104.208.34.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Multiple SSH authentication failures from 104.208.34.1	2020-08-08 21:16:35
attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-16 12:13:10
attackspam	Invalid user center from 104.208.34.1 port 5344 Failed password for invalid user center from 104.208.34.1 port 5344 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.208.34.1 Invalid user kvarta from 104.208.34.1 port 5345 Failed password for invalid user kvarta from 104.208.34.1 port 5345 ssh2	2020-07-15 22:16:06
attackbots	Jul 14 12:27:19 www sshd[29814]: Invalid user prevent from 104.208.34.1 Jul 14 12:27:19 www sshd[29813]: Invalid user prevent from 104.208.34.1 Jul 14 12:27:19 www sshd[29815]: Invalid user prevent from 104.208.34.1 Jul 14 12:27:19 www sshd[29816]: Invalid user prevent from 104.208.34.1 Jul 14 12:27:19 www sshd[29816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.208.34.1 Jul 14 12:27:19 www sshd[29815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.208.34.1 Jul 14 12:27:19 www sshd[29814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.208.34.1 Jul 14 12:27:19 www sshd[29813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.208.34.1 Jul 14 12:27:19 www sshd[29823]: Invalid user prevent from 104.208.34.1 Jul 14 12:27:19 www sshd[29824]: Invalid user prevent from 104.208.34.1 Jul 14 12:27........ -------------------------------	2020-07-15 01:36:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.208.34.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42063
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.208.34.1.			IN	A

;; AUTHORITY SECTION:
.			476	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 15 01:36:13 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 1.34.208.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.34.208.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.189.186.45	attackspambots	Mar 6 01:59:09 ws19vmsma01 sshd[218077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45 Mar 6 01:59:11 ws19vmsma01 sshd[218077]: Failed password for invalid user developer from 89.189.186.45 port 41452 ssh2 ...	2020-03-06 13:37:28
14.173.165.35	attack	1583470732 - 03/06/2020 05:58:52 Host: 14.173.165.35/14.173.165.35 Port: 445 TCP Blocked	2020-03-06 13:49:43
106.54.83.45	attack	Mar 6 04:49:46 ip-172-31-62-245 sshd\[28515\]: Invalid user magda from 106.54.83.45\ Mar 6 04:49:48 ip-172-31-62-245 sshd\[28515\]: Failed password for invalid user magda from 106.54.83.45 port 41910 ssh2\ Mar 6 04:54:11 ip-172-31-62-245 sshd\[28542\]: Invalid user lishuoguo from 106.54.83.45\ Mar 6 04:54:13 ip-172-31-62-245 sshd\[28542\]: Failed password for invalid user lishuoguo from 106.54.83.45 port 35114 ssh2\ Mar 6 04:58:47 ip-172-31-62-245 sshd\[28572\]: Invalid user chef from 106.54.83.45\	2020-03-06 13:53:55
201.38.172.76	attackspam	sshd jail - ssh hack attempt	2020-03-06 14:05:24
222.186.175.148	attack	Mar 6 10:28:01 gw1 sshd[24016]: Failed password for root from 222.186.175.148 port 3316 ssh2 Mar 6 10:28:05 gw1 sshd[24016]: Failed password for root from 222.186.175.148 port 3316 ssh2 ...	2020-03-06 13:28:49
176.31.116.214	attackbots	Mar 6 REMOVED sshd\[13880\]: Invalid user www from 176.31.116.214 Mar 6 REMOVED sshd\[13919\]: Invalid user www from 176.31.116.214 Mar 6 REMOVED sshd\[13959\]: Invalid user mysql from 176.31.116.214	2020-03-06 13:50:16
222.186.180.9	attackbotsspam	Mar 6 06:29:31 jane sshd[11741]: Failed password for root from 222.186.180.9 port 59310 ssh2 Mar 6 06:29:36 jane sshd[11741]: Failed password for root from 222.186.180.9 port 59310 ssh2 ...	2020-03-06 13:40:10
175.139.108.251	attackbots	Brute-force attempt banned	2020-03-06 14:07:08
188.163.249.18	attackspam	2020-03-05T21:59:11.900105linuxbox-skyline sshd[151221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.163.249.18 user=root 2020-03-05T21:59:13.559405linuxbox-skyline sshd[151221]: Failed password for root from 188.163.249.18 port 55605 ssh2 ...	2020-03-06 13:34:40
116.236.79.37	attack	Mar 5 23:56:59 NPSTNNYC01T sshd[9193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.79.37 Mar 5 23:57:01 NPSTNNYC01T sshd[9193]: Failed password for invalid user daniele from 116.236.79.37 port 52416 ssh2 Mar 5 23:59:26 NPSTNNYC01T sshd[9339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.79.37 ...	2020-03-06 13:26:46
92.118.38.42	attackbots	2020-03-06 06:19:58 dovecot_login authenticator failed for \(User\) \[92.118.38.42\]: 535 Incorrect authentication data \(set_id=jsclient@no-server.de\) 2020-03-06 06:20:08 dovecot_login authenticator failed for \(User\) \[92.118.38.42\]: 535 Incorrect authentication data \(set_id=jsclient@no-server.de\) 2020-03-06 06:20:09 dovecot_login authenticator failed for \(User\) \[92.118.38.42\]: 535 Incorrect authentication data \(set_id=jsclient@no-server.de\) 2020-03-06 06:20:12 dovecot_login authenticator failed for \(User\) \[92.118.38.42\]: 535 Incorrect authentication data \(set_id=jsclient@no-server.de\) 2020-03-06 06:20:22 dovecot_login authenticator failed for \(User\) \[92.118.38.42\]: 535 Incorrect authentication data \(set_id=jsgarrido@no-server.de\) ...	2020-03-06 13:37:14
87.71.55.233	attack	trying to access non-authorized port	2020-03-06 14:00:36
89.248.160.150	attack	firewall-block, port(s): 7867/udp, 7877/udp, 7936/udp, 7938/udp	2020-03-06 13:46:13
213.6.203.226	attack	Mar 6 06:27:13 vps691689 sshd[7477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.6.203.226 Mar 6 06:27:16 vps691689 sshd[7477]: Failed password for invalid user ralph from 213.6.203.226 port 39296 ssh2 ...	2020-03-06 13:47:24
211.83.111.191	attackspam	Mar 5 19:11:43 hpm sshd\[28446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.83.111.191 user=root Mar 5 19:11:45 hpm sshd\[28446\]: Failed password for root from 211.83.111.191 port 53606 ssh2 Mar 5 19:15:53 hpm sshd\[28756\]: Invalid user igor from 211.83.111.191 Mar 5 19:15:53 hpm sshd\[28756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.83.111.191 Mar 5 19:15:55 hpm sshd\[28756\]: Failed password for invalid user igor from 211.83.111.191 port 38409 ssh2	2020-03-06 13:33:08

Recently Reported IPs

168.63.66.44	168.62.175.16	181.143.10.18	20.50.20.52
20.39.160.68	223.26.30.35	40.79.56.50	13.92.132.22
103.52.255.2	40.77.18.220	104.210.108.105	18.216.88.88
174.62.68.151	40.118.101.7	40.115.7.28	23.98.153.247
23.97.48.168	174.219.2.53	13.82.141.63	52.246.248.80