45.252.245.252

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: The Authority of Central Post

Hostname: unknown

Organization: unknown

Usage Type: Government

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	1582865799 - 02/28/2020 05:56:39 Host: 45.252.245.252/45.252.245.252 Port: 445 TCP Blocked	2020-02-28 13:41:05

Comments on same subnet:

IP	Type	Details	Datetime
45.252.245.242	attack	May 14 14:27:47 ns381471 sshd[8882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.245.242 May 14 14:27:49 ns381471 sshd[8882]: Failed password for invalid user supervisor from 45.252.245.242 port 44110 ssh2	2020-05-14 21:44:43
45.252.245.239	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-23 00:31:34
45.252.245.237	attackbotsspam	1580360316 - 01/30/2020 05:58:36 Host: 45.252.245.237/45.252.245.237 Port: 445 TCP Blocked	2020-01-30 19:32:13
45.252.245.238	attackspambots	Unauthorized connection attempt from IP address 45.252.245.238 on Port 445(SMB)	2020-01-24 06:41:08
45.252.245.239	attackbotsspam	Port 1433 Scan	2020-01-24 06:28:15
45.252.245.239	attackbots	Unauthorized connection attempt from IP address 45.252.245.239 on Port 445(SMB)	2020-01-16 19:23:41
45.252.245.234	attackbotsspam	1577025911 - 12/22/2019 15:45:11 Host: 45.252.245.234/45.252.245.234 Port: 445 TCP Blocked	2019-12-23 06:05:12
45.252.245.239	attackspam	SMB Server BruteForce Attack	2019-09-13 03:55:52
45.252.245.240	attackspam	Unauthorised access (Jul 6) SRC=45.252.245.240 LEN=52 TTL=116 ID=9648 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-06 16:05:43
45.252.245.248	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 18:49:58,368 INFO [shellcode_manager] (45.252.245.248) no match, writing hexdump (bb7dbdaf028665e9e7835b1a95f65a7a :13628) - SMB (Unknown)	2019-07-05 17:27:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.252.245.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.252.245.252.			IN	A

;; AUTHORITY SECTION:
.			375	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 13:40:58 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 252.245.252.45.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 252.245.252.45.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.106.29.106	attackbotsspam	Port scan on 3 port(s): 9893 9894 9898	2019-08-25 17:29:53
187.32.80.7	attackbotsspam	Aug 25 09:22:12 hb sshd\[16640\]: Invalid user alisa from 187.32.80.7 Aug 25 09:22:12 hb sshd\[16640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.80.7 Aug 25 09:22:15 hb sshd\[16640\]: Failed password for invalid user alisa from 187.32.80.7 port 56742 ssh2 Aug 25 09:27:12 hb sshd\[17044\]: Invalid user kot from 187.32.80.7 Aug 25 09:27:12 hb sshd\[17044\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.80.7	2019-08-25 17:37:34
187.44.196.110	attack	Unauthorized connection attempt from IP address 187.44.196.110 on Port 445(SMB)	2019-08-25 17:32:42
62.7.90.34	attackbotsspam	Aug 24 23:04:27 sachi sshd\[11451\]: Invalid user himanshu123 from 62.7.90.34 Aug 24 23:04:27 sachi sshd\[11451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.7.90.34 Aug 24 23:04:29 sachi sshd\[11451\]: Failed password for invalid user himanshu123 from 62.7.90.34 port 55159 ssh2 Aug 24 23:08:24 sachi sshd\[11898\]: Invalid user erick from 62.7.90.34 Aug 24 23:08:24 sachi sshd\[11898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.7.90.34	2019-08-25 17:16:19
195.206.42.217	attackspambots	Aug 25 09:52:45 Ubuntu-1404-trusty-64-minimal sshd\[29839\]: Invalid user phuket from 195.206.42.217 Aug 25 09:52:45 Ubuntu-1404-trusty-64-minimal sshd\[29839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.42.217 Aug 25 09:52:47 Ubuntu-1404-trusty-64-minimal sshd\[29839\]: Failed password for invalid user phuket from 195.206.42.217 port 54254 ssh2 Aug 25 10:03:52 Ubuntu-1404-trusty-64-minimal sshd\[7307\]: Invalid user ban from 195.206.42.217 Aug 25 10:03:52 Ubuntu-1404-trusty-64-minimal sshd\[7307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.42.217	2019-08-25 17:18:28
103.127.125.142	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-08-25 17:03:56
159.65.155.227	attackbots	Aug 25 11:33:51 legacy sshd[31407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 Aug 25 11:33:53 legacy sshd[31407]: Failed password for invalid user applmgr from 159.65.155.227 port 49716 ssh2 Aug 25 11:38:37 legacy sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.227 ...	2019-08-25 17:43:05
185.209.0.143	attackbots	Multiport scan : 23 ports scanned 11000 11001 11004 11005 11011 11012 11014 11016 11017 11020 11023 11024 11027 11030 11033 11040 11041 11044 11045 11046 11047 11048 11050	2019-08-25 17:53:53
104.236.22.133	attack	SSH Brute-Force reported by Fail2Ban	2019-08-25 17:28:08
185.209.0.33	attackspam	Port scan on 3 port(s): 4174 4184 4196	2019-08-25 17:59:07
94.177.233.182	attackspam	Aug 25 10:55:07 dedicated sshd[13472]: Invalid user arleigh from 94.177.233.182 port 46804	2019-08-25 17:03:16
191.82.160.236	attackbots	Honeypot attack, port: 23, PTR: 191-82-160-236.speedy.com.ar.	2019-08-25 17:39:18
185.109.245.171	attack	Automatic report - Port Scan Attack	2019-08-25 17:19:58
164.77.138.26	attackbots	Unauthorized connection attempt from IP address 164.77.138.26 on Port 445(SMB)	2019-08-25 17:23:44
187.190.235.43	attackspam	Aug 24 23:48:18 web1 sshd\[16763\]: Invalid user sparky from 187.190.235.43 Aug 24 23:48:18 web1 sshd\[16763\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.190.235.43 Aug 24 23:48:20 web1 sshd\[16763\]: Failed password for invalid user sparky from 187.190.235.43 port 37223 ssh2 Aug 24 23:52:55 web1 sshd\[17139\]: Invalid user ubuntu from 187.190.235.43 Aug 24 23:52:55 web1 sshd\[17139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.190.235.43	2019-08-25 17:56:00

Recently Reported IPs

223.16.232.54	85.95.165.171	117.203.218.72	115.85.73.53
103.21.167.28	113.160.97.163	151.48.1.185	211.226.196.141
115.73.239.211	252.207.159.58	243.151.236.244	200.2.182.185
244.89.223.132	186.9.106.152	190.146.52.164	237.23.255.216
189.15.136.46	202.138.248.85	149.49.111.251	213.166.168.53