165.255.240.52

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: Afrihost (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Brute forcing RDP port 3389	2020-05-13 06:58:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 165.255.240.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;165.255.240.52.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051202 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 06:58:00 CST 2020
;; MSG SIZE  rcvd: 118

Host info

52.240.255.165.in-addr.arpa domain name pointer 165-255-240-52.ip.adsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.240.255.165.in-addr.arpa	name = 165-255-240-52.ip.adsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.200.241.227	attackbotsspam	Jul 30 14:36:00 rocket sshd[14590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.200.241.227 Jul 30 14:36:02 rocket sshd[14590]: Failed password for invalid user liuchuang from 35.200.241.227 port 46764 ssh2 ...	2020-07-30 23:02:40
116.90.165.26	attack	(sshd) Failed SSH login from 116.90.165.26 (ID/Indonesia/IP-90-165-26.gsd.net.id): 10 in the last 3600 secs	2020-07-30 23:20:08
122.32.174.107	attackbotsspam	hacking my emails	2020-07-30 23:37:51
114.32.217.170	attackspam	Automatic report - Banned IP Access	2020-07-30 23:17:01
61.95.221.148	attack	Unauthorized connection attempt from IP address 61.95.221.148 on Port 445(SMB)	2020-07-30 23:00:17
43.224.156.26	attackbotsspam	2020-07-29 08:26:47 server sshd[55677]: Failed password for invalid user hjm from 43.224.156.26 port 32711 ssh2	2020-07-30 23:24:56
180.65.167.61	attack	Jul 30 05:07:24 propaganda sshd[26505]: Connection from 180.65.167.61 port 48892 on 10.0.0.160 port 22 rdomain "" Jul 30 05:07:25 propaganda sshd[26505]: Connection closed by 180.65.167.61 port 48892 [preauth]	2020-07-30 23:15:41
222.239.28.177	attackspam	Jul 30 15:19:31 game-panel sshd[25207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.28.177 Jul 30 15:19:34 game-panel sshd[25207]: Failed password for invalid user wzy from 222.239.28.177 port 45058 ssh2 Jul 30 15:27:06 game-panel sshd[25559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.239.28.177	2020-07-30 23:27:25
27.150.22.155	attack	Jul 30 15:32:52 journals sshd\[59883\]: Invalid user nitrodocker from 27.150.22.155 Jul 30 15:32:52 journals sshd\[59883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.150.22.155 Jul 30 15:32:54 journals sshd\[59883\]: Failed password for invalid user nitrodocker from 27.150.22.155 port 36087 ssh2 Jul 30 15:34:59 journals sshd\[60173\]: Invalid user huangbingjun from 27.150.22.155 Jul 30 15:34:59 journals sshd\[60173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.150.22.155 ...	2020-07-30 23:21:01
61.177.172.177	attack	Jul 30 16:51:26 server sshd[674]: Failed none for root from 61.177.172.177 port 38651 ssh2 Jul 30 16:51:30 server sshd[674]: Failed password for root from 61.177.172.177 port 38651 ssh2 Jul 30 16:51:36 server sshd[674]: Failed password for root from 61.177.172.177 port 38651 ssh2	2020-07-30 23:06:58
45.129.33.12	attackbots	Port-scan: detected 101 distinct ports within a 24-hour window.	2020-07-30 23:33:56
195.54.160.180	attack	2020-07-30T17:33:11.215191n23.at sshd[463327]: Failed password for invalid user rj1tn3tw0rks from 195.54.160.180 port 52163 ssh2 2020-07-30T17:33:12.107171n23.at sshd[463329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 user=root 2020-07-30T17:33:14.217825n23.at sshd[463329]: Failed password for root from 195.54.160.180 port 1086 ssh2 ...	2020-07-30 23:43:45
183.89.215.70	attackspam	Dovecot Invalid User Login Attempt.	2020-07-30 23:28:12
117.34.104.11	attackspam	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: tcp cat: Potentially Bad Trafficbytes: 60	2020-07-30 23:31:20
216.244.66.203	attack	Forbidden directory scan :: 2020/07/30 13:26:20 [error] 3005#3005: *469360 access forbidden by rule, client: 216.244.66.203, server: [censored_1], request: "GET /knowledge-base/%ht_kb_category%/windows-10-how-to-change-network-preference-order-use-wired-before-wi-fiwireless/ HTTP/1.1", host: "www.[censored_1]"	2020-07-30 23:42:48

Recently Reported IPs

76.97.76.48	70.169.49.118	41.213.34.94	96.21.207.92
113.76.111.80	84.138.150.69	111.222.226.146	31.163.148.214
198.208.74.254	174.245.222.154	24.45.145.85	164.41.4.196
113.204.148.2	219.33.175.230	40.85.48.232	122.51.120.99
71.86.131.6	59.127.6.49	134.88.147.173	185.136.94.62