116.206.31.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.206.31.44	attack	Unauthorized connection attempt from IP address 116.206.31.44 on Port 445(SMB)	2020-06-18 19:45:44
116.206.31.60	attack	20/4/7@08:46:56: FAIL: Alarm-Intrusion address from=116.206.31.60 ...	2020-04-08 02:43:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.206.31.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.206.31.55.			IN	A

;; AUTHORITY SECTION:
.			215	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 05 04:53:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

55.31.206.116.in-addr.arpa domain name pointer subs35-116-206-31-55.three.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.31.206.116.in-addr.arpa	name = subs35-116-206-31-55.three.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
219.141.190.195	attack	Mar 3 20:03:27 NPSTNNYC01T sshd[5240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.141.190.195 Mar 3 20:03:29 NPSTNNYC01T sshd[5240]: Failed password for invalid user admin from 219.141.190.195 port 19236 ssh2 Mar 3 20:07:44 NPSTNNYC01T sshd[5619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.141.190.195 ...	2020-03-04 10:07:43
188.173.80.134	attackspam	(sshd) Failed SSH login from 188.173.80.134 (RO/Romania/188-173-80-134.next-gen.ro): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 4 01:20:57 amsweb01 sshd[30039]: Invalid user sgi from 188.173.80.134 port 55693 Mar 4 01:20:59 amsweb01 sshd[30039]: Failed password for invalid user sgi from 188.173.80.134 port 55693 ssh2 Mar 4 01:29:05 amsweb01 sshd[30937]: Invalid user tomcat from 188.173.80.134 port 43093 Mar 4 01:29:07 amsweb01 sshd[30937]: Failed password for invalid user tomcat from 188.173.80.134 port 43093 ssh2 Mar 4 01:37:15 amsweb01 sshd[31915]: Invalid user backup from 188.173.80.134 port 58718	2020-03-04 10:06:39
186.136.128.148	attack	Mar 3 20:25:02 plusreed sshd[1788]: Invalid user webuser from 186.136.128.148 ...	2020-03-04 10:03:38
92.118.37.88	attackspambots	Mar 4 02:27:04 debian-2gb-nbg1-2 kernel: \[5544400.594336\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.88 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=11821 PROTO=TCP SPT=47261 DPT=6009 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-04 09:59:22
107.173.194.163	attack	TCP Port Scanning	2020-03-04 09:33:06
194.26.29.130	attackbots	Mar 4 02:20:26 debian-2gb-nbg1-2 kernel: \[5544002.594083\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=31024 PROTO=TCP SPT=46313 DPT=7139 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-04 09:51:05
180.76.246.205	attack	Lines containing failures of 180.76.246.205 Mar 3 21:12:14 cdb sshd[32632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.246.205 user=postgres Mar 3 21:12:16 cdb sshd[32632]: Failed password for postgres from 180.76.246.205 port 38928 ssh2 Mar 3 21:12:16 cdb sshd[32632]: Received disconnect from 180.76.246.205 port 38928:11: Bye Bye [preauth] Mar 3 21:12:16 cdb sshd[32632]: Disconnected from authenticating user postgres 180.76.246.205 port 38928 [preauth] Mar 3 21:18:54 cdb sshd[993]: Invalid user vnc from 180.76.246.205 port 54412 Mar 3 21:18:54 cdb sshd[993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.246.205 Mar 3 21:18:56 cdb sshd[993]: Failed password for invalid user vnc from 180.76.246.205 port 54412 ssh2 Mar 3 21:18:57 cdb sshd[993]: Received disconnect from 180.76.246.205 port 54412:11: Bye Bye [preauth] Mar 3 21:18:57 cdb sshd[993]: Disconnected from ........ ------------------------------	2020-03-04 09:29:34
139.59.90.31	attack	(sshd) Failed SSH login from 139.59.90.31 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 4 02:07:01 amsweb01 sshd[3049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.90.31 user=root Mar 4 02:07:03 amsweb01 sshd[3049]: Failed password for root from 139.59.90.31 port 58966 ssh2 Mar 4 02:16:19 amsweb01 sshd[4270]: Invalid user oracle from 139.59.90.31 port 54870 Mar 4 02:16:20 amsweb01 sshd[4270]: Failed password for invalid user oracle from 139.59.90.31 port 54870 ssh2 Mar 4 02:25:32 amsweb01 sshd[5532]: Invalid user alex from 139.59.90.31 port 50818	2020-03-04 09:37:14
137.186.221.132	attackspam	Brute forcing RDP port 3389	2020-03-04 09:58:47
185.209.0.89	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 3406 proto: TCP cat: Misc Attack	2020-03-04 09:23:37
70.36.79.181	attack	2020-03-04T01:34:25.151009shield sshd\[15212\]: Invalid user admin from 70.36.79.181 port 57962 2020-03-04T01:34:25.155905shield sshd\[15212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.36.79.181 2020-03-04T01:34:27.063164shield sshd\[15212\]: Failed password for invalid user admin from 70.36.79.181 port 57962 ssh2 2020-03-04T01:40:02.874900shield sshd\[15944\]: Invalid user vncuser from 70.36.79.181 port 45462 2020-03-04T01:40:02.880403shield sshd\[15944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.36.79.181	2020-03-04 10:08:31
5.137.32.60	attack	Automatic report - Port Scan Attack	2020-03-04 09:21:36
106.54.242.120	attack	20 attempts against mh-ssh on echoip	2020-03-04 09:56:06
124.108.21.100	attackbots	(sshd) Failed SSH login from 124.108.21.100 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 4 02:02:39 amsweb01 sshd[2601]: Invalid user zhanglei from 124.108.21.100 port 59695 Mar 4 02:02:41 amsweb01 sshd[2601]: Failed password for invalid user zhanglei from 124.108.21.100 port 59695 ssh2 Mar 4 02:11:34 amsweb01 sshd[3725]: Invalid user gk from 124.108.21.100 port 51397 Mar 4 02:11:36 amsweb01 sshd[3725]: Failed password for invalid user gk from 124.108.21.100 port 51397 ssh2 Mar 4 02:23:40 amsweb01 sshd[5243]: Invalid user tsadmin from 124.108.21.100 port 43103	2020-03-04 10:04:44
49.235.158.251	attackspam	Mar 4 00:25:43 vpn01 sshd[16350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.158.251 Mar 4 00:25:46 vpn01 sshd[16350]: Failed password for invalid user postgres from 49.235.158.251 port 60918 ssh2 ...	2020-03-04 09:30:01

Recently Reported IPs

116.90.236.222	116.206.31.48	116.206.31.57	116.206.31.66
116.206.30.36	116.206.31.81	116.206.33.61	116.206.37.226
116.206.35.4	116.206.38.52	116.90.236.94	116.206.39.118
116.206.38.62	116.206.4.2	116.206.39.124	116.206.4.4
116.206.39.92	116.206.40.112	116.206.40.100	116.206.40.225