116.206.14.2 - IPInfo

Basic Info

City: Bandung

Region: Jawa Barat

Country: Indonesia

Internet Service Provider: 3

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.206.14.24	attackspambots	20/8/2@16:22:11: FAIL: Alarm-Network address from=116.206.14.24 ...	2020-08-03 07:36:00
116.206.14.51	attack	Unauthorized connection attempt from IP address 116.206.14.51 on Port 445(SMB)	2020-07-25 23:50:18
116.206.14.41	attack	Unauthorized connection attempt from IP address 116.206.14.41 on Port 445(SMB)	2020-06-10 02:30:40
116.206.14.15	attackbots	$f2bV_matches	2020-02-11 15:42:29
116.206.14.30	attackbotsspam	Honeypot attack, port: 445, PTR: subs30-116-206-14-30.three.co.id.	2020-02-03 01:47:45
116.206.14.61	attack	2019-10-0114:12:111iFH0l-0006hB-0s\<=info@imsuisse-sa.chH=194.162.229.201.l.sta.codetel.net.do$imsuisse-sa.ch$[201.229.162.194]:27326P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2384id=E85A1A6D-E132-4E6C-B8F6-F2C3643B4D53@imsuisse-sa.chT=""forjeffb@glenview.il.usjeffrey.ladd@klgates.comjeffrey.sriver@cityofchicago.orgjennifer.mcneil@urs.comJennifer.Tammen@cityofchicago.orgJessica-Leigh.Arends@meetingsfocus.com2019-10-0114:12:121iFH0l-0006dW-Ag\<=info@imsuisse-sa.chH=$imsuisse-sa.ch$[41.223.160.156]:8575P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2559id=7E657D39-0F36-4649-BC67-ED80260DEF78@imsuisse-sa.chT=""forggunther@Asplundh.comginger@techinsurance.comglaitman@Asplundh.comGloria.Pierce@BellSouth.comgmccaw@alcogare.comgpaulsson@comcast.netgrowell@summitsti.comgspence1@juno.comgthomas97@yahoo.com2019-10-0114:12:061iFH0g-0006hj-9j\<=info@imsuisse-sa.chH=$imsuisse-sa.ch$[46.53.72.52]:11830P=esmtpsaX=TLSv1.2:	2019-10-02 03:17:55
116.206.148.30	attack	Postfix SMTP rejection ...	2019-09-12 22:35:06
116.206.14.54	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08041230)	2019-08-05 01:22:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.206.14.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.206.14.2.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050200 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 02 15:07:24 CST 2023
;; MSG SIZE  rcvd: 105

Host info

2.14.206.116.in-addr.arpa domain name pointer subs30-116-206-14-2.three.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.14.206.116.in-addr.arpa	name = subs30-116-206-14-2.three.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.88.112.113	attackspambots	Dec 13 07:52:59 web9 sshd\[31520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Dec 13 07:53:01 web9 sshd\[31520\]: Failed password for root from 49.88.112.113 port 46184 ssh2 Dec 13 07:53:03 web9 sshd\[31520\]: Failed password for root from 49.88.112.113 port 46184 ssh2 Dec 13 07:53:05 web9 sshd\[31520\]: Failed password for root from 49.88.112.113 port 46184 ssh2 Dec 13 07:53:55 web9 sshd\[31646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2019-12-14 02:12:52
222.186.175.167	attackspambots	Dec 13 08:22:31 php1 sshd\[2104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Dec 13 08:22:33 php1 sshd\[2104\]: Failed password for root from 222.186.175.167 port 38226 ssh2 Dec 13 08:22:46 php1 sshd\[2104\]: Failed password for root from 222.186.175.167 port 38226 ssh2 Dec 13 08:22:49 php1 sshd\[2131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Dec 13 08:22:52 php1 sshd\[2131\]: Failed password for root from 222.186.175.167 port 9846 ssh2	2019-12-14 02:31:25
122.228.19.79	attack	failed_logins	2019-12-14 02:43:11
109.201.197.98	attackspam	Fail2Ban Ban Triggered	2019-12-14 02:50:06
222.186.180.17	attack	Dec 14 01:12:53 webhost01 sshd[22016]: Failed password for root from 222.186.180.17 port 55966 ssh2 Dec 14 01:13:07 webhost01 sshd[22016]: error: maximum authentication attempts exceeded for root from 222.186.180.17 port 55966 ssh2 [preauth] ...	2019-12-14 02:13:47
192.185.83.49	attackbotsspam	Probing for vulnerable PHP code /mjce5btz.php	2019-12-14 02:49:36
46.119.30.157	attack	Unauthorized connection attempt detected from IP address 46.119.30.157 to port 445	2019-12-14 02:22:58
49.88.112.115	attack	Dec 13 21:14:54 server sshd\[24752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Dec 13 21:14:56 server sshd\[24752\]: Failed password for root from 49.88.112.115 port 61385 ssh2 Dec 13 21:14:58 server sshd\[24752\]: Failed password for root from 49.88.112.115 port 61385 ssh2 Dec 13 21:15:01 server sshd\[24752\]: Failed password for root from 49.88.112.115 port 61385 ssh2 Dec 13 21:17:01 server sshd\[25588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root ...	2019-12-14 02:17:31
54.39.107.119	attackbots	2019-12-13T11:29:50.797998ns547587 sshd\[24487\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns561359.ip-54-39-107.net user=root 2019-12-13T11:29:52.564282ns547587 sshd\[24487\]: Failed password for root from 54.39.107.119 port 41426 ssh2 2019-12-13T11:35:29.967488ns547587 sshd\[920\]: Invalid user kassey from 54.39.107.119 port 50554 2019-12-13T11:35:29.973190ns547587 sshd\[920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns561359.ip-54-39-107.net ...	2019-12-14 02:20:45
191.34.162.186	attackspambots	Dec 13 19:09:13 markkoudstaal sshd[18332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.34.162.186 Dec 13 19:09:16 markkoudstaal sshd[18332]: Failed password for invalid user asterisk from 191.34.162.186 port 57785 ssh2 Dec 13 19:15:45 markkoudstaal sshd[18994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.34.162.186	2019-12-14 02:28:09
180.167.137.103	attackbots	Dec 13 18:03:15 sd-53420 sshd\[4351\]: Invalid user admin from 180.167.137.103 Dec 13 18:03:15 sd-53420 sshd\[4351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.137.103 Dec 13 18:03:17 sd-53420 sshd\[4351\]: Failed password for invalid user admin from 180.167.137.103 port 49466 ssh2 Dec 13 18:09:03 sd-53420 sshd\[4789\]: Invalid user jada from 180.167.137.103 Dec 13 18:09:03 sd-53420 sshd\[4789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.137.103 ...	2019-12-14 02:43:58
185.209.0.89	attackbots	12/13/2019-13:41:15.003939 185.209.0.89 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-14 02:42:22
218.92.0.141	attack	Dec 13 19:33:31 tux-35-217 sshd\[29381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 13 19:33:33 tux-35-217 sshd\[29381\]: Failed password for root from 218.92.0.141 port 44901 ssh2 Dec 13 19:33:36 tux-35-217 sshd\[29381\]: Failed password for root from 218.92.0.141 port 44901 ssh2 Dec 13 19:33:40 tux-35-217 sshd\[29381\]: Failed password for root from 218.92.0.141 port 44901 ssh2 ...	2019-12-14 02:37:51
133.242.155.85	attackspambots	Dec 13 17:29:07 vps691689 sshd[23219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.155.85 Dec 13 17:29:09 vps691689 sshd[23219]: Failed password for invalid user ftp from 133.242.155.85 port 35484 ssh2 Dec 13 17:35:20 vps691689 sshd[23406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.155.85 ...	2019-12-14 02:44:13
104.236.63.99	attackspambots	Dec 13 19:07:09 nextcloud sshd\[23218\]: Invalid user susic from 104.236.63.99 Dec 13 19:07:09 nextcloud sshd\[23218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99 Dec 13 19:07:11 nextcloud sshd\[23218\]: Failed password for invalid user susic from 104.236.63.99 port 49250 ssh2 ...	2019-12-14 02:26:23

Recently Reported IPs

140.116.249.115	140.125.190.120	140.116.131.225	132.66.62.220
193.219.163.5	212.26.27.250	194.199.117.239	103.47.133.163
140.116.249.102	203.158.224.155	140.116.92.207	202.67.40.2
140.116.40.151	140.116.192.231	116.206.29.91	140.116.112.14
193.174.6.2	220.247.201.44	140.115.1.31	136.159.213.126