31.135.106.21 - IPInfo

Basic Info

City: Simferopol

Region: Autonomous Republic of Crimea

Country: Ukraine

Internet Service Provider: Ltd. Cypher

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-06 06:19:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.135.106.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51136
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.135.106.21.			IN	A

;; AUTHORITY SECTION:
.			350	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110501 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 06 06:19:18 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 21.106.135.31.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.106.135.31.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.214.20.60	attackspam	Oct 19 02:23:09 tdfoods sshd\[22113\]: Invalid user daisy from 41.214.20.60 Oct 19 02:23:09 tdfoods sshd\[22113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.214.20.60 Oct 19 02:23:11 tdfoods sshd\[22113\]: Failed password for invalid user daisy from 41.214.20.60 port 45108 ssh2 Oct 19 02:30:48 tdfoods sshd\[22757\]: Invalid user berger from 41.214.20.60 Oct 19 02:30:48 tdfoods sshd\[22757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.214.20.60	2019-10-19 20:32:46
92.63.204.48	attack	[portscan] Port scan	2019-10-19 20:20:09
51.4.195.188	attackspambots	Oct 19 14:58:16 sauna sshd[66603]: Failed password for root from 51.4.195.188 port 60086 ssh2 ...	2019-10-19 20:14:33
159.203.201.231	attack	" "	2019-10-19 20:14:00
36.67.222.187	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-10-2019 13:05:23.	2019-10-19 20:28:03
185.176.27.242	attackspambots	Oct 19 13:58:18 mc1 kernel: \[2772658.915324\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.242 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56373 PROTO=TCP SPT=47834 DPT=43822 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 14:00:17 mc1 kernel: \[2772778.085757\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.242 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=63865 PROTO=TCP SPT=47834 DPT=55179 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 14:05:33 mc1 kernel: \[2773093.558103\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.242 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=14314 PROTO=TCP SPT=47834 DPT=60117 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-19 20:20:35
181.143.211.50	attackspam	" "	2019-10-19 20:44:27
35.228.188.244	attack	2019-10-19T12:16:11.512561shield sshd\[29340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.188.228.35.bc.googleusercontent.com user=root 2019-10-19T12:16:13.495019shield sshd\[29340\]: Failed password for root from 35.228.188.244 port 48776 ssh2 2019-10-19T12:19:59.488933shield sshd\[30107\]: Invalid user albano from 35.228.188.244 port 60484 2019-10-19T12:19:59.493075shield sshd\[30107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.188.228.35.bc.googleusercontent.com 2019-10-19T12:20:01.437582shield sshd\[30107\]: Failed password for invalid user albano from 35.228.188.244 port 60484 ssh2	2019-10-19 20:26:08
125.227.62.145	attackspam	Oct 19 09:04:57 firewall sshd[13690]: Invalid user admin from 125.227.62.145 Oct 19 09:04:59 firewall sshd[13690]: Failed password for invalid user admin from 125.227.62.145 port 50303 ssh2 Oct 19 09:05:15 firewall sshd[13697]: Invalid user weiqi from 125.227.62.145 ...	2019-10-19 20:33:33
222.186.175.202	attackspam	Oct 19 14:15:40 dedicated sshd[17325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Oct 19 14:15:41 dedicated sshd[17325]: Failed password for root from 222.186.175.202 port 20714 ssh2	2019-10-19 20:16:43
58.218.209.239	attackbotsspam	Oct 16 19:17:31 eola sshd[19961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.218.209.239 user=r.r Oct 16 19:17:34 eola sshd[19961]: Failed password for r.r from 58.218.209.239 port 34147 ssh2 Oct 16 19:17:34 eola sshd[19961]: Received disconnect from 58.218.209.239 port 34147:11: Bye Bye [preauth] Oct 16 19:17:34 eola sshd[19961]: Disconnected from 58.218.209.239 port 34147 [preauth] Oct 16 19:39:10 eola sshd[20575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.218.209.239 user=r.r Oct 16 19:39:12 eola sshd[20575]: Failed password for r.r from 58.218.209.239 port 40318 ssh2 Oct 16 19:39:12 eola sshd[20575]: Received disconnect from 58.218.209.239 port 40318:11: Bye Bye [preauth] Oct 16 19:39:12 eola sshd[20575]: Disconnected from 58.218.209.239 port 40318 [preauth] Oct 16 19:43:42 eola sshd[20730]: Invalid user vrzal from 58.218.209.239 port 60494 Oct 16 19:43:42 eola sshd[20........ -------------------------------	2019-10-19 20:18:34
81.22.45.48	attackbots	10/19/2019-08:05:44.417501 81.22.45.48 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-19 20:14:48
51.38.49.140	attackspambots	Oct 19 14:01:35 cvbnet sshd[6639]: Failed password for mail from 51.38.49.140 port 37694 ssh2 ...	2019-10-19 20:23:52
46.38.144.146	attack	Oct 19 14:27:25 webserver postfix/smtpd\[30774\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 19 14:28:44 webserver postfix/smtpd\[30774\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 19 14:30:03 webserver postfix/smtpd\[30774\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 19 14:31:22 webserver postfix/smtpd\[30774\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 19 14:32:40 webserver postfix/smtpd\[30774\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-19 20:43:49
104.244.72.73	attackspam	SSH Bruteforce attack	2019-10-19 20:27:14

Recently Reported IPs

36.82.97.103	196.14.88.132	194.54.66.144	190.95.42.26
219.74.158.83	190.85.242.114	190.15.122.4	174.130.152.53
185.234.216.209	37.229.197.198	14.251.53.202	121.10.41.12
117.1.85.48	117.0.63.147	113.160.187.218	202.67.37.42
107.181.187.53	31.173.103.71	72.135.116.180	94.125.239.251