31.163.139.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Port probing on unauthorized port 23	2020-05-02 02:38:00

Comments on same subnet:

IP	Type	Details	Datetime
31.163.139.66	attack	Port Scan detected! ...	2020-06-27 03:17:38
31.163.139.153	attackbots	unauthorized connection attempt	2020-02-04 15:07:47
31.163.139.99	attack	Unauthorised access (Nov 19) SRC=31.163.139.99 LEN=40 TTL=52 ID=44698 TCP DPT=23 WINDOW=35592 SYN	2019-11-19 14:29:34
31.163.139.117	attackbots	Invalid user admin from 31.163.139.117 port 40446	2019-10-11 21:27:18
31.163.139.244	attack	Telnet Server BruteForce Attack	2019-10-07 02:52:54
31.163.139.24	attackbotsspam	DATE:2019-07-06_05:39:55, IP:31.163.139.24, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-06 18:40:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.163.139.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;31.163.139.70.			IN	A

;; AUTHORITY SECTION:
.			249	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050102 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 02:37:57 CST 2020
;; MSG SIZE  rcvd: 117

Host info

70.139.163.31.in-addr.arpa domain name pointer ws70.zone31-163-139.zaural.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.139.163.31.in-addr.arpa	name = ws70.zone31-163-139.zaural.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.112.109.188	attackspam	Port Scan detected from 189.112.109.188 (BR/Brazil/189-112-109-188.static.ctbctelecom.com.br). 4 hits in the last 75 seconds	2019-09-04 16:40:10
51.77.140.111	attackspambots	Sep 4 09:52:03 minden010 sshd[18414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111 Sep 4 09:52:05 minden010 sshd[18414]: Failed password for invalid user mvts from 51.77.140.111 port 55016 ssh2 Sep 4 09:56:23 minden010 sshd[19882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111 ...	2019-09-04 17:02:18
51.83.78.56	attack	Sep 4 07:58:57 pkdns2 sshd\[31244\]: Invalid user jdoe from 51.83.78.56Sep 4 07:59:00 pkdns2 sshd\[31244\]: Failed password for invalid user jdoe from 51.83.78.56 port 43668 ssh2Sep 4 08:02:51 pkdns2 sshd\[31412\]: Invalid user eliza from 51.83.78.56Sep 4 08:02:53 pkdns2 sshd\[31412\]: Failed password for invalid user eliza from 51.83.78.56 port 32788 ssh2Sep 4 08:06:33 pkdns2 sshd\[31587\]: Invalid user colton from 51.83.78.56Sep 4 08:06:34 pkdns2 sshd\[31587\]: Failed password for invalid user colton from 51.83.78.56 port 50058 ssh2 ...	2019-09-04 17:23:06
165.227.210.71	attackspambots	SSH Brute-Forcing (ownc)	2019-09-04 17:21:35
112.27.91.233	attackspam	port scan and connect, tcp 23 (telnet)	2019-09-04 17:03:33
118.122.196.104	attack	Unauthorized SSH login attempts	2019-09-04 16:54:04
61.183.35.44	attackspam	Sep 4 07:09:56 www sshd\[8283\]: Invalid user debora from 61.183.35.44 port 40390 ...	2019-09-04 17:04:47
179.104.247.207	attackspambots	Fail2Ban Ban Triggered	2019-09-04 16:40:38
177.200.90.218	attackbots	port scan and connect, tcp 80 (http)	2019-09-04 17:12:02
81.23.9.218	attack	Sep 4 10:49:25 saschabauer sshd[6260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.23.9.218 Sep 4 10:49:27 saschabauer sshd[6260]: Failed password for invalid user ricca from 81.23.9.218 port 40988 ssh2	2019-09-04 17:09:42
139.155.123.84	attack	Sep 4 07:01:14 www sshd\[61023\]: Invalid user alfred from 139.155.123.84Sep 4 07:01:17 www sshd\[61023\]: Failed password for invalid user alfred from 139.155.123.84 port 48162 ssh2Sep 4 07:03:53 www sshd\[61038\]: Invalid user rodica from 139.155.123.84 ...	2019-09-04 16:57:50
91.250.96.120	attack	Sep 4 10:18:58 srv206 sshd[4188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=prexit01.prinet.eu user=root Sep 4 10:19:00 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 Sep 4 10:19:02 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 Sep 4 10:18:58 srv206 sshd[4188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=prexit01.prinet.eu user=root Sep 4 10:19:00 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 Sep 4 10:19:02 srv206 sshd[4188]: Failed password for root from 91.250.96.120 port 45174 ssh2 ...	2019-09-04 16:54:33
124.16.139.145	attackspambots	Sep 4 08:08:47 localhost sshd\[30962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.16.139.145 user=root Sep 4 08:08:49 localhost sshd\[30962\]: Failed password for root from 124.16.139.145 port 49266 ssh2 Sep 4 08:13:02 localhost sshd\[31501\]: Invalid user oracle from 124.16.139.145 port 56322	2019-09-04 16:48:19
41.232.73.85	attack	2019-09-04T05:55:53.913970abusebot-2.cloudsearch.cf sshd\[10821\]: Invalid user xm from 41.232.73.85 port 28826	2019-09-04 17:19:36
123.31.43.162	attackspambots	TCP src-port=45200 dst-port=25 dnsbl-sorbs abuseat-org barracuda (528)	2019-09-04 17:08:33

Recently Reported IPs

222.199.90.47	114.90.159.19	129.132.13.245	47.178.204.83
84.104.218.9	52.248.88.208	65.214.42.112	61.235.225.114
177.52.100.145	73.76.40.148	36.77.94.85	42.171.172.97
208.254.45.89	140.196.75.139	111.150.90.82	115.11.136.190
107.96.65.218	35.30.249.164	104.166.15.104	122.239.184.218