104.130.44.134

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Rackspace Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 4 10:40:02 TORMINT sshd\[20957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.44.134 user=root Nov 4 10:40:03 TORMINT sshd\[20957\]: Failed password for root from 104.130.44.134 port 33103 ssh2 Nov 4 10:43:55 TORMINT sshd\[21187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.44.134 user=root ...	2019-11-04 23:55:48
attackspam	SSH/22 MH Probe, BF, Hack -	2019-11-04 16:22:58
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-11-02 19:25:42

Type

Details

Datetime

attack

Nov  4 10:40:02 TORMINT sshd\[20957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.44.134  user=root
Nov  4 10:40:03 TORMINT sshd\[20957\]: Failed password for root from 104.130.44.134 port 33103 ssh2
Nov  4 10:43:55 TORMINT sshd\[21187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.130.44.134  user=root
...

2019-11-04 23:55:48

attackspam

SSH/22 MH Probe, BF, Hack -

2019-11-04 16:22:58

attackbotsspam

SSH Brute-Force reported by Fail2Ban

2019-11-02 19:25:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.130.44.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59223
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.130.44.134.			IN	A

;; AUTHORITY SECTION:
.			398	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110200 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 19:25:39 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 134.44.130.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.44.130.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.23.101.187	attackspambots	[ssh] SSH attack	2020-04-27 17:08:00
107.170.249.6	attackbots	Apr 26 21:28:35 mockhub sshd[29416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6 Apr 26 21:28:37 mockhub sshd[29416]: Failed password for invalid user admin from 107.170.249.6 port 35618 ssh2 ...	2020-04-27 17:19:56
83.97.20.140	attackspam	45454/tcp 60001/tcp... [2020-04-19/27]4pkt,2pt.(tcp)	2020-04-27 17:26:33
202.137.141.243	attackspambots	Brute force attempt	2020-04-27 17:12:13
114.220.8.201	attack	Apr2706:05:57server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[data]Apr2706:18:00server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[ftp]Apr2706:18:06server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[ftp]Apr2706:18:12server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[ftp]Apr2706:18:18server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[ftp]Apr2706:18:24server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[ftp]Apr2706:18:29server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[ftp]Apr2706:18:34server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[administrator]Apr2706:18:40server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[administrator]Apr2706:18:47server6pure-ftpd:\(\?@114.220.8.201\)[WARNING]Authenticationfailedforuser[administrator]	2020-04-27 17:18:26
141.54.159.5	attackspambots	Apr 26 22:42:54 web9 sshd\[16787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.54.159.5 user=root Apr 26 22:42:56 web9 sshd\[16787\]: Failed password for root from 141.54.159.5 port 42450 ssh2 Apr 26 22:46:47 web9 sshd\[17310\]: Invalid user hk from 141.54.159.5 Apr 26 22:46:47 web9 sshd\[17310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.54.159.5 Apr 26 22:46:49 web9 sshd\[17310\]: Failed password for invalid user hk from 141.54.159.5 port 54952 ssh2	2020-04-27 17:26:08
82.77.112.108	attack	Automatic report - Banned IP Access	2020-04-27 17:20:13
36.71.30.58	attackspambots	1587959583 - 04/27/2020 05:53:03 Host: 36.71.30.58/36.71.30.58 Port: 445 TCP Blocked	2020-04-27 17:10:56
170.210.214.50	attackspam	Repeated brute force against a port	2020-04-27 17:01:01
106.13.175.211	attack	SSH/22 MH Probe, BF, Hack -	2020-04-27 17:37:49
1.234.13.176	attackspambots	Apr 27 05:19:12 firewall sshd[5076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.13.176 Apr 27 05:19:12 firewall sshd[5076]: Invalid user mars from 1.234.13.176 Apr 27 05:19:14 firewall sshd[5076]: Failed password for invalid user mars from 1.234.13.176 port 56086 ssh2 ...	2020-04-27 17:17:26
203.213.66.170	attackbots	Apr 27 05:53:15 mout sshd[16887]: Invalid user prueba from 203.213.66.170 port 37285	2020-04-27 17:05:23
102.65.169.135	attack	Apr 27 05:10:42 NPSTNNYC01T sshd[2002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.65.169.135 Apr 27 05:10:44 NPSTNNYC01T sshd[2002]: Failed password for invalid user kun from 102.65.169.135 port 38953 ssh2 Apr 27 05:18:44 NPSTNNYC01T sshd[2656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.65.169.135 ...	2020-04-27 17:22:15
191.191.170.233	attackbots	Apr 27 07:02:05 srv-ubuntu-dev3 sshd[47281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.191.170.233 user=root Apr 27 07:02:08 srv-ubuntu-dev3 sshd[47281]: Failed password for root from 191.191.170.233 port 57595 ssh2 Apr 27 07:05:56 srv-ubuntu-dev3 sshd[47804]: Invalid user sun from 191.191.170.233 Apr 27 07:05:56 srv-ubuntu-dev3 sshd[47804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.191.170.233 Apr 27 07:05:56 srv-ubuntu-dev3 sshd[47804]: Invalid user sun from 191.191.170.233 Apr 27 07:05:58 srv-ubuntu-dev3 sshd[47804]: Failed password for invalid user sun from 191.191.170.233 port 44012 ssh2 Apr 27 07:09:39 srv-ubuntu-dev3 sshd[48478]: Invalid user testing from 191.191.170.233 Apr 27 07:09:39 srv-ubuntu-dev3 sshd[48478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.191.170.233 Apr 27 07:09:39 srv-ubuntu-dev3 sshd[48478]: Invalid user testi ...	2020-04-27 17:14:06
105.145.34.154	attack	k+ssh-bruteforce	2020-04-27 17:23:57

Recently Reported IPs

57.212.254.103	19.72.133.102	137.19.10.124	149.158.149.249
67.127.241.1	227.185.145.56	37.103.98.118	250.106.100.188
225.172.129.183	248.12.140.38	252.228.31.31	63.58.168.69
165.155.7.90	76.226.251.136	44.82.177.234	183.30.201.16
198.67.196.154	209.81.206.53	237.16.11.34	4.89.215.64