116.203.131.19

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.203.131.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13672
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.203.131.19.			IN	A

;; AUTHORITY SECTION:
.			173	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031400 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 14 23:21:36 CST 2022
;; MSG SIZE  rcvd: 107

Host info

19.131.203.116.in-addr.arpa domain name pointer static.19.131.203.116.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.131.203.116.in-addr.arpa	name = static.19.131.203.116.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.174.93.5	attackspam	[MK-Root1] Blocked by UFW	2020-04-01 06:45:09
111.229.154.15	attack	Brute force SMTP login attempted. ...	2020-04-01 06:20:44
94.183.119.9	attack	DATE:2020-03-31 23:30:47, IP:94.183.119.9, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-01 06:43:10
105.229.52.149	attack	Apr 1 00:04:32 vpn01 sshd[10639]: Failed password for root from 105.229.52.149 port 46556 ssh2 ...	2020-04-01 06:35:43
171.235.97.106	attackspam	Automatic report - Port Scan Attack	2020-04-01 06:32:56
173.252.127.41	attackbotsspam	[Wed Apr 01 04:30:35.810336 2020] [:error] [pid 20361:tid 140247698454272] [client 173.252.127.41:42494] [client 173.252.127.41] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v1.js"] [unique_id "XoO2e7FPZ-2JTpeNU@LYuQAAAAE"] ...	2020-04-01 06:54:38
111.200.62.30	attack	Brute force SMTP login attempted. ...	2020-04-01 06:54:54
111.205.93.188	attackbots	Brute force SMTP login attempted. ...	2020-04-01 06:47:06
106.52.88.211	attackspambots	Mar 31 23:10:11 srv206 sshd[4624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.88.211 user=root Mar 31 23:10:13 srv206 sshd[4624]: Failed password for root from 106.52.88.211 port 59420 ssh2 Mar 31 23:35:25 srv206 sshd[4856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.88.211 user=root Mar 31 23:35:26 srv206 sshd[4856]: Failed password for root from 106.52.88.211 port 39164 ssh2 ...	2020-04-01 06:42:51
39.50.100.130	attackbotsspam	Unauthorized connection attempt from IP address 39.50.100.130 on Port 445(SMB)	2020-04-01 06:51:00
111.229.103.67	attackspambots	Brute force SMTP login attempted. ...	2020-04-01 06:29:40
111.202.66.163	attack	Brute force SMTP login attempted. ...	2020-04-01 06:53:03
50.58.85.142	attackbots	Unauthorized connection attempt from IP address 50.58.85.142 on Port 445(SMB)	2020-04-01 06:36:08
173.252.127.35	attack	[Wed Apr 01 04:30:35.610003 2020] [:error] [pid 20512:tid 140247706846976] [client 173.252.127.35:52892] [client 173.252.127.35] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/TableFilter/system-v98.css"] [unique_id "XoO2ex1EC-fPHrmNo3x5kQAAAAE"] ...	2020-04-01 06:57:43
102.89.2.34	attack	(pop3d) Failed POP3 login from 102.89.2.34 (NG/Nigeria/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 1 02:00:35 ir1 dovecot[566034]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=102.89.2.34, lip=5.63.12.44, session=	2020-04-01 06:55:48

Recently Reported IPs

100.230.79.50	116.203.132.167	116.203.135.67	116.203.135.74
95.218.22.213	116.203.138.148	116.203.140.241	116.203.142.116
116.203.142.254	116.203.143.172	116.203.143.38	116.203.146.82
116.203.147.83	116.203.149.182	116.203.149.54	116.203.15.25
116.203.151.0	116.203.151.108	116.203.151.242	116.203.152.195