104.254.41.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Mountain Telephone

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Port Scan: UDP/137	2019-08-24 12:58:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.254.41.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54780
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.254.41.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082302 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 12:58:29 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 4.41.254.104.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 4.41.254.104.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.202.1.27	attackbots	RDPBruteCAu	2020-04-05 03:29:32
94.102.49.159	attack	Apr 4 21:36:57 debian-2gb-nbg1-2 kernel: \[8288050.825368\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.49.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=47730 PROTO=TCP SPT=41491 DPT=44448 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-05 03:46:51
112.85.42.194	attack	Apr 4 22:17:33 ift sshd\[11404\]: Failed password for root from 112.85.42.194 port 48416 ssh2Apr 4 22:18:43 ift sshd\[11502\]: Failed password for root from 112.85.42.194 port 56043 ssh2Apr 4 22:18:45 ift sshd\[11502\]: Failed password for root from 112.85.42.194 port 56043 ssh2Apr 4 22:18:47 ift sshd\[11502\]: Failed password for root from 112.85.42.194 port 56043 ssh2Apr 4 22:22:05 ift sshd\[12145\]: Failed password for root from 112.85.42.194 port 38069 ssh2 ...	2020-04-05 03:43:12
205.185.124.153	attackbotsspam	Invalid user fake from 205.185.124.153 port 53080	2020-04-05 04:02:25
45.141.84.23	attackbotsspam	RDPBruteCAu	2020-04-05 03:33:09
91.134.240.130	attackspambots	Apr 4 21:14:52 itv-usvr-01 sshd[4812]: Invalid user ca from 91.134.240.130 Apr 4 21:14:52 itv-usvr-01 sshd[4812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.240.130 Apr 4 21:14:52 itv-usvr-01 sshd[4812]: Invalid user ca from 91.134.240.130 Apr 4 21:14:54 itv-usvr-01 sshd[4812]: Failed password for invalid user ca from 91.134.240.130 port 58507 ssh2 Apr 4 21:20:30 itv-usvr-01 sshd[5063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.240.130 user=root Apr 4 21:20:32 itv-usvr-01 sshd[5063]: Failed password for root from 91.134.240.130 port 35495 ssh2	2020-04-05 03:49:59
77.222.134.242	attackbotsspam	20011/tcp 20022/tcp 22003/tcp... [2020-02-03/04-04]48pkt,17pt.(tcp)	2020-04-05 03:53:18
206.214.66.2	attack	Apr 4 15:35:56 debian-2gb-nbg1-2 kernel: \[8266391.222743\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=206.214.66.2 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=238 ID=54321 PROTO=UDP SPT=55843 DPT=30120 LEN=24	2020-04-05 03:27:03
192.99.245.147	attack	2020-04-04T21:32:21.601164struts4.enskede.local sshd\[20841\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.ip-192-99-245.net user=root 2020-04-04T21:32:24.298874struts4.enskede.local sshd\[20841\]: Failed password for root from 192.99.245.147 port 36084 ssh2 2020-04-04T21:36:34.019556struts4.enskede.local sshd\[21012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.ip-192-99-245.net user=root 2020-04-04T21:36:36.736808struts4.enskede.local sshd\[21012\]: Failed password for root from 192.99.245.147 port 35806 ssh2 2020-04-04T21:40:34.249392struts4.enskede.local sshd\[21153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.ip-192-99-245.net user=root ...	2020-04-05 03:42:36
51.38.231.36	attack	sshd jail - ssh hack attempt	2020-04-05 03:35:37
192.99.34.42	attackbots	PHI,WP GET /wp-login.php	2020-04-05 04:05:19
51.38.189.209	attackspambots	k+ssh-bruteforce	2020-04-05 03:36:00
106.12.69.53	attackbotsspam	Apr 4 09:31:43 lanister sshd[10886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.53 user=root Apr 4 09:31:45 lanister sshd[10886]: Failed password for root from 106.12.69.53 port 48206 ssh2 Apr 4 09:35:30 lanister sshd[10966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.53 user=root Apr 4 09:35:31 lanister sshd[10966]: Failed password for root from 106.12.69.53 port 60354 ssh2	2020-04-05 03:52:17
222.186.175.154	attack	Apr 4 15:28:15 plusreed sshd[3648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Apr 4 15:28:17 plusreed sshd[3648]: Failed password for root from 222.186.175.154 port 4184 ssh2 ...	2020-04-05 03:30:38
219.89.196.131	attackbots	port scan and connect, tcp 3306 (mysql)	2020-04-05 04:04:14

Recently Reported IPs

66.216.170.29	66.206.8.122	62.56.255.132	50.63.14.7
42.86.158.96	250.206.235.254	40.137.191.210	38.113.162.124
27.206.244.178	27.47.235.103	12.161.186.102	5.70.85.132
2.136.187.183	1.160.72.108	156.181.125.161	1.57.194.244
223.99.60.182	222.174.157.107	222.133.178.243	200.231.128.173