116.254.100.14

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Bangun Abadi Teknologi Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 116.254.100.14 on Port 445(SMB)	2020-04-01 20:18:07

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.254.100.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27862
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.254.100.14.			IN	A

;; AUTHORITY SECTION:
.			360	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 20:18:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

14.100.254.116.in-addr.arpa domain name pointer signed-14.mybati.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.100.254.116.in-addr.arpa	name = signed-14.mybati.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.24.107.201	attackbots	k+ssh-bruteforce	2020-03-28 06:34:30
180.250.162.9	attackbotsspam	Invalid user user from 180.250.162.9 port 40492	2020-03-28 06:33:40
118.27.16.74	attack	SSH Invalid Login	2020-03-28 06:54:55
37.72.187.2	attackbotsspam	Mar 27 17:25:38 ny01 sshd[31049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.72.187.2 Mar 27 17:25:40 ny01 sshd[31049]: Failed password for invalid user bpj from 37.72.187.2 port 47266 ssh2 Mar 27 17:29:38 ny01 sshd[324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.72.187.2	2020-03-28 06:23:08
139.99.125.191	attackbots	139.99.125.191 was recorded 13 times by 8 hosts attempting to connect to the following ports: 39019,54434,20269,51856,56610,52084,60429,51142. Incident counter (4h, 24h, all-time): 13, 112, 855	2020-03-28 06:26:16
122.192.255.228	attack	Mar 27 22:08:42 h1745522 sshd[1680]: Invalid user xdj from 122.192.255.228 port 3836 Mar 27 22:08:42 h1745522 sshd[1680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.192.255.228 Mar 27 22:08:42 h1745522 sshd[1680]: Invalid user xdj from 122.192.255.228 port 3836 Mar 27 22:08:44 h1745522 sshd[1680]: Failed password for invalid user xdj from 122.192.255.228 port 3836 ssh2 Mar 27 22:15:03 h1745522 sshd[2287]: Invalid user vgu from 122.192.255.228 port 29580 Mar 27 22:15:03 h1745522 sshd[2287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.192.255.228 Mar 27 22:15:03 h1745522 sshd[2287]: Invalid user vgu from 122.192.255.228 port 29580 Mar 27 22:15:05 h1745522 sshd[2287]: Failed password for invalid user vgu from 122.192.255.228 port 29580 ssh2 Mar 27 22:18:05 h1745522 sshd[2445]: Invalid user kjj from 122.192.255.228 port 10380 ...	2020-03-28 06:18:45
89.22.186.216	attackbots	Repeated brute force against a port	2020-03-28 06:18:04
111.40.50.116	attackspam	Mar 27 21:20:55 ip-172-31-62-245 sshd\[5391\]: Invalid user mud from 111.40.50.116\ Mar 27 21:20:56 ip-172-31-62-245 sshd\[5391\]: Failed password for invalid user mud from 111.40.50.116 port 55906 ssh2\ Mar 27 21:23:50 ip-172-31-62-245 sshd\[5402\]: Invalid user ue from 111.40.50.116\ Mar 27 21:23:51 ip-172-31-62-245 sshd\[5402\]: Failed password for invalid user ue from 111.40.50.116 port 43028 ssh2\ Mar 27 21:26:42 ip-172-31-62-245 sshd\[5421\]: Invalid user fli from 111.40.50.116\	2020-03-28 06:21:41
175.24.106.77	attackspambots	Mar 27 22:18:08 [HOSTNAME] sshd[8393]: Invalid user okj from 175.24.106.77 port 56720 Mar 27 22:18:08 [HOSTNAME] sshd[8393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.106.77 Mar 27 22:18:10 [HOSTNAME] sshd[8393]: Failed password for invalid user okj from 175.24.106.77 port 56720 ssh2 ...	2020-03-28 06:14:49
119.29.195.187	attackspam	Mar 27 02:43:16 mail sshd[25142]: Invalid user qichen from 119.29.195.187 Mar 27 02:43:16 mail sshd[25142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.195.187 Mar 27 02:43:16 mail sshd[25143]: Invalid user qichen from 119.29.195.187 Mar 27 02:43:16 mail sshd[25143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.195.187 Mar 27 02:43:18 mail sshd[25142]: Failed password for invalid user qichen from 119.29.195.187 port 32952 ssh2 Mar 27 02:43:18 mail sshd[25143]: Failed password for invalid user qichen from 119.29.195.187 port 32954 ssh2 Mar 27 02:43:18 mail sshd[25142]: Received disconnect from 119.29.195.187 port 32952:11: Bye Bye [preauth] Mar 27 02:43:18 mail sshd[25142]: Disconnected from 119.29.195.187 port 32952 [preauth] Mar 27 02:43:18 mail sshd[25143]: Received disconnect from 119.29.195.187 port 32954:11: Bye Bye [preauth] Mar 27 02:43:18 mail sshd[25143]: Discon........ -------------------------------	2020-03-28 06:40:33
134.209.7.179	attackbots	Mar 27 22:17:29 ks10 sshd[1034538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.7.179 Mar 27 22:17:31 ks10 sshd[1034538]: Failed password for invalid user rif from 134.209.7.179 port 54226 ssh2 ...	2020-03-28 06:43:34
105.235.28.90	attack	SSH brute force attempt	2020-03-28 06:15:57
71.6.158.166	attack	03/27/2020-18:25:04.043186 71.6.158.166 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2020-03-28 06:25:13
197.48.80.64	attackbots	Mar 27 22:17:59 debian-2gb-nbg1-2 kernel: \[7602948.941702\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=197.48.80.64 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=38406 PROTO=TCP SPT=6091 DPT=23 WINDOW=14319 RES=0x00 SYN URGP=0	2020-03-28 06:22:16
185.243.52.153	attack	Mar 27 22:17:31 tuxlinux sshd[21162]: Invalid user moscraciun from 185.243.52.153 port 54424 Mar 27 22:17:31 tuxlinux sshd[21162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.243.52.153 Mar 27 22:17:31 tuxlinux sshd[21162]: Invalid user moscraciun from 185.243.52.153 port 54424 Mar 27 22:17:31 tuxlinux sshd[21162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.243.52.153 Mar 27 22:17:31 tuxlinux sshd[21162]: Invalid user moscraciun from 185.243.52.153 port 54424 Mar 27 22:17:31 tuxlinux sshd[21162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.243.52.153 Mar 27 22:17:34 tuxlinux sshd[21162]: Failed password for invalid user moscraciun from 185.243.52.153 port 54424 ssh2 ...	2020-03-28 06:39:43

Recently Reported IPs

222.195.9.40	206.151.57.120	73.90.200.129	211.91.6.141
57.91.8.153	223.10.35.202	140.213.3.141	139.155.70.21
24.13.158.252	81.29.13.178	134.122.112.75	218.38.16.21
194.26.29.118	155.155.107.10	110.77.244.92	175.171.255.195
197.3.67.215	85.209.83.134	62.219.120.122	34.183.16.47