104.198.214.252

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.198.214.207	attackbots	ads.txt Drone detected by safePassage	2019-08-12 01:15:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.198.214.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50393
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.198.214.252.		IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:01:41 CST 2022
;; MSG SIZE  rcvd: 108

Host info

252.214.198.104.in-addr.arpa domain name pointer 252.214.198.104.bc.googleusercontent.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.214.198.104.in-addr.arpa	name = 252.214.198.104.bc.googleusercontent.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.89.54.108	attack	Aug 28 07:48:00 debian sshd\[10598\]: Invalid user zz from 88.89.54.108 port 52986 Aug 28 07:48:00 debian sshd\[10598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.89.54.108 ...	2019-08-28 15:04:26
54.39.151.22	attackspam	$f2bV_matches	2019-08-28 14:59:05
51.68.70.72	attackbotsspam	Aug 28 07:58:11 root sshd[13174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.70.72 Aug 28 07:58:13 root sshd[13174]: Failed password for invalid user wxl from 51.68.70.72 port 47766 ssh2 Aug 28 08:02:15 root sshd[13266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.70.72 ...	2019-08-28 14:50:25
123.16.251.12	spambotsattackproxynormal	Nnn	2019-08-28 14:52:05
45.170.162.253	attack	Aug 28 08:40:34 tux-35-217 sshd\[14361\]: Invalid user xxx from 45.170.162.253 port 42894 Aug 28 08:40:34 tux-35-217 sshd\[14361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.170.162.253 Aug 28 08:40:35 tux-35-217 sshd\[14361\]: Failed password for invalid user xxx from 45.170.162.253 port 42894 ssh2 Aug 28 08:45:39 tux-35-217 sshd\[14400\]: Invalid user andrea from 45.170.162.253 port 33094 Aug 28 08:45:39 tux-35-217 sshd\[14400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.170.162.253 ...	2019-08-28 14:56:31
104.236.2.45	attackspambots	Aug 27 20:48:40 aiointranet sshd\[7116\]: Invalid user kwan from 104.236.2.45 Aug 27 20:48:40 aiointranet sshd\[7116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.2.45 Aug 27 20:48:43 aiointranet sshd\[7116\]: Failed password for invalid user kwan from 104.236.2.45 port 49310 ssh2 Aug 27 20:52:53 aiointranet sshd\[7434\]: Invalid user mopps from 104.236.2.45 Aug 27 20:52:53 aiointranet sshd\[7434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.2.45	2019-08-28 14:54:25
68.44.101.90	attack	$f2bV_matches	2019-08-28 14:52:26
92.253.52.54	attackbots	Aug 27 18:22:23 localhost kernel: [682358.597586] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.253.52.54 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=24866 PROTO=TCP SPT=37968 DPT=52869 WINDOW=48253 RES=0x00 SYN URGP=0 Aug 27 18:22:23 localhost kernel: [682358.597617] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.253.52.54 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=24866 PROTO=TCP SPT=37968 DPT=52869 SEQ=758669438 ACK=0 WINDOW=48253 RES=0x00 SYN URGP=0 Aug 28 00:26:20 localhost kernel: [704196.206198] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.253.52.54 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=50 ID=23815 PROTO=TCP SPT=37968 DPT=52869 WINDOW=48253 RES=0x00 SYN URGP=0 Aug 28 00:26:20 localhost kernel: [704196.206230] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=92.253.52.54 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00	2019-08-28 15:35:19
175.146.17.135	attackspambots	Unauthorised access (Aug 28) SRC=175.146.17.135 LEN=40 TTL=49 ID=16809 TCP DPT=8080 WINDOW=15901 SYN	2019-08-28 15:03:49
142.93.222.197	attackbots	Aug 27 20:41:09 auw2 sshd\[6075\]: Invalid user tecnico from 142.93.222.197 Aug 27 20:41:09 auw2 sshd\[6075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.222.197 Aug 27 20:41:10 auw2 sshd\[6075\]: Failed password for invalid user tecnico from 142.93.222.197 port 57228 ssh2 Aug 27 20:45:59 auw2 sshd\[6503\]: Invalid user oracle@123 from 142.93.222.197 Aug 27 20:45:59 auw2 sshd\[6503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.222.197	2019-08-28 14:48:25
5.249.145.73	attack	Aug 28 07:49:54 DAAP sshd[23760]: Invalid user nginx from 5.249.145.73 port 56285 Aug 28 07:49:54 DAAP sshd[23760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.73 Aug 28 07:49:54 DAAP sshd[23760]: Invalid user nginx from 5.249.145.73 port 56285 Aug 28 07:49:56 DAAP sshd[23760]: Failed password for invalid user nginx from 5.249.145.73 port 56285 ssh2 Aug 28 07:53:59 DAAP sshd[23817]: Invalid user philip from 5.249.145.73 port 50564 ...	2019-08-28 15:05:49
51.255.168.127	attackspam	$f2bV_matches	2019-08-28 15:19:41
106.75.17.91	attackbots	Aug 27 21:14:44 hanapaa sshd\[20549\]: Invalid user peuser from 106.75.17.91 Aug 27 21:14:44 hanapaa sshd\[20549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.91 Aug 27 21:14:46 hanapaa sshd\[20549\]: Failed password for invalid user peuser from 106.75.17.91 port 60282 ssh2 Aug 27 21:20:21 hanapaa sshd\[20982\]: Invalid user contest from 106.75.17.91 Aug 27 21:20:21 hanapaa sshd\[20982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.91	2019-08-28 15:21:16
40.73.97.99	attack	Aug 28 07:26:01 rb06 sshd[2177]: Failed password for invalid user jenn from 40.73.97.99 port 60320 ssh2 Aug 28 07:26:01 rb06 sshd[2177]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:37:46 rb06 sshd[11710]: Failed password for invalid user webmaster from 40.73.97.99 port 52520 ssh2 Aug 28 07:37:46 rb06 sshd[11710]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:46:41 rb06 sshd[15769]: Failed password for invalid user xxxxxxtopher from 40.73.97.99 port 54678 ssh2 Aug 28 07:46:42 rb06 sshd[15769]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:50:20 rb06 sshd[9548]: Failed password for invalid user global from 40.73.97.99 port 55666 ssh2 Aug 28 07:50:20 rb06 sshd[9548]: Received disconnect from 40.73.97.99: 11: Bye Bye [preauth] Aug 28 07:54:02 rb06 sshd[22132]: Failed password for invalid user postgres from 40.73.97.99 port 56660 ssh2 Aug 28 07:54:02 rb06 sshd[22132]: Received disconnect from 40.73.97......... -------------------------------	2019-08-28 15:32:39
61.219.143.205	attack	Aug 27 21:02:06 lcdev sshd\[28739\]: Invalid user sap from 61.219.143.205 Aug 27 21:02:06 lcdev sshd\[28739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-219-143-205.hinet-ip.hinet.net Aug 27 21:02:08 lcdev sshd\[28739\]: Failed password for invalid user sap from 61.219.143.205 port 36482 ssh2 Aug 27 21:06:40 lcdev sshd\[29167\]: Invalid user training from 61.219.143.205 Aug 27 21:06:40 lcdev sshd\[29167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-219-143-205.hinet-ip.hinet.net	2019-08-28 15:14:09

Recently Reported IPs

104.198.214.62	104.198.2.49	104.198.229.208	104.198.218.88
104.198.224.99	104.198.227.160	104.198.238.104	104.198.24.75
104.21.66.203	104.198.231.76	104.198.242.183	104.198.248.251
104.198.233.249	104.198.243.144	104.198.252.100	104.198.251.46
104.198.252.200	104.198.3.34	104.198.3.239	104.198.29.182