172.245.21.30 - IPInfo

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.245.214.35	attackbots	Hi, Hi, The IP 172.245.214.35 has just been banned by after 5 attempts against postfix. Here is more information about 172.245.214.35 : ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=172.245.214.35	2020-09-24 05:15:18
172.245.214.38	attackbots	Hi, Hi, The IP 172.245.214.38 has just been banned by after 5 attempts against postfix. Here is more information about 172.245.214.38 : ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=172.245.214.38	2020-09-24 05:09:18
172.245.21.154	attackbotsspam	Brute forcing email accounts	2020-06-25 16:52:02
172.245.21.198	attack	2020-05-06T14:14:46.181409struts4.enskede.local sshd\[10339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.21.198 user=root 2020-05-06T14:14:49.178789struts4.enskede.local sshd\[10339\]: Failed password for root from 172.245.21.198 port 43738 ssh2 2020-05-06T14:14:50.515779struts4.enskede.local sshd\[10342\]: Invalid user admin from 172.245.21.198 port 51586 2020-05-06T14:14:50.521930struts4.enskede.local sshd\[10342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.21.198 2020-05-06T14:14:52.841933struts4.enskede.local sshd\[10342\]: Failed password for invalid user admin from 172.245.21.198 port 51586 ssh2 ...	2020-05-06 21:22:55
172.245.21.216	attack	Spam detected 2020.04.03 15:21:17 blocked until 2020.04.28 11:52:40	2020-04-03 22:25:37
172.245.217.68	attackspambots	B: File scanning	2020-02-22 19:12:50
172.245.214.174	attackspam	(From eric@talkwithcustomer.com) Hey, You have a website frostchiropractic.com, right? Of course you do. I am looking at your website now. It gets traffic every day – that you’re probably spending $2 / $4 / $10 or more a click to get. Not including all of the work you put into creating social media, videos, blog posts, emails, and so on. So you’re investing seriously in getting people to that site. But how’s it working? Great? Okay? Not so much? If that answer could be better, then it’s likely you’re putting a lot of time, effort, and money into an approach that’s not paying off like it should. Now… imagine doubling your lead conversion in just minutes… In fact, I’ll go even better. You could actually get up to 100X more conversions! I’m not making this up. As Chris Smith, best-selling author of The Conversion Code says: Speed is essential - there is a 100x decrease in Leads when a Lead is contacted within 14 minutes vs being contacted within 5 minutes. He’s backed up by a s	2019-11-04 17:50:23
172.245.211.243	attack	Automatic report - XMLRPC Attack	2019-10-20 22:14:48
172.245.211.186	attackspambots	\[2019-08-23 14:25:18\] NOTICE\[1829\] chan_sip.c: Registration from '"5126" \' failed for '172.245.211.186:5498' - Wrong password \[2019-08-23 14:25:18\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-23T14:25:18.470-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5126",SessionID="0x7f7b301c17c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/172.245.211.186/5498",Challenge="06c064cc",ReceivedChallenge="06c064cc",ReceivedHash="6bfd4396a5e891f37fab46f33988f324" \[2019-08-23 14:25:18\] NOTICE\[1829\] chan_sip.c: Registration from '"5126" \' failed for '172.245.211.186:5498' - Wrong password \[2019-08-23 14:25:18\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-23T14:25:18.545-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5126",SessionID="0x7f7b302cefa8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="I	2019-08-24 02:44:13
172.245.211.186	attackbots	\[2019-08-22 18:53:33\] NOTICE\[1829\] chan_sip.c: Registration from '"4125" \' failed for '172.245.211.186:5365' - Wrong password \[2019-08-22 18:53:33\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-22T18:53:33.758-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4125",SessionID="0x7f7b30c89f28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/172.245.211.186/5365",Challenge="00d2a64a",ReceivedChallenge="00d2a64a",ReceivedHash="ff4619f22ba0a59775c04307fd3572b9" \[2019-08-22 18:53:33\] NOTICE\[1829\] chan_sip.c: Registration from '"4125" \' failed for '172.245.211.186:5365' - Wrong password \[2019-08-22 18:53:33\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-22T18:53:33.836-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4125",SessionID="0x7f7b30613808",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="I	2019-08-23 07:08:30
172.245.211.247	attackspam	(From eric@talkwithcustomer.com) Hello purdychiropractic.com, People ask, “why does TalkWithCustomer work so well?” It’s simple. TalkWithCustomer enables you to connect with a prospective customer at EXACTLY the Perfect Time. - NOT one week, two weeks, three weeks after they’ve checked out your website purdychiropractic.com. - NOT with a form letter style email that looks like it was written by a bot. - NOT with a robocall that could come at any time out of the blue. TalkWithCustomer connects you to that person within seconds of THEM asking to hear from YOU. They kick off the conversation. They take that first step. They ask to hear from you regarding what you have to offer and how it can make their life better. And it happens almost immediately. In real time. While they’re still looking over your website purdychiropractic.com, trying to make up their mind whether you are right for them. When you connect with them at that very moment it’s the ultimate in Perfect Timing – as on	2019-07-10 22:44:05

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       172.245.0.0 - 172.245.255.255
CIDR:           172.245.0.0/16
NetName:        CC-14
NetHandle:      NET-172-245-0-0-1
Parent:         NET172 (NET-172-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   HostPapa (HOSTP-7)
RegDate:        2013-04-22
Updated:        2024-02-02
Comment:        Geofeed https://geofeeds.oniaas.io/geofeeds.csv
Ref:            https://rdap.arin.net/registry/ip/172.245.0.0



OrgName:        HostPapa
OrgId:          HOSTP-7
Address:        325 Delaware Avenue
Address:        Suite 300
City:           Buffalo
StateProv:      NY
PostalCode:     14202
Country:        US
RegDate:        2016-06-06
Updated:        2025-10-05
Ref:            https://rdap.arin.net/registry/entity/HOSTP-7


OrgTechHandle: NETTE9-ARIN
OrgTechName:   NETTECH
OrgTechPhone:  +1-905-315-3455 
OrgTechEmail:  net-tech-global@hostpapa.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NETTE9-ARIN

OrgAbuseHandle: NETAB23-ARIN
OrgAbuseName:   NETABUSE
OrgAbusePhone:  +1-905-315-3455 
OrgAbuseEmail:  net-abuse-global@hostpapa.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/NETAB23-ARIN

RTechHandle: NETTE11-ARIN
RTechName:   NETTECH-COLOCROSSING
RTechPhone:  +1-800-518-9716 
RTechEmail:  support@colocrossing.com
RTechRef:    https://rdap.arin.net/registry/entity/NETTE11-ARIN

RAbuseHandle: NETAB27-ARIN
RAbuseName:   NETABUSE-COLOCROSSING
RAbusePhone:  +1-800-518-9716 
RAbuseEmail:  abuse@colocrossing.com
RAbuseRef:    https://rdap.arin.net/registry/entity/NETAB27-ARIN

# end


# start

NetRange:       172.245.21.0 - 172.245.21.31
CIDR:           172.245.21.0/27
NetName:        CC-172-245-21-0-27
NetHandle:      NET-172-245-21-0-1
Parent:         CC-14 (NET-172-245-0-0-1)
NetType:        Reassigned
OriginAS:       
Organization:   RackNerd LLC (RL-872)
RegDate:        2023-08-17
Updated:        2023-08-17
Ref:            https://rdap.arin.net/registry/ip/172.245.21.0


OrgName:        RackNerd LLC
OrgId:          RL-872
Address:        10602 N. Trademark Pkwy Suite 511
City:           Rancho Cucamonga
StateProv:      CA
PostalCode:     91730
Country:        US
RegDate:        2021-10-20
Updated:        2022-03-02
Comment:        https://www.racknerd.com
Comment:        Support is available 24x7 at support@racknerd.com
Comment:        Report abuse to: reportabuse@racknerd.com
Ref:            https://rdap.arin.net/registry/entity/RL-872


OrgTechHandle: RACKN3-ARIN
OrgTechName:   RackNerd NOC
OrgTechPhone:  +1-888-881-6373 
OrgTechEmail:  support@racknerd.com
OrgTechRef:    https://rdap.arin.net/registry/entity/RACKN3-ARIN

OrgAbuseHandle: RAD128-ARIN
OrgAbuseName:   RackNerd Abuse Department
OrgAbusePhone:  +1-888-881-6373 
OrgAbuseEmail:  reportabuse@racknerd.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/RAD128-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.245.21.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23117
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.245.21.30.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026030801 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 08:00:32 CST 2026
;; MSG SIZE  rcvd: 106

Host info

30.21.245.172.in-addr.arpa domain name pointer 172-245-21-30-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
30.21.245.172.in-addr.arpa	name = 172-245-21-30-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.209.72.151	attackspambots	Honeypot attack, port: 4567, PTR: PTR record not found	2020-03-05 17:26:37
123.56.110.239	attackspam	Unauthorised access (Mar 5) SRC=123.56.110.239 LEN=40 TTL=239 ID=21911 TCP DPT=1433 WINDOW=1024 SYN	2020-03-05 17:26:52
97.116.6.252	attackbotsspam	Honeypot attack, port: 81, PTR: 97-116-6-252.mpls.qwest.net.	2020-03-05 17:12:28
51.91.122.150	attack	Mar 5 09:59:36 ns381471 sshd[26425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.122.150 Mar 5 09:59:37 ns381471 sshd[26425]: Failed password for invalid user dan from 51.91.122.150 port 50154 ssh2	2020-03-05 17:29:21
185.4.153.108	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-05 17:46:23
103.193.174.234	attack	Mar 5 09:38:34 v22018076622670303 sshd\[18135\]: Invalid user chef from 103.193.174.234 port 41366 Mar 5 09:38:34 v22018076622670303 sshd\[18135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.193.174.234 Mar 5 09:38:36 v22018076622670303 sshd\[18135\]: Failed password for invalid user chef from 103.193.174.234 port 41366 ssh2 ...	2020-03-05 17:26:15
223.71.167.164	attack	[portscan] tcp/21 [FTP] [IPBX probe: SIP RTP=tcp/554] [scan/connect: 2 time(s)] *(RWIN=29200)(03051213)	2020-03-05 17:49:49
121.241.244.92	attack	Mar 5 09:38:05 hcbbdb sshd\[24316\]: Invalid user laravel from 121.241.244.92 Mar 5 09:38:05 hcbbdb sshd\[24316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92 Mar 5 09:38:08 hcbbdb sshd\[24316\]: Failed password for invalid user laravel from 121.241.244.92 port 39381 ssh2 Mar 5 09:46:36 hcbbdb sshd\[25169\]: Invalid user kiban01 from 121.241.244.92 Mar 5 09:46:36 hcbbdb sshd\[25169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.241.244.92	2020-03-05 17:51:41
176.197.143.6	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-05 17:25:29
118.69.32.169	attack	1583383746 - 03/05/2020 05:49:06 Host: 118.69.32.169/118.69.32.169 Port: 445 TCP Blocked	2020-03-05 17:32:25
159.89.3.172	attackbots	Mar 5 10:07:22 silence02 sshd[27058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.3.172 Mar 5 10:07:24 silence02 sshd[27058]: Failed password for invalid user gerrit2 from 159.89.3.172 port 49884 ssh2 Mar 5 10:12:05 silence02 sshd[27327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.3.172	2020-03-05 17:13:53
51.254.97.25	attackspam	Mar 5 08:14:19 lnxded64 sshd[29263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.97.25	2020-03-05 17:20:18
92.63.194.106	attack	Mar 5 10:09:46 ewelt sshd[14712]: Invalid user guest from 92.63.194.106 port 43391 Mar 5 10:09:46 ewelt sshd[14712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.106 Mar 5 10:09:46 ewelt sshd[14712]: Invalid user guest from 92.63.194.106 port 43391 Mar 5 10:09:48 ewelt sshd[14712]: Failed password for invalid user guest from 92.63.194.106 port 43391 ssh2 ...	2020-03-05 17:13:03
201.122.221.164	attackspam	Honeypot attack, port: 445, PTR: dsl-201-122-221-164-sta.prod-empresarial.com.mx.	2020-03-05 17:31:32
189.148.129.59	attack	189.148.129.59 - - [05/Mar/2020:10:01:56 +0800] "GET / HTTP/1.0" 404 146 "-" "-" "-"	2020-03-05 17:19:44

Recently Reported IPs

112.124.66.28	178.128.250.218	147.45.60.22	47.92.242.192
38.76.203.231	147.185.132.200	51.37.33.161	64.43.50.71
109.78.28.116	109.78.183.120	49.212.155.17	102.37.153.79
109.78.245.229	36.159.95.166	100.33.13.105	185.148.37.4
151.19.185.35	10.20.62.249	154.23.243.12	34.79.198.196