113.20.99.193 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): CMC Telecom Infrastructure Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	445/tcp 445/tcp [2019-06-21/07-04]2pkt	2019-07-04 15:47:43
attackspam	445/tcp [2019-06-21]1pkt	2019-06-21 22:14:50

相同子网IP讨论:

IP	类型	评论内容	时间
113.20.99.51	attack	Listed on zen-spamhaus also barracudaCentral / proto=6 . srcport=47840 . dstport=445 . (2299)	2020-09-21 18:13:21
113.20.99.35	attackspam	Unauthorized connection attempt from IP address 113.20.99.35 on Port 445(SMB)	2020-08-06 21:57:56
113.20.99.185	attackbots	1592711711 - 06/21/2020 05:55:11 Host: 113.20.99.185/113.20.99.185 Port: 445 TCP Blocked	2020-06-21 15:24:46
113.20.99.125	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-27 20:30:53
113.20.99.62	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 26-12-2019 14:50:09.	2019-12-27 03:46:01
113.20.99.83	attackbotsspam	Unauthorised access (Oct 22) SRC=113.20.99.83 LEN=52 TTL=108 ID=16228 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-22 20:17:30
113.20.99.208	attack	445/tcp [2019-08-09]1pkt	2019-08-09 15:42:02
113.20.99.70	attackbotsspam	Unauthorized connection attempt from IP address 113.20.99.70 on Port 445(SMB)	2019-07-02 05:08:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.20.99.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33951
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.20.99.193.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 21 22:14:37 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 193.99.20.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 193.99.20.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.42.7	attackspambots	Apr 12 00:34:15 pve sshd[3467]: Failed password for root from 222.186.42.7 port 10014 ssh2 Apr 12 00:34:19 pve sshd[3467]: Failed password for root from 222.186.42.7 port 10014 ssh2 Apr 12 00:34:21 pve sshd[3467]: Failed password for root from 222.186.42.7 port 10014 ssh2	2020-04-12 06:41:38
222.186.180.17	attack	Apr 12 00:10:32 host01 sshd[2727]: Failed password for root from 222.186.180.17 port 1432 ssh2 Apr 12 00:10:35 host01 sshd[2727]: Failed password for root from 222.186.180.17 port 1432 ssh2 Apr 12 00:10:39 host01 sshd[2727]: Failed password for root from 222.186.180.17 port 1432 ssh2 Apr 12 00:10:43 host01 sshd[2727]: Failed password for root from 222.186.180.17 port 1432 ssh2 ...	2020-04-12 06:11:48
92.222.155.168	spambotsattackproxynormal	ss	2020-04-12 06:13:21
163.172.230.4	attackbotsspam	[2020-04-11 18:22:12] NOTICE[12114][C-00004949] chan_sip.c: Call from '' (163.172.230.4:58723) to extension '9999999999011972592277524' rejected because extension not found in context 'public'. [2020-04-11 18:22:12] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T18:22:12.835-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9999999999011972592277524",SessionID="0x7f020c167898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/58723",ACLName="no_extension_match" [2020-04-11 18:25:16] NOTICE[12114][C-00004950] chan_sip.c: Call from '' (163.172.230.4:52546) to extension '99999999999011972592277524' rejected because extension not found in context 'public'. [2020-04-11 18:25:16] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T18:25:16.861-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="99999999999011972592277524",SessionID="0x7f020c06be08",LocalAddress="IPV4/UD ...	2020-04-12 06:27:53
107.170.17.129	attack	Apr 11 23:58:57 ArkNodeAT sshd\[23620\]: Invalid user tftp from 107.170.17.129 Apr 11 23:58:57 ArkNodeAT sshd\[23620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.17.129 Apr 11 23:59:00 ArkNodeAT sshd\[23620\]: Failed password for invalid user tftp from 107.170.17.129 port 42206 ssh2	2020-04-12 06:21:50
121.36.125.167	attackspam	Apr 11 22:52:21 OPSO sshd\[5780\]: Invalid user test from 121.36.125.167 port 59910 Apr 11 22:52:21 OPSO sshd\[5780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.36.125.167 Apr 11 22:52:23 OPSO sshd\[5780\]: Failed password for invalid user test from 121.36.125.167 port 59910 ssh2 Apr 11 22:55:59 OPSO sshd\[7073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.36.125.167 user=root Apr 11 22:56:01 OPSO sshd\[7073\]: Failed password for root from 121.36.125.167 port 59062 ssh2	2020-04-12 06:17:15
197.156.65.138	attack	Apr 11 16:05:16 server1 sshd\[7722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Apr 11 16:05:18 server1 sshd\[7722\]: Failed password for root from 197.156.65.138 port 49962 ssh2 Apr 11 16:09:18 server1 sshd\[9246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.65.138 user=root Apr 11 16:09:21 server1 sshd\[9246\]: Failed password for root from 197.156.65.138 port 57602 ssh2 Apr 11 16:13:33 server1 sshd\[10697\]: Invalid user admin from 197.156.65.138 ...	2020-04-12 06:18:40
113.31.118.120	attackbotsspam	Apr 11 23:13:25 server sshd[19356]: Failed password for root from 113.31.118.120 port 47298 ssh2 Apr 11 23:18:45 server sshd[20279]: Failed password for root from 113.31.118.120 port 50254 ssh2 Apr 11 23:22:30 server sshd[20961]: Failed password for root from 113.31.118.120 port 41868 ssh2	2020-04-12 06:16:14
51.178.31.86	attackspam	Invalid user test from 51.178.31.86 port 41386	2020-04-12 06:42:51
190.73.214.148	attackbotsspam	B: /wp-login.php attack	2020-04-12 05:59:09
13.78.68.200	attack	/DesktopModules/Admin/RadEditorProvider/DialogHandler.aspx	2020-04-12 06:04:04
106.13.183.147	attackspam	SSH Invalid Login	2020-04-12 06:33:43
138.197.210.82	attackspambots	Apr 12 01:13:18 hosting sshd[8859]: Invalid user isolde from 138.197.210.82 port 41830 ...	2020-04-12 06:28:11
123.207.241.223	attack	Apr 11 22:55:50 h2829583 sshd[6365]: Failed password for root from 123.207.241.223 port 35744 ssh2	2020-04-12 06:22:04
167.99.67.209	attackspambots	Apr 11 18:59:07 firewall sshd[2582]: Failed password for root from 167.99.67.209 port 55040 ssh2 Apr 11 19:01:06 firewall sshd[2648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.67.209 user=root Apr 11 19:01:09 firewall sshd[2648]: Failed password for root from 167.99.67.209 port 59594 ssh2 ...	2020-04-12 06:16:02

最近上报的IP列表

45.70.0.17	101.51.0.198	37.224.14.39	171.229.250.132
109.245.159.186	103.41.24.226	178.110.255.216	196.54.65.192
170.0.128.249	84.243.9.39	119.53.245.68	177.66.79.201
103.82.80.52	14.235.176.252	68.183.167.159	202.158.29.162
180.244.232.146	217.111.227.178	103.48.35.204	23.250.125.234