114.142.171.48

Basic Info

City: Semarang

Region: Central Java

Country: Indonesia

Internet Service Provider: PT Hutchison 3 Indonesia

Hostname: unknown

Organization: Hutchison CP Telecommunications, PT

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 114.142.171.48 on Port 445(SMB)	2019-07-08 03:29:59

Comments on same subnet:

IP	Type	Details	Datetime
114.142.171.22	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 16-04-2020 13:15:15.	2020-04-16 21:14:10
114.142.171.4	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.142.171.4/ SG - 1H : (37) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SG NAME ASN : ASN45727 IP : 114.142.171.4 CIDR : 114.142.171.0/24 PREFIX COUNT : 97 UNIQUE IP COUNT : 34304 ATTACKS DETECTED ASN45727 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-28 04:45:36 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-28 19:18:50
114.142.171.51	attackspambots	2019-10-0114:11:571iFH0W-0006Vt-VX\<=info@imsuisse-sa.chH=$imsuisse-sa.ch$[181.174.75.218]:43666P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2715id=BA72C5DF-8FAE-4CCF-BE4F-004BAF642AD9@imsuisse-sa.chT=""formaria_sergi@yahoo.comseshleman@wvgs.comshannon@dewinterconsulting.comshannyconnor@yahoo.comjessica_shawl@yahoo.comshegde@healthadvances.com2019-10-0114:12:011iFH0b-0006dL-39\<=info@imsuisse-sa.chH=$imsuisse-sa.ch$[213.163.125.251]:36702P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2146id=6DEAB0F2-A542-49C8-BF0A-BBFCBD1B0ED6@imsuisse-sa.chT="W"forbwood120@embarqmail.comcaptained@monmouth.comCaptainpaiva@aol.comcaptjsig@yahoo.comcaptned24@aol.comCBSD@optonline.net2019-10-0114:12:041iFH0d-0006Ym-RF\<=info@imsuisse-sa.chH=subs19-114-142-171-51.three.co.id$imsuisse-sa.ch$[114.142.171.51]:2867P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2102id=F43BB3E5-EDC0-4C5E-B51	2019-10-02 03:26:10
114.142.171.2	attack	Unauthorized connection attempt from IP address 114.142.171.2 on Port 445(SMB)	2019-07-07 00:53:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.142.171.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40140
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.142.171.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 03:29:53 CST 2019
;; MSG SIZE  rcvd: 118

Host info

48.171.142.114.in-addr.arpa domain name pointer subs19-114-142-171-48.three.co.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
48.171.142.114.in-addr.arpa	name = subs19-114-142-171-48.three.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.37.152.150	attack	fail2ban honeypot	2019-10-28 16:49:51
58.147.177.80	attackbotsspam	Unauthorised access (Oct 28) SRC=58.147.177.80 LEN=40 TTL=46 ID=2049 TCP DPT=23 WINDOW=24692 SYN	2019-10-28 16:36:20
14.102.146.52	attackspam	wp bruteforce	2019-10-28 16:34:01
120.136.167.74	attackspam	Oct 27 19:09:17 hanapaa sshd\[12212\]: Invalid user p4\$\$word from 120.136.167.74 Oct 27 19:09:17 hanapaa sshd\[12212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.136.167.74 Oct 27 19:09:19 hanapaa sshd\[12212\]: Failed password for invalid user p4\$\$word from 120.136.167.74 port 49578 ssh2 Oct 27 19:14:15 hanapaa sshd\[12648\]: Invalid user surya from 120.136.167.74 Oct 27 19:14:15 hanapaa sshd\[12648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.136.167.74	2019-10-28 16:41:34
156.223.174.107	attackspambots	firewall-block, port(s): 23/tcp	2019-10-28 16:42:32
80.158.43.100	attack	Oct 28 05:49:54 OPSO sshd\[27520\]: Invalid user rs from 80.158.43.100 port 58302 Oct 28 05:49:54 OPSO sshd\[27520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.158.43.100 Oct 28 05:49:56 OPSO sshd\[27520\]: Failed password for invalid user rs from 80.158.43.100 port 58302 ssh2 Oct 28 05:57:50 OPSO sshd\[29093\]: Invalid user hui from 80.158.43.100 port 25918 Oct 28 05:57:50 OPSO sshd\[29093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.158.43.100	2019-10-28 16:55:08
186.16.32.71	attackbotsspam	Honeypot attack, port: 445, PTR: static-71-32-16-186.telecel.com.py.	2019-10-28 16:30:05
68.183.91.25	attackbotsspam	Oct 27 18:02:42 php1 sshd\[3464\]: Invalid user rpms from 68.183.91.25 Oct 27 18:02:42 php1 sshd\[3464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.91.25 Oct 27 18:02:44 php1 sshd\[3464\]: Failed password for invalid user rpms from 68.183.91.25 port 40743 ssh2 Oct 27 18:07:09 php1 sshd\[4294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.91.25 user=root Oct 27 18:07:11 php1 sshd\[4294\]: Failed password for root from 68.183.91.25 port 59973 ssh2	2019-10-28 16:50:25
217.68.221.102	attackspam	[portscan] Port scan	2019-10-28 16:33:03
122.154.46.5	attackbots	2019-10-27T13:17:59.662133ns525875 sshd\[30534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.46.5 user=root 2019-10-27T13:18:01.588992ns525875 sshd\[30534\]: Failed password for root from 122.154.46.5 port 46938 ssh2 2019-10-27T13:27:38.897057ns525875 sshd\[11773\]: Invalid user ml from 122.154.46.5 port 46344 2019-10-27T13:27:38.901426ns525875 sshd\[11773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.46.5 2019-10-27T13:27:40.650600ns525875 sshd\[11773\]: Failed password for invalid user ml from 122.154.46.5 port 46344 ssh2 2019-10-27T13:31:51.245235ns525875 sshd\[17813\]: Invalid user amaina from 122.154.46.5 port 55898 2019-10-27T13:31:51.247373ns525875 sshd\[17813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.154.46.5 2019-10-27T13:31:53.730582ns525875 sshd\[17813\]: Failed password for invalid user amaina from 122.154.4 ...	2019-10-28 16:35:03
113.28.150.75	attackspambots	2019-10-18T08:21:45.494928ns525875 sshd\[29057\]: Invalid user 123 from 113.28.150.75 port 50561 2019-10-18T08:21:45.501636ns525875 sshd\[29057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.28.150.75 2019-10-18T08:21:47.766516ns525875 sshd\[29057\]: Failed password for invalid user 123 from 113.28.150.75 port 50561 ssh2 2019-10-18T08:25:44.986705ns525875 sshd\[1490\]: Invalid user 123456 from 113.28.150.75 port 47265 2019-10-18T08:25:44.993503ns525875 sshd\[1490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.28.150.75 2019-10-18T08:25:47.066012ns525875 sshd\[1490\]: Failed password for invalid user 123456 from 113.28.150.75 port 47265 ssh2 2019-10-18T08:29:38.810769ns525875 sshd\[6395\]: Invalid user dawn from 113.28.150.75 port 53313 2019-10-18T08:29:38.817031ns525875 sshd\[6395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.28.150.7 ...	2019-10-28 17:07:16
14.100.20.25	attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-28 16:54:19
157.55.39.228	attackspam	Automatic report - Banned IP Access	2019-10-28 16:37:42
213.142.146.86	attackbots	Honeypot attack, port: 445, PTR: ns14686.izbilsan.net.	2019-10-28 16:37:25
51.38.237.78	attack	2019-10-16T13:07:59.714497ns525875 sshd\[5961\]: Invalid user stack from 51.38.237.78 port 44446 2019-10-16T13:07:59.720886ns525875 sshd\[5961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-51-38-237.eu 2019-10-16T13:08:02.077161ns525875 sshd\[5961\]: Failed password for invalid user stack from 51.38.237.78 port 44446 ssh2 2019-10-16T13:14:26.342532ns525875 sshd\[13930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-51-38-237.eu user=root 2019-10-16T13:14:28.330669ns525875 sshd\[13930\]: Failed password for root from 51.38.237.78 port 43468 ssh2 2019-10-16T13:18:17.359466ns525875 sshd\[18523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-51-38-237.eu user=root 2019-10-16T13:18:18.725877ns525875 sshd\[18523\]: Failed password for root from 51.38.237.78 port 55842 ssh2 2019-10-16T13:22:06.138188ns525875 sshd\[23087\]: Invalid user ...	2019-10-28 17:00:26

Recently Reported IPs

222.147.118.0	37.49.230.202	41.212.72.92	189.56.82.108
97.251.172.51	177.84.123.174	61.36.89.101	79.46.231.166
1.55.29.87	112.64.138.69	32.160.58.77	91.162.154.245
210.136.9.20	185.111.183.160	80.136.137.246	132.28.69.139
107.144.192.127	223.205.246.233	220.133.149.234	17.223.1.165