180.241.45.72 - IPInfo

Basic Info

City: Medan

Region: North Sumatra

Country: Indonesia

Internet Service Provider: Esia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
180.241.45.51	attack	attack on server files.	2025-01-28 20:35:48
180.241.45.233	attackspambots	Fail2Ban Ban Triggered	2020-06-04 19:36:36
180.241.45.249	attackspam	1589082868 - 05/10/2020 05:54:28 Host: 180.241.45.249/180.241.45.249 Port: 445 TCP Blocked	2020-05-10 14:03:48
180.241.45.139	attackspam	[05/Apr/2020:20:22:37 -0400] "GET / HTTP/1.1" Chrome 52.0 UA	2020-05-09 19:46:04
180.241.45.123	attack	Unauthorized connection attempt from IP address 180.241.45.123 on Port 445(SMB)	2020-05-08 21:06:39
180.241.45.152	attackbotsspam	Multiple SSH login attempts.	2020-04-05 22:58:01
180.241.45.152	attackbots	SSH bruteforce (Triggered fail2ban)	2020-04-05 17:26:11
180.241.45.167	attackbotsspam	20/3/31@23:54:10: FAIL: Alarm-Network address from=180.241.45.167 ...	2020-04-01 14:09:40
180.241.45.112	attackbots	$f2bV_matches	2020-03-06 15:51:17
180.241.45.211	attackbotsspam	20/2/28@23:55:52: FAIL: Alarm-Network address from=180.241.45.211 20/2/28@23:55:52: FAIL: Alarm-Network address from=180.241.45.211 ...	2020-02-29 13:09:20
180.241.45.182	attack	Unauthorized connection attempt from IP address 180.241.45.182 on Port 445(SMB)	2020-02-29 01:13:24
180.241.45.70	attack	1582813573 - 02/27/2020 15:26:13 Host: 180.241.45.70/180.241.45.70 Port: 445 TCP Blocked	2020-02-28 00:22:15
180.241.45.210	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-26 07:15:37
180.241.45.85	attack	SSH bruteforce	2020-02-11 04:20:15
180.241.45.70	attackspambots	F2B blocked SSH bruteforcing	2020-02-08 22:42:44

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 180.241.45.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43257
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;180.241.45.72.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 18:10:13 CST 2021
;; MSG SIZE  rcvd: 42

'

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 72.45.241.180.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.88.167.48	attackbotsspam	Unauthorised access (Dec 4) SRC=113.88.167.48 LEN=52 TTL=50 ID=13844 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-05 08:49:20
129.226.160.122	attackbotsspam	web-1 [ssh_2] SSH Attack	2019-12-05 08:17:44
112.64.32.118	attack	Dec 4 14:03:50 web9 sshd\[12950\]: Invalid user valadez from 112.64.32.118 Dec 4 14:03:50 web9 sshd\[12950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Dec 4 14:03:52 web9 sshd\[12950\]: Failed password for invalid user valadez from 112.64.32.118 port 44586 ssh2 Dec 4 14:11:36 web9 sshd\[14217\]: Invalid user test from 112.64.32.118 Dec 4 14:11:36 web9 sshd\[14217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118	2019-12-05 08:23:03
190.128.230.98	attack	2019-12-05T00:41:25.200939abusebot-3.cloudsearch.cf sshd\[20081\]: Invalid user guest555 from 190.128.230.98 port 42921	2019-12-05 08:48:17
146.0.209.72	attackspam	Dec 4 13:33:15 kapalua sshd\[6149\]: Invalid user eugen from 146.0.209.72 Dec 4 13:33:15 kapalua sshd\[6149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72-209-0-146.static.cpe.unicatlc.net Dec 4 13:33:16 kapalua sshd\[6149\]: Failed password for invalid user eugen from 146.0.209.72 port 50632 ssh2 Dec 4 13:40:32 kapalua sshd\[7016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=72-209-0-146.static.cpe.unicatlc.net user=root Dec 4 13:40:34 kapalua sshd\[7016\]: Failed password for root from 146.0.209.72 port 33116 ssh2	2019-12-05 08:32:38
129.204.50.75	attack	Dec 4 21:20:15 Ubuntu-1404-trusty-64-minimal sshd\[29644\]: Invalid user nabor from 129.204.50.75 Dec 4 21:20:15 Ubuntu-1404-trusty-64-minimal sshd\[29644\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.50.75 Dec 4 21:20:17 Ubuntu-1404-trusty-64-minimal sshd\[29644\]: Failed password for invalid user nabor from 129.204.50.75 port 42014 ssh2 Dec 4 21:28:12 Ubuntu-1404-trusty-64-minimal sshd\[3071\]: Invalid user webadmin from 129.204.50.75 Dec 4 21:28:12 Ubuntu-1404-trusty-64-minimal sshd\[3071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.50.75	2019-12-05 08:44:10
206.189.239.103	attackbots	2019-12-05T00:54:41.737528vps751288.ovh.net sshd\[32348\]: Invalid user com from 206.189.239.103 port 38706 2019-12-05T00:54:41.745297vps751288.ovh.net sshd\[32348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 2019-12-05T00:54:44.119603vps751288.ovh.net sshd\[32348\]: Failed password for invalid user com from 206.189.239.103 port 38706 ssh2 2019-12-05T01:00:28.566890vps751288.ovh.net sshd\[32423\]: Invalid user renai from 206.189.239.103 port 43776 2019-12-05T01:00:28.574982vps751288.ovh.net sshd\[32423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103	2019-12-05 08:37:27
60.250.149.19	attackbotsspam	Dec 5 01:00:41 vps691689 sshd[5899]: Failed password for uucp from 60.250.149.19 port 45059 ssh2 Dec 5 01:08:40 vps691689 sshd[6072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.250.149.19 ...	2019-12-05 08:24:04
200.54.12.90	attackbotsspam	Unauthorised access (Dec 4) SRC=200.54.12.90 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=12495 TCP DPT=23 WINDOW=46737 SYN	2019-12-05 08:29:39
41.68.237.44	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-05 08:27:44
51.38.113.45	attackspambots	Dec 4 12:19:03 wbs sshd\[24023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-38-113.eu user=root Dec 4 12:19:05 wbs sshd\[24023\]: Failed password for root from 51.38.113.45 port 35586 ssh2 Dec 4 12:24:37 wbs sshd\[24523\]: Invalid user groups from 51.38.113.45 Dec 4 12:24:37 wbs sshd\[24523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-38-113.eu Dec 4 12:24:39 wbs sshd\[24523\]: Failed password for invalid user groups from 51.38.113.45 port 45962 ssh2	2019-12-05 08:38:15
139.155.33.169	attack	Repeated brute force against a port	2019-12-05 08:42:38
139.59.41.170	attackspambots	Dec 4 23:21:30 server sshd\[4239\]: Invalid user menees from 139.59.41.170 Dec 4 23:21:30 server sshd\[4239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.170 Dec 4 23:21:31 server sshd\[4239\]: Failed password for invalid user menees from 139.59.41.170 port 51858 ssh2 Dec 4 23:32:34 server sshd\[7380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.170 user=root Dec 4 23:32:37 server sshd\[7380\]: Failed password for root from 139.59.41.170 port 38578 ssh2 ...	2019-12-05 08:16:37
196.52.43.53	attackspambots	Unauthorized SSH login attempts	2019-12-05 08:15:49
125.132.5.131	attackbotsspam	Dec 4 14:01:38 web9 sshd\[12598\]: Invalid user 123456 from 125.132.5.131 Dec 4 14:01:38 web9 sshd\[12598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.132.5.131 Dec 4 14:01:39 web9 sshd\[12598\]: Failed password for invalid user 123456 from 125.132.5.131 port 35420 ssh2 Dec 4 14:08:29 web9 sshd\[13653\]: Invalid user makeda from 125.132.5.131 Dec 4 14:08:29 web9 sshd\[13653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.132.5.131	2019-12-05 08:18:35

Recently Reported IPs

128.199.223.99	103.73.156.188	195.133.15.231	111.90.146.244
185.204.1.182	178.79.139.89	185.214.10.136	10.5.11.200
54.39.130.22	95.216.163.111	95.216.14.104	186.188.199.119
195.146.149.250	107.112.218.176	109.200.221.170	18.177.156.132
193.36.119.120	13.228.193.250	109.38.136.178	105.112.147.220