104.254.41.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Mountain Telephone

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Port Scan: UDP/137	2019-08-24 12:58:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.254.41.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54780
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.254.41.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082302 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 12:58:29 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 4.41.254.104.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 4.41.254.104.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.38.144.79	attack	Jan 10 12:58:00 blackbee postfix/smtpd\[21432\]: warning: unknown\[46.38.144.79\]: SASL LOGIN authentication failed: authentication failure Jan 10 12:58:22 blackbee postfix/smtpd\[21416\]: warning: unknown\[46.38.144.79\]: SASL LOGIN authentication failed: authentication failure Jan 10 12:58:44 blackbee postfix/smtpd\[21432\]: warning: unknown\[46.38.144.79\]: SASL LOGIN authentication failed: authentication failure Jan 10 12:59:27 blackbee postfix/smtpd\[21432\]: warning: unknown\[46.38.144.79\]: SASL LOGIN authentication failed: authentication failure Jan 10 12:59:50 blackbee postfix/smtpd\[21343\]: warning: unknown\[46.38.144.79\]: SASL LOGIN authentication failed: authentication failure ...	2020-01-10 21:13:55
18.231.89.30	attack	ICMP MH Probe, Scan /Distributed -	2020-01-10 21:09:17
180.76.162.111	attackbotsspam	Jan 10 13:59:51 nginx sshd[34638]: Invalid user admin from 180.76.162.111 Jan 10 13:59:52 nginx sshd[34638]: Connection closed by 180.76.162.111 port 6410 [preauth]	2020-01-10 21:08:00
177.34.125.113	attack	$f2bV_matches_ltvn	2020-01-10 21:21:30
117.4.37.34	attack	445/tcp [2020-01-10]1pkt	2020-01-10 20:54:30
82.117.212.114	attack	email spam	2020-01-10 20:50:51
116.75.71.247	attackspambots	spam	2020-01-10 20:55:03
104.244.79.222	attack	Jan 10 08:05:41 XXXXXX sshd[31621]: Invalid user openelec from 104.244.79.222 port 33144	2020-01-10 20:49:30
139.192.222.45	attackspam	Jan 10 14:00:00 grey postfix/smtpd\[13997\]: NOQUEUE: reject: RCPT from unknown\[139.192.222.45\]: 554 5.7.1 Service unavailable\; Client host \[139.192.222.45\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?139.192.222.45\; from=\ to=\ proto=ESMTP helo=\<\[139.192.222.45\]\> ...	2020-01-10 21:05:30
159.203.201.186	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-10 21:10:39
94.122.211.94	attackbotsspam	spam	2020-01-10 20:50:07
54.39.138.251	attackbots	Jan 10 12:14:16 XXXXXX sshd[36258]: Invalid user zdx from 54.39.138.251 port 57346	2020-01-10 21:10:24
212.200.160.230	attack	email spam	2020-01-10 20:58:14
49.234.60.177	attack	[ssh] SSH attack	2020-01-10 21:20:14
118.25.11.204	attackbotsspam	Jan 10 13:34:38 ns392434 sshd[14225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204 user=root Jan 10 13:34:40 ns392434 sshd[14225]: Failed password for root from 118.25.11.204 port 50714 ssh2 Jan 10 13:52:13 ns392434 sshd[14474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204 user=root Jan 10 13:52:15 ns392434 sshd[14474]: Failed password for root from 118.25.11.204 port 34563 ssh2 Jan 10 13:56:03 ns392434 sshd[14535]: Invalid user jb from 118.25.11.204 port 46345 Jan 10 13:56:03 ns392434 sshd[14535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204 Jan 10 13:56:03 ns392434 sshd[14535]: Invalid user jb from 118.25.11.204 port 46345 Jan 10 13:56:05 ns392434 sshd[14535]: Failed password for invalid user jb from 118.25.11.204 port 46345 ssh2 Jan 10 13:59:44 ns392434 sshd[14603]: Invalid user jayendra from 118.25.11.204 port 58125	2020-01-10 21:19:55

Recently Reported IPs

66.216.170.29	66.206.8.122	62.56.255.132	50.63.14.7
42.86.158.96	250.206.235.254	40.137.191.210	38.113.162.124
27.206.244.178	27.47.235.103	12.161.186.102	5.70.85.132
2.136.187.183	1.160.72.108	156.181.125.161	1.57.194.244
223.99.60.182	222.174.157.107	222.133.178.243	200.231.128.173