214.252.3.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.252.3.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34350
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;214.252.3.1.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012701 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 02:15:41 CST 2025
;; MSG SIZE  rcvd: 104

Host info

b'Host 1.3.252.214.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 214.252.3.1.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.204.0.32	attackspambots	Lines containing failures of 129.204.0.32 Dec 6 05:00:21 keyhelp sshd[22562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.0.32 user=r.r Dec 6 05:00:22 keyhelp sshd[22562]: Failed password for r.r from 129.204.0.32 port 37180 ssh2 Dec 6 05:00:23 keyhelp sshd[22562]: Received disconnect from 129.204.0.32 port 37180:11: Bye Bye [preauth] Dec 6 05:00:23 keyhelp sshd[22562]: Disconnected from authenticating user r.r 129.204.0.32 port 37180 [preauth] Dec 6 05:31:16 keyhelp sshd[32379]: Invalid user brussel from 129.204.0.32 port 45954 Dec 6 05:31:16 keyhelp sshd[32379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.0.32 Dec 6 05:31:18 keyhelp sshd[32379]: Failed password for invalid user brussel from 129.204.0.32 port 45954 ssh2 Dec 6 05:31:18 keyhelp sshd[32379]: Received disconnect from 129.204.0.32 port 45954:11: Bye Bye [preauth] Dec 6 05:31:18 keyhelp sshd[32379........ ------------------------------	2019-12-07 19:25:07
207.154.194.145	attackspambots	Dec 7 01:00:23 tdfoods sshd\[4452\]: Invalid user oziemblo from 207.154.194.145 Dec 7 01:00:23 tdfoods sshd\[4452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.145 Dec 7 01:00:25 tdfoods sshd\[4452\]: Failed password for invalid user oziemblo from 207.154.194.145 port 50282 ssh2 Dec 7 01:05:40 tdfoods sshd\[4963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.145 user=root Dec 7 01:05:42 tdfoods sshd\[4963\]: Failed password for root from 207.154.194.145 port 33276 ssh2	2019-12-07 19:17:42
193.239.146.103	attackbotsspam	Dec 6 08:45:13 venus sshd[14593]: Invalid user test from 193.239.146.103 port 55386 Dec 6 08:45:13 venus sshd[14593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.239.146.103 Dec 6 08:45:15 venus sshd[14593]: Failed password for invalid user test from 193.239.146.103 port 55386 ssh2 Dec 6 08:52:14 venus sshd[15586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.239.146.103 user=mysql Dec 6 08:52:16 venus sshd[15586]: Failed password for mysql from 193.239.146.103 port 33520 ssh2 Dec 6 08:57:32 venus sshd[16316]: Invalid user minecraftserver from 193.239.146.103 port 45946 Dec 6 08:57:32 venus sshd[16316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.239.146.103 Dec 6 08:57:33 venus sshd[16316]: Failed password for invalid user minecraftserver from 193.239.146.103 port 45946 ssh2 Dec 6 09:03:10 venus sshd[17138]: pam_unix(ss........ ------------------------------	2019-12-07 19:31:31
92.118.37.83	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-12-07 19:10:45
217.182.253.230	attackbotsspam	Dec 7 09:12:55 sd-53420 sshd\[3463\]: Invalid user samba from 217.182.253.230 Dec 7 09:12:55 sd-53420 sshd\[3463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.253.230 Dec 7 09:12:57 sd-53420 sshd\[3463\]: Failed password for invalid user samba from 217.182.253.230 port 40456 ssh2 Dec 7 09:18:25 sd-53420 sshd\[4471\]: Invalid user canada from 217.182.253.230 Dec 7 09:18:25 sd-53420 sshd\[4471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.253.230 ...	2019-12-07 19:07:27
91.106.193.72	attack	SSH brute-force: detected 29 distinct usernames within a 24-hour window.	2019-12-07 19:05:21
2001:41d0:203:545c::	attack	WordPress login Brute force / Web App Attack on client site.	2019-12-07 19:08:42
218.92.0.157	attack	Dec 7 13:18:16 server sshd\[20456\]: User root from 218.92.0.157 not allowed because listed in DenyUsers Dec 7 13:18:16 server sshd\[20456\]: Failed none for invalid user root from 218.92.0.157 port 2669 ssh2 Dec 7 13:18:17 server sshd\[20456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.157 user=root Dec 7 13:18:19 server sshd\[20456\]: Failed password for invalid user root from 218.92.0.157 port 2669 ssh2 Dec 7 13:18:22 server sshd\[20456\]: Failed password for invalid user root from 218.92.0.157 port 2669 ssh2	2019-12-07 19:24:17
218.92.0.179	attackspam	Dec 7 12:16:47 SilenceServices sshd[12415]: Failed password for root from 218.92.0.179 port 43448 ssh2 Dec 7 12:17:00 SilenceServices sshd[12415]: error: maximum authentication attempts exceeded for root from 218.92.0.179 port 43448 ssh2 [preauth] Dec 7 12:17:06 SilenceServices sshd[12486]: Failed password for root from 218.92.0.179 port 8133 ssh2	2019-12-07 19:18:42
37.49.229.167	attack	37.49.229.167 was recorded 62 times by 25 hosts attempting to connect to the following ports: 9950,5980,5260,9015,7580,4961,3719. Incident counter (4h, 24h, all-time): 62, 62, 1453	2019-12-07 18:56:09
103.110.17.66	attackbots	Port Scan	2019-12-07 18:55:46
222.186.173.215	attack	Dec 7 12:23:25 sd-53420 sshd\[5633\]: User root from 222.186.173.215 not allowed because none of user's groups are listed in AllowGroups Dec 7 12:23:25 sd-53420 sshd\[5633\]: Failed none for invalid user root from 222.186.173.215 port 40156 ssh2 Dec 7 12:23:26 sd-53420 sshd\[5633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Dec 7 12:23:28 sd-53420 sshd\[5633\]: Failed password for invalid user root from 222.186.173.215 port 40156 ssh2 Dec 7 12:23:31 sd-53420 sshd\[5633\]: Failed password for invalid user root from 222.186.173.215 port 40156 ssh2 ...	2019-12-07 19:27:25
178.46.210.228	attackbots	UTC: 2019-12-06 port: 23/tcp	2019-12-07 19:23:11
61.175.194.90	attackspam	Dec 7 10:53:58 sd-53420 sshd\[21992\]: Invalid user guest from 61.175.194.90 Dec 7 10:53:58 sd-53420 sshd\[21992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.175.194.90 Dec 7 10:54:00 sd-53420 sshd\[21992\]: Failed password for invalid user guest from 61.175.194.90 port 35622 ssh2 Dec 7 11:01:06 sd-53420 sshd\[23315\]: Invalid user daigneault from 61.175.194.90 Dec 7 11:01:06 sd-53420 sshd\[23315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.175.194.90 ...	2019-12-07 19:29:15
178.62.71.110	attack	Dec 7 09:29:38 h2177944 kernel: \[8582534.643478\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=178.62.71.110 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=18184 PROTO=TCP SPT=30510 DPT=23 WINDOW=27702 RES=0x00 SYN URGP=0 Dec 7 09:54:38 h2177944 kernel: \[8584035.249203\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=178.62.71.110 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=18184 PROTO=TCP SPT=30510 DPT=23 WINDOW=27702 RES=0x00 SYN URGP=0 Dec 7 10:06:21 h2177944 kernel: \[8584737.287418\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=178.62.71.110 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=18184 PROTO=TCP SPT=30510 DPT=23 WINDOW=27702 RES=0x00 SYN URGP=0 Dec 7 10:11:23 h2177944 kernel: \[8585039.557231\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=178.62.71.110 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=18184 PROTO=TCP SPT=30510 DPT=23 WINDOW=27702 RES=0x00 SYN URGP=0 Dec 7 10:19:46 h2177944 kernel: \[8585542.641895\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=178.62.71.110 DST=85.214.117.9 LEN=40	2019-12-07 19:20:16

Recently Reported IPs

63.24.10.136	218.44.179.45	96.63.15.124	151.218.241.22
100.198.68.93	232.157.58.217	226.85.1.236	171.128.68.151
125.140.131.196	35.252.103.59	155.68.233.86	45.46.90.233
142.94.32.246	57.26.146.166	4.109.61.10	76.114.16.120
185.137.90.50	114.199.163.98	18.238.7.148	134.33.115.118