113.163.135.242

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	TCP (SYN) 113.163.135.242:51443 -> port 445, len 52	2020-08-13 01:38:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.163.135.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27777
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.163.135.242.		IN	A

;; AUTHORITY SECTION:
.			140	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081202 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 13 01:38:12 CST 2020
;; MSG SIZE  rcvd: 119

Host info

242.135.163.113.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.135.163.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.178.89	attackbots	$f2bV_matches	2019-12-08 19:38:35
54.38.36.244	attackbots	Automatic report - XMLRPC Attack	2019-12-08 19:26:29
92.118.37.64	attackspambots	12/08/2019-10:59:27.949547 92.118.37.64 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2019-12-08 19:54:01
122.15.65.204	attackspambots	Dec 8 08:25:52 dev0-dcde-rnet sshd[24909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.15.65.204 Dec 8 08:25:53 dev0-dcde-rnet sshd[24909]: Failed password for invalid user carandang from 122.15.65.204 port 47342 ssh2 Dec 8 08:35:14 dev0-dcde-rnet sshd[25022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.15.65.204	2019-12-08 19:21:12
168.121.71.14	attackspambots	2019-12-08T08:43:33.589810abusebot-4.cloudsearch.cf sshd\[11246\]: Invalid user sudoko from 168.121.71.14 port 55412	2019-12-08 19:24:18
213.150.206.88	attack	Dec 8 12:07:26 vps691689 sshd[28609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.150.206.88 Dec 8 12:07:29 vps691689 sshd[28609]: Failed password for invalid user dirk from 213.150.206.88 port 45448 ssh2 ...	2019-12-08 19:30:40
106.13.59.131	attackspam	Dec 8 12:11:27 minden010 sshd[30256]: Failed password for nagios from 106.13.59.131 port 57616 ssh2 Dec 8 12:18:16 minden010 sshd[4953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.131 Dec 8 12:18:18 minden010 sshd[4953]: Failed password for invalid user farrand from 106.13.59.131 port 56166 ssh2 ...	2019-12-08 19:51:36
116.240.199.86	attack	CloudCIX Reconnaissance Scan Detected, PTR: vps.agbizcareers.com.au.	2019-12-08 19:48:13
122.165.207.221	attackbots	Dec 8 09:49:21 ns382633 sshd\[2763\]: Invalid user sandeep from 122.165.207.221 port 28870 Dec 8 09:49:21 ns382633 sshd\[2763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.207.221 Dec 8 09:49:23 ns382633 sshd\[2763\]: Failed password for invalid user sandeep from 122.165.207.221 port 28870 ssh2 Dec 8 09:56:26 ns382633 sshd\[4607\]: Invalid user client from 122.165.207.221 port 45314 Dec 8 09:56:26 ns382633 sshd\[4607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.207.221	2019-12-08 19:32:05
167.172.164.81	attack	Blocked for port scanning (Port 23 / Telnet brute-force). Time: Sun Dec 8. 07:16:37 2019 +0100 IP: 167.172.164.81 (DE/Germany/-) Sample of block hits: Dec 8 07:16:21 vserv kernel: [586765.484044] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 DPT=23 WINDOW=41574 RES=0x00 SYN URGP=0 Dec 8 07:16:22 vserv kernel: [586766.148183] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 DPT=23 WINDOW=41574 RES=0x00 SYN URGP=0 Dec 8 07:16:24 vserv kernel: [586768.572841] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374 DPT=23 WINDOW=41574 RES=0x00 SYN URGP=0 Dec 8 07:16:25 vserv kernel: [586769.332632] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=167.172.164.81 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=56 ID=23084 PROTO=TCP SPT=34374	2019-12-08 19:37:16
94.191.47.240	attackbotsspam	SSH brutforce	2019-12-08 19:52:28
51.75.169.236	attackspambots	Dec 8 07:20:29 host sshd[39318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.169.236 Dec 8 07:20:29 host sshd[39318]: Invalid user thisner from 51.75.169.236 port 48801 Dec 8 07:20:31 host sshd[39318]: Failed password for invalid user thisner from 51.75.169.236 port 48801 ssh2 ...	2019-12-08 19:29:53
222.186.175.169	attackspambots	Dec 8 12:45:25 nextcloud sshd\[13371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 8 12:45:27 nextcloud sshd\[13371\]: Failed password for root from 222.186.175.169 port 57956 ssh2 Dec 8 12:45:32 nextcloud sshd\[13371\]: Failed password for root from 222.186.175.169 port 57956 ssh2 ...	2019-12-08 19:46:08
91.121.211.59	attackspambots	Dec 8 06:53:15 web8 sshd\[28892\]: Invalid user oracle from 91.121.211.59 Dec 8 06:53:15 web8 sshd\[28892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.59 Dec 8 06:53:17 web8 sshd\[28892\]: Failed password for invalid user oracle from 91.121.211.59 port 35952 ssh2 Dec 8 06:58:42 web8 sshd\[31486\]: Invalid user sallehar from 91.121.211.59 Dec 8 06:58:42 web8 sshd\[31486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.59	2019-12-08 19:39:31
218.205.113.204	attack	Dec 8 11:45:04 jane sshd[9877]: Failed password for root from 218.205.113.204 port 42195 ssh2 ...	2019-12-08 19:17:24

Recently Reported IPs

37.45.4.254	223.100.68.145	83.219.232.95	136.181.17.139
184.159.123.228	187.52.17.38	218.161.111.228	112.172.110.14
251.96.39.125	252.104.114.101	106.114.70.185	59.249.110.206
105.127.218.201	236.148.123.0	213.85.24.130	81.236.243.255
216.204.106.131	75.93.136.128	207.191.163.235	196.200.156.196