140.117.31.245

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: MOEC

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 140.117.31.245 to port 4567 [J]	2020-02-04 03:24:00
attack	8081/tcp [2019-11-01]1pkt	2019-11-01 15:48:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.117.31.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46448
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.117.31.245.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110100 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 15:48:02 CST 2019
;; MSG SIZE  rcvd: 118

Host info

245.31.117.140.in-addr.arpa domain name pointer c245.chem.nsysu.edu.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.31.117.140.in-addr.arpa	name = c245.chem.nsysu.edu.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.95.168.159	attackbots	Apr 1 21:15:07 mail.srvfarm.net postfix/smtpd[1416476]: warning: unknown[45.95.168.159]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 1 21:15:07 mail.srvfarm.net postfix/smtpd[1416419]: warning: unknown[45.95.168.159]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 1 21:15:07 mail.srvfarm.net postfix/smtpd[1416476]: lost connection after AUTH from unknown[45.95.168.159] Apr 1 21:15:07 mail.srvfarm.net postfix/smtpd[1416419]: lost connection after AUTH from unknown[45.95.168.159] Apr 1 21:15:11 mail.srvfarm.net postfix/smtpd[1418111]: warning: unknown[45.95.168.159]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-02 04:29:00
31.0.203.156	attackbots	Automatic report - Port Scan Attack	2020-04-02 04:01:16
188.16.149.125	attackspam	firewall-block, port(s): 23/tcp	2020-04-02 04:37:59
5.135.165.55	attackbotsspam	Apr 1 22:16:37 [HOSTNAME] sshd[6407]: Invalid user terminfo from 5.135.165.55 port 39038 Apr 1 22:16:37 [HOSTNAME] sshd[6407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.165.55 Apr 1 22:16:39 [HOSTNAME] sshd[6407]: Failed password for invalid user terminfo from 5.135.165.55 port 39038 ssh2 ...	2020-04-02 04:25:45
5.135.179.178	attackspam	DATE:2020-04-01 21:44:50, IP:5.135.179.178, PORT:ssh SSH brute force auth (docker-dc)	2020-04-02 04:09:43
113.175.11.97	attack	Apr 1 22:18:05 sshd\[22222\]: User root from 113.175.11.97 not allowed because not listed in AllowUsersApr 1 22:18:07 sshd\[22222\]: Failed password for invalid user root from 113.175.11.97 port 58138 ssh2 ...	2020-04-02 04:21:54
182.156.209.222	attackspambots	Fail2Ban Ban Triggered (2)	2020-04-02 04:32:56
139.59.58.115	attackbotsspam	Apr 1 16:08:55 ws22vmsma01 sshd[169831]: Failed password for root from 139.59.58.115 port 43782 ssh2 ...	2020-04-02 04:17:24
180.66.207.67	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-02 04:32:14
41.210.128.37	attackbotsspam	$f2bV_matches	2020-04-02 03:56:11
212.104.184.244	attackbots	Port probing on unauthorized port 26	2020-04-02 03:56:41
115.159.153.180	attack	leo_www	2020-04-02 03:55:18
114.67.102.54	attack	k+ssh-bruteforce	2020-04-02 04:02:34
81.4.122.247	attackbotsspam	Apr 1 06:04:02 euve59663 sshd[16677]: reveeclipse mapping checking getaddr= info for 81-4-122-247.cloud.ramnode.com [81.4.122.247] failed - POSSIBL= E BREAK-IN ATTEMPT! Apr 1 06:04:02 euve59663 sshd[16677]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D81.= 4.122.247 user=3Dr.r Apr 1 06:04:04 euve59663 sshd[16677]: Failed password for r.r from 81= .4.122.247 port 36492 ssh2 Apr 1 06:04:04 euve59663 sshd[16677]: Received disconnect from 81.4.12= 2.247: 11: Bye Bye [preauth] Apr 1 06:17:54 euve59663 sshd[17488]: reveeclipse mapping checking getaddr= info for 81-4-122-247.cloud.ramnode.com [81.4.122.247] failed - POSSIBL= E BREAK-IN ATTEMPT! Apr 1 06:17:54 euve59663 sshd[17488]: Invalid user ax from 81.4.122.24= 7 Apr 1 06:17:54 euve59663 sshd[17488]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D81.= 4.122.247=20 Apr 1 06:17:56 euve59663 sshd[17488]: Fa........ -------------------------------	2020-04-02 04:33:28
119.29.107.20	attackbotsspam	Apr 1 16:18:54 lanister sshd[11486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.107.20 user=root Apr 1 16:18:56 lanister sshd[11486]: Failed password for root from 119.29.107.20 port 58732 ssh2 Apr 1 16:22:44 lanister sshd[11496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.107.20 user=root Apr 1 16:22:47 lanister sshd[11496]: Failed password for root from 119.29.107.20 port 44031 ssh2	2020-04-02 04:36:32

Recently Reported IPs

230.73.74.112	72.132.64.162	168.227.58.226	18.82.88.254
123.93.250.131	212.197.84.26	134.8.117.252	35.160.219.135
237.132.11.37	206.90.64.57	189.249.245.207	45.99.122.114
119.75.93.25	122.63.70.185	22.239.245.239	18.196.218.131
81.149.173.129	246.4.66.226	44.194.73.125	1.37.26.228