110.138.136.72

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	445/tcp 445/tcp [2019-08-16]2pkt	2019-08-16 22:52:01

Comments on same subnet:

IP	Type	Details	Datetime
110.138.136.86	attack	445/tcp [2020-07-08]1pkt	2020-07-09 00:45:08
110.138.136.188	attackspam	Unauthorized connection attempt from IP address 110.138.136.188 on Port 445(SMB)	2020-04-24 00:23:36
110.138.136.169	attackbots	Unauthorized connection attempt from IP address 110.138.136.169 on Port 445(SMB)	2020-02-22 06:17:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.136.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20639
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.136.72.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081600 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 22:51:46 CST 2019
;; MSG SIZE  rcvd: 118

Host info

72.136.138.110.in-addr.arpa domain name pointer 72.subnet110-138-136.speedy.telkom.net.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
72.136.138.110.in-addr.arpa	name = 72.subnet110-138-136.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.207.107.144	attackbotsspam	Jul 26 14:04:57 pornomens sshd\[7703\]: Invalid user scott from 123.207.107.144 port 48930 Jul 26 14:04:57 pornomens sshd\[7703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.107.144 Jul 26 14:04:59 pornomens sshd\[7703\]: Failed password for invalid user scott from 123.207.107.144 port 48930 ssh2 ...	2020-07-26 23:30:06
222.186.30.59	attackspam	Jul 26 17:49:11 vps647732 sshd[12675]: Failed password for root from 222.186.30.59 port 59199 ssh2 ...	2020-07-26 23:50:57
77.228.206.84	attackspam	Automatic report - Banned IP Access	2020-07-26 23:37:42
37.187.124.209	attackbotsspam	Jul 26 15:04:48 vps768472 sshd\[1458\]: Invalid user webmaster from 37.187.124.209 port 38134 Jul 26 15:04:48 vps768472 sshd\[1458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.124.209 Jul 26 15:04:50 vps768472 sshd\[1458\]: Failed password for invalid user webmaster from 37.187.124.209 port 38134 ssh2 ...	2020-07-26 23:44:18
142.93.215.100	attackspam	Jul 26 10:59:46 Host-KEWR-E sshd[1820]: Disconnected from invalid user steam 142.93.215.100 port 55416 [preauth] ...	2020-07-26 23:22:38
39.50.160.154	attackbots	Automatically reported by fail2ban report script (mx1)	2020-07-26 23:56:50
182.61.36.44	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-26 23:53:37
180.76.188.63	attackspambots	$f2bV_matches	2020-07-26 23:48:48
222.239.124.19	attack	Jul 26 15:41:44 rush sshd[28421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.124.19 Jul 26 15:41:46 rush sshd[28421]: Failed password for invalid user backup1 from 222.239.124.19 port 48426 ssh2 Jul 26 15:46:09 rush sshd[28561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.124.19 ...	2020-07-27 00:00:14
111.231.119.93	attackspam	Jul 26 14:04:42 h2829583 sshd[16690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.119.93	2020-07-26 23:50:28
14.230.31.105	attackspam	Port probing on unauthorized port 5555	2020-07-26 23:59:50
125.104.35.3	attackspam	Jul 26 07:04:34 mailman postfix/smtpd[6974]: NOQUEUE: reject: RCPT from unknown[125.104.35.3]: 554 5.7.1 Service unavailable; Client host [125.104.35.3] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/125.104.35.3; from= to=<[munged][at][munged]> proto=ESMTP helo= Jul 26 07:04:36 mailman postfix/smtpd[6974]: NOQUEUE: reject: RCPT from unknown[125.104.35.3]: 554 5.7.1 Service unavailable; Client host [125.104.35.3] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/125.104.35.3; from= to=<[munged][at][munged]> proto=ESMTP helo=	2020-07-26 23:54:28
95.216.21.236	attackspambots	sae-12 : Block return, carriage return, ... characters=>/index.php?option=com_content'[0]&view=article&id=124&Itemid=481(')	2020-07-26 23:49:29
117.50.63.120	attack	Fail2Ban	2020-07-26 23:40:00
107.6.183.226	attack	Unauthorized connection attempt detected from IP address 107.6.183.226 to port 3310	2020-07-26 23:55:00

Recently Reported IPs

143.87.65.13	32.194.39.131	244.166.191.118	176.58.57.19
205.137.136.160	201.27.149.65	178.38.127.168	130.212.24.208
243.81.230.37	39.126.13.143	36.73.91.212	134.73.76.37
45.32.157.156	58.21.251.9	185.130.144.241	51.158.120.47
45.70.32.251	52.226.212.60	129.226.65.20	143.116.106.71