66.96.228.45 - IPInfo

Basic Info

City: Kedunghalang

Region: Jawa Barat

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.96.228.119	attackbots	Aug 30 08:35:53 l02a sshd[31833]: Invalid user wyl from 66.96.228.119 Aug 30 08:35:53 l02a sshd[31833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 Aug 30 08:35:53 l02a sshd[31833]: Invalid user wyl from 66.96.228.119 Aug 30 08:35:54 l02a sshd[31833]: Failed password for invalid user wyl from 66.96.228.119 port 58600 ssh2	2020-08-30 15:46:06
66.96.228.119	attackbotsspam	Aug 23 14:14:16 ip40 sshd[30106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 Aug 23 14:14:18 ip40 sshd[30106]: Failed password for invalid user ftpuser from 66.96.228.119 port 42074 ssh2 ...	2020-08-23 20:18:12
66.96.228.141	attackspam	Port probing on unauthorized port 5555	2020-08-22 02:07:10
66.96.228.119	attackbots	2020-08-17T20:21:59.672346abusebot-3.cloudsearch.cf sshd[28157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root 2020-08-17T20:22:01.685447abusebot-3.cloudsearch.cf sshd[28157]: Failed password for root from 66.96.228.119 port 50538 ssh2 2020-08-17T20:24:59.799716abusebot-3.cloudsearch.cf sshd[28203]: Invalid user red from 66.96.228.119 port 42558 2020-08-17T20:24:59.806353abusebot-3.cloudsearch.cf sshd[28203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 2020-08-17T20:24:59.799716abusebot-3.cloudsearch.cf sshd[28203]: Invalid user red from 66.96.228.119 port 42558 2020-08-17T20:25:01.528548abusebot-3.cloudsearch.cf sshd[28203]: Failed password for invalid user red from 66.96.228.119 port 42558 ssh2 2020-08-17T20:27:54.890781abusebot-3.cloudsearch.cf sshd[28253]: Invalid user songlin from 66.96.228.119 port 34574 ...	2020-08-18 05:16:52
66.96.228.119	attackspam	2020-08-04T09:16:24.076017shield sshd\[25370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root 2020-08-04T09:16:26.576051shield sshd\[25370\]: Failed password for root from 66.96.228.119 port 38816 ssh2 2020-08-04T09:21:15.102123shield sshd\[25982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root 2020-08-04T09:21:16.886547shield sshd\[25982\]: Failed password for root from 66.96.228.119 port 50820 ssh2 2020-08-04T09:25:57.114581shield sshd\[26450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root	2020-08-04 19:58:06
66.96.228.119	attackspambots	Aug 4 04:06:27 firewall sshd[15620]: Failed password for root from 66.96.228.119 port 33330 ssh2 Aug 4 04:11:03 firewall sshd[15891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root Aug 4 04:11:06 firewall sshd[15891]: Failed password for root from 66.96.228.119 port 45324 ssh2 ...	2020-08-04 15:16:28
66.96.228.119	attackspam	Port Scan detected from 66.96.228.119 (ID/Indonesia/Jakarta/Jakarta/host-66-96-228-119.myrepublic.co.id). 4 hits in the last 200 seconds	2020-07-31 01:17:20
66.96.228.119	attackspam	Jul 29 23:27:31 minden010 sshd[22837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 Jul 29 23:27:33 minden010 sshd[22837]: Failed password for invalid user zhangyaqian from 66.96.228.119 port 51324 ssh2 Jul 29 23:31:54 minden010 sshd[24313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 ...	2020-07-30 05:53:44
66.96.228.119	attackbotsspam	2020-07-29T16:47:54.805383lavrinenko.info sshd[32442]: Invalid user tusuocheng from 66.96.228.119 port 44898 2020-07-29T16:47:54.817408lavrinenko.info sshd[32442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 2020-07-29T16:47:54.805383lavrinenko.info sshd[32442]: Invalid user tusuocheng from 66.96.228.119 port 44898 2020-07-29T16:47:56.693540lavrinenko.info sshd[32442]: Failed password for invalid user tusuocheng from 66.96.228.119 port 44898 ssh2 2020-07-29T16:52:27.494693lavrinenko.info sshd[32550]: Invalid user jingguanghu from 66.96.228.119 port 56026 ...	2020-07-30 01:36:47
66.96.228.119	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-07-24 22:50:45
66.96.228.119	attackspam	2020-07-21T06:36:43.846282ks3355764 sshd[12641]: Invalid user timemachine from 66.96.228.119 port 33744 2020-07-21T06:36:46.277709ks3355764 sshd[12641]: Failed password for invalid user timemachine from 66.96.228.119 port 33744 ssh2 ...	2020-07-21 14:33:03
66.96.228.119	attack	Jul 19 07:33:29 dignus sshd[11726]: Failed password for invalid user tomcat from 66.96.228.119 port 45160 ssh2 Jul 19 07:34:20 dignus sshd[11845]: Invalid user multicraft from 66.96.228.119 port 54882 Jul 19 07:34:20 dignus sshd[11845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 Jul 19 07:34:22 dignus sshd[11845]: Failed password for invalid user multicraft from 66.96.228.119 port 54882 ssh2 Jul 19 07:35:08 dignus sshd[11962]: Invalid user bla from 66.96.228.119 port 36374 ...	2020-07-19 23:47:39
66.96.228.119	attack	Invalid user steam from 66.96.228.119 port 50626	2020-07-18 20:22:00
66.96.228.119	attackspam	Invalid user asd from 66.96.228.119 port 46434 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 Invalid user asd from 66.96.228.119 port 46434 Failed password for invalid user asd from 66.96.228.119 port 46434 ssh2 Invalid user bot from 66.96.228.119 port 49584	2020-07-14 22:52:18
66.96.228.119	attack	$f2bV_matches	2020-07-12 04:20:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.96.228.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34950
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.96.228.45.			IN	A

;; AUTHORITY SECTION:
.			226	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050300 1800 900 604800 86400

;; Query time: 350 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 03 17:44:37 CST 2023
;; MSG SIZE  rcvd: 105

Host info

45.228.96.66.in-addr.arpa domain name pointer host-66-96-228-45.myrepublic.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.228.96.66.in-addr.arpa	name = host-66-96-228-45.myrepublic.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.144.231.76	attackspam	Jan 21 21:36:56 h2040555 sshd[11176]: Failed password for r.r from 80.144.231.76 port 58016 ssh2 Jan 21 21:36:56 h2040555 sshd[11176]: Received disconnect from 80.144.231.76: 11: Bye Bye [preauth] Jan 21 21:43:08 h2040555 sshd[11290]: Invalid user secretar from 80.144.231.76 Jan 21 21:43:10 h2040555 sshd[11290]: Failed password for invalid user secretar from 80.144.231.76 port 33080 ssh2 Jan 21 21:43:11 h2040555 sshd[11290]: Received disconnect from 80.144.231.76: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.144.231.76	2020-01-22 05:13:23
66.228.16.122	attack	2020-01-21 16:03:29,203 fail2ban.actions [1799]: NOTICE [sshd] Ban 66.228.16.122	2020-01-22 05:14:07
222.186.175.23	attackbotsspam	Unauthorized connection attempt detected from IP address 222.186.175.23 to port 22 [J]	2020-01-22 05:06:21
164.177.42.33	attackspam	Jan 21 23:54:06 server sshd\[18704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-csq-cds-042033.business.bouyguestelecom.com user=root Jan 21 23:54:08 server sshd\[18704\]: Failed password for root from 164.177.42.33 port 51730 ssh2 Jan 22 00:02:51 server sshd\[20784\]: Invalid user admin from 164.177.42.33 Jan 22 00:02:51 server sshd\[20784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-csq-cds-042033.business.bouyguestelecom.com Jan 22 00:02:53 server sshd\[20784\]: Failed password for invalid user admin from 164.177.42.33 port 49813 ssh2 ...	2020-01-22 05:41:16
106.12.76.49	attackspambots	Unauthorized connection attempt detected from IP address 106.12.76.49 to port 2220 [J]	2020-01-22 05:37:06
222.186.175.155	attackspambots	Jan 21 11:02:47 kapalua sshd\[708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Jan 21 11:02:48 kapalua sshd\[708\]: Failed password for root from 222.186.175.155 port 54686 ssh2 Jan 21 11:03:10 kapalua sshd\[738\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Jan 21 11:03:12 kapalua sshd\[738\]: Failed password for root from 222.186.175.155 port 11258 ssh2 Jan 21 11:03:42 kapalua sshd\[773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root	2020-01-22 05:04:28
218.92.0.171	attackbots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root Failed password for root from 218.92.0.171 port 45664 ssh2 Failed password for root from 218.92.0.171 port 45664 ssh2 Failed password for root from 218.92.0.171 port 45664 ssh2 Failed password for root from 218.92.0.171 port 45664 ssh2	2020-01-22 05:42:51
37.120.140.19	attackspam	#2999 - [37.120.140.195] Closing connection (IP still banned) #2999 - [37.120.140.195] Closing connection (IP still banned) #2999 - [37.120.140.195] Closing connection (IP still banned) #2999 - [37.120.140.195] Closing connection (IP still banned) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.120.140.19	2020-01-22 05:17:26
107.189.11.11	attackbots	Unauthorized connection attempt detected from IP address 107.189.11.11 to port 22 [J]	2020-01-22 05:36:47
185.85.190.132	attackbotsspam	Wordpress attack	2020-01-22 05:15:33
81.39.114.5	attackspam	Jan 21 15:45:01 newdogma sshd[32737]: Invalid user pi from 81.39.114.5 port 44332 Jan 21 15:45:01 newdogma sshd[32738]: Invalid user pi from 81.39.114.5 port 44334 Jan 21 15:45:02 newdogma sshd[32738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.39.114.5 Jan 21 15:45:02 newdogma sshd[32737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.39.114.5 Jan 21 15:45:04 newdogma sshd[32738]: Failed password for invalid user pi from 81.39.114.5 port 44334 ssh2 Jan 21 15:45:04 newdogma sshd[32737]: Failed password for invalid user pi from 81.39.114.5 port 44332 ssh2 Jan 21 15:45:04 newdogma sshd[32738]: Connection closed by 81.39.114.5 port 44334 [preauth] Jan 21 15:45:04 newdogma sshd[32737]: Connection closed by 81.39.114.5 port 44332 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=81.39.114.5	2020-01-22 05:21:05
222.186.175.154	attackspam	2020-01-21T21:22:47.747215shield sshd\[25376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root 2020-01-21T21:22:49.924557shield sshd\[25376\]: Failed password for root from 222.186.175.154 port 37142 ssh2 2020-01-21T21:22:53.216572shield sshd\[25376\]: Failed password for root from 222.186.175.154 port 37142 ssh2 2020-01-21T21:22:56.251069shield sshd\[25376\]: Failed password for root from 222.186.175.154 port 37142 ssh2 2020-01-21T21:22:59.364095shield sshd\[25376\]: Failed password for root from 222.186.175.154 port 37142 ssh2	2020-01-22 05:27:40
222.186.175.215	attack	Failed password for root from 222.186.175.215 port 4020 ssh2 Failed password for root from 222.186.175.215 port 4020 ssh2 Failed password for root from 222.186.175.215 port 4020 ssh2 Failed password for root from 222.186.175.215 port 4020 ssh2	2020-01-22 05:08:07
98.116.200.175	attackspam	RDP Brute-Force (Grieskirchen RZ1)	2020-01-22 05:41:34
186.121.216.7	attackspam	01/21/2020-22:03:43.942549 186.121.216.7 Protocol: 6 ET SCAN Suspicious inbound to mySQL port 3306	2020-01-22 05:05:34

Recently Reported IPs

140.116.151.253	192.54.49.100	210.72.25.224	202.92.128.246
140.116.17.221	140.116.161.164	140.116.218.81	142.244.5.85
137.248.1.8	140.116.240.231	140.116.118.138	130.203.135.59
140.116.68.33	72.33.2.22	139.179.151.87	134.208.58.33
143.248.38.181	128.36.196.88	140.116.250.152	169.229.198.92