116.104.138.253

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	20/1/9@23:50:43: FAIL: Alarm-Network address from=116.104.138.253 20/1/9@23:50:44: FAIL: Alarm-Network address from=116.104.138.253 ...	2020-01-10 18:04:32

Comments on same subnet:

IP	Type	Details	Datetime
116.104.138.129	attack	1593741854 - 07/03/2020 04:04:14 Host: 116.104.138.129/116.104.138.129 Port: 445 TCP Blocked	2020-07-04 00:05:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.104.138.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.104.138.253.		IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011000 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 18:04:29 CST 2020
;; MSG SIZE  rcvd: 119

Host info

253.138.104.116.in-addr.arpa domain name pointer dynamic-ip-adsl.viettel.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
253.138.104.116.in-addr.arpa	name = dynamic-ip-adsl.viettel.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.93.114.155	attackspam	Dec 3 09:27:04 Tower sshd[15759]: Connection from 218.93.114.155 port 62791 on 192.168.10.220 port 22 Dec 3 09:27:07 Tower sshd[15759]: Invalid user mustre from 218.93.114.155 port 62791 Dec 3 09:27:07 Tower sshd[15759]: error: Could not get shadow information for NOUSER Dec 3 09:27:07 Tower sshd[15759]: Failed password for invalid user mustre from 218.93.114.155 port 62791 ssh2 Dec 3 09:27:07 Tower sshd[15759]: Received disconnect from 218.93.114.155 port 62791:11: Bye Bye [preauth] Dec 3 09:27:07 Tower sshd[15759]: Disconnected from invalid user mustre 218.93.114.155 port 62791 [preauth]	2019-12-04 02:23:57
84.20.122.227	attackspam	Brute force SMTP login attempts.	2019-12-04 02:06:49
54.37.230.164	attackspambots	$f2bV_matches	2019-12-04 02:08:13
88.226.108.129	attackspam	Dec 3 13:02:54 pl2server sshd[17659]: reveeclipse mapping checking getaddrinfo for 88.226.108.129.static.ttnet.com.tr [88.226.108.129] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 3 13:02:54 pl2server sshd[17659]: Invalid user admin from 88.226.108.129 Dec 3 13:02:54 pl2server sshd[17659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.226.108.129 Dec 3 13:02:56 pl2server sshd[17659]: Failed password for invalid user admin from 88.226.108.129 port 35512 ssh2 Dec 3 13:02:56 pl2server sshd[17659]: Connection closed by 88.226.108.129 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=88.226.108.129	2019-12-04 02:29:43
183.82.0.15	attack	Dec 3 18:33:52 vps647732 sshd[12464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.0.15 Dec 3 18:33:54 vps647732 sshd[12464]: Failed password for invalid user alex from 183.82.0.15 port 15032 ssh2 ...	2019-12-04 02:02:02
217.77.221.85	attackspambots	Dec 3 17:48:27 [host] sshd[27821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.77.221.85 user=backup Dec 3 17:48:28 [host] sshd[27821]: Failed password for backup from 217.77.221.85 port 39472 ssh2 Dec 3 17:54:13 [host] sshd[27894]: Invalid user test from 217.77.221.85	2019-12-04 02:08:58
170.210.214.50	attackspam	Dec 3 07:43:42 kapalua sshd\[16964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.214.50 user=root Dec 3 07:43:44 kapalua sshd\[16964\]: Failed password for root from 170.210.214.50 port 41034 ssh2 Dec 3 07:49:57 kapalua sshd\[17536\]: Invalid user com from 170.210.214.50 Dec 3 07:49:57 kapalua sshd\[17536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.214.50 Dec 3 07:49:59 kapalua sshd\[17536\]: Failed password for invalid user com from 170.210.214.50 port 42196 ssh2	2019-12-04 01:59:29
222.186.175.217	attackspambots	Dec 3 14:52:18 firewall sshd[26431]: Failed password for root from 222.186.175.217 port 18470 ssh2 Dec 3 14:52:18 firewall sshd[26431]: error: maximum authentication attempts exceeded for root from 222.186.175.217 port 18470 ssh2 [preauth] Dec 3 14:52:18 firewall sshd[26431]: Disconnecting: Too many authentication failures [preauth] ...	2019-12-04 02:31:10
112.85.42.182	attackspambots	Dec 3 18:01:30 localhost sshd[28857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Dec 3 18:01:33 localhost sshd[28857]: Failed password for root from 112.85.42.182 port 60943 ssh2 Dec 3 18:01:30 localhost sshd[28857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.182 user=root Dec 3 18:01:33 localhost sshd[28857]: Failed password for root from 112.85.42.182 port 60943 ssh2 Dec 3 18:01:53 localhost sshd[28857]: error: maximum authentication attempts exceeded for root from 112.85.42.182 port 60943 ssh2 [preauth]	2019-12-04 02:03:47
87.236.20.167	attackspambots	C2,WP GET /wp-login.php	2019-12-04 02:07:39
73.93.102.54	attackbotsspam	Dec 3 18:09:05 localhost sshd\[25019\]: Invalid user ragbir from 73.93.102.54 port 52388 Dec 3 18:09:05 localhost sshd\[25019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.93.102.54 Dec 3 18:09:07 localhost sshd\[25019\]: Failed password for invalid user ragbir from 73.93.102.54 port 52388 ssh2 ...	2019-12-04 02:16:49
178.62.27.245	attackspam	2019-12-03T18:20:40.818766shield sshd\[3485\]: Invalid user branisla from 178.62.27.245 port 51417 2019-12-03T18:20:40.824727shield sshd\[3485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.27.245 2019-12-03T18:20:43.036359shield sshd\[3485\]: Failed password for invalid user branisla from 178.62.27.245 port 51417 ssh2 2019-12-03T18:26:14.945779shield sshd\[5054\]: Invalid user henner from 178.62.27.245 port 56949 2019-12-03T18:26:14.951249shield sshd\[5054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.27.245	2019-12-04 02:35:18
162.144.108.77	attack	2019-12-02 05:49:39 H=(162-144-108-77.webhostbox.net) [162.144.108.77]:59108 I=[10.100.18.21]:25 sender verify fail for : Unrouteable address 2019-12-02 05:52:24 H=(162-144-108-77.webhostbox.net) [162.144.108.77]:45062 I=[10.100.18.21]:25 sender verify fail for : Unrouteable address 2019-12-02 05:55:24 H=(162-144-108-77.webhostbox.net) [162.144.108.77]:58262 I=[10.100.18.21]:25 sender verify fail for : Unrouteable address ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=162.144.108.77	2019-12-04 02:09:34
91.212.150.145	attack	Dec 3 14:49:10 v26 sshd[29957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.150.145 user=r.r Dec 3 14:49:12 v26 sshd[29957]: Failed password for r.r from 91.212.150.145 port 52888 ssh2 Dec 3 14:49:12 v26 sshd[29957]: Connection closed by 91.212.150.145 port 52888 [preauth] Dec 3 14:49:27 v26 sshd[29958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.150.145 user=r.r Dec 3 14:49:27 v26 sshd[29960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.150.145 user=r.r Dec 3 14:49:27 v26 sshd[29959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.150.145 user=r.r Dec 3 14:49:27 v26 sshd[29956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.212.150.145 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.212.150.	2019-12-04 02:35:39
193.105.134.45	attackspambots	Dec 3 16:12:40 herz-der-gamer sshd[28159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.105.134.45 user=ts3 Dec 3 16:12:42 herz-der-gamer sshd[28159]: Failed password for ts3 from 193.105.134.45 port 7475 ssh2 ...	2019-12-04 02:17:27

Recently Reported IPs

25.137.176.151	187.190.179.116	140.237.191.69	221.168.75.119
52.63.61.139	222.191.244.195	129.29.243.221	111.46.36.210
70.144.113.114	14.217.249.54	32.20.27.145	43.75.209.84
95.139.211.216	56.147.64.198	169.255.125.47	35.196.227.176
115.77.187.106	202.65.141.237	180.253.153.120	41.237.166.106