113.20.101.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): CMC Telecom Infrastructure Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 445, PTR: static.cmcti.vn.	2020-04-05 01:11:11

相同子网IP讨论:

IP	类型	评论内容	时间
113.20.101.92	attackbots	Honeypot attack, port: 445, PTR: static.cmcti.vn.	2020-05-11 04:13:53
113.20.101.188	attackbots	20/4/23@23:55:39: FAIL: Alarm-Network address from=113.20.101.188 20/4/23@23:55:39: FAIL: Alarm-Network address from=113.20.101.188 ...	2020-04-24 13:57:48
113.20.101.39	attack	1584335379 - 03/16/2020 06:09:39 Host: 113.20.101.39/113.20.101.39 Port: 445 TCP Blocked	2020-03-16 21:00:43
113.20.101.149	attack	1578459403 - 01/08/2020 05:56:43 Host: 113.20.101.149/113.20.101.149 Port: 445 TCP Blocked	2020-01-08 13:19:28
113.20.101.225	attackspambots	Honeypot attack, port: 445, PTR: static.cmcti.vn.	2020-01-05 00:28:03
113.20.101.165	attackspam	Unauthorized connection attempt from IP address 113.20.101.165 on Port 445(SMB)	2019-11-26 04:39:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.20.101.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39681
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.20.101.4.			IN	A

;; AUTHORITY SECTION:
.			268	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040401 1800 900 604800 86400

;; Query time: 528 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 01:11:01 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

4.101.20.113.in-addr.arpa domain name pointer static.cmcti.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.101.20.113.in-addr.arpa	name = static.cmcti.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
92.222.78.178	attack	Feb 27 05:59:35 tdfoods sshd\[16534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.ip-92-222-78.eu user=root Feb 27 05:59:37 tdfoods sshd\[16534\]: Failed password for root from 92.222.78.178 port 52984 ssh2 Feb 27 06:05:04 tdfoods sshd\[16973\]: Invalid user ldapuser from 92.222.78.178 Feb 27 06:05:04 tdfoods sshd\[16973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.ip-92-222-78.eu Feb 27 06:05:05 tdfoods sshd\[16973\]: Failed password for invalid user ldapuser from 92.222.78.178 port 60896 ssh2	2020-02-28 00:11:36
212.50.2.211	attackbotsspam	Feb 24 18:58:09 cumulus sshd[2253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.50.2.211 user=daemon Feb 24 18:58:11 cumulus sshd[2253]: Failed password for daemon from 212.50.2.211 port 53872 ssh2 Feb 24 18:58:11 cumulus sshd[2253]: Received disconnect from 212.50.2.211 port 53872:11: Bye Bye [preauth] Feb 24 18:58:11 cumulus sshd[2253]: Disconnected from 212.50.2.211 port 53872 [preauth] Feb 24 19:03:25 cumulus sshd[2468]: Invalid user jianghh from 212.50.2.211 port 40504 Feb 24 19:03:25 cumulus sshd[2468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.50.2.211 Feb 24 19:03:27 cumulus sshd[2468]: Failed password for invalid user jianghh from 212.50.2.211 port 40504 ssh2 Feb 24 19:03:27 cumulus sshd[2468]: Received disconnect from 212.50.2.211 port 40504:11: Bye Bye [preauth] Feb 24 19:03:27 cumulus sshd[2468]: Disconnected from 212.50.2.211 port 40504 [preauth] ........ ------------------------------------------	2020-02-28 00:44:12
180.241.45.70	attack	1582813573 - 02/27/2020 15:26:13 Host: 180.241.45.70/180.241.45.70 Port: 445 TCP Blocked	2020-02-28 00:22:15
140.143.133.134	attackbots	Feb 27 16:49:47 Ubuntu-1404-trusty-64-minimal sshd\[15898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.133.134 user=root Feb 27 16:49:49 Ubuntu-1404-trusty-64-minimal sshd\[15898\]: Failed password for root from 140.143.133.134 port 36752 ssh2 Feb 27 16:51:07 Ubuntu-1404-trusty-64-minimal sshd\[19941\]: Invalid user media from 140.143.133.134 Feb 27 16:51:07 Ubuntu-1404-trusty-64-minimal sshd\[19941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.133.134 Feb 27 16:51:09 Ubuntu-1404-trusty-64-minimal sshd\[19941\]: Failed password for invalid user media from 140.143.133.134 port 45682 ssh2	2020-02-28 00:33:30
49.166.121.67	attackspam	Portscan or hack attempt detected by psad/fwsnort	2020-02-28 00:02:45
187.191.96.60	attackbotsspam	Feb 27 16:50:42 master sshd[32692]: Failed password for invalid user support from 187.191.96.60 port 49050 ssh2	2020-02-28 00:01:48
138.94.241.110	attackbotsspam	suspicious action Thu, 27 Feb 2020 11:26:10 -0300	2020-02-28 00:24:15
222.186.175.220	attackspam	Feb 27 06:07:52 hanapaa sshd\[16632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root Feb 27 06:07:54 hanapaa sshd\[16632\]: Failed password for root from 222.186.175.220 port 23288 ssh2 Feb 27 06:07:57 hanapaa sshd\[16632\]: Failed password for root from 222.186.175.220 port 23288 ssh2 Feb 27 06:08:00 hanapaa sshd\[16632\]: Failed password for root from 222.186.175.220 port 23288 ssh2 Feb 27 06:08:04 hanapaa sshd\[16632\]: Failed password for root from 222.186.175.220 port 23288 ssh2	2020-02-28 00:10:11
177.185.116.183	spambotsattackproxynormal	teste	2020-02-28 00:00:49
77.247.108.119	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 64 - port: 5038 proto: TCP cat: Misc Attack	2020-02-28 00:47:17
221.131.172.233	attackspambots	suspicious action Thu, 27 Feb 2020 11:25:58 -0300	2020-02-28 00:33:49
175.138.55.236	attackbotsspam	Automatic report - Port Scan Attack	2020-02-28 00:39:45
106.12.25.126	attackbots	Feb 27 16:34:15 vpn01 sshd[20666]: Failed password for root from 106.12.25.126 port 35500 ssh2 Feb 27 16:45:00 vpn01 sshd[20863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.25.126 ...	2020-02-28 00:42:58
117.2.100.124	attackspam	Automatic report - Banned IP Access	2020-02-28 00:22:44
222.186.15.166	attackspam	2020-02-27T16:14:24.487602shield sshd\[22178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.166 user=root 2020-02-27T16:14:26.151271shield sshd\[22178\]: Failed password for root from 222.186.15.166 port 38696 ssh2 2020-02-27T16:14:27.994954shield sshd\[22178\]: Failed password for root from 222.186.15.166 port 38696 ssh2 2020-02-27T16:14:30.453606shield sshd\[22178\]: Failed password for root from 222.186.15.166 port 38696 ssh2 2020-02-27T16:22:54.718887shield sshd\[23393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.166 user=root	2020-02-28 00:27:13

最近上报的IP列表

141.98.81.206	141.98.81.182	168.192.253.66	172.105.95.101
141.98.81.113	141.98.81.112	77.71.16.37	33.148.117.181
5.183.93.80	3.34.5.66	75.163.172.178	91.15.182.151
144.119.42.117	40.118.4.85	84.110.84.187	91.145.128.146
52.51.241.88	45.252.218.150	40.115.30.190	45.250.137.146