104.130.252.138

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Rackspace Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	proto=tcp . spt=36524 . dpt=25 . (listed on Blocklist de Jul 02) (22)	2019-07-03 10:26:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.130.252.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22137
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.130.252.138.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 10:26:34 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 138.252.130.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 138.252.130.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.119.30.125	attack	Aug 5 05:49:07 master sshd[7458]: Did not receive identification string from 176.119.30.125 Aug 5 05:49:15 master sshd[7459]: Failed password for root from 176.119.30.125 port 36778 ssh2 Aug 5 05:49:32 master sshd[7461]: Failed password for root from 176.119.30.125 port 58326 ssh2 Aug 5 05:49:45 master sshd[7463]: Failed password for root from 176.119.30.125 port 51670 ssh2 Aug 5 05:49:58 master sshd[7465]: Failed password for invalid user admin from 176.119.30.125 port 45132 ssh2 Aug 5 05:50:11 master sshd[7467]: Failed password for invalid user admin from 176.119.30.125 port 38358 ssh2 Aug 5 05:50:26 master sshd[7469]: Failed password for invalid user ubuntu from 176.119.30.125 port 59916 ssh2 Aug 5 05:50:39 master sshd[7471]: Failed password for root from 176.119.30.125 port 53252 ssh2 Aug 5 05:50:51 master sshd[7473]: Failed password for invalid user user from 176.119.30.125 port 46592 ssh2	2020-08-05 19:50:16
51.161.45.174	attackbots	Aug 5 12:35:44 amit sshd\[16418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.174 user=root Aug 5 12:35:46 amit sshd\[16418\]: Failed password for root from 51.161.45.174 port 41842 ssh2 Aug 5 12:39:28 amit sshd\[16521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.174 user=root ...	2020-08-05 20:03:05
134.122.28.190	attackspam	Unauthorized connection attempt detected from IP address 134.122.28.190 to port 22	2020-08-05 19:40:09
129.211.18.180	attackbots	Aug 5 13:55:54 abendstille sshd\[24568\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.18.180 user=root Aug 5 13:55:56 abendstille sshd\[24568\]: Failed password for root from 129.211.18.180 port 11007 ssh2 Aug 5 14:00:32 abendstille sshd\[29620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.18.180 user=root Aug 5 14:00:34 abendstille sshd\[29620\]: Failed password for root from 129.211.18.180 port 58913 ssh2 Aug 5 14:05:07 abendstille sshd\[2102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.18.180 user=root ...	2020-08-05 20:09:35
23.94.182.210	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-05 19:50:55
80.210.30.225	attackbots	08/04/2020-23:46:44.947611 80.210.30.225 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-08-05 20:15:05
222.186.31.204	attackspambots	[MK-VM4] SSH login failed	2020-08-05 19:45:23
198.199.124.117	attackspam	Lines containing failures of 198.199.124.117 Aug 2 11:31:55 metroid sshd[20491]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 12:36:37 metroid sshd[21523]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 13:42:04 metroid sshd[22996]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 14:51:17 metroid sshd[24243]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 15:51:43 metroid sshd[25462]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 17:06:38 metroid sshd[27055]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 01:45:20 metroid sshd[781]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 02:48:28 metroid sshd[1535]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 03:49:52 metroid sshd[2446]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 05:02:36 metroid sshd[3378]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 06:11:45 metroid s........ ------------------------------	2020-08-05 20:15:32
39.109.123.214	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-05 19:53:08
165.227.140.245	attack	Aug 5 12:22:56 hosting sshd[11634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.140.245 user=root Aug 5 12:22:57 hosting sshd[11634]: Failed password for root from 165.227.140.245 port 57738 ssh2 ...	2020-08-05 19:57:42
222.186.169.192	attack	Aug 5 13:32:06 debian64 sshd[17201]: Failed password for root from 222.186.169.192 port 39090 ssh2 Aug 5 13:32:09 debian64 sshd[17201]: Failed password for root from 222.186.169.192 port 39090 ssh2 ...	2020-08-05 19:35:05
117.173.67.119	attack	Aug 5 07:07:56 inter-technics sshd[13756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.173.67.119 user=root Aug 5 07:07:58 inter-technics sshd[13756]: Failed password for root from 117.173.67.119 port 3911 ssh2 Aug 5 07:12:04 inter-technics sshd[14167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.173.67.119 user=root Aug 5 07:12:06 inter-technics sshd[14167]: Failed password for root from 117.173.67.119 port 3912 ssh2 Aug 5 07:16:17 inter-technics sshd[14387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.173.67.119 user=root Aug 5 07:16:19 inter-technics sshd[14387]: Failed password for root from 117.173.67.119 port 3913 ssh2 ...	2020-08-05 19:48:39
159.89.9.140	attackspambots	Automatic report - XMLRPC Attack	2020-08-05 19:37:15
94.103.95.57	attackbotsspam	1,78-01/01 [bc02/m13] PostRequest-Spammer scoring: berlin	2020-08-05 19:51:58
104.155.215.32	attackspam	2020-08-05T08:15:29.617474abusebot.cloudsearch.cf sshd[22224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.215.155.104.bc.googleusercontent.com user=root 2020-08-05T08:15:31.569384abusebot.cloudsearch.cf sshd[22224]: Failed password for root from 104.155.215.32 port 35502 ssh2 2020-08-05T08:18:43.804525abusebot.cloudsearch.cf sshd[22279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.215.155.104.bc.googleusercontent.com user=root 2020-08-05T08:18:45.721575abusebot.cloudsearch.cf sshd[22279]: Failed password for root from 104.155.215.32 port 55508 ssh2 2020-08-05T08:21:43.343700abusebot.cloudsearch.cf sshd[22323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.215.155.104.bc.googleusercontent.com user=root 2020-08-05T08:21:45.408345abusebot.cloudsearch.cf sshd[22323]: Failed password for root from 104.155.215.32 port 47280 ssh2 2020-08-05T08:24:57.23 ...	2020-08-05 20:07:53

Recently Reported IPs

40.93.194.206	178.62.193.248	99.84.216.32	157.55.39.36
79.9.108.59	208.91.107.66	82.223.14.245	74.208.253.37
193.31.27.35	1.31.91.58	189.62.16.154	70.89.79.211
112.148.17.41	177.68.143.100	124.65.217.10	3.19.66.118
205.134.163.91	134.73.161.109	125.209.123.181	62.149.25.5