Check an IP Address, Domain Name, Subnet, or ASN

182.2.73.84 was found in our database!

$ whois 182.2.73.84

country·🇮🇩 Indonesia

city·Sukoharjo

isp·PT. Telekomunikasi Selular

asn·AS23693

network·Standard

$ sikker risk 182.2.73.84scoring →

confidence

94%Very High

first_seen·Mar 12, 2026

last_seen·9d ago

sessions·36

events·36

$ sikker protocols 182.2.73.84

SMB

32 / 32

HTTP

2 / 2

HTTPS

2 / 2

$ sikker summary 182.2.73.84

182.2.73.84 has a threat confidence score of 94%. This IP address from Indonesia (AS23693, PT. Telekomunikasi Selular) has been observed in 36 honeypot sessions targeting SMB, HTTP, HTTPS protocols. Detected attack patterns include smb authenticated rpc service and account enumeration. First observed on March 12, 2026, most recently active March 12, 2026.

$ sikker behaviors 182.2.73.84catalog →

highSmb Authenticated Rpc Service And Account Enumeration4x

Identifies an SMB session where the IPC$ share is accessed and RPC bindings are established to the SAMR and SRVSVC interfaces via named pipes. The combination of IPC$ access, SAMR RPC binding (Security Account Manager Remote), and SRVSVC pipe interaction indicates authenticated enumeration of user accounts, groups, shares, or service information on a Windows host. This behavior reflects structured post-authentication reconnaissance against Windows systems rather than unauthenticated share scanning.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

$ sikker primitives 182.2.73.84

smb_root_read240 smb_ipc_share_access14 smb_financials_directory_read14 smb_it_directory_read13 smb_empty_rpc_call10 smb_old_directory_read9 smb_srvsvc_rpc_bind8 smb_hr_directory_read8 smb_projects_directory_read8 smb_data_share_access6 smb_samr_rpc_bind4 smb_srvsvc_pipe_open4 smb_backup_share_access3 smb_legal_directory_read3 smb_public_directory_read3 smb_marketing_directory_read3 smb_it_scripts_directory_read3 smb_hr_contracts_directory_read3 smb_projects_archive_directory_read3 smb_financials_archive_directory_read3

$ sikker related 182.2.73.84

🇮🇩·More threats fromIndonesia→AS·More threats fromPT. Telekomunikasi Selular→SMB·More threats targetingSMB→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
182.8.161.14	44%	6
182.8.98.202	39%	4
182.9.33.11	57%	19
182.8.194.78	42%	6
182.11.129.211	34%	13

IP Address	Confidence	Events
43.173.30.16	96%	1,879
43.133.139.204	96%	1,771
43.129.50.42	96%	1,818
43.133.138.59	96%	1,832
43.157.203.4	93%	205