116.197.132.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.197.132.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26677
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.197.132.2.			IN	A

;; AUTHORITY SECTION:
.			227	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 20:40:57 CST 2022
;; MSG SIZE  rcvd: 106

Host info

2.132.197.116.in-addr.arpa domain name pointer 2-132dompetduafa.fiber.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.132.197.116.in-addr.arpa	name = 2-132dompetduafa.fiber.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
109.254.129.4	attack	Autoban 109.254.129.4 AUTH/CONNECT	2019-11-18 16:35:59
105.9.77.168	attackspambots	Autoban 105.9.77.168 AUTH/CONNECT	2019-11-18 17:14:24
47.75.126.75	attackbotsspam	47.75.126.75 - - \[18/Nov/2019:08:19:40 +0100\] "POST /wp-login.php HTTP/1.0" 200 7538 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 47.75.126.75 - - \[18/Nov/2019:08:19:44 +0100\] "POST /wp-login.php HTTP/1.0" 200 7363 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 47.75.126.75 - - \[18/Nov/2019:08:19:47 +0100\] "POST /wp-login.php HTTP/1.0" 200 7358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-18 17:00:39
109.188.79.159	attackspam	Autoban 109.188.79.159 AUTH/CONNECT	2019-11-18 16:50:11
109.224.57.14	attackbots	Autoban 109.224.57.14 AUTH/CONNECT	2019-11-18 16:46:22
218.250.254.218	attackspambots	" "	2019-11-18 16:35:26
118.200.65.120	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/118.200.65.120/ SG - 1H : (35) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : SG NAME ASN : ASN9506 IP : 118.200.65.120 CIDR : 118.200.0.0/16 PREFIX COUNT : 67 UNIQUE IP COUNT : 778752 ATTACKS DETECTED ASN9506 : 1H - 2 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2019-11-18 07:29:13 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-18 16:40:42
159.203.169.16	attackbots	11/18/2019-01:29:17.260844 159.203.169.16 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 11	2019-11-18 16:40:13
198.108.67.33	attack	" "	2019-11-18 16:51:50
122.228.19.80	attackspam	122.228.19.80 was recorded 136 times by 30 hosts attempting to connect to the following ports: 9001,6667,5432,12000,3690,2181,9944,53,5353,40001,6379,6881,8089,22,1099,3128,10000,37215,8081,143,2376,631,554,5357,111,502,9090,2152,523,8880,520,3001,5800,9595,2404,13579,44818,7779,30718,5060,33338,10243,20547,8025,8007,3790,623,8090,1911,1443,3000,82,4070,8006,1080,3299,8080,5006,2082,789,7777,8099,7000,3542,7547,1400,5900,3268,3306,8098,10554,4500,9306,4786,10001,28017,25565,6664,27036,2083,8010,993,16992,9600,8889,5038,8139,9100,9191,8008,113,17185,8085,1521,2086,5560,1962,9876,1194,3283,9009,26,465,7,4369. Incident counter (4h, 24h, all-time): 136, 607, 5920	2019-11-18 16:42:02
109.102.254.170	attackspambots	Autoban 109.102.254.170 AUTH/CONNECT	2019-11-18 16:59:21
103.138.109.68	attackspam	Nov 18 09:28:46 server sshd\[9560\]: Invalid user stackato from 103.138.109.68 Nov 18 09:28:47 server sshd\[9560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.138.109.68 Nov 18 09:28:49 server sshd\[9560\]: Failed password for invalid user stackato from 103.138.109.68 port 61359 ssh2 Nov 18 09:28:49 server sshd\[9561\]: Received disconnect from 103.138.109.68: 3: com.jcraft.jsch.JSchException: Auth fail Nov 18 09:29:15 server sshd\[9624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.138.109.68 user=root ...	2019-11-18 16:41:37
202.83.192.226	attack	11/18/2019-01:28:38.777220 202.83.192.226 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-18 17:15:07
109.121.104.46	attackspambots	Autoban 109.121.104.46 AUTH/CONNECT	2019-11-18 16:55:09
218.150.220.198	attackspambots	Nov 18 03:14:16 TORMINT sshd\[7973\]: Invalid user sophia from 218.150.220.198 Nov 18 03:14:16 TORMINT sshd\[7973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.150.220.198 Nov 18 03:14:17 TORMINT sshd\[7973\]: Failed password for invalid user sophia from 218.150.220.198 port 43048 ssh2 ...	2019-11-18 17:01:30

Recently Reported IPs

192.166.153.83	185.245.183.88	184.168.122.146	123.8.84.167
184.82.140.13	183.102.3.251	115.52.35.43	185.217.119.43
51.142.239.53	54.213.59.235	50.216.14.54	186.154.4.20
45.192.140.127	68.183.239.110	180.224.45.186	65.108.97.37
159.203.77.86	188.166.29.14	84.21.171.169	170.210.231.101