116.206.14.2 - IPInfo

Basic Info

City: Bandung

Region: Jawa Barat

Country: Indonesia

Internet Service Provider: 3

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.206.14.24	attackspambots	20/8/2@16:22:11: FAIL: Alarm-Network address from=116.206.14.24 ...	2020-08-03 07:36:00
116.206.14.51	attack	Unauthorized connection attempt from IP address 116.206.14.51 on Port 445(SMB)	2020-07-25 23:50:18
116.206.14.41	attack	Unauthorized connection attempt from IP address 116.206.14.41 on Port 445(SMB)	2020-06-10 02:30:40
116.206.14.15	attackbots	$f2bV_matches	2020-02-11 15:42:29
116.206.14.30	attackbotsspam	Honeypot attack, port: 445, PTR: subs30-116-206-14-30.three.co.id.	2020-02-03 01:47:45
116.206.14.61	attack	2019-10-0114:12:111iFH0l-0006hB-0s\<=info@imsuisse-sa.chH=194.162.229.201.l.sta.codetel.net.do$imsuisse-sa.ch$[201.229.162.194]:27326P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2384id=E85A1A6D-E132-4E6C-B8F6-F2C3643B4D53@imsuisse-sa.chT=""forjeffb@glenview.il.usjeffrey.ladd@klgates.comjeffrey.sriver@cityofchicago.orgjennifer.mcneil@urs.comJennifer.Tammen@cityofchicago.orgJessica-Leigh.Arends@meetingsfocus.com2019-10-0114:12:121iFH0l-0006dW-Ag\<=info@imsuisse-sa.chH=$imsuisse-sa.ch$[41.223.160.156]:8575P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_plain:info@imsuisse-sa.chS=2559id=7E657D39-0F36-4649-BC67-ED80260DEF78@imsuisse-sa.chT=""forggunther@Asplundh.comginger@techinsurance.comglaitman@Asplundh.comGloria.Pierce@BellSouth.comgmccaw@alcogare.comgpaulsson@comcast.netgrowell@summitsti.comgspence1@juno.comgthomas97@yahoo.com2019-10-0114:12:061iFH0g-0006hj-9j\<=info@imsuisse-sa.chH=$imsuisse-sa.ch$[46.53.72.52]:11830P=esmtpsaX=TLSv1.2:	2019-10-02 03:17:55
116.206.148.30	attack	Postfix SMTP rejection ...	2019-09-12 22:35:06
116.206.14.54	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08041230)	2019-08-05 01:22:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.206.14.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.206.14.2.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050200 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 02 15:07:24 CST 2023
;; MSG SIZE  rcvd: 105

Host info

2.14.206.116.in-addr.arpa domain name pointer subs30-116-206-14-2.three.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.14.206.116.in-addr.arpa	name = subs30-116-206-14-2.three.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.55.239.151	attackspam	Unauthorised access (Dec 1) SRC=1.55.239.151 LEN=52 TTL=106 ID=25833 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 05:43:45
106.12.5.77	attackspambots	Dec 1 22:39:14 localhost sshd\[8487\]: Invalid user gdm from 106.12.5.77 Dec 1 22:39:14 localhost sshd\[8487\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.5.77 Dec 1 22:39:16 localhost sshd\[8487\]: Failed password for invalid user gdm from 106.12.5.77 port 49430 ssh2 Dec 1 22:46:20 localhost sshd\[9021\]: Invalid user adminu from 106.12.5.77 Dec 1 22:46:20 localhost sshd\[9021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.5.77 ...	2019-12-02 06:02:28
141.98.80.176	attack	Portscan or hack attempt detected by psad/fwsnort	2019-12-02 06:10:41
51.15.87.74	attackspambots	Dec 1 22:37:46 localhost sshd\[8392\]: Invalid user humborstad from 51.15.87.74 Dec 1 22:37:46 localhost sshd\[8392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.74 Dec 1 22:37:48 localhost sshd\[8392\]: Failed password for invalid user humborstad from 51.15.87.74 port 53592 ssh2 Dec 1 22:43:06 localhost sshd\[8737\]: Invalid user edina from 51.15.87.74 Dec 1 22:43:06 localhost sshd\[8737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.74 ...	2019-12-02 05:44:24
165.227.179.138	attack	Dec 1 22:16:09 srv206 sshd[9906]: Invalid user passier from 165.227.179.138 Dec 1 22:16:09 srv206 sshd[9906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 Dec 1 22:16:09 srv206 sshd[9906]: Invalid user passier from 165.227.179.138 Dec 1 22:16:12 srv206 sshd[9906]: Failed password for invalid user passier from 165.227.179.138 port 36004 ssh2 ...	2019-12-02 06:09:01
125.160.67.230	attack	port scan and connect, tcp 22 (ssh)	2019-12-02 06:13:15
68.183.91.147	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-02 06:05:07
186.94.113.206	attackspam	Unauthorised access (Dec 1) SRC=186.94.113.206 LEN=52 TTL=115 ID=18696 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 1) SRC=186.94.113.206 LEN=52 TTL=115 ID=22488 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 05:37:11
58.137.160.183	attackbotsspam	Unauthorized access or intrusion attempt detected from Bifur banned IP	2019-12-02 06:16:57
192.169.156.194	attackbotsspam	Dec 1 21:51:55 game-panel sshd[27351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.169.156.194 Dec 1 21:51:57 game-panel sshd[27351]: Failed password for invalid user admin from 192.169.156.194 port 34554 ssh2 Dec 1 21:57:28 game-panel sshd[27578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.169.156.194	2019-12-02 06:06:54
122.224.98.154	attackspam	Dec 1 22:29:40 cp sshd[10335]: Failed password for root from 122.224.98.154 port 52504 ssh2 Dec 1 22:36:10 cp sshd[14193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.98.154 Dec 1 22:36:12 cp sshd[14193]: Failed password for invalid user gnat from 122.224.98.154 port 36120 ssh2	2019-12-02 05:41:24
182.61.36.38	attackbotsspam	Dec 1 22:28:29 vps666546 sshd\[9238\]: Invalid user viduya from 182.61.36.38 port 59786 Dec 1 22:28:29 vps666546 sshd\[9238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.36.38 Dec 1 22:28:32 vps666546 sshd\[9238\]: Failed password for invalid user viduya from 182.61.36.38 port 59786 ssh2 Dec 1 22:34:28 vps666546 sshd\[9483\]: Invalid user myhrvold from 182.61.36.38 port 39810 Dec 1 22:34:28 vps666546 sshd\[9483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.36.38 ...	2019-12-02 05:55:51
45.82.153.137	attackbots	Dec 1 22:16:32 srv01 postfix/smtpd\[21866\]: warning: unknown\[45.82.153.137\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 1 22:16:51 srv01 postfix/smtpd\[21866\]: warning: unknown\[45.82.153.137\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 1 22:19:44 srv01 postfix/smtpd\[21866\]: warning: unknown\[45.82.153.137\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 1 22:20:08 srv01 postfix/smtpd\[7003\]: warning: unknown\[45.82.153.137\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 1 22:35:17 srv01 postfix/smtpd\[12847\]: warning: unknown\[45.82.153.137\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-02 05:46:24
45.163.216.23	attackspam	Dec 1 22:27:27 OPSO sshd\[28258\]: Invalid user ctrls from 45.163.216.23 port 51284 Dec 1 22:27:27 OPSO sshd\[28258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.163.216.23 Dec 1 22:27:28 OPSO sshd\[28258\]: Failed password for invalid user ctrls from 45.163.216.23 port 51284 ssh2 Dec 1 22:34:22 OPSO sshd\[30266\]: Invalid user 1234\$\#\$ from 45.163.216.23 port 36960 Dec 1 22:34:22 OPSO sshd\[30266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.163.216.23	2019-12-02 05:52:00
177.36.223.146	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-12-02 06:16:39

Recently Reported IPs

140.116.249.115	140.125.190.120	140.116.131.225	132.66.62.220
193.219.163.5	212.26.27.250	194.199.117.239	103.47.133.163
140.116.249.102	203.158.224.155	140.116.92.207	202.67.40.2
140.116.40.151	140.116.192.231	116.206.29.91	140.116.112.14
193.174.6.2	220.247.201.44	140.115.1.31	136.159.213.126