204.252.40.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.252.40.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5557
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;204.252.40.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 16:24:35 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 2.40.252.204.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.40.252.204.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.161.30.230	attackspambots	Constant Spam	2020-09-10 14:08:35
62.82.75.58	attackspambots	Sep 9 20:00:49 auw2 sshd\[30289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.82.75.58 user=root Sep 9 20:00:52 auw2 sshd\[30289\]: Failed password for root from 62.82.75.58 port 27821 ssh2 Sep 9 20:04:48 auw2 sshd\[30522\]: Invalid user ubuntu from 62.82.75.58 Sep 9 20:04:48 auw2 sshd\[30522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.82.75.58 Sep 9 20:04:50 auw2 sshd\[30522\]: Failed password for invalid user ubuntu from 62.82.75.58 port 2685 ssh2	2020-09-10 14:08:23
218.92.0.211	attack	$f2bV_matches	2020-09-10 13:56:10
85.99.207.44	attack	Unauthorized connection attempt from IP address 85.99.207.44 on Port 445(SMB)	2020-09-10 14:10:14
222.186.30.57	attackspambots	Sep 10 06:32:48 IngegnereFirenze sshd[27537]: User root from 222.186.30.57 not allowed because not listed in AllowUsers ...	2020-09-10 14:33:26
112.21.188.250	attackspambots	Sep 9 23:55:23 myvps sshd[8081]: Failed password for root from 112.21.188.250 port 43128 ssh2 Sep 10 00:07:48 myvps sshd[24740]: Failed password for root from 112.21.188.250 port 47554 ssh2 ...	2020-09-10 13:54:42
219.131.243.205	attackspam	Unauthorised access (Sep 9) SRC=219.131.243.205 LEN=44 TTL=242 ID=1450 TCP DPT=1433 WINDOW=1024 SYN	2020-09-10 14:28:16
128.199.110.234	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: 64-scan-andrew.foma-gmail.com.	2020-09-10 14:27:11
200.162.216.152	attack	1599670544 - 09/09/2020 18:55:44 Host: 200.162.216.152/200.162.216.152 Port: 445 TCP Blocked	2020-09-10 14:17:30
185.247.224.61	attack	Sep 10 07:43:31 hell sshd[7254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.247.224.61 Sep 10 07:43:33 hell sshd[7254]: Failed password for invalid user admin from 185.247.224.61 port 52234 ssh2 ...	2020-09-10 13:59:41
118.24.80.229	attack	$f2bV_matches	2020-09-10 13:57:04
163.172.178.167	attackspam	Sep 10 03:43:53 game-panel sshd[1482]: Failed password for root from 163.172.178.167 port 34818 ssh2 Sep 10 03:47:28 game-panel sshd[1615]: Failed password for root from 163.172.178.167 port 40064 ssh2	2020-09-10 13:54:26
103.147.10.222	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-10 14:09:15
139.162.106.181	attackbotsspam	srvr3: (mod_security) mod_security (id:920350) triggered by 139.162.106.181 (US/United States/scan-67.security.ipip.net): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/10 02:24:05 [error] 277189#0: 1327 [client 139.162.106.181] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159969744587.159482"] [ref "o0,11v21,11"], client: 139.162.106.181, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-10 14:07:53
134.122.112.200	attack	Sep 9 23:32:59 localhost sshd[45630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.200 user=root Sep 9 23:33:01 localhost sshd[45630]: Failed password for root from 134.122.112.200 port 44484 ssh2 Sep 9 23:36:36 localhost sshd[45959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.200 user=root Sep 9 23:36:37 localhost sshd[45959]: Failed password for root from 134.122.112.200 port 50468 ssh2 Sep 9 23:40:04 localhost sshd[46261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.200 user=root Sep 9 23:40:07 localhost sshd[46261]: Failed password for root from 134.122.112.200 port 56456 ssh2 ...	2020-09-10 14:14:03

Recently Reported IPs

130.221.86.4	213.73.220.27	31.210.174.49	156.110.83.43
137.51.155.172	181.226.63.154	177.124.4.179	13.150.11.225
159.196.23.230	119.79.194.120	25.3.252.149	47.169.192.201
50.181.249.71	223.38.33.146	233.118.167.88	36.39.128.81
237.115.172.90	155.192.167.190	169.242.174.8	248.245.186.198