214.104.30.252

Basic Info

City: Newark

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.104.30.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35603
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;214.104.30.252.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070100 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 01 11:39:42 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 252.30.104.214.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 252.30.104.214.in-addr.arpa.: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.227.8.141	attackspam	(sshd) Failed SSH login from 120.227.8.141 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 13:14:35 server4 sshd[19930]: Invalid user testuser from 120.227.8.141 Oct 11 13:14:35 server4 sshd[19930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.227.8.141 Oct 11 13:14:37 server4 sshd[19930]: Failed password for invalid user testuser from 120.227.8.141 port 60564 ssh2 Oct 11 13:19:21 server4 sshd[22839]: Invalid user testuser from 120.227.8.141 Oct 11 13:19:21 server4 sshd[22839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.227.8.141	2020-10-12 03:08:07
104.236.182.223	attack	SSH Brute-Forcing (server1)	2020-10-12 02:49:34
104.41.37.112	attackbots	Oct 11 19:00:53 gospond sshd[28255]: Failed password for root from 104.41.37.112 port 38904 ssh2 Oct 11 19:03:53 gospond sshd[28291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.41.37.112 user=root Oct 11 19:03:56 gospond sshd[28291]: Failed password for root from 104.41.37.112 port 53876 ssh2 ...	2020-10-12 03:02:43
59.126.121.9	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-12 02:59:47
36.67.204.214	attackspam	Automatic report - Banned IP Access	2020-10-12 03:08:45
117.58.152.238	attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-10-12 02:41:49
35.205.219.55	attackbotsspam	srvr2: (mod_security) mod_security (id:920350) triggered by 35.205.219.55 (BE/-/55.219.205.35.bc.googleusercontent.com): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/11 15:44:46 [error] 219667#0: 47663 [client 35.205.219.55] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160242388653.025440"] [ref "o0,12v21,12"], client: 35.205.219.55, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-12 02:46:08
157.245.101.31	attackspam	2020-10-11T17:31:22.372640cyberdyne sshd[399557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.101.31 user=root 2020-10-11T17:31:24.423106cyberdyne sshd[399557]: Failed password for root from 157.245.101.31 port 58756 ssh2 2020-10-11T17:35:31.218209cyberdyne sshd[400736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.101.31 user=root 2020-10-11T17:35:32.786630cyberdyne sshd[400736]: Failed password for root from 157.245.101.31 port 34304 ssh2 ...	2020-10-12 03:05:02
118.89.153.180	attack	2020-10-11T23:21:17.712257hostname sshd[11932]: Invalid user pgsql from 118.89.153.180 port 58092 2020-10-11T23:21:20.319573hostname sshd[11932]: Failed password for invalid user pgsql from 118.89.153.180 port 58092 ssh2 2020-10-11T23:25:08.838158hostname sshd[13406]: Invalid user snelson from 118.89.153.180 port 49588 ...	2020-10-12 02:53:21
112.15.38.248	attackspambots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-10-12 02:34:45
163.172.32.190	attackspambots	163.172.32.190 - - [11/Oct/2020:19:39:51 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.32.190 - - [11/Oct/2020:19:39:51 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.32.190 - - [11/Oct/2020:19:39:51 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.32.190 - - [11/Oct/2020:19:39:52 +0200] "POST /wp-login.php HTTP/1.1" 200 2672 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.32.190 - - [11/Oct/2020:19:39:52 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.32.190 - - [11/Oct/2020:19:39:57 +0200] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-10-12 02:39:35
122.97.130.196	attackspam	2020-10-11T11:55:08.852324hostname sshd[21966]: Failed password for root from 122.97.130.196 port 54151 ssh2 ...	2020-10-12 02:38:33
120.85.60.196	attack	Oct 11 01:36:19 r.ca sshd[1834]: Failed password for invalid user cpanel from 120.85.60.196 port 32627 ssh2	2020-10-12 02:38:46
51.83.74.203	attackbots	2020-10-11T18:25:54.895543dmca.cloudsearch.cf sshd[27689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.ip-51-83-74.eu user=root 2020-10-11T18:25:56.591248dmca.cloudsearch.cf sshd[27689]: Failed password for root from 51.83.74.203 port 45972 ssh2 2020-10-11T18:30:55.435084dmca.cloudsearch.cf sshd[27900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.ip-51-83-74.eu user=root 2020-10-11T18:30:56.770289dmca.cloudsearch.cf sshd[27900]: Failed password for root from 51.83.74.203 port 47249 ssh2 2020-10-11T18:34:15.890121dmca.cloudsearch.cf sshd[27928]: Invalid user thom from 51.83.74.203 port 48537 2020-10-11T18:34:15.895603dmca.cloudsearch.cf sshd[27928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.ip-51-83-74.eu 2020-10-11T18:34:15.890121dmca.cloudsearch.cf sshd[27928]: Invalid user thom from 51.83.74.203 port 48537 2020-10-11T18:34:17.685943dmca.c ...	2020-10-12 02:44:53
106.13.29.92	attack	Oct 11 20:46:26 host1 sshd[1939991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.92 user=root Oct 11 20:46:28 host1 sshd[1939991]: Failed password for root from 106.13.29.92 port 38310 ssh2 Oct 11 20:48:49 host1 sshd[1940182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.92 user=root Oct 11 20:48:51 host1 sshd[1940182]: Failed password for root from 106.13.29.92 port 43866 ssh2 Oct 11 20:51:08 host1 sshd[1940329]: Invalid user patna from 106.13.29.92 port 49420 ...	2020-10-12 02:55:56

Recently Reported IPs

122.84.47.40	202.168.153.60	83.108.38.32	179.49.187.123
66.160.59.81	206.116.27.250	32.101.200.91	95.218.234.253
215.89.70.76	123.159.127.131	74.73.170.108	205.170.171.84
209.111.207.10	47.188.59.102	152.136.170.138	50.98.179.123
218.243.112.35	195.171.44.94	72.63.60.194	199.180.229.96