Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: The Authority of Central Post

Hostname: unknown

Organization: unknown

Usage Type: Government

Comments:
Type Details Datetime
attackspambots
1582865799 - 02/28/2020 05:56:39 Host: 45.252.245.252/45.252.245.252 Port: 445 TCP Blocked
2020-02-28 13:41:05
Comments on same subnet:
IP Type Details Datetime
45.252.245.242 attack
May 14 14:27:47 ns381471 sshd[8882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.245.242
May 14 14:27:49 ns381471 sshd[8882]: Failed password for invalid user supervisor from 45.252.245.242 port 44110 ssh2
2020-05-14 21:44:43
45.252.245.239 attackspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-04-23 00:31:34
45.252.245.237 attackbotsspam
1580360316 - 01/30/2020 05:58:36 Host: 45.252.245.237/45.252.245.237 Port: 445 TCP Blocked
2020-01-30 19:32:13
45.252.245.238 attackspambots
Unauthorized connection attempt from IP address 45.252.245.238 on Port 445(SMB)
2020-01-24 06:41:08
45.252.245.239 attackbotsspam
Port 1433 Scan
2020-01-24 06:28:15
45.252.245.239 attackbots
Unauthorized connection attempt from IP address 45.252.245.239 on Port 445(SMB)
2020-01-16 19:23:41
45.252.245.234 attackbotsspam
1577025911 - 12/22/2019 15:45:11 Host: 45.252.245.234/45.252.245.234 Port: 445 TCP Blocked
2019-12-23 06:05:12
45.252.245.239 attackspam
SMB Server BruteForce Attack
2019-09-13 03:55:52
45.252.245.240 attackspam
Unauthorised access (Jul  6) SRC=45.252.245.240 LEN=52 TTL=116 ID=9648 DF TCP DPT=445 WINDOW=8192 SYN
2019-07-06 16:05:43
45.252.245.248 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 18:49:58,368 INFO [shellcode_manager] (45.252.245.248) no match, writing hexdump (bb7dbdaf028665e9e7835b1a95f65a7a :13628) - SMB (Unknown)
2019-07-05 17:27:29
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.252.245.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.252.245.252.			IN	A

;; AUTHORITY SECTION:
.			375	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 13:40:58 CST 2020
;; MSG SIZE  rcvd: 118
Host info
Host 252.245.252.45.in-addr.arpa not found: 2(SERVFAIL)
Nslookup info:
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 252.245.252.45.in-addr.arpa: SERVFAIL
Related IP info:
Related comments:
IP Type Details Datetime
27.116.255.153 attackbots
05:00:19.859 1 IMAP-000437([27.116.255.153]) failed to open 'fred@womble.org'. Connection from [27.116.255.153]:59060. Error Code=account is routed to NULL
...
2020-09-09 13:43:26
165.84.180.12 attack
(sshd) Failed SSH login from 165.84.180.12 (HK/Hong Kong/165084180012.ctinets.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep  9 01:30:06 optimus sshd[14324]: Invalid user admin from 165.84.180.12
Sep  9 01:30:08 optimus sshd[14324]: Failed password for invalid user admin from 165.84.180.12 port 18404 ssh2
Sep  9 01:31:07 optimus sshd[14658]: Failed password for root from 165.84.180.12 port 24950 ssh2
Sep  9 01:31:52 optimus sshd[15066]: Failed password for root from 165.84.180.12 port 30308 ssh2
Sep  9 01:32:37 optimus sshd[15386]: Failed password for root from 165.84.180.12 port 35653 ssh2
2020-09-09 14:00:44
60.166.22.74 attack
Port Scan
...
2020-09-09 14:00:17
116.193.216.231 attackspambots
Port scan on 1 port(s): 445
2020-09-09 13:59:58
104.248.130.17 attack
Sep  9 03:45:04 rancher-0 sshd[1504559]: Invalid user tim from 104.248.130.17 port 55290
Sep  9 03:45:06 rancher-0 sshd[1504559]: Failed password for invalid user tim from 104.248.130.17 port 55290 ssh2
...
2020-09-09 13:27:10
203.172.66.222 attackspam
Sep  8 20:41:09 abendstille sshd\[7405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.222  user=root
Sep  8 20:41:11 abendstille sshd\[7405\]: Failed password for root from 203.172.66.222 port 47514 ssh2
Sep  8 20:43:02 abendstille sshd\[9162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.222  user=root
Sep  8 20:43:04 abendstille sshd\[9162\]: Failed password for root from 203.172.66.222 port 44744 ssh2
Sep  8 20:44:53 abendstille sshd\[11019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.222  user=root
...
2020-09-09 13:53:35
218.104.225.140 attackbotsspam
SSH invalid-user multiple login attempts
2020-09-09 13:39:53
49.37.194.212 attackspambots
20/9/8@12:56:16: FAIL: Alarm-Intrusion address from=49.37.194.212
...
2020-09-09 13:37:30
109.194.166.11 attack
ssh brute force
2020-09-09 13:47:31
14.115.28.120 attack
SSH Brute Force
2020-09-09 14:04:49
195.54.160.183 attack
Sep  9 07:57:17 melroy-server sshd[2422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.183 
Sep  9 07:57:19 melroy-server sshd[2422]: Failed password for invalid user service from 195.54.160.183 port 20723 ssh2
...
2020-09-09 13:58:12
139.219.0.102 attackbots
Sep  9 01:32:47 mail sshd\[63284\]: Invalid user shera from 139.219.0.102
...
2020-09-09 13:58:26
59.127.147.110 attack
MultiHost/MultiPort Probe, Scan, Hack -
2020-09-09 13:28:34
106.53.220.103 attack
Sep  9 06:33:33 root sshd[16381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 
...
2020-09-09 13:51:23
58.33.35.82 attackbots
Sep  9 01:59:28 plex-server sshd[3980519]: Failed password for invalid user baba from 58.33.35.82 port 2977 ssh2
Sep  9 02:02:59 plex-server sshd[3982617]: Invalid user sales from 58.33.35.82 port 2978
Sep  9 02:02:59 plex-server sshd[3982617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.35.82 
Sep  9 02:02:59 plex-server sshd[3982617]: Invalid user sales from 58.33.35.82 port 2978
Sep  9 02:03:01 plex-server sshd[3982617]: Failed password for invalid user sales from 58.33.35.82 port 2978 ssh2
...
2020-09-09 13:33:28

Recently Reported IPs

223.16.232.54 85.95.165.171 117.203.218.72 115.85.73.53
103.21.167.28 113.160.97.163 151.48.1.185 211.226.196.141
115.73.239.211 252.207.159.58 243.151.236.244 200.2.182.185
244.89.223.132 186.9.106.152 190.146.52.164 237.23.255.216
189.15.136.46 202.138.248.85 149.49.111.251 213.166.168.53