104.248.252.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.252.49	attack	$f2bV_matches	2020-09-16 03:04:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.252.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26133
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.252.2.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 14:21:57 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 2.252.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.252.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.77.147.95	attack	Sep 26 15:30:40 pkdns2 sshd\[40368\]: Invalid user www-admin from 51.77.147.95Sep 26 15:30:42 pkdns2 sshd\[40368\]: Failed password for invalid user www-admin from 51.77.147.95 port 40818 ssh2Sep 26 15:34:34 pkdns2 sshd\[40506\]: Invalid user fender from 51.77.147.95Sep 26 15:34:35 pkdns2 sshd\[40506\]: Failed password for invalid user fender from 51.77.147.95 port 55210 ssh2Sep 26 15:38:28 pkdns2 sshd\[40695\]: Invalid user ts3 from 51.77.147.95Sep 26 15:38:30 pkdns2 sshd\[40695\]: Failed password for invalid user ts3 from 51.77.147.95 port 41368 ssh2 ...	2019-09-26 23:31:19
139.59.84.111	attack	Sep 26 11:03:15 TORMINT sshd\[15185\]: Invalid user login from 139.59.84.111 Sep 26 11:03:15 TORMINT sshd\[15185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.84.111 Sep 26 11:03:17 TORMINT sshd\[15185\]: Failed password for invalid user login from 139.59.84.111 port 60610 ssh2 ...	2019-09-26 23:25:09
157.230.109.166	attackspambots	Sep 26 14:39:08 lnxded63 sshd[31420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166	2019-09-26 23:02:53
1.54.58.36	attackspambots	09/26/2019-16:43:39.309994 1.54.58.36 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 7	2019-09-26 23:05:14
96.224.254.240	attack	Sep 26 16:49:11 bouncer sshd\[12909\]: Invalid user 1990 from 96.224.254.240 port 59114 Sep 26 16:49:11 bouncer sshd\[12909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.224.254.240 Sep 26 16:49:14 bouncer sshd\[12909\]: Failed password for invalid user 1990 from 96.224.254.240 port 59114 ssh2 ...	2019-09-26 23:42:23
27.111.36.138	attackbotsspam	Sep 26 16:47:50 MK-Soft-VM6 sshd[10737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.111.36.138 Sep 26 16:47:53 MK-Soft-VM6 sshd[10737]: Failed password for invalid user I2b2hive from 27.111.36.138 port 50785 ssh2 ...	2019-09-26 23:09:35
211.195.12.33	attackbots	Sep 26 17:10:17 plex sshd[29915]: Invalid user tf from 211.195.12.33 port 59203	2019-09-26 23:26:00
200.72.249.139	attackspam	Sep 26 20:26:53 areeb-Workstation sshd[307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.72.249.139 Sep 26 20:26:55 areeb-Workstation sshd[307]: Failed password for invalid user dq from 200.72.249.139 port 56571 ssh2 ...	2019-09-26 23:01:37
103.1.251.42	attack	Sep 26 13:45:27 h2177944 kernel: \[2374603.990153\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.1.251.42 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=53 ID=52374 DF PROTO=TCP SPT=61349 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 26 14:15:54 h2177944 kernel: \[2376430.808691\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.1.251.42 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=72 ID=55509 DF PROTO=TCP SPT=63178 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 26 14:21:55 h2177944 kernel: \[2376792.365118\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.1.251.42 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=75 ID=38921 DF PROTO=TCP SPT=55443 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 26 14:35:51 h2177944 kernel: \[2377627.687886\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.1.251.42 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=67 ID=59930 DF PROTO=TCP SPT=63611 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 26 14:38:45 h2177944 kernel: \[2377801.772507\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=103.1.251.42 DST=85.214.117.9	2019-09-26 23:22:00
142.93.237.140	attackbotsspam	$f2bV_matches	2019-09-26 23:12:39
157.245.103.64	attackspambots	Sep 26 10:10:22 aat-srv002 sshd[13192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.103.64 Sep 26 10:10:25 aat-srv002 sshd[13192]: Failed password for invalid user cloud from 157.245.103.64 port 36600 ssh2 Sep 26 10:15:01 aat-srv002 sshd[13314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.103.64 Sep 26 10:15:03 aat-srv002 sshd[13314]: Failed password for invalid user ok from 157.245.103.64 port 49248 ssh2 ...	2019-09-26 23:23:05
103.1.251.10	attackbots	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-26 23:29:13
129.211.11.107	attackbots	Sep 26 05:27:28 sachi sshd\[17734\]: Invalid user vbox from 129.211.11.107 Sep 26 05:27:28 sachi sshd\[17734\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.11.107 Sep 26 05:27:29 sachi sshd\[17734\]: Failed password for invalid user vbox from 129.211.11.107 port 51359 ssh2 Sep 26 05:33:54 sachi sshd\[18291\]: Invalid user deploy from 129.211.11.107 Sep 26 05:33:54 sachi sshd\[18291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.11.107	2019-09-26 23:41:22
119.187.26.36	attackbotsspam	Sep 26 16:50:19 vps01 sshd[7676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.187.26.36 Sep 26 16:50:21 vps01 sshd[7676]: Failed password for invalid user user from 119.187.26.36 port 38880 ssh2	2019-09-26 23:33:58
222.186.175.140	attackbotsspam	Sep 26 16:40:02 MainVPS sshd[31938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Sep 26 16:40:03 MainVPS sshd[31938]: Failed password for root from 222.186.175.140 port 11308 ssh2 Sep 26 16:40:21 MainVPS sshd[31938]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 11308 ssh2 [preauth] Sep 26 16:40:02 MainVPS sshd[31938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Sep 26 16:40:03 MainVPS sshd[31938]: Failed password for root from 222.186.175.140 port 11308 ssh2 Sep 26 16:40:21 MainVPS sshd[31938]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 11308 ssh2 [preauth] Sep 26 16:40:35 MainVPS sshd[31972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Sep 26 16:40:36 MainVPS sshd[31972]: Failed password for root from 222.186.175.140 port	2019-09-26 23:30:52

Recently Reported IPs

109.206.182.57	109.206.182.63	104.248.255.233	104.248.27.111
104.248.3.136	104.248.3.176	109.207.79.218	109.208.222.158
104.248.3.74	104.248.35.17	104.248.39.57	104.248.42.65
104.248.43.31	109.226.5.156	109.226.34.84	104.248.44.242
104.248.45.149	109.228.38.195	109.228.39.56	109.228.38.227