This IP address has been reported a total of
268
times from
186 distinct
sources.
31.130.148.221 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Jun 30 16:41:11 backup sshd[3424290]: Invalid user test from 31.130.148.221 port 47716
Jun 30 16:55: ...
show moreJun 30 16:41:11 backup sshd[3424290]: Invalid user test from 31.130.148.221 port 47716
Jun 30 16:55:55 backup sshd[3425171]: Invalid user admin from 31.130.148.221 port 46396
Jun 30 17:00:18 backup sshd[3425435]: Invalid user lighthouse from 31.130.148.221 port 48538
Jun 30 17:02:35 backup sshd[3425587]: Invalid user teamspeak from 31.130.148.221 port 44394
Jun 30 17:04:48 backup sshd[3426447]: Invalid user server from 31.130.148.221 port 58620
show less
2026-06-30T14:55:45.172367+00:00 melon sshd[3110173]: Invalid user admin from 31.130.148.221 port 55 ...
show more2026-06-30T14:55:45.172367+00:00 melon sshd[3110173]: Invalid user admin from 31.130.148.221 port 55448
2026-06-30T14:57:56.860581+00:00 melon sshd[3112684]: Connection from 31.130.148.221 port 52722 on 65.108.201.187 port 22 rdomain ""
2026-06-30T14:57:57.143389+00:00 melon sshd[3112684]: User root from 31.130.148.221 not allowed because none of user's groups are listed in AllowGroups
2026-06-30T15:00:08.776606+00:00 melon sshd[3115331]: Connection from 31.130.148.221 port 50118 on 65.108.201.187 port 22 rdomain ""
2026-06-30T15:00:09.071744+00:00 melon sshd[3115331]: Invalid user lighthouse from 31.130.148.221 port 50118
show less
2026-06-30T16:52:03.831196+02:00 ananke sshd-session[2146137]: Invalid user test from 31.130.148.221 ...
show more2026-06-30T16:52:03.831196+02:00 ananke sshd-session[2146137]: Invalid user test from 31.130.148.221 port 38092
...
show less
Fail2ban sshd: 2026-06-30T14:01:21.556472+00:00 siem-test sshd[3223656]: Invalid user admin from 31. ...
show moreFail2ban sshd: 2026-06-30T14:01:21.556472+00:00 siem-test sshd[3223656]: Invalid user admin from 31.130.148.221 port 48928
2026-06-30T14:01:21.561873+00:00 siem-test sshd[3223656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.130.148.221
2026-06-30T14:01:23.151688+00:00 siem-test sshd[3223656]: Failed password for invalid user admin from 31.130.148.221 port 48928 ssh2
2026-06-30T14:03:26.367625+00:00 siem-test sshd[3223774]: pam_unix(sshd:auth): authentication fai
show less
2026-06-30T13:27:37.561039+00:00 v2202502255267314709 sshd[506619]: Invalid user ec2-user from 31.13 ...
show more2026-06-30T13:27:37.561039+00:00 v2202502255267314709 sshd[506619]: Invalid user ec2-user from 31.130.148.221 port 34456
2026-06-30T13:29:47.457574+00:00 v2202502255267314709 sshd[511527]: Invalid user ubuntu from 31.130.148.221 port 53024
2026-06-30T13:32:04.861577+00:00 v2202502255267314709 sshd[516668]: Invalid user administrator from 31.130.148.221 port 37584
2026-06-30T13:34:20.732360+00:00 v2202502255267314709 sshd[521819]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
2026-06-30T13:36:31.095188+00:00 v2202502255267314709 sshd[526849]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
...
show less
2026-06-30T13:08:08.887203+00:00 v2202502255267314709 sshd[462507]: User root from 31.130.148.221 no ...
show more2026-06-30T13:08:08.887203+00:00 v2202502255267314709 sshd[462507]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
2026-06-30T13:10:12.976185+00:00 v2202502255267314709 sshd[467211]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
2026-06-30T13:12:20.799763+00:00 v2202502255267314709 sshd[472017]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
2026-06-30T13:14:32.788630+00:00 v2202502255267314709 sshd[477124]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
2026-06-30T13:16:41.187975+00:00 v2202502255267314709 sshd[481909]: User root from 31.130.148.221 not allowed because not listed in AllowUsers
...
show less
2026-06-30T14:59:12.463513+02:00 sshd-session[1449586]: Disconnected from authenticating user root ...
show more2026-06-30T14:59:12.463513+02:00 sshd-session[1449586]: Disconnected from authenticating user root 31.130.148.221 port 44628 [preauth]
2026-06-30T15:08:45.636327+02:00 sshd-session[1454622]: Disconnected from authenticating user root 31.130.148.221 port 35488 [preauth]
...
show less
2026-06-30T08:53:12.414559 rhel-20gb-ash-1 sshd[3465215]: Disconnected from authenticating user root ...
show more2026-06-30T08:53:12.414559 rhel-20gb-ash-1 sshd[3465215]: Disconnected from authenticating user root 31.130.148.221 port 55880 [preauth]
...
show less
Jun 30 14:37:58 odin sshd[1430]: Failed password for root from 31.130.148.221 port 39724 ssh2
Jun 30 ...
show moreJun 30 14:37:58 odin sshd[1430]: Failed password for root from 31.130.148.221 port 39724 ssh2
Jun 30 14:40:53 odin sshd[2687]: Failed password for root from 31.130.148.221 port 32942 ssh2
show less
Jun 30 14:20:15 odin sshd[29220]: Failed password for root from 31.130.148.221 port 46096 ssh2
Jun 3 ...
show moreJun 30 14:20:15 odin sshd[29220]: Failed password for root from 31.130.148.221 port 46096 ssh2
Jun 30 14:23:12 odin sshd[29776]: Failed password for root from 31.130.148.221 port 45634 ssh2
show less
Jun 30 13:59:05 odin sshd[22309]: Failed password for root from 31.130.148.221 port 48348 ssh2
Jun 3 ...
show moreJun 30 13:59:05 odin sshd[22309]: Failed password for root from 31.130.148.221 port 48348 ssh2
Jun 30 14:05:54 odin sshd[25043]: Failed password for root from 31.130.148.221 port 35864 ssh2
show less
2026-06-30T10:56:21.298038+00:00 sg-jumphost-server sshd[1769327]: Disconnected from authenticating ...
show more2026-06-30T10:56:21.298038+00:00 sg-jumphost-server sshd[1769327]: Disconnected from authenticating user root 31.130.148.221 port 60116 [preauth]
2026-06-30T10:57:54.651642+00:00 sg-jumphost-server sshd[1769379]: Disconnected from authenticating user root 31.130.148.221 port 39818 [preauth]
...
show less
Jun 30 10:40:16 3mod sshd[1295768]: Failed password for root from 31.130.148.221 port 59674 ssh2
Jun ...
show moreJun 30 10:40:16 3mod sshd[1295768]: Failed password for root from 31.130.148.221 port 59674 ssh2
Jun 30 10:41:58 3mod sshd[1296095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.130.148.221 user=root
Jun 30 10:42:01 3mod sshd[1296095]: Failed password for root from 31.130.148.221 port 37808 ssh2
Jun 30 10:43:36 3mod sshd[1296392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.130.148.221 user=root
Jun 30 10:43:38 3mod sshd[1296392]: Failed password for root from 31.130.148.221 port 39814 ssh2
...
show less
2026-06-30T10:33:26.333653+00:00 sg-jumphost-server sshd[1768694]: Disconnected from authenticating ...
show more2026-06-30T10:33:26.333653+00:00 sg-jumphost-server sshd[1768694]: Disconnected from authenticating user root 31.130.148.221 port 41528 [preauth]
2026-06-30T10:38:31.911527+00:00 sg-jumphost-server sshd[1768835]: Disconnected from authenticating user root 31.130.148.221 port 37794 [preauth]
2026-06-30T10:40:13.930079+00:00 sg-jumphost-server sshd[1768901]: Disconnected from authenticating user root 31.130.148.221 port 53670 [preauth]
...
show less
Brute-Force
SSH
Showing 1 to
15
of 268 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ