117.53.46.254 - IPInfo

Basic Info

City: Jakarta

Region: Jakarta

Country: Indonesia

Internet Service Provider: PT Trias Kemas Utama

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SSH invalid-user multiple login attempts	2020-02-22 04:18:50

Comments on same subnet:

IP	Type	Details	Datetime
117.53.46.50	attack	2019-10-02T05:13:24.375358abusebot-2.cloudsearch.cf sshd\[28357\]: Invalid user admin from 117.53.46.50 port 60704	2019-10-02 13:17:46
117.53.46.135	attackspambots	xmlrpc attack	2019-08-15 05:38:52
117.53.46.53	attack	Aug 13 13:32:01 mail sshd\[11381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.53.46.53 user=root Aug 13 13:32:03 mail sshd\[11381\]: Failed password for root from 117.53.46.53 port 45788 ssh2 ...	2019-08-13 20:43:39
117.53.46.135	attack	117.53.46.135 - - [12/Aug/2019:04:29:53 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 117.53.46.135 - - [12/Aug/2019:04:29:56 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 117.53.46.135 - - [12/Aug/2019:04:29:56 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 117.53.46.135 - - [12/Aug/2019:04:29:57 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 117.53.46.135 - - [12/Aug/2019:04:29:57 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 117.53.46.135 - - [12/Aug/2019:04:29:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-12 19:00:41
117.53.46.119	attack	Jul 25 10:10:40 rpi sshd[7991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.53.46.119 Jul 25 10:10:42 rpi sshd[7991]: Failed password for invalid user ftpuser from 117.53.46.119 port 58316 ssh2	2019-07-25 16:39:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.53.46.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36025
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.53.46.254.			IN	A

;; AUTHORITY SECTION:
.			239	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022101 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 04:18:47 CST 2020
;; MSG SIZE  rcvd: 117

Host info

254.46.53.117.in-addr.arpa domain name pointer smtp.patens.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
254.46.53.117.in-addr.arpa	name = smtp.patens.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.46.157.169	attackbots	20/6/2@08:03:15: FAIL: Alarm-Network address from=114.46.157.169 ...	2020-06-03 01:20:57
54.39.156.177	attackbotsspam	prod6 ...	2020-06-03 00:56:50
39.122.31.179	attack	prod6 ...	2020-06-03 01:35:48
187.72.167.124	attack	2020-06-02T17:18:43.760365ns386461 sshd\[3373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.72.167.124 user=root 2020-06-02T17:18:46.087007ns386461 sshd\[3373\]: Failed password for root from 187.72.167.124 port 39106 ssh2 2020-06-02T17:36:37.508020ns386461 sshd\[19106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.72.167.124 user=root 2020-06-02T17:36:39.278469ns386461 sshd\[19106\]: Failed password for root from 187.72.167.124 port 34436 ssh2 2020-06-02T17:41:07.574511ns386461 sshd\[23652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.72.167.124 user=root ...	2020-06-03 01:12:33
62.210.125.25	attack	User [mzj] from [62.210.125.25] failed to log in via [SSH] due to authorization failure.	2020-06-03 00:59:56
165.227.203.162	attackbots	2020-06-02T17:19:28.917420mail.broermann.family sshd[31330]: Failed password for root from 165.227.203.162 port 59906 ssh2 2020-06-02T17:22:50.926154mail.broermann.family sshd[31620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.203.162 user=root 2020-06-02T17:22:52.832325mail.broermann.family sshd[31620]: Failed password for root from 165.227.203.162 port 36566 ssh2 2020-06-02T17:26:15.161088mail.broermann.family sshd[32025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.203.162 user=root 2020-06-02T17:26:17.875923mail.broermann.family sshd[32025]: Failed password for root from 165.227.203.162 port 41446 ssh2 ...	2020-06-03 00:49:55
106.13.47.19	attackspambots	(sshd) Failed SSH login from 106.13.47.19 (CN/China/-): 5 in the last 3600 secs	2020-06-03 00:48:45
106.75.130.166	attackspam	5x Failed Password	2020-06-03 01:22:23
175.24.132.222	attack	Jun 2 14:03:15 mellenthin sshd[20937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.132.222 user=root Jun 2 14:03:17 mellenthin sshd[20937]: Failed password for invalid user root from 175.24.132.222 port 55180 ssh2	2020-06-03 01:19:27
77.68.21.131	attackbotsspam	2020-06-02T07:56:50.614118suse-nuc sshd[30215]: User root from 77.68.21.131 not allowed because listed in DenyUsers ...	2020-06-03 01:10:13
114.103.185.209	attack	2020-06-02T14:03:19.150719 X postfix/smtpd[50194]: NOQUEUE: reject: RCPT from unknown[114.103.185.209]: 554 5.7.1 Service unavailable; Client host [114.103.185.209] blocked using zen.spamhaus.org; from= to= proto=SMTP helo=	2020-06-03 01:17:16
41.93.32.89	attackspambots	SSH invalid-user multiple login try	2020-06-03 01:10:36
103.141.136.180	attackspam	[Tue Jun 2 11:15:36 2020 GMT] Coreynava [RDNS_NONE], Subject: PRODUCTS ENQUIRY	2020-06-03 00:50:26
178.32.221.142	attackbotsspam	May 26 21:44:36 v2202003116398111542 sshd[32149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.221.142 user=root	2020-06-03 01:09:35
77.88.5.174	attack	port scan and connect, tcp 443 (https)	2020-06-03 01:28:06

Recently Reported IPs

86.137.84.149	162.91.166.178	186.39.139.7	123.48.84.7
3.105.107.156	107.158.44.52	45.228.239.217	130.199.162.121
187.47.199.149	141.196.182.201	90.103.221.138	174.252.123.29
217.54.197.232	129.6.233.76	211.37.103.32	175.139.52.26
75.117.213.63	154.243.44.205	124.79.242.101	12.39.186.162