173.249.30.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
173.249.30.147	attackbots	Excessive crawling : exceed crawl-delay defined in robots.txt	2020-08-11 00:46:17
173.249.30.84	attackspambots	run attacks on the service SSH	2020-04-23 06:38:18
173.249.30.204	attackspam	Unauthorized admin access - /admin/	2020-04-10 08:46:00
173.249.30.85	attack	Looking for resource vulnerabilities	2019-07-19 16:10:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 173.249.30.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56524
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;173.249.30.52.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091502 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 03:45:11 CST 2022
;; MSG SIZE  rcvd: 106

Host info

52.30.249.173.in-addr.arpa domain name pointer -.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.30.249.173.in-addr.arpa	name = -.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.238.112.142	attackbots	Sep 5 00:27:59 archiv sshd[31911]: Invalid user pi from 94.238.112.142 port 55430 Sep 5 00:27:59 archiv sshd[31910]: Invalid user pi from 94.238.112.142 port 55424 Sep 5 00:27:59 archiv sshd[31911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-238-112-142.abo.bbox.fr Sep 5 00:27:59 archiv sshd[31910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-238-112-142.abo.bbox.fr Sep 5 00:28:01 archiv sshd[31910]: Failed password for invalid user pi from 94.238.112.142 port 55424 ssh2 Sep 5 00:28:01 archiv sshd[31911]: Failed password for invalid user pi from 94.238.112.142 port 55430 ssh2 Sep 5 00:28:01 archiv sshd[31910]: Connection closed by 94.238.112.142 port 55424 [preauth] Sep 5 00:28:01 archiv sshd[31911]: Connection closed by 94.238.112.142 port 55430 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.238.112.142	2019-09-05 13:50:18
188.19.116.220	attack	Sep 5 11:17:11 areeb-Workstation sshd[24294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.19.116.220 Sep 5 11:17:12 areeb-Workstation sshd[24294]: Failed password for invalid user 123 from 188.19.116.220 port 51606 ssh2 ...	2019-09-05 13:59:36
90.45.254.108	attackbots	Sep 5 07:00:24 icinga sshd[24605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.45.254.108 Sep 5 07:00:27 icinga sshd[24605]: Failed password for invalid user 123456 from 90.45.254.108 port 56480 ssh2 ...	2019-09-05 13:02:42
218.98.40.133	attack	Sep 4 18:49:53 friendsofhawaii sshd\[29840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.133 user=root Sep 4 18:49:55 friendsofhawaii sshd\[29840\]: Failed password for root from 218.98.40.133 port 60977 ssh2 Sep 4 18:50:01 friendsofhawaii sshd\[29850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.133 user=root Sep 4 18:50:02 friendsofhawaii sshd\[29850\]: Failed password for root from 218.98.40.133 port 18582 ssh2 Sep 4 18:50:08 friendsofhawaii sshd\[29867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.133 user=root	2019-09-05 13:11:01
27.159.220.138	attackbots	$f2bV_matches	2019-09-05 13:07:57
110.4.45.222	attack	fail2ban honeypot	2019-09-05 13:08:57
106.52.185.236	attackbotsspam	Sep 5 00:14:37 xxxxxxx0 sshd[12073]: Invalid user sinusbot from 106.52.185.236 port 45396 Sep 5 00:14:37 xxxxxxx0 sshd[12073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.185.236 Sep 5 00:14:39 xxxxxxx0 sshd[12073]: Failed password for invalid user sinusbot from 106.52.185.236 port 45396 ssh2 Sep 5 00:28:46 xxxxxxx0 sshd[17345]: Invalid user test from 106.52.185.236 port 40322 Sep 5 00:28:46 xxxxxxx0 sshd[17345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.185.236 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.52.185.236	2019-09-05 13:56:55
190.80.96.134	attack	Lines containing failures of 190.80.96.134 Sep 5 00:19:57 ks3370873 postfix/smtpd[29623]: connect from unknown[190.80.96.134] Sep x@x Sep 5 00:19:58 ks3370873 postfix/smtpd[29623]: lost connection after DATA from unknown[190.80.96.134] Sep 5 00:19:58 ks3370873 postfix/smtpd[29623]: disconnect from unknown[190.80.96.134] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.80.96.134	2019-09-05 13:03:21
190.117.50.30	attackbotsspam	Lines containing failures of 190.117.50.30 Sep 5 00:17:46 hal postfix/smtpd[3622]: connect from unknown[190.117.50.30] Sep 5 00:17:47 hal postfix/policy-spf[3624]: Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=paco.yepes%40godelia.org;ip=190.117.50.30;r=hal.godelia.org Sep x@x Sep 5 00:17:47 hal postfix/smtpd[3622]: lost connection after DATA from unknown[190.117.50.30] Sep 5 00:17:47 hal postfix/smtpd[3622]: disconnect from unknown[190.117.50.30] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 Sep 5 00:18:08 hal postfix/smtpd[3622]: connect from unknown[190.117.50.30] Sep 5 00:18:08 hal postfix/policy-spf[3624]: Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=paco.yepes%40godelia.org;ip=190.117.50.30;r=hal.godelia.org Sep x@x Sep 5 00:18:09 hal postfix/smtpd[3622]: lost connection after DATA from unknown[190.117.50.30] Sep 5 00:18:09 hal postfix/smtpd[3622]: disconnect from unknown[190.117.50.30] ehlo=1 mail=1 rcpt=0/1 data=0........ ------------------------------	2019-09-05 13:01:39
117.50.46.36	attack	Sep 5 02:45:45 yabzik sshd[30955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.46.36 Sep 5 02:45:46 yabzik sshd[30955]: Failed password for invalid user kv from 117.50.46.36 port 38326 ssh2 Sep 5 02:50:15 yabzik sshd[32498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.46.36	2019-09-05 13:40:08
222.240.1.0	attack	$f2bV_matches	2019-09-05 13:16:44
92.119.160.247	attackspambots	Unauthorised access (Sep 5) SRC=92.119.160.247 LEN=40 TTL=247 ID=18934 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Sep 3) SRC=92.119.160.247 LEN=40 TTL=247 ID=29692 TCP DPT=3389 WINDOW=1024 SYN	2019-09-05 13:04:30
114.67.66.199	attackbots	2019-09-05T04:43:16.791708abusebot-3.cloudsearch.cf sshd\[18002\]: Invalid user plex from 114.67.66.199 port 39780	2019-09-05 13:13:17
158.69.63.54	attack	Sep 5 09:43:19 webhost01 sshd[5240]: Failed password for root from 158.69.63.54 port 40974 ssh2 Sep 5 09:43:34 webhost01 sshd[5240]: error: maximum authentication attempts exceeded for root from 158.69.63.54 port 40974 ssh2 [preauth] ...	2019-09-05 13:24:42
37.119.230.22	attackspam	$f2bV_matches	2019-09-05 13:07:37

Recently Reported IPs

175.115.120.7	174.110.184.83	99.242.206.67	49.51.27.156
35.233.246.35	123.117.78.121	128.90.173.208	103.155.156.117
87.221.49.213	185.30.32.86	175.11.170.131	175.176.26.155
175.182.24.24	175.117.45.151	91.202.5.117	128.90.180.105
146.59.92.87	159.203.83.167	123.117.79.105	172.104.149.45