110.138.131.31

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1577773766 - 12/31/2019 07:29:26 Host: 110.138.131.31/110.138.131.31 Port: 445 TCP Blocked	2019-12-31 15:03:21

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.131.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41691
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.131.31.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123100 1800 900 604800 86400

;; Query time: 813 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 15:03:17 CST 2019
;; MSG SIZE  rcvd: 118

Host info

31.131.138.110.in-addr.arpa domain name pointer 31.subnet110-138-131.speedy.telkom.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.131.138.110.in-addr.arpa	name = 31.subnet110-138-131.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.4.241.6	attackspambots	2019-11-11T11:00:26.890491luisaranguren sshd[113464]: Connection from 122.4.241.6 port 19823 on 10.10.10.6 port 22 2019-11-11T11:00:29.001801luisaranguren sshd[113464]: Invalid user ident from 122.4.241.6 port 19823 2019-11-11T11:00:29.008500luisaranguren sshd[113464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.4.241.6 2019-11-11T11:00:26.890491luisaranguren sshd[113464]: Connection from 122.4.241.6 port 19823 on 10.10.10.6 port 22 2019-11-11T11:00:29.001801luisaranguren sshd[113464]: Invalid user ident from 122.4.241.6 port 19823 2019-11-11T11:00:31.325489luisaranguren sshd[113464]: Failed password for invalid user ident from 122.4.241.6 port 19823 ssh2 ...	2019-11-11 08:37:38
185.143.223.38	attackbots	2019-11-11T01:01:01.513283+01:00 lumpi kernel: [3252840.284268] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.38 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=20011 PROTO=TCP SPT=58780 DPT=33716 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-11 08:09:46
117.6.130.56	attackspam	Unauthorized connection attempt from IP address 117.6.130.56 on Port 445(SMB)	2019-11-11 08:31:56
183.196.106.206	attack	firewall-block, port(s): 23/tcp	2019-11-11 08:22:02
71.19.144.106	attackspambots	Automatic report - XMLRPC Attack	2019-11-11 08:34:39
89.189.128.13	attack	Unauthorized connection attempt from IP address 89.189.128.13 on Port 445(SMB)	2019-11-11 08:24:31
212.129.140.89	attackspambots	Nov 10 13:56:14 tdfoods sshd\[30191\]: Invalid user jira from 212.129.140.89 Nov 10 13:56:14 tdfoods sshd\[30191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.140.89 Nov 10 13:56:15 tdfoods sshd\[30191\]: Failed password for invalid user jira from 212.129.140.89 port 57160 ssh2 Nov 10 14:00:57 tdfoods sshd\[30556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.140.89 user=root Nov 10 14:00:58 tdfoods sshd\[30556\]: Failed password for root from 212.129.140.89 port 48869 ssh2	2019-11-11 08:11:10
207.58.165.133	attackbotsspam	firewall-block, port(s): 22100/tcp	2019-11-11 08:20:58
202.29.70.42	attackbots	SSH Brute Force	2019-11-11 08:49:21
115.231.181.34	attackbots	firewall-block, port(s): 1433/tcp	2019-11-11 08:27:36
106.13.4.250	attackspambots	Nov 10 14:31:33 web1 sshd\[17737\]: Invalid user wwwrun from 106.13.4.250 Nov 10 14:31:33 web1 sshd\[17737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 Nov 10 14:31:35 web1 sshd\[17737\]: Failed password for invalid user wwwrun from 106.13.4.250 port 37816 ssh2 Nov 10 14:36:12 web1 sshd\[18192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.4.250 user=root Nov 10 14:36:14 web1 sshd\[18192\]: Failed password for root from 106.13.4.250 port 45580 ssh2	2019-11-11 08:49:33
125.70.111.182	attackspambots	Unauthorised access (Nov 11) SRC=125.70.111.182 LEN=44 TTL=240 ID=59821 TCP DPT=1433 WINDOW=1024 SYN	2019-11-11 08:14:33
89.248.160.178	attack	firewall-block, port(s): 3429/tcp	2019-11-11 08:40:28
171.239.250.197	attackbots	3 failed attempts at connecting to SSH.	2019-11-11 08:26:45
14.98.37.10	attackspambots	Unauthorized connection attempt from IP address 14.98.37.10 on Port 445(SMB)	2019-11-11 08:35:10

Recently Reported IPs

199.30.231.5	183.80.231.57	112.118.224.234	49.207.143.141
178.254.15.200	47.247.5.196	201.161.58.204	167.172.118.27
123.27.203.196	137.74.241.200	111.32.90.86	61.164.98.226
41.67.12.191	193.77.113.37	113.254.250.232	181.177.112.10
190.105.188.149	110.159.2.37	151.101.114.133	159.89.123.66