123.131.138.40

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.131.138.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42980
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;123.131.138.40.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021501 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 04:57:19 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 40.138.131.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.138.131.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.53.88.125	attackspambots	\[2019-06-30 22:55:46\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-30T22:55:46.737-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="5533972598031072",SessionID="0x7f13a84ecdb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.125/52658",ACLName="no_extension_match" \[2019-06-30 22:56:06\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-30T22:56:06.603-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00972592195700",SessionID="0x7f13a889ed98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.125/64364",ACLName="no_extension_match" \[2019-06-30 22:56:43\] SECURITY\[5156\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-30T22:56:43.748-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011972598412910",SessionID="0x7f13a81ef768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.125/51215",ACLName="no_ex	2019-07-01 10:57:32
111.230.237.40	attack	Jun 28 20:46:42 shadeyouvpn sshd[16823]: Invalid user scaner from 111.230.237.40 Jun 28 20:46:42 shadeyouvpn sshd[16823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.237.40 Jun 28 20:46:43 shadeyouvpn sshd[16823]: Failed password for invalid user scaner from 111.230.237.40 port 34510 ssh2 Jun 28 20:46:43 shadeyouvpn sshd[16823]: Received disconnect from 111.230.237.40: 11: Bye Bye [preauth] Jun 28 20:50:07 shadeyouvpn sshd[18470]: Invalid user pkjain from 111.230.237.40 Jun 28 20:50:07 shadeyouvpn sshd[18470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.237.40 Jun 28 20:50:08 shadeyouvpn sshd[18470]: Failed password for invalid user pkjain from 111.230.237.40 port 41052 ssh2 Jun 28 20:50:08 shadeyouvpn sshd[18470]: Received disconnect from 111.230.237.40: 11: Bye Bye [preauth] Jun 28 20:51:59 shadeyouvpn sshd[19585]: Invalid user os from 111.230.237.40 Jun 28 20:51:........ -------------------------------	2019-07-01 11:27:02
106.12.206.253	attackspam	Jun 30 23:02:54 Tower sshd[34029]: Connection from 106.12.206.253 port 58996 on 192.168.10.220 port 22 Jun 30 23:02:56 Tower sshd[34029]: Invalid user feng from 106.12.206.253 port 58996 Jun 30 23:02:56 Tower sshd[34029]: error: Could not get shadow information for NOUSER Jun 30 23:02:56 Tower sshd[34029]: Failed password for invalid user feng from 106.12.206.253 port 58996 ssh2 Jun 30 23:02:57 Tower sshd[34029]: Received disconnect from 106.12.206.253 port 58996:11: Bye Bye [preauth] Jun 30 23:02:57 Tower sshd[34029]: Disconnected from invalid user feng 106.12.206.253 port 58996 [preauth]	2019-07-01 11:38:42
212.232.28.164	attackbotsspam	Jul 1 04:28:39 mail sshd\[27289\]: Invalid user etherpad-lite from 212.232.28.164 Jul 1 04:28:39 mail sshd\[27289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.232.28.164 Jul 1 04:28:41 mail sshd\[27289\]: Failed password for invalid user etherpad-lite from 212.232.28.164 port 10315 ssh2 Jul 1 04:32:19 mail sshd\[27479\]: Invalid user oracle from 212.232.28.164 Jul 1 04:32:19 mail sshd\[27479\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.232.28.164	2019-07-01 11:19:27
222.181.11.133	attackbots	Reported by AbuseIPDB proxy server.	2019-07-01 11:33:48
117.3.46.96	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-30 21:23:02,134 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.3.46.96)	2019-07-01 11:01:05
158.140.176.66	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-30 21:18:36,626 INFO [amun_request_handler] PortScan Detected on Port: 445 (158.140.176.66)	2019-07-01 11:14:24
186.216.104.210	attackspambots	libpam_shield report: forced login attempt	2019-07-01 11:32:12
143.0.140.86	attack	Jun 30 18:49:45 web1 postfix/smtpd[32133]: warning: unknown[143.0.140.86]: SASL PLAIN authentication failed: authentication failure ...	2019-07-01 11:02:38
100.43.90.120	attackbotsspam	EventTime:Mon Jul 1 08:47:52 AEST 2019,Protocol:TCP,VendorEventCode:RT_FLOW_SESSION_DENY,TargetPort:443,SourceIP:100.43.90.120,SourcePort:40061	2019-07-01 11:12:48
66.249.79.158	attackbotsspam	Automatic report - Web App Attack	2019-07-01 11:27:20
51.83.104.120	attackspambots	Jul 1 01:10:02 localhost sshd\[10377\]: Invalid user logger from 51.83.104.120 port 56682 Jul 1 01:10:02 localhost sshd\[10377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.104.120 Jul 1 01:10:04 localhost sshd\[10377\]: Failed password for invalid user logger from 51.83.104.120 port 56682 ssh2	2019-07-01 11:07:51
173.236.233.236	attackbots	Jun 28 21:29:16 mxgate1 postfix/postscreen[27838]: CONNECT from [173.236.233.236]:51308 to [176.31.12.44]:25 Jun 28 21:29:16 mxgate1 postfix/dnsblog[28086]: addr 173.236.233.236 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 28 21:29:16 mxgate1 postfix/dnsblog[28087]: addr 173.236.233.236 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 28 21:29:16 mxgate1 postfix/dnsblog[28083]: addr 173.236.233.236 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 28 21:29:17 mxgate1 postfix/dnsblog[28085]: addr 173.236.233.236 listed by domain bl.spamcop.net as 127.0.0.2 Jun 28 21:29:22 mxgate1 postfix/postscreen[27838]: DNSBL rank 5 for [173.236.233.236]:51308 Jun x@x Jun 28 21:29:23 mxgate1 postfix/postscreen[27838]: HANGUP after 0.43 from [173.236.233.236]:51308 in tests after SMTP handshake Jun 28 21:29:23 mxgate1 postfix/postscreen[27838]: DISCONNECT [173.236.233.236]:51308 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=173.236.233.236	2019-07-01 11:16:37
177.87.68.190	attackbotsspam	$f2bV_matches	2019-07-01 11:17:39
103.89.90.194	attack	Jul 1 05:49:23 lcl-usvr-02 sshd[11196]: Invalid user admin from 103.89.90.194 port 58252 ...	2019-07-01 11:11:32

Recently Reported IPs

128.199.182.112	167.207.172.56	131.55.45.236	180.81.204.205
33.82.190.13	199.113.225.155	133.168.205.156	243.154.150.69
240.155.145.234	41.73.45.223	124.103.116.3	221.53.109.212
40.3.75.8	139.194.71.217	75.69.107.163	231.99.91.4
22.200.23.123	35.155.192.183	153.48.5.153	254.219.188.219