204.42.253.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
204.42.253.132	attackbots	Tried our host z.	2020-09-13 23:49:10
204.42.253.132	attack	UDP 204.42.253.132:51774 -> port 1900, len 121	2020-09-13 15:40:04
204.42.253.132	attack	UDP 204.42.253.132:51774 -> port 1900, len 121	2020-09-13 07:25:16
204.42.253.130	attackspambots	Honeypot hit.	2020-09-01 22:07:50
204.42.253.132	attack	Port scan: Attack repeated for 24 hours	2020-08-24 08:10:08
204.42.253.130	attack	UDP 204.42.253.130:14235 -> port 161, len 66	2020-08-13 03:12:38
204.42.253.130	attackbotsspam	Honeypot hit.	2020-07-28 20:09:11
204.42.253.130	attackbotsspam	scan z	2020-03-25 19:16:46
204.42.253.132	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-02 22:29:09
204.42.253.130	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-26 23:35:15
204.42.253.130	attack	UTC: 2019-12-25 pkts: 2 port: 161/udp	2019-12-26 14:06:54
204.42.253.132	attackbots	scan z	2019-12-09 01:15:49
204.42.253.130	attack	Scanning random ports - tries to find possible vulnerable services	2019-12-04 06:01:04
204.42.253.132	attack	Honeypot hit.	2019-11-24 02:41:41
204.42.253.132	attackspambots	[portscan] udp/1900 [ssdp] *(RWIN=-)(11190859)	2019-11-19 19:58:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.42.253.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52489
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;204.42.253.2.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091502 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 12:49:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

2.253.42.204.in-addr.arpa domain name pointer www.openresolverproject.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.253.42.204.in-addr.arpa	name = www.openresolverproject.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.246.7.34	attackbotsspam	Dec 17 06:39:45 webserver postfix/smtpd\[18190\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 06:39:50 webserver postfix/smtpd\[17922\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 06:40:16 webserver postfix/smtpd\[17922\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 06:40:46 webserver postfix/smtpd\[17922\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 17 06:41:16 webserver postfix/smtpd\[17922\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-17 13:55:38
176.235.208.210	attack	Dec 17 00:14:44 plusreed sshd[20853]: Invalid user hashimoto01 from 176.235.208.210 ...	2019-12-17 13:26:00
189.212.126.244	attackspambots	Automatic report - Port Scan Attack	2019-12-17 13:48:12
218.92.0.172	attack	Dec 17 06:32:58 cp sshd[10037]: Failed password for root from 218.92.0.172 port 22548 ssh2 Dec 17 06:32:58 cp sshd[10037]: Failed password for root from 218.92.0.172 port 22548 ssh2	2019-12-17 13:36:02
185.183.120.29	attack	Dec 17 05:07:42 zeus sshd[5464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.183.120.29 Dec 17 05:07:44 zeus sshd[5464]: Failed password for invalid user alondra from 185.183.120.29 port 59394 ssh2 Dec 17 05:13:51 zeus sshd[5699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.183.120.29 Dec 17 05:13:53 zeus sshd[5699]: Failed password for invalid user yardy from 185.183.120.29 port 38656 ssh2	2019-12-17 13:50:42
172.241.112.83	attackbots	20 attempts against mh-misbehave-ban on comet.magehost.pro	2019-12-17 13:25:04
119.29.15.120	attackbotsspam	Dec 17 00:45:53 linuxvps sshd\[20552\]: Invalid user jariah from 119.29.15.120 Dec 17 00:45:53 linuxvps sshd\[20552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.15.120 Dec 17 00:45:55 linuxvps sshd\[20552\]: Failed password for invalid user jariah from 119.29.15.120 port 39374 ssh2 Dec 17 00:51:54 linuxvps sshd\[24406\]: Invalid user burega from 119.29.15.120 Dec 17 00:51:54 linuxvps sshd\[24406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.15.120	2019-12-17 13:52:32
103.141.137.39	attack	2019-12-17T05:55:44.406211www postfix/smtpd[23057]: warning: unknown[103.141.137.39]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-12-17T05:56:00.260723www postfix/smtpd[23057]: warning: unknown[103.141.137.39]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-12-17T05:56:13.387223www postfix/smtpd[23057]: warning: unknown[103.141.137.39]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-17 13:39:18
200.236.98.123	attackspambots	Automatic report - Port Scan Attack	2019-12-17 13:50:16
103.30.151.17	attackbots	Dec 16 19:11:35 auw2 sshd\[6209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.30.151.17 user=root Dec 16 19:11:37 auw2 sshd\[6209\]: Failed password for root from 103.30.151.17 port 17997 ssh2 Dec 16 19:19:27 auw2 sshd\[6989\]: Invalid user tonic from 103.30.151.17 Dec 16 19:19:27 auw2 sshd\[6989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.30.151.17 Dec 16 19:19:29 auw2 sshd\[6989\]: Failed password for invalid user tonic from 103.30.151.17 port 21842 ssh2	2019-12-17 13:46:51
40.92.4.28	attackbotsspam	Dec 17 07:56:04 debian-2gb-vpn-nbg1-1 kernel: [936932.019178] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.4.28 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=229 ID=40600 DF PROTO=TCP SPT=39747 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-17 13:44:54
200.87.178.137	attackbotsspam	Dec 17 06:17:57 cp sshd[1628]: Failed password for root from 200.87.178.137 port 51898 ssh2 Dec 17 06:17:57 cp sshd[1628]: Failed password for root from 200.87.178.137 port 51898 ssh2	2019-12-17 13:38:07
157.230.31.236	attack	Dec 17 08:36:18 server sshd\[15810\]: Invalid user gutberlet from 157.230.31.236 Dec 17 08:36:18 server sshd\[15810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 Dec 17 08:36:20 server sshd\[15810\]: Failed password for invalid user gutberlet from 157.230.31.236 port 50886 ssh2 Dec 17 08:41:25 server sshd\[17150\]: Invalid user eppler from 157.230.31.236 Dec 17 08:41:25 server sshd\[17150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 ...	2019-12-17 13:54:39
84.48.9.252	attackspambots	Unauthorized connection attempt detected from IP address 84.48.9.252 to port 445	2019-12-17 13:36:14
115.240.192.131	attackspambots	1576558592 - 12/17/2019 05:56:32 Host: 115.240.192.131/115.240.192.131 Port: 445 TCP Blocked	2019-12-17 13:23:59

Recently Reported IPs

179.160.20.136	168.205.217.255	37.44.238.118	35.222.0.70
23.229.122.172	35.89.49.79	201.159.20.108	124.247.186.226
38.10.250.10	71.6.233.107	107.150.52.86	170.187.185.66
31.210.22.186	47.112.204.140	159.203.13.48	175.171.3.17
194.104.128.174	5.183.255.82	77.220.193.27	1.245.157.22