116.254.100.14

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Bangun Abadi Teknologi Indonesia

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 116.254.100.14 on Port 445(SMB)	2020-04-01 20:18:07

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.254.100.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27862
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.254.100.14.			IN	A

;; AUTHORITY SECTION:
.			360	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 20:18:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

14.100.254.116.in-addr.arpa domain name pointer signed-14.mybati.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.100.254.116.in-addr.arpa	name = signed-14.mybati.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.32.160.147	attack	Nov 2 01:00:42 mecmail postfix/smtpd[6925]: NOQUEUE: reject: RCPT from unknown[193.32.160.147]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[193.32.160.153]> Nov 2 01:00:42 mecmail postfix/smtpd[6925]: NOQUEUE: reject: RCPT from unknown[193.32.160.147]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[193.32.160.153]> Nov 2 01:00:42 mecmail postfix/smtpd[6925]: NOQUEUE: reject: RCPT from unknown[193.32.160.147]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[193.32.160.153]> Nov 2 01:00:42 mecmail postfix/smtpd[6925]: NOQUEUE: reject: RCPT from unknown[193.32.160.147]: 554 5.7.1 : Relay access denied; from= ...	2019-11-02 13:02:10
119.28.105.127	attack	2019-11-02T05:03:47.186771abusebot-2.cloudsearch.cf sshd\[11905\]: Invalid user knicks from 119.28.105.127 port 44908	2019-11-02 13:29:45
125.227.255.79	attack	Nov 2 05:52:19 mout sshd[21859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.255.79 user=root Nov 2 05:52:21 mout sshd[21859]: Failed password for root from 125.227.255.79 port 7800 ssh2	2019-11-02 13:20:25
129.158.73.144	attackspam	Nov 2 05:56:14 fr01 sshd[2150]: Invalid user helena from 129.158.73.144 Nov 2 05:56:14 fr01 sshd[2150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.158.73.144 Nov 2 05:56:14 fr01 sshd[2150]: Invalid user helena from 129.158.73.144 Nov 2 05:56:16 fr01 sshd[2150]: Failed password for invalid user helena from 129.158.73.144 port 56451 ssh2 ...	2019-11-02 13:13:22
89.248.174.215	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 87 - port: 8089 proto: TCP cat: Misc Attack	2019-11-02 13:08:47
142.44.137.62	attackbots	Nov 1 18:48:50 hanapaa sshd\[1473\]: Invalid user ramesh from 142.44.137.62 Nov 1 18:48:50 hanapaa sshd\[1473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns549998.ip-142-44-137.net Nov 1 18:48:52 hanapaa sshd\[1473\]: Failed password for invalid user ramesh from 142.44.137.62 port 53710 ssh2 Nov 1 18:52:38 hanapaa sshd\[1794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns549998.ip-142-44-137.net user=root Nov 1 18:52:39 hanapaa sshd\[1794\]: Failed password for root from 142.44.137.62 port 35468 ssh2	2019-11-02 12:57:58
60.209.112.216	attackspam	port scan and connect, tcp 23 (telnet)	2019-11-02 12:55:59
206.189.30.229	attack	Nov 2 06:07:31 sd-53420 sshd\[23085\]: User root from 206.189.30.229 not allowed because none of user's groups are listed in AllowGroups Nov 2 06:07:31 sd-53420 sshd\[23085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229 user=root Nov 2 06:07:33 sd-53420 sshd\[23085\]: Failed password for invalid user root from 206.189.30.229 port 51504 ssh2 Nov 2 06:10:56 sd-53420 sshd\[23384\]: User root from 206.189.30.229 not allowed because none of user's groups are listed in AllowGroups Nov 2 06:10:56 sd-53420 sshd\[23384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.30.229 user=root ...	2019-11-02 13:12:21
80.82.77.86	attack	69/udp 13/udp 49153/udp... [2019-09-01/11-02]552pkt,15pt.(udp)	2019-11-02 12:50:08
106.12.195.41	attackbotsspam	Nov 1 21:44:03 mockhub sshd[24363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.195.41 Nov 1 21:44:05 mockhub sshd[24363]: Failed password for invalid user Spider2017 from 106.12.195.41 port 39100 ssh2 ...	2019-11-02 12:53:35
191.252.195.225	attackspambots	Nov 1 18:45:32 sachi sshd\[32675\]: Invalid user a from 191.252.195.225 Nov 1 18:45:32 sachi sshd\[32675\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps8811.publiccloud.com.br Nov 1 18:45:34 sachi sshd\[32675\]: Failed password for invalid user a from 191.252.195.225 port 37970 ssh2 Nov 1 18:50:20 sachi sshd\[617\]: Invalid user 123456 from 191.252.195.225 Nov 1 18:50:20 sachi sshd\[617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps8811.publiccloud.com.br	2019-11-02 13:06:02
103.15.62.69	attackbots	Nov 2 05:31:39 odroid64 sshd\[20749\]: User root from 103.15.62.69 not allowed because not listed in AllowUsers Nov 2 05:31:39 odroid64 sshd\[20749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.15.62.69 user=root ...	2019-11-02 13:17:39
114.207.139.203	attack	Nov 2 06:11:54 ns41 sshd[15840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203	2019-11-02 13:23:10
50.249.107.109	attack	RDP Bruteforce	2019-11-02 13:19:32
13.80.112.16	attackbots	Nov 2 01:06:45 plusreed sshd[2044]: Invalid user howlwolf from 13.80.112.16 ...	2019-11-02 13:07:18

Recently Reported IPs

222.195.9.40	206.151.57.120	73.90.200.129	211.91.6.141
57.91.8.153	223.10.35.202	140.213.3.141	139.155.70.21
24.13.158.252	81.29.13.178	134.122.112.75	218.38.16.21
194.26.29.118	155.155.107.10	110.77.244.92	175.171.255.195
197.3.67.215	85.209.83.134	62.219.120.122	34.183.16.47