164.138.21.31 - IPInfo

Basic Info

City: Tehran

Region: Tehran

Country: Iran

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
164.138.217.186	attackspambots	xmlrpc attack	2020-03-22 09:09:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.138.21.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.138.21.31.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061901 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 20 16:48:46 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 31.21.138.164.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 31.21.138.164.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.180.227.163	attack	107.180.227.163 - - [02/Sep/2020:19:57:06 +0100] "POST /wp-login.php HTTP/1.1" 200 1966 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 107.180.227.163 - - [02/Sep/2020:19:57:07 +0100] "POST /wp-login.php HTTP/1.1" 200 1974 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 107.180.227.163 - - [02/Sep/2020:19:57:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-03 06:29:18
45.80.90.44	spambotsnormal	מבצע לחיצות סרק באדוארדס	2020-09-03 06:23:29
185.234.218.68	attack	(UserAttack) User Attack From 185.234.218.68 (PL/Poland/-): 1 in the last 3600 secs	2020-09-03 06:18:15
181.115.156.59	attackbotsspam	Sep 2 22:14:14 h2829583 sshd[16062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.115.156.59	2020-09-03 06:20:08
111.252.161.206	attackbotsspam	1599065227 - 09/02/2020 18:47:07 Host: 111.252.161.206/111.252.161.206 Port: 445 TCP Blocked	2020-09-03 06:34:55
72.167.222.102	attackbotsspam	xmlrpc attack	2020-09-03 06:24:06
219.79.102.184	attackbotsspam	port scan and connect, tcp 22 (ssh)	2020-09-03 06:35:15
182.61.4.60	attackspambots	Sep 2 18:43:10 vps647732 sshd[346]: Failed password for root from 182.61.4.60 port 35470 ssh2 Sep 2 18:47:01 vps647732 sshd[382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.4.60 ...	2020-09-03 06:38:40
222.186.173.154	attackspambots	Sep 3 00:36:35 vps1 sshd[24724]: Failed none for invalid user root from 222.186.173.154 port 10096 ssh2 Sep 3 00:36:35 vps1 sshd[24724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Sep 3 00:36:37 vps1 sshd[24724]: Failed password for invalid user root from 222.186.173.154 port 10096 ssh2 Sep 3 00:36:40 vps1 sshd[24724]: Failed password for invalid user root from 222.186.173.154 port 10096 ssh2 Sep 3 00:36:44 vps1 sshd[24724]: Failed password for invalid user root from 222.186.173.154 port 10096 ssh2 Sep 3 00:36:47 vps1 sshd[24724]: Failed password for invalid user root from 222.186.173.154 port 10096 ssh2 Sep 3 00:36:51 vps1 sshd[24724]: Failed password for invalid user root from 222.186.173.154 port 10096 ssh2 Sep 3 00:36:53 vps1 sshd[24724]: error: maximum authentication attempts exceeded for invalid user root from 222.186.173.154 port 10096 ssh2 [preauth] ...	2020-09-03 06:40:15
101.78.229.4	attackspam	2020-09-02T17:51:01.027141xentho-1 sshd[436386]: Invalid user Pass2018 from 101.78.229.4 port 16545 2020-09-02T17:51:03.521576xentho-1 sshd[436386]: Failed password for invalid user Pass2018 from 101.78.229.4 port 16545 ssh2 2020-09-02T17:51:54.285815xentho-1 sshd[436404]: Invalid user q1w from 101.78.229.4 port 62849 2020-09-02T17:51:54.294751xentho-1 sshd[436404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.229.4 2020-09-02T17:51:54.285815xentho-1 sshd[436404]: Invalid user q1w from 101.78.229.4 port 62849 2020-09-02T17:51:56.391158xentho-1 sshd[436404]: Failed password for invalid user q1w from 101.78.229.4 port 62849 ssh2 2020-09-02T17:52:48.740683xentho-1 sshd[436415]: Invalid user Abcd1234% from 101.78.229.4 port 46625 2020-09-02T17:52:48.749620xentho-1 sshd[436415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.229.4 2020-09-02T17:52:48.740683xentho-1 sshd[436415]: Invalid user Ab ...	2020-09-03 06:23:44
222.186.190.2	attackbotsspam	Failed password for root from 222.186.190.2 port 37900 ssh2 Failed password for root from 222.186.190.2 port 37900 ssh2 Failed password for root from 222.186.190.2 port 37900 ssh2 Failed password for root from 222.186.190.2 port 37900 ssh2	2020-09-03 06:45:32
118.89.229.84	attackbots	Sep 2 20:49:01 lnxweb62 sshd[25582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.229.84	2020-09-03 06:31:23
51.158.124.238	attackspam	fail2ban -- 51.158.124.238 ...	2020-09-03 06:30:18
51.254.245.216	attackbots	Sep 2 18:25:44 sd-66389 sshd\[25994\]: Invalid user rooot from 51.254.245.216 Sep 2 18:25:44 sd-66389 sshd\[25994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.245.216 Sep 2 18:36:10 sd-66389 sshd\[29637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.245.216 user=root Sep 2 18:36:13 sd-66389 sshd\[29637\]: Failed password for root from 51.254.245.216 port 60367 ssh2 Sep 2 18:46:34 sd-66389 sshd\[861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.245.216 user=root Sep 2 18:46:37 sd-66389 sshd\[861\]: Failed password for root from 51.254.245.216 port 46079 ssh2 Sep 2 18:57:05 sd-66389 sshd\[4581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.245.216 user=root Sep 2 18:57:06 sd-66389 sshd\[4581\]: Failed password for root from 51.254.245.216 port 60015 ssh2 Sep 2 ...	2020-09-03 06:51:21
116.206.59.195	attackspambots	Portscan detected	2020-09-03 06:26:05

Recently Reported IPs

58.186.147.227	169.169.210.39	30.148.247.102	134.202.120.1
188.143.65.191	222.73.145.27	127.9.153.33	143.77.86.3
128.116.16.150	120.57.40.230	158.5.11.186	171.7.101.208
46.230.138.100	139.59.49.57	207.24.56.98	70.73.202.153
202.90.46.201	194.78.132.81	197.100.27.26	110.175.31.87