180.242.234.164

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
180.242.234.162	attack	denied winbox/dude connect from 180.242.234.162 almost everyday attack Basic Info City: Pontianak Region: West Kalimantan Country: Indonesia Internet Service Provider: Esia	2021-04-04 23:28:54
180.242.234.6	attack	Unauthorized connection attempt from IP address 180.242.234.6 on Port 445(SMB)	2020-09-08 04:03:57
180.242.234.6	attack	Unauthorized connection attempt from IP address 180.242.234.6 on Port 445(SMB)	2020-09-07 19:39:33
180.242.234.11	attackspambots	20/7/15@23:54:04: FAIL: Alarm-Network address from=180.242.234.11 20/7/15@23:54:04: FAIL: Alarm-Network address from=180.242.234.11 ...	2020-07-16 14:03:51
180.242.234.40	attackspam	20/6/25@23:50:54: FAIL: Alarm-Network address from=180.242.234.40 ...	2020-06-26 17:40:33
180.242.234.160	attack	Unauthorized connection attempt from IP address 180.242.234.160 on Port 445(SMB)	2020-06-05 23:23:37
180.242.234.53	attackbots	"Unauthorized connection attempt on SSHD detected"	2020-05-14 14:05:27
180.242.234.142	attackbotsspam	20/5/13@17:04:55: FAIL: Alarm-Network address from=180.242.234.142 20/5/13@17:04:55: FAIL: Alarm-Network address from=180.242.234.142 ...	2020-05-14 09:00:46
180.242.234.100	attackspam	20/4/27@00:47:13: FAIL: Alarm-Network address from=180.242.234.100 20/4/27@00:47:13: FAIL: Alarm-Network address from=180.242.234.100 ...	2020-04-27 16:16:05
180.242.234.65	attack	Unauthorised access (Apr 24) SRC=180.242.234.65 LEN=52 TTL=117 ID=6444 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-24 16:13:10
180.242.234.91	attackbots	1585022392 - 03/24/2020 04:59:52 Host: 180.242.234.91/180.242.234.91 Port: 445 TCP Blocked	2020-03-24 12:18:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.242.234.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8712
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;180.242.234.164.		IN	A

;; AUTHORITY SECTION:
.			372	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 07:34:20 CST 2022
;; MSG SIZE  rcvd: 108

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 180.242.234.164.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.65.134.175	attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-08-30 20:37:07
47.107.140.142	attack	Too many connections or unauthorized access detected from Yankee banned ip	2020-08-30 20:45:46
159.89.50.148	attackbots	159.89.50.148 - - [30/Aug/2020:13:16:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.50.148 - - [30/Aug/2020:13:16:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.50.148 - - [30/Aug/2020:13:16:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-30 20:37:28
15.188.132.22	attackspambots	2020-08-30T07:44:43.3622611495-001 sshd[790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-15-188-132-22.eu-west-3.compute.amazonaws.com user=root 2020-08-30T07:44:45.1367611495-001 sshd[790]: Failed password for root from 15.188.132.22 port 8299 ssh2 2020-08-30T07:48:03.9413331495-001 sshd[1012]: Invalid user auto from 15.188.132.22 port 56945 2020-08-30T07:48:03.9446741495-001 sshd[1012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-15-188-132-22.eu-west-3.compute.amazonaws.com 2020-08-30T07:48:03.9413331495-001 sshd[1012]: Invalid user auto from 15.188.132.22 port 56945 2020-08-30T07:48:06.2026241495-001 sshd[1012]: Failed password for invalid user auto from 15.188.132.22 port 56945 ssh2 ...	2020-08-30 20:57:50
213.43.94.133	attackspam	Automatic report - XMLRPC Attack	2020-08-30 20:41:29
218.25.161.226	attackbotsspam	Aug 30 14:15:42 ncomp postfix/smtpd[6203]: warning: unknown[218.25.161.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 14:15:51 ncomp postfix/smtpd[6203]: warning: unknown[218.25.161.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 14:16:05 ncomp postfix/smtpd[6203]: warning: unknown[218.25.161.226]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-30 20:51:54
179.108.86.22	attackbotsspam	Unauthorized connection attempt from IP address 179.108.86.22 on Port 445(SMB)	2020-08-30 21:06:33
180.171.79.128	attackspam	20 attempts against mh-ssh on echoip	2020-08-30 20:48:18
222.186.31.83	attackbotsspam	Aug 30 14:54:46 vm0 sshd[10462]: Failed password for root from 222.186.31.83 port 56191 ssh2 ...	2020-08-30 20:55:13
124.239.168.74	attackbots	$f2bV_matches	2020-08-30 20:36:36
106.13.73.227	attack	Aug 30 09:09:26 ws12vmsma01 sshd[59864]: Invalid user jxt from 106.13.73.227 Aug 30 09:09:28 ws12vmsma01 sshd[59864]: Failed password for invalid user jxt from 106.13.73.227 port 42394 ssh2 Aug 30 09:13:30 ws12vmsma01 sshd[60571]: Invalid user dita from 106.13.73.227 ...	2020-08-30 21:08:27
81.40.50.146	attack	Aug 30 14:45:58 vps639187 sshd\[25016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.40.50.146 user=root Aug 30 14:46:00 vps639187 sshd\[25016\]: Failed password for root from 81.40.50.146 port 51458 ssh2 Aug 30 14:49:42 vps639187 sshd\[25034\]: Invalid user elvis from 81.40.50.146 port 56792 Aug 30 14:49:42 vps639187 sshd\[25034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.40.50.146 ...	2020-08-30 21:12:50
211.103.183.3	attack	Time: Sun Aug 30 12:10:19 2020 +0000 IP: 211.103.183.3 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 30 11:49:55 vps1 sshd[11386]: Invalid user test from 211.103.183.3 port 56174 Aug 30 11:49:57 vps1 sshd[11386]: Failed password for invalid user test from 211.103.183.3 port 56174 ssh2 Aug 30 12:06:53 vps1 sshd[12340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.103.183.3 user=mail Aug 30 12:06:55 vps1 sshd[12340]: Failed password for mail from 211.103.183.3 port 49504 ssh2 Aug 30 12:10:18 vps1 sshd[12466]: Invalid user sadmin from 211.103.183.3 port 34310	2020-08-30 20:54:02
42.113.189.213	attack	Unauthorized connection attempt from IP address 42.113.189.213 on Port 445(SMB)	2020-08-30 21:13:17
85.25.2.71	attackspam	(ftpd) Failed FTP login from 85.25.2.71 (DE/Germany/mail.mccheck.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 30 16:46:14 ir1 pure-ftpd: (?@85.25.2.71) [WARNING] Authentication failed for user [anonymous]	2020-08-30 20:35:14

Recently Reported IPs

180.242.215.158	180.242.234.209	180.242.235.170	180.243.12.238
180.243.11.181	180.243.14.179	180.243.10.90	180.243.142.135
180.243.14.193	180.243.154.191	180.243.31.132	180.243.62.180
180.243.5.141	180.244.111.69	180.244.134.219	180.244.139.17
180.244.136.157	180.244.148.173	180.244.161.157	180.244.35.12