80.241.45.244 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: Kar-Tel LLC

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 80.241.45.244 on Port 445(SMB)	2020-06-05 23:43:31

Comments on same subnet:

IP	Type	Details	Datetime
80.241.45.18	attack	Unauthorised access (Aug 4) SRC=80.241.45.18 LEN=40 TTL=243 ID=24780 TCP DPT=445 WINDOW=1024 SYN	2019-08-05 02:02:43
80.241.45.18	attackspambots	Unauthorized connection attempt from IP address 80.241.45.18 on Port 445(SMB)	2019-07-16 16:34:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.241.45.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18524
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.241.45.244.			IN	A

;; AUTHORITY SECTION:
.			556	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060500 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 05 23:43:15 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 244.45.241.80.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 244.45.241.80.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.73.34.231	attackbotsspam	Caught in portsentry honeypot	2019-08-24 11:00:30
2.56.11.200	attackspam	Aug 23 22:42:00 vps200512 sshd\[14137\]: Invalid user aris from 2.56.11.200 Aug 23 22:42:00 vps200512 sshd\[14137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.56.11.200 Aug 23 22:42:02 vps200512 sshd\[14137\]: Failed password for invalid user aris from 2.56.11.200 port 53590 ssh2 Aug 23 22:46:37 vps200512 sshd\[14209\]: Invalid user test from 2.56.11.200 Aug 23 22:46:37 vps200512 sshd\[14209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.56.11.200	2019-08-24 11:03:01
185.52.117.38	attackbotsspam	proto=tcp . spt=53210 . dpt=25 . (listed on Blocklist de Aug 23) (154)	2019-08-24 11:10:26
189.7.25.34	attackspambots	Aug 23 16:18:59 aiointranet sshd\[20941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.25.34 user=irc Aug 23 16:19:02 aiointranet sshd\[20941\]: Failed password for irc from 189.7.25.34 port 34286 ssh2 Aug 23 16:24:43 aiointranet sshd\[21488\]: Invalid user admin from 189.7.25.34 Aug 23 16:24:43 aiointranet sshd\[21488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.25.34 Aug 23 16:24:45 aiointranet sshd\[21488\]: Failed password for invalid user admin from 189.7.25.34 port 56844 ssh2	2019-08-24 10:41:53
132.232.79.110	attackbots	Aug 23 17:00:27 wbs sshd\[22455\]: Invalid user python from 132.232.79.110 Aug 23 17:00:27 wbs sshd\[22455\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.79.110 Aug 23 17:00:29 wbs sshd\[22455\]: Failed password for invalid user python from 132.232.79.110 port 39614 ssh2 Aug 23 17:05:48 wbs sshd\[22924\]: Invalid user dodsserver from 132.232.79.110 Aug 23 17:05:48 wbs sshd\[22924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.79.110	2019-08-24 11:06:11
167.99.13.51	attack	Aug 23 16:52:25 sachi sshd\[27314\]: Invalid user ginger from 167.99.13.51 Aug 23 16:52:25 sachi sshd\[27314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.13.51 Aug 23 16:52:27 sachi sshd\[27314\]: Failed password for invalid user ginger from 167.99.13.51 port 42484 ssh2 Aug 23 16:59:20 sachi sshd\[27937\]: Invalid user wwwrun from 167.99.13.51 Aug 23 16:59:20 sachi sshd\[27937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.13.51	2019-08-24 11:01:47
177.190.68.121	attackbotsspam	proto=tcp . spt=60744 . dpt=25 . (listed on Blocklist de Aug 23) (153)	2019-08-24 11:11:41
211.252.84.191	attack	Aug 23 17:01:12 hiderm sshd\[20408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.84.191 user=root Aug 23 17:01:14 hiderm sshd\[20408\]: Failed password for root from 211.252.84.191 port 34896 ssh2 Aug 23 17:06:34 hiderm sshd\[20947\]: Invalid user anastacia from 211.252.84.191 Aug 23 17:06:34 hiderm sshd\[20947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.252.84.191 Aug 23 17:06:36 hiderm sshd\[20947\]: Failed password for invalid user anastacia from 211.252.84.191 port 52270 ssh2	2019-08-24 11:13:25
69.50.136.58	attackbots	proto=tcp . spt=53669 . dpt=25 . (listed on Blocklist de Aug 23) (164)	2019-08-24 10:43:33
119.84.8.43	attack	Aug 23 16:52:15 hiderm sshd\[19581\]: Invalid user secretaria from 119.84.8.43 Aug 23 16:52:15 hiderm sshd\[19581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.84.8.43 Aug 23 16:52:16 hiderm sshd\[19581\]: Failed password for invalid user secretaria from 119.84.8.43 port 40351 ssh2 Aug 23 16:54:17 hiderm sshd\[19761\]: Invalid user janet from 119.84.8.43 Aug 23 16:54:17 hiderm sshd\[19761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.84.8.43	2019-08-24 11:15:10
186.179.100.99	attack	Aug 24 09:15:57 localhost sshd[18628]: Invalid user admin from 186.179.100.99 port 18940 Aug 24 09:15:57 localhost sshd[18628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.179.100.99 Aug 24 09:15:57 localhost sshd[18628]: Invalid user admin from 186.179.100.99 port 18940 Aug 24 09:15:59 localhost sshd[18628]: Failed password for invalid user admin from 186.179.100.99 port 18940 ssh2 ...	2019-08-24 10:56:44
104.248.187.179	attackspam	Aug 24 04:19:22 MK-Soft-Root2 sshd\[29591\]: Invalid user ulrika from 104.248.187.179 port 46562 Aug 24 04:19:22 MK-Soft-Root2 sshd\[29591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.179 Aug 24 04:19:24 MK-Soft-Root2 sshd\[29591\]: Failed password for invalid user ulrika from 104.248.187.179 port 46562 ssh2 ...	2019-08-24 10:34:30
185.175.93.78	attack	firewall-block, port(s): 4500/tcp, 6089/tcp, 9595/tcp	2019-08-24 10:46:37
217.61.98.156	attackspam	proto=tcp . spt=54240 . dpt=25 . (listed on Dark List de Aug 23) (168)	2019-08-24 10:30:33
71.6.158.166	attack	08/23/2019-21:16:14.146815 71.6.158.166 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2019-08-24 10:44:34

Recently Reported IPs

14.169.238.244	202.149.222.94	185.63.253.104	63.135.25.144
180.211.218.62	112.105.152.107	111.176.232.23	61.227.186.122
90.188.177.47	25.192.239.173	41.174.14.68	176.43.56.63
124.113.219.162	177.50.195.110	76.42.166.140	193.43.231.229
115.79.196.165	36.232.253.116	114.119.166.21	1.189.23.198