37.252.64.48 - IPInfo

Basic Info

City: Yerevan

Region: Yerevan

Country: Armenia

Internet Service Provider: Ucom LLC

Hostname: unknown

Organization: Ucom LLC

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	spam	2020-08-17 14:56:41
attack	Dovecot Invalid User Login Attempt.	2020-08-09 04:05:07
attackbots	37.252.64.48 has been banned for [spam] ...	2020-05-22 21:44:50
attackspam	email spam	2020-04-15 16:21:35
attackbotsspam	spam	2020-01-24 17:28:41
attack	2020-01-22 00:56:28 H=(host-48.64.252.37.ucom.am) [37.252.64.48]:43280 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/query/ip/37.252.64.48) 2020-01-22 00:56:29 H=(host-48.64.252.37.ucom.am) [37.252.64.48]:43280 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/37.252.64.48) 2020-01-22 00:56:29 H=(host-48.64.252.37.ucom.am) [37.252.64.48]:43280 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/37.252.64.48) ...	2020-01-22 17:50:12
attack	37.252.64.48 has been banned for [spam] ...	2020-01-04 22:47:49
attackbots	SPF Fail sender not permitted to send mail for @ucom.am / Spam to target mail address hacked/leaked/bought from Kachingle	2019-12-19 20:49:40
attackspam	proto=tcp . spt=56002 . dpt=25 . (Found on Blocklist de Oct 13) (779)	2019-10-14 06:49:28

Comments on same subnet:

IP	Type	Details	Datetime
37.252.64.51	attackbotsspam	port 23	2020-06-25 20:09:38

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.252.64.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42580
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;37.252.64.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 29 21:07:47 +08 2019
;; MSG SIZE  rcvd: 116

Host info

48.64.252.37.in-addr.arpa domain name pointer host-48.64.252.37.ucom.am.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
48.64.252.37.in-addr.arpa	name = host-48.64.252.37.ucom.am.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.188.86.168	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-02T20:02:06Z and 2020-06-02T21:06:09Z	2020-06-03 07:43:56
88.214.26.97	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-02T21:13:11Z and 2020-06-02T22:40:15Z	2020-06-03 07:51:43
68.183.12.80	attackbots	Jun 2 23:26:51 vpn01 sshd[15143]: Failed password for root from 68.183.12.80 port 33310 ssh2 ...	2020-06-03 07:44:34
181.116.228.193	attack	110. On Jun 2 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 181.116.228.193.	2020-06-03 08:00:06
95.203.183.128	attackbots	IP 95.203.183.128 attacked honeypot on port: 23 at 6/2/2020 9:24:04 PM	2020-06-03 07:52:08
179.216.177.121	attack	$f2bV_matches	2020-06-03 08:02:55
104.248.114.67	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-06-03 07:58:48
218.241.206.66	attackbotsspam	Brute-force attempt banned	2020-06-03 07:52:50
129.211.22.55	attack	SSH Bruteforce Attempt (failed auth)	2020-06-03 07:41:54
54.38.92.50	attackspam	(mod_security) mod_security (id:225170) triggered by 54.38.92.50 (FR/France/ns3127508.ip-54-38-92.eu): 5 in the last 3600 secs	2020-06-03 07:43:09
47.188.41.97	attack	SSH Brute-Forcing (server1)	2020-06-03 07:57:31
175.28.38.135	attackspambots	Unauthorised access (Jun 2) SRC=175.28.38.135 LEN=40 TTL=48 ID=52808 TCP DPT=8080 WINDOW=4326 SYN	2020-06-03 07:55:12
80.13.87.178	attackbotsspam	Jun 2 17:21:06 firewall sshd[12526]: Failed password for root from 80.13.87.178 port 47530 ssh2 Jun 2 17:24:38 firewall sshd[12647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.13.87.178 user=root Jun 2 17:24:40 firewall sshd[12647]: Failed password for root from 80.13.87.178 port 51990 ssh2 ...	2020-06-03 07:32:28
80.82.63.104	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-06-03 07:59:35
222.186.175.217	attackspam	Jun 2 20:47:08 firewall sshd[19723]: Failed password for root from 222.186.175.217 port 52186 ssh2 Jun 2 20:47:11 firewall sshd[19723]: Failed password for root from 222.186.175.217 port 52186 ssh2 Jun 2 20:47:14 firewall sshd[19723]: Failed password for root from 222.186.175.217 port 52186 ssh2 ...	2020-06-03 07:53:25

Recently Reported IPs

183.99.87.90	53.185.5.210	199.251.80.48	23.247.77.114
39.147.3.13	176.42.156.40	191.102.199.201	108.189.242.213
116.73.172.29	13.235.178.228	190.6.4.122	200.210.207.56
31.148.123.245	82.5.55.38	185.180.199.69	106.23.193.148
120.72.21.94	204.227.140.116	209.125.114.105	68.183.88.78