110.138.1.107 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
110.138.101.248	attack	Automatic report - Port Scan Attack	2020-09-03 01:04:07
110.138.101.248	attack	Automatic report - Port Scan Attack	2020-09-02 16:28:40
110.138.101.248	attackspambots	Automatic report - Port Scan Attack	2020-09-02 09:31:41
110.138.166.143	attack	Microsoft SQL Server User Authentication Brute Force Attempt , PTR: PTR record not found	2020-08-23 18:53:27
110.138.103.0	attack	Automatic report - Port Scan Attack	2020-08-14 07:50:58
110.138.136.86	attack	445/tcp [2020-07-08]1pkt	2020-07-09 00:45:08
110.138.126.97	attackbots	Unauthorized connection attempt from IP address 110.138.126.97 on Port 445(SMB)	2020-06-21 22:34:25
110.138.150.113	attack	Unauthorized IMAP connection attempt	2020-06-16 14:30:48
110.138.172.220	attack	1591417155 - 06/06/2020 06:19:15 Host: 110.138.172.220/110.138.172.220 Port: 445 TCP Blocked	2020-06-06 13:18:10
110.138.150.227	attackspam	1591302043 - 06/04/2020 22:20:43 Host: 110.138.150.227/110.138.150.227 Port: 445 TCP Blocked	2020-06-05 07:20:28
110.138.148.134	attackbotsspam	Unauthorized connection attempt from IP address 110.138.148.134 on Port 445(SMB)	2020-05-28 21:26:50
110.138.16.48	attackspam	1589881751 - 05/19/2020 11:49:11 Host: 110.138.16.48/110.138.16.48 Port: 445 TCP Blocked	2020-05-20 01:17:49
110.138.148.101	attackspambots		2020-05-13 08:33:54
110.138.150.45	attackbots	Unauthorised access (May 12) SRC=110.138.150.45 LEN=52 TTL=116 ID=10921 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-12 12:26:07
110.138.150.80	attackspambots	May 9 03:32:41 raspberrypi sshd\[22172\]: Did not receive identification string from 110.138.150.80 ...	2020-05-10 00:49:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.1.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 506
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;110.138.1.107.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 19:17:28 CST 2022
;; MSG SIZE  rcvd: 106

Host info

b'Host 107.1.138.110.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 110.138.1.107.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.171.108	attackspam	Apr 27 13:24:55 ws26vmsma01 sshd[11634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.171.108 Apr 27 13:24:58 ws26vmsma01 sshd[11634]: Failed password for invalid user deploy from 222.186.171.108 port 57631 ssh2 ...	2020-04-27 22:16:33
218.204.17.44	attack	Apr 27 14:03:37 melroy-server sshd[11245]: Failed password for root from 218.204.17.44 port 60112 ssh2 Apr 27 14:11:30 melroy-server sshd[12873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.204.17.44 ...	2020-04-27 22:15:14
197.58.125.171	attack	Apr 27 13:56:38 host postfix/smtps/smtpd\[20151\]: warning: unknown\[197.58.125.171\]: SASL PLAIN authentication failed:	2020-04-27 21:56:41
83.239.38.2	attackbots	Apr 27 15:31:41 server sshd[622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.239.38.2 Apr 27 15:31:43 server sshd[622]: Failed password for invalid user test from 83.239.38.2 port 53160 ssh2 Apr 27 15:35:58 server sshd[1334]: Failed password for root from 83.239.38.2 port 34764 ssh2 ...	2020-04-27 21:49:14
189.4.1.12	attackbotsspam	Apr 27 15:50:37 legacy sshd[15593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.1.12 Apr 27 15:50:38 legacy sshd[15593]: Failed password for invalid user cracker from 189.4.1.12 port 43514 ssh2 Apr 27 15:56:05 legacy sshd[15940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.1.12 ...	2020-04-27 22:09:32
76.214.112.45	attack	k+ssh-bruteforce	2020-04-27 21:52:36
168.61.176.121	attack	detected by Fail2Ban	2020-04-27 21:55:11
223.247.153.244	attackspam	Brute force SMTP login attempted. ...	2020-04-27 21:59:04
117.50.97.216	attackbots	Apr 27 13:32:56 ns392434 sshd[10224]: Invalid user ricoh from 117.50.97.216 port 52398 Apr 27 13:32:56 ns392434 sshd[10224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.97.216 Apr 27 13:32:56 ns392434 sshd[10224]: Invalid user ricoh from 117.50.97.216 port 52398 Apr 27 13:32:57 ns392434 sshd[10224]: Failed password for invalid user ricoh from 117.50.97.216 port 52398 ssh2 Apr 27 13:48:23 ns392434 sshd[10765]: Invalid user ecommerce from 117.50.97.216 port 60788 Apr 27 13:48:23 ns392434 sshd[10765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.97.216 Apr 27 13:48:23 ns392434 sshd[10765]: Invalid user ecommerce from 117.50.97.216 port 60788 Apr 27 13:48:25 ns392434 sshd[10765]: Failed password for invalid user ecommerce from 117.50.97.216 port 60788 ssh2 Apr 27 13:56:46 ns392434 sshd[11044]: Invalid user admin from 117.50.97.216 port 37914	2020-04-27 21:50:26
40.79.22.64	attack	Trying to login to my web site	2020-04-27 22:13:06
176.113.115.50	attackspambots	04/27/2020-07:56:39.037927 176.113.115.50 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-27 21:56:54
222.99.84.121	attack	2020-04-27T09:31:28.5460271495-001 sshd[59556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.84.121 user=root 2020-04-27T09:31:31.0504161495-001 sshd[59556]: Failed password for root from 222.99.84.121 port 44449 ssh2 2020-04-27T09:35:54.8557181495-001 sshd[59773]: Invalid user as from 222.99.84.121 port 50200 2020-04-27T09:35:54.8592601495-001 sshd[59773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.84.121 2020-04-27T09:35:54.8557181495-001 sshd[59773]: Invalid user as from 222.99.84.121 port 50200 2020-04-27T09:35:56.5458031495-001 sshd[59773]: Failed password for invalid user as from 222.99.84.121 port 50200 ssh2 ...	2020-04-27 22:23:53
178.128.15.57	attackspam	Apr 27 13:52:04 server sshd[18828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.15.57 Apr 27 13:52:06 server sshd[18828]: Failed password for invalid user paula from 178.128.15.57 port 58348 ssh2 Apr 27 13:55:56 server sshd[19147]: Failed password for root from 178.128.15.57 port 41616 ssh2 ...	2020-04-27 22:26:50
178.128.23.81	attackspam	Apr 27 13:56:44 debian-2gb-nbg1-2 kernel: \[10247535.591721\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=178.128.23.81 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=43588 PROTO=TCP SPT=46736 DPT=12244 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-27 21:51:17
203.195.247.201	attack	DATE:2020-04-27 13:55:58, IP:203.195.247.201, PORT:6379 REDIS brute force auth on honeypot server (epe-honey1-hq)	2020-04-27 22:26:27

Recently Reported IPs

110.138.0.78	110.138.1.224	110.138.1.186	110.138.10.237
110.138.10.133	110.138.104.248	110.138.1.95	110.138.103.44
110.138.100.56	110.138.105.145	110.138.105.190	110.138.108.129
110.138.108.215	110.138.109.7	110.138.11.109	110.138.106.59
110.138.11.148	110.138.11.132	110.138.11.166	110.138.11.161