639luisaranguren sshd[15750]: Connection from 112.80.33.146 port 13178 on 10.10.10.6 port 22 2019-07-06T13:37:59.772607luisaranguren sshd[15750]: error: PAM: Authentication failure for root from 112.80.33.146 2019-07-06T13:37:59.773008luisaranguren sshd[15750]: Failed keyboard-interactive/pam for root from 112.80.33.146 port 13178 ssh2 ...	2019-07-06 19:16:38
141.98.80.67	attackbots	Jul 6 17:44:02 bacztwo courieresmtpd[9355]: error,relay=::ffff:141.98.80.67,msg="535 Authentication failed.",cmd: AUTH LOGIN rollier@rollier.ch Jul 6 17:44:04 bacztwo courieresmtpd[10592]: error,relay=::ffff:141.98.80.67,msg="535 Authentication failed.",cmd: AUTH LOGIN jalvarad@aboitiz.com.ph Jul 6 17:44:26 bacztwo courieresmtpd[12171]: error,relay=::ffff:141.98.80.67,msg="535 Authentication failed.",cmd: AUTH LOGIN advantage@mybrokerage.com.au Jul 6 17:47:33 bacztwo courieresmtpd[29772]: error,relay=::ffff:141.98.80.67,msg="535 Authentication failed.",cmd: AUTH LOGIN pc@saxtead.suffolk.gov.uk Jul 6 17:48:02 bacztwo courieresmtpd[31487]: error,relay=::ffff:141.98.80.67,msg="535 Authentication failed.",cmd: AUTH LOGIN pc ...	2019-07-06 18:39:31
179.108.244.80	attackbots	failed_logins	2019-07-06 18:36:19
47.44.115.81	attack	Jul 6 07:22:06 giegler sshd[30203]: Invalid user jojo from 47.44.115.81 port 41706	2019-07-06 18:37:52
177.67.165.66	attackspambots	failed_logins	2019-07-06 18:31:59

最近上报的IP列表

171.233.176.178	61.147.51.117	51.178.78.154	107.173.219.172
14.188.29.131	181.189.136.10	221.117.24.209	103.76.253.155
210.248.35.6	187.83.99.247	10.43.40.89	116.123.55.8
240.127.41.226	14.253.178.46	5.236.20.92	213.247.23.144
189.159.57.76	223.18.155.108	182.52.241.180	190.72.177.48