117.252.64.204

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.252.64.130	attackspam	(imapd) Failed IMAP login from 117.252.64.130 (IN/India/-): 1 in the last 3600 secs	2020-08-01 12:41:28
117.252.64.207	attack	Apr 8 14:22:29 mxgate1 postfix/postscreen[4121]: CONNECT from [117.252.64.207]:45268 to [176.31.12.44]:25 Apr 8 14:22:30 mxgate1 postfix/dnsblog[4300]: addr 117.252.64.207 listed by domain bl.spamcop.net as 127.0.0.2 Apr 8 14:22:30 mxgate1 postfix/dnsblog[4301]: addr 117.252.64.207 listed by domain cbl.abuseat.org as 127.0.0.2 Apr 8 14:22:30 mxgate1 postfix/dnsblog[4302]: addr 117.252.64.207 listed by domain b.barracudacentral.org as 127.0.0.2 Apr 8 14:22:35 mxgate1 postfix/postscreen[4121]: DNSBL rank 3 for [117.252.64.207]:45268 Apr 8 14:22:37 mxgate1 postfix/tlsproxy[4384]: CONNECT from [117.252.64.207]:45268 Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.252.64.207	2020-04-08 21:42:16
117.252.64.2	attackbotsspam	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 03:02:08
117.252.64.62	attackspambots	8080/tcp [2019-07-24]1pkt	2019-07-25 04:26:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.252.64.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14604
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.252.64.204.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 20:53:08 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 204.64.252.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.64.252.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.181.12	attackbots	Aug 1 12:59:49 [host] kernel: [1946758.550258] [U Aug 1 13:02:13 [host] kernel: [1946902.607763] [U Aug 1 13:04:13 [host] kernel: [1947022.712331] [U Aug 1 13:05:47 [host] kernel: [1947116.631307] [U Aug 1 13:18:08 [host] kernel: [1947857.591404] [U Aug 1 13:21:15 [host] kernel: [1948044.420835] [U	2020-08-01 19:37:16
128.199.95.60	attack	Brute-force attempt banned	2020-08-01 19:40:12
36.90.31.225	attack	Unauthorized connection attempt from IP address 36.90.31.225 on Port 445(SMB)	2020-08-01 20:13:31
188.166.77.159	attackbots	Fail2Ban Ban Triggered	2020-08-01 19:51:05
106.8.167.47	attackspambots	2020-08-01 05:46:23 SMTP protocol error in "AUTH LOGIN" H=$Xr9c0p$ \[106.8.167.47\]:1282 I=\[193.107.88.166\]:25 AUTH command used when not advertised 2020-08-01 05:46:24 SMTP protocol error in "AUTH LOGIN" H=$p90V56$ \[106.8.167.47\]:1617 I=\[193.107.88.166\]:25 AUTH command used when not advertised 2020-08-01 05:46:25 SMTP protocol error in "AUTH LOGIN" H=$3ngM8ckRMg$ \[106.8.167.47\]:1728 I=\[193.107.88.166\]:25 AUTH command used when not advertised ...	2020-08-01 19:58:30
129.204.186.151	attackspam	Aug 1 12:29:24 ns382633 sshd\[7645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.186.151 user=root Aug 1 12:29:25 ns382633 sshd\[7645\]: Failed password for root from 129.204.186.151 port 40688 ssh2 Aug 1 12:41:16 ns382633 sshd\[10247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.186.151 user=root Aug 1 12:41:17 ns382633 sshd\[10247\]: Failed password for root from 129.204.186.151 port 53022 ssh2 Aug 1 12:47:09 ns382633 sshd\[11237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.186.151 user=root	2020-08-01 19:55:18
164.155.93.4	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-01 19:38:36
134.209.235.106	attackspam	Flask-IPban - exploit URL requested:/wp-login.php	2020-08-01 19:59:40
139.198.122.19	attackspam	Invalid user ogami from 139.198.122.19 port 47256	2020-08-01 20:02:23
103.85.66.122	attack	Lines containing failures of 103.85.66.122 Jul 31 07:02:56 shared09 sshd[23449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.85.66.122 user=r.r Jul 31 07:02:58 shared09 sshd[23449]: Failed password for r.r from 103.85.66.122 port 32942 ssh2 Jul 31 07:02:58 shared09 sshd[23449]: Received disconnect from 103.85.66.122 port 32942:11: Bye Bye [preauth] Jul 31 07:02:58 shared09 sshd[23449]: Disconnected from authenticating user r.r 103.85.66.122 port 32942 [preauth] Jul 31 07:16:36 shared09 sshd[28037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.85.66.122 user=r.r Jul 31 07:16:38 shared09 sshd[28037]: Failed password for r.r from 103.85.66.122 port 60248 ssh2 Jul 31 07:16:38 shared09 sshd[28037]: Received disconnect from 103.85.66.122 port 60248:11: Bye Bye [preauth] Jul 31 07:16:38 shared09 sshd[28037]: Disconnected from authenticating user r.r 103.85.66.122 port 60248 [preauth........ ------------------------------	2020-08-01 19:42:43
51.158.98.224	attack	2020-07-29 08:02:45,285 fail2ban.actions [18606]: NOTICE [sshd] Ban 51.158.98.224 2020-07-29 08:20:39,409 fail2ban.actions [18606]: NOTICE [sshd] Ban 51.158.98.224 2020-07-29 08:38:00,194 fail2ban.actions [18606]: NOTICE [sshd] Ban 51.158.98.224 2020-07-29 08:55:22,486 fail2ban.actions [18606]: NOTICE [sshd] Ban 51.158.98.224 2020-07-29 09:13:22,182 fail2ban.actions [18606]: NOTICE [sshd] Ban 51.158.98.224 ...	2020-08-01 19:56:00
176.51.112.242	attackbotsspam	$f2bV_matches	2020-08-01 20:12:46
70.27.124.45	attackbots	Automatic report - Port Scan Attack	2020-08-01 19:55:39
113.21.115.143	attack	$f2bV_matches	2020-08-01 19:49:06
165.3.86.32	attackbotsspam	2020-08-01T09:59:15.292974+02:00 lumpi kernel: [21558359.750715] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=165.3.86.32 DST=78.46.199.189 LEN=48 TOS=0x00 PREC=0x00 TTL=116 ID=21262 DF PROTO=TCP SPT=28420 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ...	2020-08-01 19:33:23

Recently Reported IPs

117.252.64.199	117.252.64.197	117.252.64.206	117.252.64.174
114.219.79.97	117.252.64.194	117.252.64.210	117.252.64.215
117.252.64.224	117.252.64.222	117.252.64.216	117.252.64.226
117.252.64.218	117.252.64.221	117.252.64.232	117.252.64.228
114.219.84.100	117.252.64.237	117.252.64.23	117.252.64.238