116.106.131.204

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 116.106.131.204 on Port 445(SMB)	2019-08-24 20:19:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.106.131.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11753
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.106.131.204.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082302 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 20:19:27 CST 2019
;; MSG SIZE  rcvd: 119

Host info

204.131.106.116.in-addr.arpa domain name pointer dynamic-ip-adsl.viettel.vn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
204.131.106.116.in-addr.arpa	name = dynamic-ip-adsl.viettel.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.143.13.154	attackbots	Jul 14 15:46:11 roki sshd[25103]: Invalid user ovh from 51.143.13.154 Jul 14 15:46:11 roki sshd[25104]: Invalid user roki.ovh from 51.143.13.154 Jul 14 15:46:11 roki sshd[25104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.143.13.154 Jul 14 15:46:11 roki sshd[25101]: Invalid user roki from 51.143.13.154 Jul 14 15:46:11 roki sshd[25103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.143.13.154 Jul 14 15:46:11 roki sshd[25101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.143.13.154 ...	2020-07-14 23:46:58
14.232.160.213	attack	(sshd) Failed SSH login from 14.232.160.213 (VN/Vietnam/-): 5 in the last 3600 secs	2020-07-15 00:03:40
40.76.91.70	attackbots	Invalid user center-kvarta.ru from 40.76.91.70 port 18308 Failed password for invalid user center-kvarta.ru from 40.76.91.70 port 18308 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.91.70 Invalid user kvarta from 40.76.91.70 port 18307 Failed password for invalid user kvarta from 40.76.91.70 port 18307 ssh2	2020-07-15 00:02:57
134.209.178.109	attackbotsspam	2020-07-14 12:55:20,378 fail2ban.actions [937]: NOTICE [sshd] Ban 134.209.178.109 2020-07-14 13:28:53,977 fail2ban.actions [937]: NOTICE [sshd] Ban 134.209.178.109 2020-07-14 14:05:23,328 fail2ban.actions [937]: NOTICE [sshd] Ban 134.209.178.109 2020-07-14 14:39:31,266 fail2ban.actions [937]: NOTICE [sshd] Ban 134.209.178.109 2020-07-14 15:13:52,706 fail2ban.actions [937]: NOTICE [sshd] Ban 134.209.178.109 ...	2020-07-15 00:04:01
13.77.74.25	attackspam	Jul 14 12:38:16 v26 sshd[5675]: Invalid user default ssl certificate from 13.77.74.25 port 10274 Jul 14 12:38:16 v26 sshd[5677]: Invalid user default ssl certificate from 13.77.74.25 port 10275 Jul 14 12:38:16 v26 sshd[5679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.77.74.25 user=r.r Jul 14 12:38:16 v26 sshd[5685]: Invalid user admin from 13.77.74.25 port 10280 Jul 14 12:38:16 v26 sshd[5676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.77.74.25 user=r.r Jul 14 12:38:16 v26 sshd[5678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.77.74.25 user=r.r Jul 14 12:38:18 v26 sshd[5675]: Failed password for invalid user default ssl certificate from 13.77.74.25 port 10274 ssh2 Jul 14 12:38:18 v26 sshd[5677]: Failed password for invalid user default ssl certificate from 13.77.74.25 port 10275 ssh2 Jul 14 12:38:18 v26 sshd[5679]: Failed pa........ -------------------------------	2020-07-15 00:07:20
65.52.233.250	attack	Jul 14 20:51:55 webhost01 sshd[31220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.52.233.250 ...	2020-07-15 00:04:34
104.211.183.42	attackbotsspam	$f2bV_matches	2020-07-14 23:59:16
13.68.222.199	attack	$f2bV_matches	2020-07-15 00:20:16
13.72.249.53	attackbotsspam	Jul 14 15:50:17 host sshd[28088]: Invalid user host from 13.72.249.53 port 42476 Jul 14 15:50:17 host sshd[28090]: Invalid user host.adminserver.es from 13.72.249.53 port 42478 ...	2020-07-15 00:19:59
149.56.129.220	attackbotsspam	Jul 14 09:14:01 Host-KEWR-E sshd[30989]: Disconnected from invalid user apn 149.56.129.220 port 39740 [preauth] ...	2020-07-14 23:42:12
122.116.240.14	attackbotsspam	Honeypot attack, port: 81, PTR: 122-116-240-14.HINET-IP.hinet.net.	2020-07-15 00:23:43
187.27.246.196	attack	1594732416 - 07/14/2020 15:13:36 Host: 187.27.246.196/187.27.246.196 Port: 445 TCP Blocked	2020-07-15 00:27:46
40.117.186.22	attack	Jul 14 16:52:45 www4 sshd\[60270\]: Invalid user 10naytto.fi from 40.117.186.22 Jul 14 16:52:45 www4 sshd\[60271\]: Invalid user 10naytto from 40.117.186.22 Jul 14 16:52:45 www4 sshd\[60271\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.186.22 Jul 14 16:52:45 www4 sshd\[60270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.186.22 ...	2020-07-15 00:22:16
52.250.10.51	attackbotsspam	[Tue Jul 14 12:25:41 2020] Failed password for invalid user ispgateway from 52.250.10.51 port 7619 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for invalid user ispgateway from 52.250.10.51 port 7620 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for r.r from 52.250.10.51 port 7637 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for invalid user ispgateway from 52.250.10.51 port 7621 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for r.r from 52.250.10.51 port 7638 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for r.r from 52.250.10.51 port 7635 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for invalid user webserver.iddos-domain.tld from 52.250.10.51 port 7626 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for r.r from 52.250.10.51 port 7634 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for invalid user webserver.iddos-domain.tld from 52.250.10.51 port 7627 ssh2 [Tue Jul 14 12:25:41 2020] Failed password for invalid user webserver.iddos-domain.tld from 52.2........ -------------------------------	2020-07-14 23:51:53
218.94.57.157	attackbots	Jul 14 15:13:45 zulu412 sshd\[2804\]: Invalid user manager from 218.94.57.157 port 52526 Jul 14 15:13:45 zulu412 sshd\[2804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.57.157 Jul 14 15:13:48 zulu412 sshd\[2804\]: Failed password for invalid user manager from 218.94.57.157 port 52526 ssh2 ...	2020-07-15 00:08:09

Recently Reported IPs

46.209.63.74	220.82.185.163	116.97.218.212	165.227.10.187
96.59.62.129	36.33.189.206	178.45.95.20	45.76.237.54
96.59.95.35	202.65.60.91	186.59.111.116	114.236.7.104
213.206.191.122	197.245.72.180	66.41.212.76	170.66.251.208
162.137.91.27	49.73.155.33	174.133.117.52	158.255.143.100