113.161.68.133

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 113.161.68.133 on Port 445(SMB)	2019-08-27 23:15:18

Comments on same subnet:

IP	Type	Details	Datetime
113.161.68.24	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-22 02:20:52,985 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.161.68.24)	2019-07-22 19:54:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.161.68.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43689
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.161.68.133.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 23:14:47 CST 2019
;; MSG SIZE  rcvd: 118

Host info

133.68.161.113.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
133.68.161.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.56.45	attack	Nov 1 19:00:23 gw1 sshd[23643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.56.45 Nov 1 19:00:25 gw1 sshd[23643]: Failed password for invalid user test from 106.13.56.45 port 51086 ssh2 ...	2019-11-01 22:09:26
94.85.249.225	attack	Unauthorised access (Nov 1) SRC=94.85.249.225 LEN=52 TTL=108 ID=12044 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-01 22:24:49
94.75.75.222	attack	Oct 31 20:51:04 server378 sshd[19928]: reveeclipse mapping checking getaddrinfo for 94-75-75-222.home.aster.pl [94.75.75.222] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 31 20:51:04 server378 sshd[19928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.75.75.222 user=r.r Oct 31 20:51:06 server378 sshd[19928]: Failed password for r.r from 94.75.75.222 port 42350 ssh2 Oct 31 20:51:06 server378 sshd[19928]: Received disconnect from 94.75.75.222: 11: Bye Bye [preauth] Oct 31 21:07:21 server378 sshd[21579]: reveeclipse mapping checking getaddrinfo for 94-75-75-222.home.aster.pl [94.75.75.222] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 31 21:07:21 server378 sshd[21579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.75.75.222 user=r.r Oct 31 21:07:23 server378 sshd[21579]: Failed password for r.r from 94.75.75.222 port 36328 ssh2 Oct 31 21:07:23 server378 sshd[21579]: Received disconnect from 94........ -------------------------------	2019-11-01 22:09:53
187.250.21.168	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-01 22:22:40
85.185.18.70	attackbotsspam	2019-11-01T14:12:13.448789abusebot-8.cloudsearch.cf sshd\[3021\]: Invalid user nora from 85.185.18.70 port 43826	2019-11-01 22:21:42
139.155.21.46	attack	Nov 1 03:38:41 kapalua sshd\[22744\]: Invalid user ppms from 139.155.21.46 Nov 1 03:38:41 kapalua sshd\[22744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.46 Nov 1 03:38:43 kapalua sshd\[22744\]: Failed password for invalid user ppms from 139.155.21.46 port 54916 ssh2 Nov 1 03:42:43 kapalua sshd\[23156\]: Invalid user a from 139.155.21.46 Nov 1 03:42:43 kapalua sshd\[23156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.21.46	2019-11-01 22:04:17
27.128.162.98	attackspambots	Nov 1 15:05:02 vpn01 sshd[25126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.162.98 Nov 1 15:05:04 vpn01 sshd[25126]: Failed password for invalid user primo from 27.128.162.98 port 45268 ssh2 ...	2019-11-01 22:14:34
167.172.82.223	attackbots	2019-11-01T14:21:11.877790shield sshd\[8324\]: Invalid user changeme from 167.172.82.223 port 57302 2019-11-01T14:21:11.882086shield sshd\[8324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.82.223 2019-11-01T14:21:13.927421shield sshd\[8324\]: Failed password for invalid user changeme from 167.172.82.223 port 57302 ssh2 2019-11-01T14:26:23.358600shield sshd\[9434\]: Invalid user b0t123 from 167.172.82.223 port 41962 2019-11-01T14:26:23.363410shield sshd\[9434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.82.223	2019-11-01 22:31:46
171.227.209.7	attackbots	SSH Brute-Force reported by Fail2Ban	2019-11-01 22:17:35
46.38.144.17	attack	Nov 1 14:58:13 webserver postfix/smtpd\[22892\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 14:59:25 webserver postfix/smtpd\[23236\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 15:00:34 webserver postfix/smtpd\[22892\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 15:01:50 webserver postfix/smtpd\[23236\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 15:03:02 webserver postfix/smtpd\[23496\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-01 22:12:20
165.22.86.58	attackbots	xmlrpc attack	2019-11-01 22:01:41
157.245.115.45	attack	2019-11-01T13:30:50.947520abusebot-4.cloudsearch.cf sshd\[9622\]: Invalid user ys3server from 157.245.115.45 port 46726	2019-11-01 21:52:25
152.136.86.234	attackbotsspam	Nov 1 03:00:34 web9 sshd\[3433\]: Invalid user zacarias from 152.136.86.234 Nov 1 03:00:34 web9 sshd\[3433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.86.234 Nov 1 03:00:36 web9 sshd\[3433\]: Failed password for invalid user zacarias from 152.136.86.234 port 57880 ssh2 Nov 1 03:06:20 web9 sshd\[4310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.86.234 user=root Nov 1 03:06:22 web9 sshd\[4310\]: Failed password for root from 152.136.86.234 port 49233 ssh2	2019-11-01 21:59:14
139.219.6.50	attackspambots	SSH Scan	2019-11-01 21:55:38
188.248.71.39	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-01 22:11:43

Recently Reported IPs

189.124.23.236	46.81.74.20	14.165.191.166	87.117.189.0
62.210.136.228	98.13.12.86	141.98.80.73	149.173.11.245
253.6.76.130	183.246.179.22	146.113.23.119	83.163.108.89
157.249.228.129	222.10.208.253	149.193.151.123	184.74.36.216
114.58.125.0	157.41.85.8	134.103.249.191	185.96.151.19