180.252.254.122

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Telkom Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 180.252.254.122 on Port 445(SMB)	2020-04-24 00:31:23

Comments on same subnet:

IP	Type	Details	Datetime
180.252.254.128	attackspambots	Unauthorized connection attempt from IP address 180.252.254.128 on Port 445(SMB)	2020-04-25 03:24:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.252.254.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;180.252.254.122.		IN	A

;; AUTHORITY SECTION:
.			165	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042300 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 24 00:31:16 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 122.254.252.180.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 122.254.252.180.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.70	attack	2019-12-11T08:06:37.798335+01:00 lumpi kernel: [1337942.257349] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.70 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=14091 PROTO=TCP SPT=55633 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-11 18:05:12
66.240.244.146	attackspambots	66.240.244.146 was recorded 9 times by 6 hosts attempting to connect to the following ports: 53. Incident counter (4h, 24h, all-time): 9, 37, 132	2019-12-11 18:12:20
222.186.173.215	attackspam	SSH Brute Force, server-1 sshd[28720]: Failed password for root from 222.186.173.215 port 58322 ssh2	2019-12-11 18:24:12
193.70.85.206	attack	Dec 11 07:28:05 icinga sshd[21793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.85.206 Dec 11 07:28:06 icinga sshd[21793]: Failed password for invalid user www from 193.70.85.206 port 42652 ssh2 ...	2019-12-11 17:27:12
89.205.8.237	attack	2019-12-11T09:33:16.190963abusebot-8.cloudsearch.cf sshd\[26774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.205.8.237 user=root	2019-12-11 17:51:03
125.124.152.59	attack	2019-12-11T09:44:26.312560abusebot.cloudsearch.cf sshd\[25115\]: Invalid user xelloss!@\# from 125.124.152.59 port 46382	2019-12-11 18:06:58
220.76.107.50	attack	Fail2Ban - SSH Bruteforce Attempt	2019-12-11 17:29:28
1.10.137.212	attack	Unauthorized connection attempt detected from IP address 1.10.137.212 to port 445	2019-12-11 18:02:57
167.172.172.118	attackbots	Dec 10 23:30:12 tdfoods sshd\[10794\]: Invalid user nessheim from 167.172.172.118 Dec 10 23:30:12 tdfoods sshd\[10794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.172.118 Dec 10 23:30:14 tdfoods sshd\[10794\]: Failed password for invalid user nessheim from 167.172.172.118 port 55760 ssh2 Dec 10 23:35:42 tdfoods sshd\[11286\]: Invalid user us from 167.172.172.118 Dec 10 23:35:42 tdfoods sshd\[11286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.172.118	2019-12-11 17:49:56
222.186.42.4	attackbots	--- report --- Dec 11 06:55:40 sshd: Connection from 222.186.42.4 port 5186 Dec 11 06:55:41 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Dec 11 06:55:43 sshd: Failed password for root from 222.186.42.4 port 5186 ssh2 Dec 11 06:55:44 sshd: Received disconnect from 222.186.42.4: 11: [preauth]	2019-12-11 18:06:33
77.247.109.70	attackspambots	From CCTV User Interface Log ...::ffff:77.247.109.70 - - [11/Dec/2019:01:27:46 +0000] "-" 400 0 ...	2019-12-11 17:51:26
138.197.103.160	attackspambots	Dec 11 09:19:54 microserver sshd[49538]: Invalid user 123 from 138.197.103.160 port 51738 Dec 11 09:19:54 microserver sshd[49538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 Dec 11 09:19:56 microserver sshd[49538]: Failed password for invalid user 123 from 138.197.103.160 port 51738 ssh2 Dec 11 09:25:49 microserver sshd[50798]: Invalid user wurst from 138.197.103.160 port 60252 Dec 11 09:25:49 microserver sshd[50798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 Dec 11 09:36:12 microserver sshd[52433]: Invalid user qazwsx from 138.197.103.160 port 49040 Dec 11 09:36:12 microserver sshd[52433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 Dec 11 09:36:15 microserver sshd[52433]: Failed password for invalid user qazwsx from 138.197.103.160 port 49040 ssh2 Dec 11 09:41:26 microserver sshd[53215]: Invalid user idc10000000 from 138.197.10	2019-12-11 17:48:55
14.232.160.213	attackbots	2019-12-11T04:13:15.058368ns547587 sshd\[3064\]: Invalid user consuelo from 14.232.160.213 port 43542 2019-12-11T04:13:15.060251ns547587 sshd\[3064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.160.213 2019-12-11T04:13:17.612843ns547587 sshd\[3064\]: Failed password for invalid user consuelo from 14.232.160.213 port 43542 ssh2 2019-12-11T04:22:38.627396ns547587 sshd\[15625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.160.213 user=mysql ...	2019-12-11 17:25:06
193.70.88.213	attack	Dec 10 22:26:27 kapalua sshd\[8232\]: Invalid user gods from 193.70.88.213 Dec 10 22:26:27 kapalua sshd\[8232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.ip-193-70-88.eu Dec 10 22:26:29 kapalua sshd\[8232\]: Failed password for invalid user gods from 193.70.88.213 port 37634 ssh2 Dec 10 22:32:06 kapalua sshd\[8932\]: Invalid user admin from 193.70.88.213 Dec 10 22:32:06 kapalua sshd\[8932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.ip-193-70-88.eu	2019-12-11 18:09:18
122.155.108.130	attackspambots	leo_www	2019-12-11 18:15:53

Recently Reported IPs

75.80.218.30	201.137.252.20	190.74.230.249	154.209.241.48
88.247.97.73	52.231.154.51	5.248.206.151	57.68.7.55
100.94.91.14	181.48.248.125	188.162.167.15	103.217.123.226
51.83.149.192	14.239.194.100	89.169.75.79	171.103.172.174
113.23.44.254	52.237.220.70	52.231.193.168	40.117.83.127