110.138.148.10

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	firewall-block, port(s): 22/tcp, 8728/tcp	2020-03-11 15:39:12

Comments on same subnet:

IP	Type	Details	Datetime
110.138.148.134	attackbotsspam	Unauthorized connection attempt from IP address 110.138.148.134 on Port 445(SMB)	2020-05-28 21:26:50
110.138.148.101	attackspambots		2020-05-13 08:33:54
110.138.148.227	attackbots	20/4/26@23:52:23: FAIL: Alarm-Network address from=110.138.148.227 20/4/26@23:52:23: FAIL: Alarm-Network address from=110.138.148.227 ...	2020-04-27 17:41:32
110.138.148.241	attackspambots	Brute force SMTP login attempted. ...	2020-04-01 09:29:16
110.138.148.83	attackspam	Brute force SMTP login attempted. ...	2020-04-01 09:29:01
110.138.148.96	attack	suspicious action Thu, 27 Feb 2020 11:27:38 -0300	2020-02-27 22:48:45
110.138.148.4	attack	Honeypot attack, port: 445, PTR: 4.subnet110-138-148.speedy.telkom.net.id.	2020-02-26 02:22:52
110.138.148.112	attack	Unauthorized connection attempt detected from IP address 110.138.148.112 to port 80 [J]	2020-02-23 21:00:20
110.138.148.143	attack	Unauthorized connection attempt from IP address 110.138.148.143 on Port 445(SMB)	2020-02-15 19:42:45
110.138.148.5	attackbotsspam	Feb 14 04:51:10 l02a sshd[5329]: Invalid user 888888 from 110.138.148.5 Feb 14 04:51:11 l02a sshd[5345]: Invalid user 888888 from 110.138.148.5	2020-02-14 20:18:40
110.138.148.14	attackbotsspam	1578401666 - 01/07/2020 13:54:26 Host: 110.138.148.14/110.138.148.14 Port: 445 TCP Blocked	2020-01-08 04:27:13
110.138.148.101	attack	Unauthorized connection attempt from IP address 110.138.148.101 on Port 445(SMB)	2019-12-25 03:17:21
110.138.148.229	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:28.	2019-11-26 18:31:06
110.138.148.71	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 22-10-2019 12:45:22.	2019-10-23 01:59:17
110.138.148.178	attackbots	Unauthorized connection attempt from IP address 110.138.148.178 on Port 445(SMB)	2019-10-20 23:52:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.148.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.148.10.			IN	A

;; AUTHORITY SECTION:
.			316	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031100 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 11 15:39:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

10.148.138.110.in-addr.arpa domain name pointer 10.subnet110-138-148.speedy.telkom.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.148.138.110.in-addr.arpa	name = 10.subnet110-138-148.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.141.132.88	attack	Jul 6 05:52:21 vpn01 sshd[4669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.141.132.88 Jul 6 05:52:23 vpn01 sshd[4669]: Failed password for invalid user albert from 114.141.132.88 port 14494 ssh2 ...	2020-07-06 14:57:40
51.137.134.191	attack	Jul 6 06:55:52 onepixel sshd[2523572]: Invalid user flf from 51.137.134.191 port 57444 Jul 6 06:55:52 onepixel sshd[2523572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.137.134.191 Jul 6 06:55:52 onepixel sshd[2523572]: Invalid user flf from 51.137.134.191 port 57444 Jul 6 06:55:54 onepixel sshd[2523572]: Failed password for invalid user flf from 51.137.134.191 port 57444 ssh2 Jul 6 06:59:16 onepixel sshd[2525327]: Invalid user crl from 51.137.134.191 port 55766	2020-07-06 15:08:17
106.13.206.130	attackspam	Jul 6 09:08:58 localhost sshd\[16024\]: Invalid user n from 106.13.206.130 Jul 6 09:08:58 localhost sshd\[16024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.206.130 Jul 6 09:09:00 localhost sshd\[16024\]: Failed password for invalid user n from 106.13.206.130 port 43644 ssh2 Jul 6 09:10:53 localhost sshd\[16250\]: Invalid user sonar from 106.13.206.130 Jul 6 09:10:53 localhost sshd\[16250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.206.130 ...	2020-07-06 15:26:03
124.192.225.221	attackbotsspam	Jul 6 08:09:57 dev0-dcde-rnet sshd[14404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.192.225.221 Jul 6 08:09:59 dev0-dcde-rnet sshd[14404]: Failed password for invalid user cosmos from 124.192.225.221 port 14204 ssh2 Jul 6 08:12:39 dev0-dcde-rnet sshd[14421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.192.225.221	2020-07-06 14:44:29
222.201.139.62	attackbots	$f2bV_matches	2020-07-06 14:47:18
209.141.58.20	attack	prod8 ...	2020-07-06 14:55:17
107.161.177.66	attackbotsspam	Brute forcing Wordpress login	2020-07-06 15:07:53
188.166.147.211	attackspambots	2020-07-06T04:05:53.631361shield sshd\[9397\]: Invalid user nl from 188.166.147.211 port 38742 2020-07-06T04:05:53.635941shield sshd\[9397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.147.211 2020-07-06T04:05:55.518647shield sshd\[9397\]: Failed password for invalid user nl from 188.166.147.211 port 38742 ssh2 2020-07-06T04:15:18.669836shield sshd\[13740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.147.211 user=root 2020-07-06T04:15:20.783399shield sshd\[13740\]: Failed password for root from 188.166.147.211 port 35078 ssh2	2020-07-06 15:06:19
52.57.69.140	attackspam	20 attempts against mh-ssh on frost	2020-07-06 15:21:06
88.199.127.122	attackbots	(smtpauth) Failed SMTP AUTH login from 88.199.127.122 (PL/Poland/88-199-127-122.tktelekom.pl): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-06 08:22:21 plain authenticator failed for 88-199-127-122.tktelekom.pl [88.199.127.122]: 535 Incorrect authentication data (set_id=ar.davoudi@sunirco.ir)	2020-07-06 14:57:56
218.78.105.98	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-06T03:41:19Z and 2020-07-06T03:52:27Z	2020-07-06 14:52:45
159.89.193.26	attackbotsspam	[portscan] udp/1900 [ssdp] *(RWIN=-)(07060928)	2020-07-06 15:20:09
124.83.119.5	attackspam	1594007540 - 07/06/2020 05:52:20 Host: 124.83.119.5/124.83.119.5 Port: 445 TCP Blocked	2020-07-06 14:57:14
213.55.169.120	attackbotsspam	Jul 6 09:06:32 pkdns2 sshd\[58283\]: Invalid user 3 from 213.55.169.120Jul 6 09:06:34 pkdns2 sshd\[58283\]: Failed password for invalid user 3 from 213.55.169.120 port 59658 ssh2Jul 6 09:09:57 pkdns2 sshd\[58424\]: Invalid user usuario from 213.55.169.120Jul 6 09:09:59 pkdns2 sshd\[58424\]: Failed password for invalid user usuario from 213.55.169.120 port 54844 ssh2Jul 6 09:13:17 pkdns2 sshd\[58634\]: Invalid user ubuntu from 213.55.169.120Jul 6 09:13:19 pkdns2 sshd\[58634\]: Failed password for invalid user ubuntu from 213.55.169.120 port 50014 ssh2 ...	2020-07-06 15:16:44
152.136.22.63	attackspam	$f2bV_matches	2020-07-06 15:20:36

Recently Reported IPs

206.189.196.95	156.67.216.87	66.249.66.135	168.15.250.145
115.79.30.165	114.67.79.46	202.171.249.202	239.183.150.11
133.73.17.162	158.46.183.123	46.9.127.25	27.137.189.226
28.84.228.221	103.45.191.4	152.31.64.30	85.153.54.92
195.9.1.30	2.215.188.121	5.187.50.128	76.254.123.204