110.138.3.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 445/tcp	2019-08-19 17:41:20

Comments on same subnet:

IP	Type	Details	Datetime
110.138.3.16	attackbotsspam	Automatic report - Port Scan Attack	2020-07-31 02:02:34
110.138.3.203	attackbots	Automatic report - Port Scan Attack	2020-06-27 18:49:48
110.138.38.157	attackspam	1588670055 - 05/05/2020 11:14:15 Host: 110.138.38.157/110.138.38.157 Port: 445 TCP Blocked	2020-05-06 01:53:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.3.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25378
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.3.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081900 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 19 17:41:14 CST 2019
;; MSG SIZE  rcvd: 116

Host info

94.3.138.110.in-addr.arpa domain name pointer 94.subnet110-138-3.speedy.telkom.net.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.3.138.110.in-addr.arpa	name = 94.subnet110-138-3.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.42.155	attack	Feb 16 04:24:11 areeb-Workstation sshd[20011]: Failed password for root from 222.186.42.155 port 36942 ssh2 Feb 16 04:24:14 areeb-Workstation sshd[20011]: Failed password for root from 222.186.42.155 port 36942 ssh2 ...	2020-02-16 07:09:48
143.255.126.99	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 07:17:08
143.255.127.182	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 07:11:29
222.186.173.215	attack	Feb1600:13:54server6sshd[22169]:refusedconnectfrom222.186.173.215\(222.186.173.215\)Feb1600:13:54server6sshd[22170]:refusedconnectfrom222.186.173.215\(222.186.173.215\)Feb1600:13:54server6sshd[22171]:refusedconnectfrom222.186.173.215\(222.186.173.215\)Feb1600:13:54server6sshd[22172]:refusedconnectfrom222.186.173.215\(222.186.173.215\)Feb1600:27:43server6sshd[23548]:refusedconnectfrom222.186.173.215\(222.186.173.215\)	2020-02-16 07:27:57
106.12.23.198	attackbotsspam	Feb 15 22:20:16 ws26vmsma01 sshd[22262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.23.198 Feb 15 22:20:18 ws26vmsma01 sshd[22262]: Failed password for invalid user admire from 106.12.23.198 port 46886 ssh2 ...	2020-02-16 07:05:48
159.65.159.1	attack	B: f2b ssh aggressive 3x	2020-02-16 07:35:20
140.143.73.184	attackbotsspam	Feb 15 14:51:13 mockhub sshd[12766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.73.184 Feb 15 14:51:15 mockhub sshd[12766]: Failed password for invalid user saccone from 140.143.73.184 port 49288 ssh2 ...	2020-02-16 07:23:09
181.49.107.180	attack	Feb 16 00:14:12 legacy sshd[22950]: Failed password for root from 181.49.107.180 port 16854 ssh2 Feb 16 00:17:48 legacy sshd[23200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.107.180 Feb 16 00:17:50 legacy sshd[23200]: Failed password for invalid user user2 from 181.49.107.180 port 17806 ssh2 ...	2020-02-16 07:27:19
106.52.19.71	attackbotsspam	Invalid user bty from 106.52.19.71 port 52790	2020-02-16 07:33:24
80.82.65.62	attackbotsspam	Feb 16 00:12:31 debian-2gb-nbg1-2 kernel: \[4067572.904760\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.62 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=33916 PROTO=TCP SPT=50131 DPT=2288 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-16 07:27:37
134.209.164.184	attackspambots	Invalid user chui from 134.209.164.184 port 45614	2020-02-16 07:20:11
112.196.96.36	attackspam	Invalid user tomcat from 112.196.96.36 port 43708	2020-02-16 07:20:32
81.182.248.193	attackbotsspam	Feb 15 12:50:26 hpm sshd\[26195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dsl51b6f8c1.fixip.t-online.hu user=root Feb 15 12:50:28 hpm sshd\[26195\]: Failed password for root from 81.182.248.193 port 45593 ssh2 Feb 15 12:55:01 hpm sshd\[26667\]: Invalid user user0 from 81.182.248.193 Feb 15 12:55:01 hpm sshd\[26667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dsl51b6f8c1.fixip.t-online.hu Feb 15 12:55:03 hpm sshd\[26667\]: Failed password for invalid user user0 from 81.182.248.193 port 58702 ssh2	2020-02-16 07:32:09
81.22.132.99	attack	Unauthorised access (Feb 16) SRC=81.22.132.99 LEN=40 TTL=56 ID=30253 TCP DPT=23 WINDOW=35273 SYN	2020-02-16 07:19:53
71.6.146.185	attackspam	Fail2Ban Ban Triggered	2020-02-16 07:24:19

Recently Reported IPs

106.12.147.195	148.200.72.182	140.167.241.17	31.241.138.171
42.217.235.156	225.2.235.162	226.180.178.219	136.203.144.143
107.175.56.203	157.212.239.50	224.39.160.11	184.176.88.214
200.17.239.237	16.99.44.242	52.163.85.65	18.232.130.213
180.105.76.150	162.235.238.163	117.53.1.125	66.23.193.76