114.141.54.45 - IPInfo

Basic Info

City: Bekasi

Region: West Java

Country: Indonesia

Internet Service Provider: PT Cyberplus Media Pratama

Hostname: unknown

Organization: PT Cyberplus Media Pratama

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 114.141.54.45 on Port 445(SMB)	2019-07-09 12:12:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.141.54.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47940
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.141.54.45.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060100 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 01 23:55:24 CST 2019
;; MSG SIZE  rcvd: 117

Host info

45.54.141.114.in-addr.arpa domain name pointer ptbejanaindah.cyberplus.net.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
45.54.141.114.in-addr.arpa	name = ptbejanaindah.cyberplus.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.151.14.181	attackbotsspam	May 21 01:57:50 web9 sshd\[24091\]: Invalid user jky from 83.151.14.181 May 21 01:57:50 web9 sshd\[24091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.151.14.181 May 21 01:57:52 web9 sshd\[24091\]: Failed password for invalid user jky from 83.151.14.181 port 48446 ssh2 May 21 02:02:18 web9 sshd\[24688\]: Invalid user miy from 83.151.14.181 May 21 02:02:18 web9 sshd\[24688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.151.14.181	2020-05-21 22:17:38
82.64.15.100	attack	2020-05-21T14:02:28.4240491240 sshd\[2869\]: Invalid user pi from 82.64.15.100 port 49624 2020-05-21T14:02:28.4461421240 sshd\[2869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.15.100 2020-05-21T14:02:28.6902631240 sshd\[2871\]: Invalid user pi from 82.64.15.100 port 49630 ...	2020-05-21 22:02:22
197.48.121.204	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-05-21 21:59:45
5.188.84.150	attackbotsspam	fell into ViewStateTrap:vaduz	2020-05-21 22:00:37
222.186.173.142	attackbots	May 21 13:55:46 localhost sshd[65439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root May 21 13:55:48 localhost sshd[65439]: Failed password for root from 222.186.173.142 port 21660 ssh2 May 21 13:55:51 localhost sshd[65439]: Failed password for root from 222.186.173.142 port 21660 ssh2 May 21 13:55:46 localhost sshd[65439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root May 21 13:55:48 localhost sshd[65439]: Failed password for root from 222.186.173.142 port 21660 ssh2 May 21 13:55:51 localhost sshd[65439]: Failed password for root from 222.186.173.142 port 21660 ssh2 May 21 13:55:46 localhost sshd[65439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root May 21 13:55:48 localhost sshd[65439]: Failed password for root from 222.186.173.142 port 21660 ssh2 May 21 13:55:51 localhost sshd[65 ...	2020-05-21 21:58:38
185.6.10.17	attackbots	Automatic report - Banned IP Access	2020-05-21 22:05:17
59.3.212.81	attack	May 21 14:02:20 mout sshd[1285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.3.212.81 user=pi May 21 14:02:22 mout sshd[1285]: Failed password for pi from 59.3.212.81 port 56398 ssh2 May 21 14:02:22 mout sshd[1285]: Connection closed by 59.3.212.81 port 56398 [preauth]	2020-05-21 22:06:20
93.174.93.195	attack	05/21/2020-09:44:06.077420 93.174.93.195 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2020-05-21 21:58:05
167.89.100.238	attack	Repeat spam from a Sendgrid user using multiple sending email addresses including info@unsulliedwebsolutions.com support@marvrusstech.com	2020-05-21 22:30:47
62.171.191.7	attack	$f2bV_matches	2020-05-21 22:09:06
222.186.175.182	attackspambots	2020-05-21T17:19:33.293785afi-git.jinr.ru sshd[17251]: Failed password for root from 222.186.175.182 port 37126 ssh2 2020-05-21T17:19:36.065799afi-git.jinr.ru sshd[17251]: Failed password for root from 222.186.175.182 port 37126 ssh2 2020-05-21T17:19:40.381985afi-git.jinr.ru sshd[17251]: Failed password for root from 222.186.175.182 port 37126 ssh2 2020-05-21T17:19:40.382110afi-git.jinr.ru sshd[17251]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 37126 ssh2 [preauth] 2020-05-21T17:19:40.382123afi-git.jinr.ru sshd[17251]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-21 22:32:25
173.245.239.228	attackspambots	(imapd) Failed IMAP login from 173.245.239.228 (US/United States/-): 1 in the last 3600 secs	2020-05-21 22:14:20
143.248.53.13	attack	May 21 14:02:17 mout sshd[1283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.248.53.13 user=pi May 21 14:02:18 mout sshd[1283]: Failed password for pi from 143.248.53.13 port 39740 ssh2 May 21 14:02:19 mout sshd[1283]: Connection closed by 143.248.53.13 port 39740 [preauth]	2020-05-21 22:15:01
159.203.189.152	attackspam	SSH brute-force attempt	2020-05-21 22:28:10
106.54.200.22	attack	Bruteforce detected by fail2ban	2020-05-21 22:20:09

Recently Reported IPs

121.193.203.153	186.179.148.62	171.112.98.203	115.79.44.146
134.3.118.102	87.84.52.151	205.216.59.19	15.200.78.150
90.56.131.64	82.111.110.68	215.23.216.230	148.61.125.241
178.74.119.154	80.4.157.101	87.177.115.18	141.113.131.196
124.85.22.94	1.173.87.237	57.248.89.52	197.46.211.11