104.130.11.158

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.130.11.162	attackspambots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "xbian" at 2020-10-02T20:20:25Z	2020-10-03 05:56:11
104.130.11.162	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "username" at 2020-10-02T16:54:49Z	2020-10-03 01:21:53
104.130.11.162	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-02T12:31:54Z and 2020-10-02T13:48:09Z	2020-10-02 21:50:49
104.130.11.162	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "steven" at 2020-10-02T10:04:07Z	2020-10-02 18:23:12
104.130.11.162	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-02T05:32:24Z and 2020-10-02T06:51:08Z	2020-10-02 14:55:10
104.130.11.162	attackspambots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-30T23:24:47Z	2020-10-01 07:58:53
104.130.11.162	attackbots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-30T16:20:24Z	2020-10-01 00:30:45
104.130.11.162	attackspambots	Sep 29 17:41:36 freya sshd[25518]: Disconnected from authenticating user root 104.130.11.162 port 42212 [preauth] ...	2020-09-29 23:43:27
104.130.11.162	attackbots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-29T07:50:02Z	2020-09-29 16:00:58
104.130.119.168	attack	Dec 18 15:39:16 MainVPS sshd[16956]: Invalid user companyboard from 104.130.119.168 port 44436 Dec 18 15:39:16 MainVPS sshd[16956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.119.168 Dec 18 15:39:16 MainVPS sshd[16956]: Invalid user companyboard from 104.130.119.168 port 44436 Dec 18 15:39:17 MainVPS sshd[16956]: Failed password for invalid user companyboard from 104.130.119.168 port 44436 ssh2 Dec 18 15:40:56 MainVPS sshd[19948]: Invalid user companyboard from 104.130.119.168 port 51116 ...	2019-12-18 22:53:27
104.130.117.224	attackspambots	Dec 9 13:16:58 icinga sshd[19348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.117.224 Dec 9 13:17:00 icinga sshd[19348]: Failed password for invalid user !!!!!! from 104.130.117.224 port 43818 ssh2 ...	2019-12-09 21:53:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.130.11.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.130.11.158.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025050502 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 06 13:58:41 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 158.11.130.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.11.130.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.149.182.201	attackbotsspam	Automatic report - Banned IP Access	2019-11-21 23:48:54
103.233.1.70	attackbots	Automatically reported by fail2ban report script (mx1)	2019-11-22 00:26:24
78.188.217.141	attackspam	Fail2Ban Ban Triggered	2019-11-21 23:54:55
189.196.54.65	attackspambots	Ransom	2019-11-22 00:00:11
51.144.160.217	attack	Port Scan detected from 51.144.160.217 (NL/Netherlands/-). 4 hits in the last 60 seconds	2019-11-22 00:09:32
118.172.163.213	attackbotsspam	Unauthorised access (Nov 21) SRC=118.172.163.213 LEN=52 TTL=114 ID=520 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-22 00:20:21
35.238.45.38	attackbotsspam	tcp 6379	2019-11-22 00:02:22
200.2.162.34	attackspam	[Thu Nov 21 12:51:39.135673 2019] [:error] [pid 126122] [client 200.2.162.34:61000] [client 200.2.162.34] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ws24vmsma01.ufn.edu.br"] [uri "/"] [unique_id "Xdayiytk-RyrOURhjUi5ewAAAAI"] ...	2019-11-22 00:12:38
118.24.3.40	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-11-21 23:48:27
79.135.40.231	attack	Nov 21 16:58:32 vpn01 sshd[5644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.135.40.231 Nov 21 16:58:34 vpn01 sshd[5644]: Failed password for invalid user administradorweb from 79.135.40.231 port 43524 ssh2 ...	2019-11-22 00:00:59
218.92.0.137	attack	$f2bV_matches	2019-11-22 00:06:39
206.189.123.144	attackbots	Nov 21 16:36:45 sd-53420 sshd\[5977\]: Invalid user ts3bot from 206.189.123.144 Nov 21 16:36:45 sd-53420 sshd\[5977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.123.144 Nov 21 16:36:47 sd-53420 sshd\[5977\]: Failed password for invalid user ts3bot from 206.189.123.144 port 44512 ssh2 Nov 21 16:37:01 sd-53420 sshd\[6053\]: Invalid user ts3bot from 206.189.123.144 Nov 21 16:37:01 sd-53420 sshd\[6053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.123.144 ...	2019-11-21 23:58:58
43.252.178.50	attackspam	Nov 20 14:06:21 newdogma sshd[7045]: Invalid user viau from 43.252.178.50 port 41044 Nov 20 14:06:21 newdogma sshd[7045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.252.178.50 Nov 20 14:06:22 newdogma sshd[7045]: Failed password for invalid user viau from 43.252.178.50 port 41044 ssh2 Nov 20 14:06:23 newdogma sshd[7045]: Received disconnect from 43.252.178.50 port 41044:11: Bye Bye [preauth] Nov 20 14:06:23 newdogma sshd[7045]: Disconnected from 43.252.178.50 port 41044 [preauth] Nov 20 14:17:10 newdogma sshd[7275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.252.178.50 user=r.r Nov 20 14:17:11 newdogma sshd[7275]: Failed password for r.r from 43.252.178.50 port 56532 ssh2 Nov 20 14:17:12 newdogma sshd[7275]: Received disconnect from 43.252.178.50 port 56532:11: Bye Bye [preauth] Nov 20 14:17:12 newdogma sshd[7275]: Disconnected from 43.252.178.50 port 56532 [preauth] Nov 20 ........ -------------------------------	2019-11-21 23:40:38
218.104.204.101	attack	Brute force attempt	2019-11-21 23:43:10
123.201.125.126	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-22 00:20:51

Recently Reported IPs

3.8.61.98	205.210.31.27	211.217.254.220	135.119.88.179
128.203.203.169	58.219.214.119	58.219.214.159	8.135.35.228
147.185.132.30	20.29.25.18	135.149.252.28	20.65.194.161
103.233.205.6	fe80::9274:8518:fe07:8d12	192.168.100.36	13.89.125.17
70.39.239.77	104.234.115.138	59.172.119.88	221.199.91.201