117.54.138.131

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.54.138.43	attackbots	445/tcp [2019-07-04]1pkt	2019-07-04 18:50:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.54.138.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17581
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.54.138.131.			IN	A

;; AUTHORITY SECTION:
.			554	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 21:28:47 CST 2022
;; MSG SIZE  rcvd: 107

Host info

131.138.54.117.in-addr.arpa domain name pointer rev-131-138-54-117.indo.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.138.54.117.in-addr.arpa	name = rev-131-138-54-117.indo.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.81.190.149	attack	Aug 26 05:47:45 lcprod sshd\[6022\]: Invalid user test from 193.81.190.149 Aug 26 05:47:45 lcprod sshd\[6022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193-81-190-149.adsl.highway.telekom.at Aug 26 05:47:47 lcprod sshd\[6022\]: Failed password for invalid user test from 193.81.190.149 port 60028 ssh2 Aug 26 05:54:38 lcprod sshd\[6604\]: Invalid user maxwell from 193.81.190.149 Aug 26 05:54:38 lcprod sshd\[6604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193-81-190-149.adsl.highway.telekom.at	2019-08-27 04:58:30
222.252.30.117	attack	Aug 26 16:40:51 plusreed sshd[11689]: Invalid user db2fenc1 from 222.252.30.117 ...	2019-08-27 04:57:15
83.121.111.171	attackspambots	[portscan] Port scan	2019-08-27 05:09:20
128.199.61.80	attackspam	fail2ban honeypot	2019-08-27 04:51:10
123.31.32.150	attackspam	Aug 26 19:46:20 ubuntu-2gb-nbg1-dc3-1 sshd[7032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.32.150 Aug 26 19:46:23 ubuntu-2gb-nbg1-dc3-1 sshd[7032]: Failed password for invalid user Where from 123.31.32.150 port 44878 ssh2 ...	2019-08-27 05:06:09
89.40.216.233	attack	Aug 26 22:08:09 ubuntu-2gb-nbg1-dc3-1 sshd[18418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.40.216.233 Aug 26 22:08:11 ubuntu-2gb-nbg1-dc3-1 sshd[18418]: Failed password for invalid user siva from 89.40.216.233 port 48080 ssh2 ...	2019-08-27 04:37:29
177.42.242.209	attackspam	Unauthorized connection attempt from IP address 177.42.242.209 on Port 445(SMB)	2019-08-27 04:26:28
117.28.156.45	attackspambots	SSH invalid-user multiple login attempts	2019-08-27 05:08:20
184.168.193.165	attackbots	Attack on wordpress login	2019-08-27 04:27:07
118.24.195.194	attack	Aug 26 13:00:40 mail1 sshd[19854]: Invalid user eugenia from 118.24.195.194 port 49122 Aug 26 13:00:40 mail1 sshd[19854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.195.194 Aug 26 13:00:42 mail1 sshd[19854]: Failed password for invalid user eugenia from 118.24.195.194 port 49122 ssh2 Aug 26 13:00:42 mail1 sshd[19854]: Received disconnect from 118.24.195.194 port 49122:11: Bye Bye [preauth] Aug 26 13:00:42 mail1 sshd[19854]: Disconnected from 118.24.195.194 port 49122 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.24.195.194	2019-08-27 04:45:33
193.188.22.12	attackbots	Aug 26 22:24:45 * sshd[25100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.12 Aug 26 22:24:46 * sshd[25100]: Failed password for invalid user test from 193.188.22.12 port 59311 ssh2	2019-08-27 04:36:25
183.109.79.252	attackbots	Aug 26 18:58:52 vps691689 sshd[13277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.252 Aug 26 18:58:54 vps691689 sshd[13277]: Failed password for invalid user mooon from 183.109.79.252 port 17208 ssh2 ...	2019-08-27 04:52:09
110.136.98.61	attackbots	Unauthorized connection attempt from IP address 110.136.98.61 on Port 445(SMB)	2019-08-27 04:47:45
188.166.1.123	attack	Aug 26 10:08:12 lcdev sshd\[25490\]: Invalid user cron from 188.166.1.123 Aug 26 10:08:12 lcdev sshd\[25490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.1.123 Aug 26 10:08:15 lcdev sshd\[25490\]: Failed password for invalid user cron from 188.166.1.123 port 49176 ssh2 Aug 26 10:13:26 lcdev sshd\[26024\]: Invalid user b2b from 188.166.1.123 Aug 26 10:13:26 lcdev sshd\[26024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.1.123	2019-08-27 04:26:44
167.99.230.57	attackbots	Aug 26 16:29:12 debian sshd[23915]: Unable to negotiate with 167.99.230.57 port 59018: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Aug 26 16:34:26 debian sshd[24094]: Unable to negotiate with 167.99.230.57 port 46088: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-08-27 05:07:45

Recently Reported IPs

114.226.135.97	117.54.138.141	117.54.131.50	117.54.138.134
117.54.138.36	117.54.138.18	117.54.138.34	117.54.139.58
117.54.139.162	117.54.140.14	117.54.140.66	117.54.140.49
114.226.139.10	117.54.139.86	117.54.141.10	117.54.139.226
117.54.141.110	117.54.141.129	117.54.141.18	117.54.141.138