45.252.80.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Mastek Infosystems O. Pvt. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-08 00:40:30

Comments on same subnet:

IP	Type	Details	Datetime
45.252.80.19	attack	Unauthorized connection attempt from IP address 45.252.80.19 on Port 445(SMB)	2019-11-28 05:47:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.252.80.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37086
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.252.80.3.			IN	A

;; AUTHORITY SECTION:
.			406	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080700 1800 900 604800 86400

;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 08 00:40:19 CST 2020
;; MSG SIZE  rcvd: 115

Host info

3.80.252.45.in-addr.arpa has no PTR record

Nslookup info:

;; Got SERVFAIL reply from 183.60.82.98, trying next server
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.80.252.45.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.36.120.197	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-20 14:02:39
93.171.141.141	attack	Nov 19 19:53:04 php1 sshd\[25505\]: Invalid user hambleton from 93.171.141.141 Nov 19 19:53:04 php1 sshd\[25505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.171.141.141 Nov 19 19:53:06 php1 sshd\[25505\]: Failed password for invalid user hambleton from 93.171.141.141 port 36310 ssh2 Nov 19 19:56:55 php1 sshd\[25821\]: Invalid user squid from 93.171.141.141 Nov 19 19:56:55 php1 sshd\[25821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.171.141.141	2019-11-20 14:08:05
222.186.180.9	attackspambots	Nov 20 13:09:15 webhost01 sshd[20030]: Failed password for root from 222.186.180.9 port 3454 ssh2 Nov 20 13:09:28 webhost01 sshd[20030]: error: maximum authentication attempts exceeded for root from 222.186.180.9 port 3454 ssh2 [preauth] ...	2019-11-20 14:13:22
201.77.127.49	attackbots	RDP Brute-Force (Grieskirchen RZ2)	2019-11-20 14:20:22
52.35.136.194	attackspambots	11/20/2019-07:32:23.227853 52.35.136.194 Protocol: 6 SURICATA TLS invalid record/traffic	2019-11-20 14:45:49
80.211.171.78	attackbots	Nov 20 06:39:27 dedicated sshd[27040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.171.78 user=root Nov 20 06:39:29 dedicated sshd[27040]: Failed password for root from 80.211.171.78 port 58344 ssh2	2019-11-20 13:58:58
35.221.229.5	attackbots	[20/Nov/2019:05:55:15 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-20 14:24:39
185.94.188.195	attackspambots	Nov 20 06:18:03 localhost sshd\[106826\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.94.188.195 user=root Nov 20 06:18:06 localhost sshd\[106826\]: Failed password for root from 185.94.188.195 port 47966 ssh2 Nov 20 06:23:57 localhost sshd\[106963\]: Invalid user account from 185.94.188.195 port 38563 Nov 20 06:23:57 localhost sshd\[106963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.94.188.195 Nov 20 06:23:59 localhost sshd\[106963\]: Failed password for invalid user account from 185.94.188.195 port 38563 ssh2 ...	2019-11-20 14:24:14
49.88.112.112	attackbots	port scan and connect, tcp 22 (ssh)	2019-11-20 14:01:23
61.182.230.41	attackbotsspam	$f2bV_matches	2019-11-20 14:04:08
138.197.25.187	attackspambots	Nov 20 01:52:33 firewall sshd[14989]: Invalid user melc from 138.197.25.187 Nov 20 01:52:35 firewall sshd[14989]: Failed password for invalid user melc from 138.197.25.187 port 35622 ssh2 Nov 20 01:56:11 firewall sshd[15061]: Invalid user gdm from 138.197.25.187 ...	2019-11-20 13:59:17
35.239.205.85	attackspam	LGS,WP GET /wp-login.php	2019-11-20 14:01:02
202.169.62.187	attackbotsspam	Nov 19 20:24:29 web9 sshd\[31642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187 user=root Nov 19 20:24:31 web9 sshd\[31642\]: Failed password for root from 202.169.62.187 port 43020 ssh2 Nov 19 20:28:31 web9 sshd\[32151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187 user=root Nov 19 20:28:32 web9 sshd\[32151\]: Failed password for root from 202.169.62.187 port 33002 ssh2 Nov 19 20:32:30 web9 sshd\[32627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187 user=backup	2019-11-20 14:47:20
162.144.65.186	attackspambots	Nov 20 07:31:38 exim[19186]: 2019-11-20 07:31:38 1iXJWZ-0004zS-0W H=(162-144-65-186.webhostbox.net) [162.144.65.186] X=TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256 CV=no F= rejected after DATA: This message scored 7.6 spam points.	2019-11-20 14:49:03
67.205.178.14	attackbots	20.11.2019 07:41:16 - Wordpress fail Detected by ELinOX-ALM	2019-11-20 14:41:40

Recently Reported IPs

171.250.146.177	188.217.9.63	123.164.173.125	49.145.97.143
14.231.98.113	81.70.21.113	91.139.213.122	103.146.23.176
167.71.38.104	186.219.139.137	194.225.185.29	45.129.33.153
110.49.8.2	201.209.170.234	94.100.6.21	41.139.58.2
189.187.10.246	86.127.212.85	103.133.107.167	116.85.26.21