110.138.150.91

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
110.138.150.113	attack	Unauthorized IMAP connection attempt	2020-06-16 14:30:48
110.138.150.227	attackspam	1591302043 - 06/04/2020 22:20:43 Host: 110.138.150.227/110.138.150.227 Port: 445 TCP Blocked	2020-06-05 07:20:28
110.138.150.45	attackbots	Unauthorised access (May 12) SRC=110.138.150.45 LEN=52 TTL=116 ID=10921 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-12 12:26:07
110.138.150.80	attackspambots	May 9 03:32:41 raspberrypi sshd\[22172\]: Did not receive identification string from 110.138.150.80 ...	2020-05-10 00:49:33
110.138.150.174	attackbotsspam	RDP Brute-Force	2020-05-04 17:06:14
110.138.150.251	attackbots	Unauthorized connection attempt from IP address 110.138.150.251 on Port 445(SMB)	2020-03-03 05:01:00
110.138.150.95	attackspam	Honeypot attack, port: 445, PTR: 95.subnet110-138-150.speedy.telkom.net.id.	2020-02-21 20:31:49
110.138.150.236	attackspambots	Web-based SQL injection attempt	2020-02-12 16:48:36
110.138.150.223	attackbots	Honeypot attack, port: 445, PTR: 223.subnet110-138-150.speedy.telkom.net.id.	2020-02-10 19:16:16
110.138.150.0	attackbotsspam	unauthorized connection attempt	2020-02-07 16:58:38
110.138.150.35	attack	Honeypot attack, port: 445, PTR: 35.subnet110-138-150.speedy.telkom.net.id.	2020-02-02 17:02:55
110.138.150.17	attack	Honeypot attack, port: 445, PTR: 17.subnet110-138-150.speedy.telkom.net.id.	2020-02-02 17:02:41
110.138.150.0	attackbotsspam	20/1/31@03:47:27: FAIL: Alarm-Network address from=110.138.150.0 ...	2020-01-31 19:23:54
110.138.150.221	attackbotsspam	20/1/12@23:46:56: FAIL: Alarm-Network address from=110.138.150.221 20/1/12@23:46:56: FAIL: Alarm-Network address from=110.138.150.221 ...	2020-01-13 19:49:01
110.138.150.13	attack	Honeypot attack, port: 445, PTR: 13.subnet110-138-150.speedy.telkom.net.id.	2020-01-13 16:58:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.150.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39998
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;110.138.150.91.			IN	A

;; AUTHORITY SECTION:
.			453	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 19:18:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

b'Host 91.150.138.110.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 110.138.150.91.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
2.59.21.207	attack	[Aegis] @ 2019-10-15 04:50:08 0100 -> A web attack returned code 200 (success).	2019-10-15 15:07:21
159.203.193.51	attack	firewall-block, port(s): 9080/tcp	2019-10-15 15:05:54
120.41.153.128	attackbots	/download/file.php?id=171&sid=611b686949c56079894f679e807b47a2	2019-10-15 14:48:22
165.227.212.99	attackbots	Oct 15 02:58:06 firewall sshd[14649]: Invalid user p@ssw0rd! from 165.227.212.99 Oct 15 02:58:08 firewall sshd[14649]: Failed password for invalid user p@ssw0rd! from 165.227.212.99 port 44328 ssh2 Oct 15 03:01:40 firewall sshd[14724]: Invalid user Baiser2017 from 165.227.212.99 ...	2019-10-15 15:05:35
14.251.168.182	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 15-10-2019 04:50:21.	2019-10-15 14:57:32
163.172.26.73	attackspam	Oct 14 02:34:26 xb0 sshd[25159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.26.73 user=r.r Oct 14 02:34:28 xb0 sshd[25159]: Failed password for r.r from 163.172.26.73 port 24276 ssh2 Oct 14 02:34:28 xb0 sshd[25159]: Received disconnect from 163.172.26.73: 11: Bye Bye [preauth] Oct 14 02:39:05 xb0 sshd[23784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.26.73 user=r.r Oct 14 02:39:07 xb0 sshd[23784]: Failed password for r.r from 163.172.26.73 port 11652 ssh2 Oct 14 02:39:07 xb0 sshd[23784]: Received disconnect from 163.172.26.73: 11: Bye Bye [preauth] Oct 14 02:42:30 xb0 sshd[21044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.26.73 user=r.r Oct 14 02:42:32 xb0 sshd[21044]: Failed password for r.r from 163.172.26.73 port 53046 ssh2 Oct 14 02:42:32 xb0 sshd[21044]: Received disconnect from 163.172.26.73: 11: Bye By........ -------------------------------	2019-10-15 15:15:01
222.186.175.148	attack	Oct 15 08:46:06 nextcloud sshd\[20548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Oct 15 08:46:09 nextcloud sshd\[20548\]: Failed password for root from 222.186.175.148 port 59096 ssh2 Oct 15 08:46:13 nextcloud sshd\[20548\]: Failed password for root from 222.186.175.148 port 59096 ssh2 ...	2019-10-15 15:01:12
96.30.84.204	attack	firewall-block, port(s): 88/tcp	2019-10-15 15:08:54
71.6.232.7	attackbots	firewall-block, port(s): 443/tcp	2019-10-15 15:14:11
37.187.159.24	attack	xmlrpc attack	2019-10-15 15:17:34
45.95.99.230	attackbotsspam	[Aegis] @ 2019-10-15 04:50:23 0100 -> A web attack returned code 200 (success).	2019-10-15 14:46:11
46.101.187.122	attack	fail2ban honeypot	2019-10-15 15:20:13
117.78.33.78	attack	Automatic report - Port Scan Attack	2019-10-15 15:07:42
103.92.84.102	attackspambots	Oct 15 06:44:55 hcbbdb sshd\[32710\]: Invalid user marlin from 103.92.84.102 Oct 15 06:44:55 hcbbdb sshd\[32710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102 Oct 15 06:44:57 hcbbdb sshd\[32710\]: Failed password for invalid user marlin from 103.92.84.102 port 42660 ssh2 Oct 15 06:50:14 hcbbdb sshd\[932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102 user=root Oct 15 06:50:16 hcbbdb sshd\[932\]: Failed password for root from 103.92.84.102 port 52856 ssh2	2019-10-15 14:53:34
191.34.162.186	attack	Oct 15 06:31:26 *** sshd[5708]: User root from 191.34.162.186 not allowed because not listed in AllowUsers	2019-10-15 15:18:47

Recently Reported IPs

110.138.150.84	110.138.150.98	110.138.151.131	110.138.151.102
110.138.151.16	110.138.151.145	110.138.151.2	110.138.151.201
110.138.151.211	110.138.151.222	110.138.151.237	110.138.151.218
110.138.151.242	110.138.151.244	110.138.151.247	110.138.151.25
110.138.151.252	110.138.151.26	110.138.151.41	110.138.151.47