110.139.198.152

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	445/tcp 445/tcp 445/tcp [2019-10-25]3pkt	2019-10-25 16:05:28

Comments on same subnet:

IP	Type	Details	Datetime
110.139.198.62	attackspam	Unauthorized connection attempt from IP address 110.139.198.62 on Port 445(SMB)	2020-04-03 20:13:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.139.198.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47163
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.139.198.152.		IN	A

;; AUTHORITY SECTION:
.			428	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102500 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 16:05:22 CST 2019
;; MSG SIZE  rcvd: 119

Host info

152.198.139.110.in-addr.arpa domain name pointer 152.subnet110-139-198.speedy.telkom.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
152.198.139.110.in-addr.arpa	name = 152.subnet110-139-198.speedy.telkom.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.78.126.160	attackspam	Honeypot attack, port: 445, PTR: 160.126.78.124.broad.xw.sh.dynamic.163data.com.cn.	2020-02-06 21:49:43
115.137.153.159	attackbots	Lines containing failures of 115.137.153.159 Feb 4 05:11:19 shared03 sshd[31485]: Invalid user clam from 115.137.153.159 port 45500 Feb 4 05:11:19 shared03 sshd[31485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.137.153.159 Feb 4 05:11:21 shared03 sshd[31485]: Failed password for invalid user clam from 115.137.153.159 port 45500 ssh2 Feb 4 05:11:21 shared03 sshd[31485]: Received disconnect from 115.137.153.159 port 45500:11: Bye Bye [preauth] Feb 4 05:11:21 shared03 sshd[31485]: Disconnected from invalid user clam 115.137.153.159 port 45500 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.137.153.159	2020-02-06 22:10:15
110.232.84.253	attackspambots	Honeypot attack, port: 445, PTR: cluster-private.bdl.nusa.net.id.	2020-02-06 21:41:30
202.39.28.8	attackspambots	Feb 6 14:46:15 vpn01 sshd[32445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.28.8 Feb 6 14:46:17 vpn01 sshd[32445]: Failed password for invalid user jof from 202.39.28.8 port 20801 ssh2 ...	2020-02-06 22:20:49
49.145.164.118	attack	Unauthorized connection attempt from IP address 49.145.164.118 on Port 445(SMB)	2020-02-06 22:27:10
49.89.248.71	attackspambots	ET WEB_SPECIFIC_APPS ECSHOP user.php SQL INJECTION via Referer	2020-02-06 21:42:25
123.207.142.31	attack	IP blocked	2020-02-06 22:21:58
190.186.83.34	attackspambots	Unauthorized connection attempt from IP address 190.186.83.34 on Port 445(SMB)	2020-02-06 22:28:35
95.167.39.12	attackspam	Feb 6 08:47:01 mail sshd\[11664\]: Invalid user hae from 95.167.39.12 Feb 6 08:47:01 mail sshd\[11664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.167.39.12 ...	2020-02-06 21:56:02
188.165.210.176	attackspam	Feb 6 14:46:33 [host] sshd[7058]: Invalid user ii Feb 6 14:46:33 [host] sshd[7058]: pam_unix(sshd:a Feb 6 14:46:34 [host] sshd[7058]: Failed password	2020-02-06 22:12:44
172.97.217.159	attackspambots	Automatic report - Port Scan Attack	2020-02-06 21:50:34
132.145.173.64	attackspambots	Feb 6 14:59:42 srv-ubuntu-dev3 sshd[65553]: Invalid user czk from 132.145.173.64 Feb 6 14:59:42 srv-ubuntu-dev3 sshd[65553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.173.64 Feb 6 14:59:42 srv-ubuntu-dev3 sshd[65553]: Invalid user czk from 132.145.173.64 Feb 6 14:59:44 srv-ubuntu-dev3 sshd[65553]: Failed password for invalid user czk from 132.145.173.64 port 37924 ssh2 Feb 6 15:02:50 srv-ubuntu-dev3 sshd[65798]: Invalid user gzw from 132.145.173.64 Feb 6 15:02:50 srv-ubuntu-dev3 sshd[65798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.173.64 Feb 6 15:02:50 srv-ubuntu-dev3 sshd[65798]: Invalid user gzw from 132.145.173.64 Feb 6 15:02:52 srv-ubuntu-dev3 sshd[65798]: Failed password for invalid user gzw from 132.145.173.64 port 39862 ssh2 Feb 6 15:06:11 srv-ubuntu-dev3 sshd[66105]: Invalid user kmi from 132.145.173.64 ...	2020-02-06 22:13:56
185.176.27.254	attackspambots	02/06/2020-09:12:23.347443 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-06 22:22:39
43.243.129.55	attackbotsspam	Feb 6 15:08:26 plex sshd[24578]: Invalid user aae from 43.243.129.55 port 54872	2020-02-06 22:23:04
141.98.10.137	attack	Rude login attack (4 tries in 1d)	2020-02-06 22:30:44

Recently Reported IPs

35.203.252.152	185.255.79.182	111.123.206.195	106.13.63.202
45.125.65.48	112.17.107.86	77.62.150.200	144.2.213.91
190.98.234.169	165.226.230.252	106.13.86.12	221.4.152.250
188.19.151.251	124.94.198.145	36.81.7.153	60.157.117.4
49.231.16.105	182.113.215.87	190.86.253.178	108.198.117.122