110.138.3.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 445/tcp	2019-08-19 17:41:20

Comments on same subnet:

IP	Type	Details	Datetime
110.138.3.16	attackbotsspam	Automatic report - Port Scan Attack	2020-07-31 02:02:34
110.138.3.203	attackbots	Automatic report - Port Scan Attack	2020-06-27 18:49:48
110.138.38.157	attackspam	1588670055 - 05/05/2020 11:14:15 Host: 110.138.38.157/110.138.38.157 Port: 445 TCP Blocked	2020-05-06 01:53:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.138.3.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25378
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.138.3.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081900 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 19 17:41:14 CST 2019
;; MSG SIZE  rcvd: 116

Host info

94.3.138.110.in-addr.arpa domain name pointer 94.subnet110-138-3.speedy.telkom.net.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.3.138.110.in-addr.arpa	name = 94.subnet110-138-3.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.162.94.207	attackbotsspam	Jul 19 10:19:55 buvik sshd[8721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.162.94.207 Jul 19 10:19:57 buvik sshd[8721]: Failed password for invalid user jyoti from 14.162.94.207 port 46976 ssh2 Jul 19 10:23:06 buvik sshd[9162]: Invalid user bruno from 14.162.94.207 ...	2020-07-19 16:29:00
121.239.36.93	attackspam	2020-07-19T16:55:42.039466hermes postfix/smtpd[87871]: NOQUEUE: reject: RCPT from unknown[121.239.36.93]: 554 5.7.1 Service unavailable; Client host [121.239.36.93] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/121.239.36.93; from= to= proto=ESMTP helo= ...	2020-07-19 16:15:57
209.181.64.45	attackbots	Automatic report - Banned IP Access	2020-07-19 16:13:49
152.136.150.115	attackspam	k+ssh-bruteforce	2020-07-19 16:23:12
131.100.77.30	attack	failed_logins	2020-07-19 16:37:20
112.85.42.185	attackspambots	Jul 19 10:57:23 ift sshd\[49193\]: Failed password for root from 112.85.42.185 port 60862 ssh2Jul 19 11:01:16 ift sshd\[49932\]: Failed password for root from 112.85.42.185 port 32967 ssh2Jul 19 11:01:18 ift sshd\[49932\]: Failed password for root from 112.85.42.185 port 32967 ssh2Jul 19 11:01:20 ift sshd\[49932\]: Failed password for root from 112.85.42.185 port 32967 ssh2Jul 19 11:07:21 ift sshd\[50899\]: Failed password for root from 112.85.42.185 port 45854 ssh2 ...	2020-07-19 16:31:28
159.65.172.240	attack	2020-07-19 09:55:50,340 fail2ban.actions: WARNING [ssh] Ban 159.65.172.240	2020-07-19 16:11:23
193.95.247.90	attackbotsspam	Jul 19 08:12:18 plex-server sshd[3669136]: Invalid user bbq from 193.95.247.90 port 53376 Jul 19 08:12:18 plex-server sshd[3669136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.95.247.90 Jul 19 08:12:18 plex-server sshd[3669136]: Invalid user bbq from 193.95.247.90 port 53376 Jul 19 08:12:20 plex-server sshd[3669136]: Failed password for invalid user bbq from 193.95.247.90 port 53376 ssh2 Jul 19 08:16:30 plex-server sshd[3671223]: Invalid user cosmo from 193.95.247.90 port 39732 ...	2020-07-19 16:25:30
60.167.182.225	attackspam	$f2bV_matches	2020-07-19 16:18:17
49.233.148.122	attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-07-19 16:28:18
51.161.45.65	attackbots	Jul 19 10:24:55 home sshd[14496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.65 Jul 19 10:24:57 home sshd[14496]: Failed password for invalid user test3 from 51.161.45.65 port 34922 ssh2 Jul 19 10:29:03 home sshd[15018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.65 ...	2020-07-19 16:29:53
111.72.195.127	attackspambots	Jul 19 09:49:50 srv1 postfix/smtpd[11214]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:56:58 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:56:59 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:57:00 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:57:02 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure ...	2020-07-19 16:03:54
185.56.153.229	attack	$f2bV_matches	2020-07-19 16:02:12
197.255.224.149	attackbots	WordPress Drone detected by safePassage	2020-07-19 16:24:29
144.34.130.211	attackbotsspam	2020-07-19T07:50:10.247292shield sshd\[20215\]: Invalid user med from 144.34.130.211 port 39224 2020-07-19T07:50:10.256143shield sshd\[20215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.130.211.16clouds.com 2020-07-19T07:50:12.354422shield sshd\[20215\]: Failed password for invalid user med from 144.34.130.211 port 39224 ssh2 2020-07-19T07:56:03.652738shield sshd\[21516\]: Invalid user freeside from 144.34.130.211 port 56882 2020-07-19T07:56:03.661428shield sshd\[21516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.130.211.16clouds.com	2020-07-19 15:56:43

Recently Reported IPs

106.12.147.195	148.200.72.182	140.167.241.17	31.241.138.171
42.217.235.156	225.2.235.162	226.180.178.219	136.203.144.143
107.175.56.203	157.212.239.50	224.39.160.11	184.176.88.214
200.17.239.237	16.99.44.242	52.163.85.65	18.232.130.213
180.105.76.150	162.235.238.163	117.53.1.125	66.23.193.76