104.130.2.252 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.130.229.34	attackspambots	$f2bV_matches	2020-08-25 02:49:45
104.130.28.210	attackbots	Aug 23 21:58:51 dhoomketu sshd[2605632]: Invalid user bx from 104.130.28.210 port 36548 Aug 23 21:58:51 dhoomketu sshd[2605632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.28.210 Aug 23 21:58:51 dhoomketu sshd[2605632]: Invalid user bx from 104.130.28.210 port 36548 Aug 23 21:58:54 dhoomketu sshd[2605632]: Failed password for invalid user bx from 104.130.28.210 port 36548 ssh2 Aug 23 22:03:09 dhoomketu sshd[2605694]: Invalid user report from 104.130.28.210 port 45498 ...	2020-08-24 00:49:36
104.130.229.193	attack	B: ssh repeated attack for invalid user	2020-03-28 05:45:51
104.130.217.250	attackbots	Jul 27 23:18:09 vps65 sshd\[7051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.217.250 user=root Jul 27 23:18:11 vps65 sshd\[7051\]: Failed password for root from 104.130.217.250 port 56610 ssh2 ...	2019-08-04 19:47:29
104.130.213.134	attackspambots	Aug 1 11:35:17 plesk sshd[31143]: Invalid user zimbra from 104.130.213.134 Aug 1 11:35:17 plesk sshd[31143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.213.134 Aug 1 11:35:18 plesk sshd[31143]: Failed password for invalid user zimbra from 104.130.213.134 port 33796 ssh2 Aug 1 11:35:18 plesk sshd[31143]: Received disconnect from 104.130.213.134: 11: Bye Bye [preauth] Aug 1 11:42:59 plesk sshd[31348]: Invalid user denise from 104.130.213.134 Aug 1 11:42:59 plesk sshd[31348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.213.134 Aug 1 11:43:01 plesk sshd[31348]: Failed password for invalid user denise from 104.130.213.134 port 41926 ssh2 Aug 1 11:43:01 plesk sshd[31348]: Received disconnect from 104.130.213.134: 11: Bye Bye [preauth] Aug 1 11:47:08 plesk sshd[31462]: Invalid user rr from 104.130.213.134 Aug 1 11:47:08 plesk sshd[31462]: pam_unix(sshd:auth): au........ -------------------------------	2019-08-02 06:45:55
104.130.252.138	attack	proto=tcp . spt=36524 . dpt=25 . (listed on Blocklist de Jul 02) (22)	2019-07-03 10:26:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.130.2.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50318
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.130.2.252.			IN	A

;; AUTHORITY SECTION:
.			397	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 02:48:42 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 252.2.130.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 252.2.130.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.84.196.50	attackbotsspam	Dec 12 22:19:55 php1 sshd\[15416\]: Invalid user vigen from 61.84.196.50 Dec 12 22:19:55 php1 sshd\[15416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.84.196.50 Dec 12 22:19:56 php1 sshd\[15416\]: Failed password for invalid user vigen from 61.84.196.50 port 55750 ssh2 Dec 12 22:26:50 php1 sshd\[16126\]: Invalid user ascott from 61.84.196.50 Dec 12 22:26:50 php1 sshd\[16126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.84.196.50	2019-12-13 18:02:01
222.186.175.182	attack	Dec 13 11:09:18 ns381471 sshd[7722]: Failed password for root from 222.186.175.182 port 7300 ssh2 Dec 13 11:09:30 ns381471 sshd[7722]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 7300 ssh2 [preauth]	2019-12-13 18:09:57
103.44.2.98	attack	firewall-block, port(s): 9000/tcp	2019-12-13 17:42:32
159.89.196.75	attackbotsspam	Dec 12 23:29:58 tdfoods sshd\[27082\]: Invalid user rowlader from 159.89.196.75 Dec 12 23:29:58 tdfoods sshd\[27082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.196.75 Dec 12 23:30:00 tdfoods sshd\[27082\]: Failed password for invalid user rowlader from 159.89.196.75 port 40300 ssh2 Dec 12 23:36:32 tdfoods sshd\[27672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.196.75 user=mysql Dec 12 23:36:33 tdfoods sshd\[27672\]: Failed password for mysql from 159.89.196.75 port 48938 ssh2	2019-12-13 17:45:19
190.153.249.99	attackbotsspam	Dec 13 09:44:33 MK-Soft-VM6 sshd[31649]: Failed password for root from 190.153.249.99 port 52500 ssh2 ...	2019-12-13 17:42:49
141.98.81.84	attack	Unauthorized connection attempt detected from IP address 141.98.81.84 to port 2007	2019-12-13 17:47:47
203.156.125.195	attack	Dec 13 10:20:18 OPSO sshd\[11066\]: Invalid user yoyo from 203.156.125.195 port 38167 Dec 13 10:20:18 OPSO sshd\[11066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.156.125.195 Dec 13 10:20:20 OPSO sshd\[11066\]: Failed password for invalid user yoyo from 203.156.125.195 port 38167 ssh2 Dec 13 10:26:58 OPSO sshd\[12362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.156.125.195 user=root Dec 13 10:27:00 OPSO sshd\[12362\]: Failed password for root from 203.156.125.195 port 42328 ssh2	2019-12-13 17:53:25
112.85.42.173	attack	Dec 13 04:42:18 TORMINT sshd\[21720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Dec 13 04:42:19 TORMINT sshd\[21720\]: Failed password for root from 112.85.42.173 port 54453 ssh2 Dec 13 04:42:33 TORMINT sshd\[21720\]: Failed password for root from 112.85.42.173 port 54453 ssh2 ...	2019-12-13 17:46:47
106.13.48.20	attack	Dec 13 09:49:10 nextcloud sshd\[13760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.20 user=root Dec 13 09:49:13 nextcloud sshd\[13760\]: Failed password for root from 106.13.48.20 port 49548 ssh2 Dec 13 09:55:09 nextcloud sshd\[23535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.48.20 user=root ...	2019-12-13 17:52:57
110.78.153.248	attackspambots	Unauthorized connection attempt from IP address 110.78.153.248 on Port 445(SMB)	2019-12-13 18:00:45
116.231.39.99	attackspambots	Unauthorized connection attempt from IP address 116.231.39.99 on Port 445(SMB)	2019-12-13 18:06:13
86.57.209.83	attackbots	Unauthorized connection attempt from IP address 86.57.209.83 on Port 445(SMB)	2019-12-13 18:04:37
78.187.108.130	attackspambots	Unauthorized connection attempt from IP address 78.187.108.130 on Port 445(SMB)	2019-12-13 17:54:55
110.37.216.114	attackspam	Unauthorized connection attempt detected from IP address 110.37.216.114 to port 445	2019-12-13 17:44:01
89.36.214.136	attackbots	2019-12-13T06:53:16.502846Z 7f31e81ed05f New connection: 89.36.214.136:60261 (172.17.0.6:2222) [session: 7f31e81ed05f] 2019-12-13T07:46:38.935430Z 105674880fad New connection: 89.36.214.136:57934 (172.17.0.6:2222) [session: 105674880fad]	2019-12-13 17:44:53

Recently Reported IPs

104.130.205.106	104.130.201.157	104.130.216.18	104.130.239.50
104.130.255.55	104.130.253.245	104.130.35.216	104.130.9.219
104.130.41.52	104.130.73.44	104.130.70.30	104.131.104.0
104.130.66.220	104.130.6.162	104.131.115.18	104.131.115.61
104.131.120.190	104.131.125.200	104.131.12.47	104.131.126.88