37.252.80.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Armenia

Internet Service Provider: Ucom LLC

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sun, 21 Jul 2019 18:27:30 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:43:03

Comments on same subnet:

IP	Type	Details	Datetime
37.252.80.57	attackspam	1588075594 - 04/28/2020 14:06:34 Host: 37.252.80.57/37.252.80.57 Port: 445 TCP Blocked	2020-04-29 04:26:42
37.252.80.12	attackbotsspam	Sat, 20 Jul 2019 21:55:04 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 11:35:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 37.252.80.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6352
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;37.252.80.54.			IN	A

;; AUTHORITY SECTION:
.			2184	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 07:42:58 CST 2019
;; MSG SIZE  rcvd: 116

Host info

54.80.252.37.in-addr.arpa domain name pointer host-54.80.252.37.ucom.am.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
54.80.252.37.in-addr.arpa	name = host-54.80.252.37.ucom.am.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.73.157.229	attackspam	2020-08-02T22:14:42.822808mail.broermann.family sshd[30620]: Failed password for root from 93.73.157.229 port 36288 ssh2 2020-08-02T22:19:45.425293mail.broermann.family sshd[30843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gradely-rib.volia.net user=root 2020-08-02T22:19:47.146536mail.broermann.family sshd[30843]: Failed password for root from 93.73.157.229 port 48768 ssh2 2020-08-02T22:24:47.774554mail.broermann.family sshd[31106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gradely-rib.volia.net user=root 2020-08-02T22:24:50.288074mail.broermann.family sshd[31106]: Failed password for root from 93.73.157.229 port 33008 ssh2 ...	2020-08-03 05:26:14
128.199.84.201	attackspam	Fail2Ban	2020-08-03 05:47:00
106.124.131.70	attackbots	Bruteforce attempt detected on user root, banned.	2020-08-03 05:51:43
95.144.11.235	attackbots	/wp-login.php	2020-08-03 05:35:59
194.182.82.206	attack	Aug 2 22:34:02 * sshd[22429]: Failed password for root from 194.182.82.206 port 39186 ssh2	2020-08-03 05:45:39
128.199.143.13	attackbots	2020-08-03T03:23:02.025585hostname sshd[15656]: Failed password for root from 128.199.143.13 port 52470 ssh2 2020-08-03T03:25:42.693080hostname sshd[16747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.143.13 user=root 2020-08-03T03:25:44.429577hostname sshd[16747]: Failed password for root from 128.199.143.13 port 52622 ssh2 ...	2020-08-03 05:49:44
78.218.141.57	attack	Aug 2 11:16:38 rama sshd[113378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cal30-1-78-218-141-57.fbx.proxad.net user=r.r Aug 2 11:16:40 rama sshd[113378]: Failed password for r.r from 78.218.141.57 port 36138 ssh2 Aug 2 11:16:40 rama sshd[113378]: Received disconnect from 78.218.141.57: 11: Bye Bye [preauth] Aug 2 11:26:07 rama sshd[116158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cal30-1-78-218-141-57.fbx.proxad.net user=r.r Aug 2 11:26:09 rama sshd[116158]: Failed password for r.r from 78.218.141.57 port 54338 ssh2 Aug 2 11:26:09 rama sshd[116158]: Received disconnect from 78.218.141.57: 11: Bye Bye [preauth] Aug 2 11:29:59 rama sshd[116903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost= .... truncated .... Aug 2 11:16:38 rama sshd[113378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser=........ -------------------------------	2020-08-03 05:27:38
101.91.119.132	attack	Aug 2 22:35:44 piServer sshd[5803]: Failed password for root from 101.91.119.132 port 55060 ssh2 Aug 2 22:37:45 piServer sshd[6048]: Failed password for root from 101.91.119.132 port 42356 ssh2 ...	2020-08-03 05:42:53
120.34.180.102	attackspambots	Brute force attempt	2020-08-03 05:30:38
61.177.172.177	attack	Aug 2 21:36:20 localhost sshd[100871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Aug 2 21:36:23 localhost sshd[100871]: Failed password for root from 61.177.172.177 port 31123 ssh2 Aug 2 21:36:26 localhost sshd[100871]: Failed password for root from 61.177.172.177 port 31123 ssh2 Aug 2 21:36:20 localhost sshd[100871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Aug 2 21:36:23 localhost sshd[100871]: Failed password for root from 61.177.172.177 port 31123 ssh2 Aug 2 21:36:26 localhost sshd[100871]: Failed password for root from 61.177.172.177 port 31123 ssh2 Aug 2 21:36:20 localhost sshd[100871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Aug 2 21:36:23 localhost sshd[100871]: Failed password for root from 61.177.172.177 port 31123 ssh2 Aug 2 21:36:26 localhost sshd[10 ...	2020-08-03 05:39:14
150.95.58.159	attackspambots	WordPress brute force	2020-08-03 05:51:03
91.199.223.92	attackspam	Aug 2 22:54:11 rancher-0 sshd[728522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.199.223.92 user=root Aug 2 22:54:12 rancher-0 sshd[728522]: Failed password for root from 91.199.223.92 port 58572 ssh2 ...	2020-08-03 05:21:34
193.32.161.141	attack	08/02/2020-16:24:56.193928 193.32.161.141 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-08-03 05:17:19
219.133.158.148	attackspam	Aug 2 20:41:44 jumpserver sshd[360013]: Failed password for root from 219.133.158.148 port 50562 ssh2 Aug 2 20:45:44 jumpserver sshd[360073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.133.158.148 user=root Aug 2 20:45:46 jumpserver sshd[360073]: Failed password for root from 219.133.158.148 port 49540 ssh2 ...	2020-08-03 05:29:33
104.248.159.69	attackbotsspam	Aug 2 22:59:02 abendstille sshd\[14582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.159.69 user=root Aug 2 22:59:04 abendstille sshd\[14582\]: Failed password for root from 104.248.159.69 port 33558 ssh2 Aug 2 23:03:29 abendstille sshd\[19226\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.159.69 user=root Aug 2 23:03:31 abendstille sshd\[19226\]: Failed password for root from 104.248.159.69 port 45374 ssh2 Aug 2 23:07:45 abendstille sshd\[23455\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.159.69 user=root ...	2020-08-03 05:27:25

Recently Reported IPs

156.213.111.106	86.107.47.113	41.34.103.133	180.246.177.30
27.78.232.103	111.85.51.226	195.154.44.84	190.133.160.198
190.131.215.110	190.13.191.76	122.8.222.18	86.57.170.25
39.40.113.254	223.206.241.110	222.220.167.40	190.232.61.37
190.121.195.54	139.228.194.209	105.228.117.237	103.215.99.119