180.246.148.44

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 180.246.148.44 on Port 445(SMB)	2019-08-14 11:45:36

Comments on same subnet:

IP	Type	Details	Datetime
180.246.148.212	attackspambots	Automatic report - Port Scan Attack	2020-08-12 19:20:57
180.246.148.62	attack	Unauthorized connection attempt from IP address 180.246.148.62 on Port 445(SMB)	2020-08-08 04:09:07
180.246.148.113	attack	Unauthorized connection attempt from IP address 180.246.148.113 on Port 445(SMB)	2020-07-23 05:23:48
180.246.148.11	attackbots	Jun 22 10:56:28 IngegnereFirenze sshd[8272]: Failed password for invalid user admin from 180.246.148.11 port 51602 ssh2 ...	2020-06-22 19:25:55
180.246.148.167	attackspam	1591704531 - 06/09/2020 14:08:51 Host: 180.246.148.167/180.246.148.167 Port: 445 TCP Blocked	2020-06-09 20:31:26
180.246.148.35	attackspam	Email rejected due to spam filtering	2020-02-25 04:28:13
180.246.148.185	attackbotsspam	Unauthorized connection attempt from IP address 180.246.148.185 on Port 445(SMB)	2020-01-14 03:32:54
180.246.148.150	attackbotsspam	Unauthorized connection attempt detected from IP address 180.246.148.150 to port 445	2019-12-31 18:10:10
180.246.148.243	attackbotsspam	Unauthorized connection attempt detected from IP address 180.246.148.243 to port 445	2019-12-27 17:24:03
180.246.148.225	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 24-11-2019 06:20:22.	2019-11-24 20:25:17
180.246.148.20	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-03 03:24:04,951 INFO [amun_request_handler] PortScan Detected on Port: 445 (180.246.148.20)	2019-08-03 15:21:40
180.246.148.49	attackspambots	Unauthorised access (Jul 18) SRC=180.246.148.49 LEN=52 TTL=116 ID=21911 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-18 17:19:48
180.246.148.199	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-03 07:06:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.246.148.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17702
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;180.246.148.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 14 11:45:30 CST 2019
;; MSG SIZE  rcvd: 118

Host info

44.148.246.180.in-addr.arpa has no PTR record

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 44.148.246.180.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.206.223.60	attack	Listed on dnsbl-sorbs plus abuseat.org and zen-spamhaus / proto=6 . srcport=21024 . dstport=23 Telnet . (1392)	2020-10-04 19:28:37
118.25.133.121	attackspam	Oct 3 00:52:05 XXX sshd[32140]: Invalid user scaner from 118.25.133.121 port 59238	2020-10-04 19:50:35
185.202.1.148	attackspambots	Repeated RDP login failures. Last user: Administrator	2020-10-04 19:47:35
64.20.62.90	attackspambots	Invalid user dell from 64.20.62.90 port 59236	2020-10-04 19:14:11
123.206.62.112	attackbots	Oct 4 15:10:58 dhoomketu sshd[3549843]: Failed password for root from 123.206.62.112 port 40138 ssh2 Oct 4 15:11:49 dhoomketu sshd[3549852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.62.112 user=root Oct 4 15:11:52 dhoomketu sshd[3549852]: Failed password for root from 123.206.62.112 port 44275 ssh2 Oct 4 15:12:39 dhoomketu sshd[3549860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.62.112 user=root Oct 4 15:12:42 dhoomketu sshd[3549860]: Failed password for root from 123.206.62.112 port 48408 ssh2 ...	2020-10-04 19:44:42
218.92.0.133	attackbots	Oct 4 13:20:22 marvibiene sshd[9744]: Failed password for root from 218.92.0.133 port 33287 ssh2 Oct 4 13:20:26 marvibiene sshd[9744]: Failed password for root from 218.92.0.133 port 33287 ssh2	2020-10-04 19:40:11
190.75.134.29	attackbots	1601757303 - 10/03/2020 22:35:03 Host: 190.75.134.29/190.75.134.29 Port: 445 TCP Blocked ...	2020-10-04 19:47:18
45.148.122.191	attackspambots	TCP (SYN) 45.148.122.191:34559 -> port 22, len 44	2020-10-04 19:44:10
49.88.112.71	attackspam	Oct 4 13:19:09 eventyay sshd[28719]: Failed password for root from 49.88.112.71 port 28289 ssh2 Oct 4 13:20:13 eventyay sshd[28763]: Failed password for root from 49.88.112.71 port 61915 ssh2 ...	2020-10-04 19:27:48
177.75.12.187	attack	Oct 4 12:37:58 DAAP sshd[26592]: Invalid user sunil from 177.75.12.187 port 36519 Oct 4 12:37:58 DAAP sshd[26592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.75.12.187 Oct 4 12:37:58 DAAP sshd[26592]: Invalid user sunil from 177.75.12.187 port 36519 Oct 4 12:38:00 DAAP sshd[26592]: Failed password for invalid user sunil from 177.75.12.187 port 36519 ssh2 Oct 4 12:47:37 DAAP sshd[26816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.75.12.187 user=root Oct 4 12:47:39 DAAP sshd[26816]: Failed password for root from 177.75.12.187 port 55826 ssh2 ...	2020-10-04 19:14:53
49.232.133.186	attackbotsspam	Oct 4 07:45:22 vm1 sshd[14752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.133.186 Oct 4 07:45:25 vm1 sshd[14752]: Failed password for invalid user erpnext from 49.232.133.186 port 35668 ssh2 ...	2020-10-04 19:23:53
112.47.57.80	attackspambots	Brute force attempt	2020-10-04 19:32:48
204.15.72.114	attackspambots	Port scan on 1 port(s) from 204.15.72.114 detected: 1433 (11:54:44)	2020-10-04 19:24:11
59.27.124.26	attackbots	SSH brute-force attack detected from [59.27.124.26]	2020-10-04 19:42:09
202.79.53.208	attackbots	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: PTR record not found	2020-10-04 19:27:13

Recently Reported IPs

101.108.171.52	27.36.115.162	36.79.254.193	120.28.163.99
119.42.95.220	14.231.249.58	1.2.165.180	190.74.236.161
14.182.232.47	182.61.162.54	36.68.170.150	220.175.221.91
95.110.230.142	94.177.195.21	189.210.18.162	183.157.197.202
36.79.214.100	128.172.137.174	180.249.116.154	111.93.225.218