124.40.253.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Lintas Data Prima

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 124.40.253.2 on Port 445(SMB)	2019-08-12 18:54:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.40.253.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42965
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.40.253.2.			IN	A

;; AUTHORITY SECTION:
.			3168	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081200 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 12 18:53:56 CST 2019
;; MSG SIZE  rcvd: 116

Host info

2.253.40.124.in-addr.arpa has no PTR record

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
2.253.40.124.in-addr.arpa	name = host-124-40-253-2.ldp.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
172.241.131.139	attack	1,55-02/03 [bc01/m08] PostRequest-Spammer scoring: brussels	2019-12-23 08:59:37
51.38.57.199	attackspambots	Masscan Port Scanning Tool Detection	2019-12-23 13:12:40
200.165.167.10	attackbotsspam	Dec 23 01:58:20 legacy sshd[20194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.165.167.10 Dec 23 01:58:22 legacy sshd[20194]: Failed password for invalid user server from 200.165.167.10 port 42059 ssh2 Dec 23 02:04:35 legacy sshd[20512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.165.167.10 ...	2019-12-23 09:10:45
112.85.42.186	attackbots	Dec 23 05:54:20 markkoudstaal sshd[29553]: Failed password for root from 112.85.42.186 port 42343 ssh2 Dec 23 05:55:11 markkoudstaal sshd[29610]: Failed password for root from 112.85.42.186 port 63424 ssh2 Dec 23 05:55:15 markkoudstaal sshd[29610]: Failed password for root from 112.85.42.186 port 63424 ssh2	2019-12-23 13:11:50
5.57.33.71	attackbots	Dec 23 05:49:40 legacy sshd[31777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.57.33.71 Dec 23 05:49:42 legacy sshd[31777]: Failed password for invalid user duplechin from 5.57.33.71 port 44221 ssh2 Dec 23 05:55:17 legacy sshd[32063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.57.33.71 ...	2019-12-23 13:10:05
51.83.45.65	attackspambots	Dec 22 20:06:52 linuxvps sshd\[38311\]: Invalid user yuai from 51.83.45.65 Dec 22 20:06:52 linuxvps sshd\[38311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.45.65 Dec 22 20:06:55 linuxvps sshd\[38311\]: Failed password for invalid user yuai from 51.83.45.65 port 59376 ssh2 Dec 22 20:12:11 linuxvps sshd\[41877\]: Invalid user user from 51.83.45.65 Dec 22 20:12:11 linuxvps sshd\[41877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.45.65	2019-12-23 09:22:44
36.89.163.178	attack	2019-12-23 05:55:29,654 fail2ban.actions: WARNING [ssh] Ban 36.89.163.178	2019-12-23 13:01:54
106.12.200.13	attackspambots	Dec 23 01:49:41 mail1 sshd\[1517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.200.13 user=root Dec 23 01:49:43 mail1 sshd\[1517\]: Failed password for root from 106.12.200.13 port 33024 ssh2 Dec 23 02:12:48 mail1 sshd\[12346\]: Invalid user rander from 106.12.200.13 port 57098 Dec 23 02:12:48 mail1 sshd\[12346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.200.13 Dec 23 02:12:50 mail1 sshd\[12346\]: Failed password for invalid user rander from 106.12.200.13 port 57098 ssh2 ...	2019-12-23 09:18:21
178.128.81.60	attackspambots	Dec 23 00:46:21 hcbbdb sshd\[21791\]: Invalid user nobody12345 from 178.128.81.60 Dec 23 00:46:21 hcbbdb sshd\[21791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.81.60 Dec 23 00:46:23 hcbbdb sshd\[21791\]: Failed password for invalid user nobody12345 from 178.128.81.60 port 42734 ssh2 Dec 23 00:52:32 hcbbdb sshd\[22501\]: Invalid user breana from 178.128.81.60 Dec 23 00:52:32 hcbbdb sshd\[22501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.81.60	2019-12-23 09:02:37
45.125.66.232	attackbotsspam	$f2bV_matches	2019-12-23 09:06:25
197.58.115.103	attackbots	" "	2019-12-23 09:05:37
110.143.83.122	attackbotsspam	Dec 23 04:48:56 zeus sshd[8631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.143.83.122 Dec 23 04:48:58 zeus sshd[8631]: Failed password for invalid user hsu from 110.143.83.122 port 40718 ssh2 Dec 23 04:55:19 zeus sshd[8758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.143.83.122 Dec 23 04:55:20 zeus sshd[8758]: Failed password for invalid user mike from 110.143.83.122 port 46416 ssh2	2019-12-23 13:08:38
49.88.112.67	attackspambots	Dec 22 19:57:37 linuxvps sshd\[32072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.67 user=root Dec 22 19:57:39 linuxvps sshd\[32072\]: Failed password for root from 49.88.112.67 port 48752 ssh2 Dec 22 20:03:13 linuxvps sshd\[35842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.67 user=root Dec 22 20:03:15 linuxvps sshd\[35842\]: Failed password for root from 49.88.112.67 port 57686 ssh2 Dec 22 20:03:17 linuxvps sshd\[35842\]: Failed password for root from 49.88.112.67 port 57686 ssh2	2019-12-23 09:05:09
211.34.168.174	attack	firewall-block, port(s): 5555/tcp	2019-12-23 09:04:02
92.115.81.32	attack	Unauthorized connection attempt from IP address 92.115.81.32 on Port 445(SMB)	2019-12-23 09:15:42

Recently Reported IPs

236.255.86.60	185.164.72.90	242.17.144.57	88.218.16.176
118.97.223.210	209.141.34.95	182.139.65.46	117.53.46.135
106.87.40.132	78.46.103.42	200.124.195.172	109.176.133.115
223.132.18.99	103.109.210.24	183.253.20.125	149.129.221.92
36.235.250.213	220.134.242.165	189.159.171.32	219.223.236.125