104.4.8.173 - IPInfo

Basic Info

City: Seminole

Region: Oklahoma

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.4.8.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37245
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.4.8.173.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100901 1800 900 604800 86400

;; Query time: 182 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 10 03:14:23 CST 2022
;; MSG SIZE  rcvd: 104

Host info

173.8.4.104.in-addr.arpa domain name pointer 104-4-8-173.lightspeed.okcbok.sbcglobal.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
173.8.4.104.in-addr.arpa	name = 104-4-8-173.lightspeed.okcbok.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.136.224.2	attack	Oct 9 14:25:26 our-server-hostname postfix/smtpd[27722]: connect from unknown[78.136.224.2] Oct x@x Oct x@x Oct 9 14:25:29 our-server-hostname postfix/smtpd[27722]: lost connection after RCPT from unknown[78.136.224.2] Oct 9 14:25:29 our-server-hostname postfix/smtpd[27722]: disconnect from unknown[78.136.224.2] Oct 9 15:19:47 our-server-hostname postfix/smtpd[29852]: connect from unknown[78.136.224.2] Oct x@x Oct 9 15:19:50 our-server-hostname postfix/smtpd[29852]: lost connection after RCPT from unknown[78.136.224.2] Oct 9 15:19:50 our-server-hostname postfix/smtpd[29852]: disconnect from unknown[78.136.224.2] Oct 9 16:31:33 our-server-hostname postfix/smtpd[30171]: connect from unknown[78.136.224.2] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct 9 16:31:41 our-server-hostname postfix/smtpd[30171]: lost connection after RCPT from unknown[78.136.224.2] Oct 9 16:31:41 our-server-hostname postfix/smtpd[30171]:........ -------------------------------	2019-10-11 18:22:00
111.230.227.17	attackbots	Automatic report - Banned IP Access	2019-10-11 18:21:42
141.98.10.55	attack	Oct 11 09:03:30 mail postfix/smtpd\[18464\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 11 09:27:43 mail postfix/smtpd\[19376\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 11 09:52:12 mail postfix/smtpd\[19891\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 11 10:41:03 mail postfix/smtpd\[21132\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-10-11 17:56:40
59.95.60.69	attackspambots	Automatic report - Port Scan Attack	2019-10-11 18:16:15
213.32.65.111	attackspambots	Oct 11 06:36:35 web8 sshd\[6447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.65.111 user=root Oct 11 06:36:37 web8 sshd\[6447\]: Failed password for root from 213.32.65.111 port 49986 ssh2 Oct 11 06:40:27 web8 sshd\[8212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.65.111 user=root Oct 11 06:40:30 web8 sshd\[8212\]: Failed password for root from 213.32.65.111 port 38454 ssh2 Oct 11 06:44:23 web8 sshd\[10059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.65.111 user=root	2019-10-11 18:23:06
222.233.53.132	attackbotsspam	Invalid user 123QWEASD from 222.233.53.132 port 39094	2019-10-11 18:06:00
83.246.93.220	attack	Oct 11 08:00:03 [host] sshd[14803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.246.93.220 user=root Oct 11 08:00:05 [host] sshd[14803]: Failed password for root from 83.246.93.220 port 43600 ssh2 Oct 11 08:04:13 [host] sshd[14906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.246.93.220 user=root	2019-10-11 18:19:14
103.72.144.23	attackspam	Oct 11 05:40:02 rotator sshd\[13366\]: Invalid user Science@123 from 103.72.144.23Oct 11 05:40:03 rotator sshd\[13366\]: Failed password for invalid user Science@123 from 103.72.144.23 port 50120 ssh2Oct 11 05:44:40 rotator sshd\[14141\]: Invalid user Diego_123 from 103.72.144.23Oct 11 05:44:42 rotator sshd\[14141\]: Failed password for invalid user Diego_123 from 103.72.144.23 port 33814 ssh2Oct 11 05:49:19 rotator sshd\[14944\]: Invalid user 123Science from 103.72.144.23Oct 11 05:49:21 rotator sshd\[14944\]: Failed password for invalid user 123Science from 103.72.144.23 port 45746 ssh2 ...	2019-10-11 18:03:18
91.121.136.44	attackspam	Oct 11 03:48:28 work-partkepr sshd\[26652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.136.44 user=root Oct 11 03:48:30 work-partkepr sshd\[26652\]: Failed password for root from 91.121.136.44 port 47786 ssh2 ...	2019-10-11 18:32:20
51.75.22.154	attackspambots	Oct 11 08:42:25 SilenceServices sshd[24665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.22.154 Oct 11 08:42:27 SilenceServices sshd[24665]: Failed password for invalid user Italy@2017 from 51.75.22.154 port 40002 ssh2 Oct 11 08:46:13 SilenceServices sshd[25670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.22.154	2019-10-11 17:55:47
54.38.81.106	attackspam	Oct 11 06:49:04 www sshd\[27466\]: Invalid user debian@2016 from 54.38.81.106 Oct 11 06:49:04 www sshd\[27466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.81.106 Oct 11 06:49:07 www sshd\[27466\]: Failed password for invalid user debian@2016 from 54.38.81.106 port 60896 ssh2 ...	2019-10-11 18:12:19
27.210.158.137	attackspambots	Unauthorised access (Oct 11) SRC=27.210.158.137 LEN=40 TTL=49 ID=9002 TCP DPT=8080 WINDOW=15405 SYN Unauthorised access (Oct 10) SRC=27.210.158.137 LEN=40 TTL=49 ID=20974 TCP DPT=8080 WINDOW=39486 SYN Unauthorised access (Oct 7) SRC=27.210.158.137 LEN=40 TTL=49 ID=34059 TCP DPT=8080 WINDOW=39486 SYN Unauthorised access (Oct 7) SRC=27.210.158.137 LEN=40 TTL=49 ID=32550 TCP DPT=8080 WINDOW=28533 SYN Unauthorised access (Oct 6) SRC=27.210.158.137 LEN=40 TTL=49 ID=41270 TCP DPT=8080 WINDOW=39486 SYN	2019-10-11 18:16:55
24.198.94.143	attackbotsspam	Automatic report - Port Scan Attack	2019-10-11 18:34:42
223.65.206.106	attackspam	Unauthorised access (Oct 11) SRC=223.65.206.106 LEN=40 TOS=0x04 TTL=240 ID=12302 TCP DPT=1433 WINDOW=1024 SYN	2019-10-11 18:38:29
192.227.252.23	attackbots	2019-10-11T09:52:46.223919shield sshd\[6993\]: Invalid user United123 from 192.227.252.23 port 43570 2019-10-11T09:52:46.229581shield sshd\[6993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.23 2019-10-11T09:52:48.484485shield sshd\[6993\]: Failed password for invalid user United123 from 192.227.252.23 port 43570 ssh2 2019-10-11T09:59:34.586424shield sshd\[7552\]: Invalid user Parola@1234 from 192.227.252.23 port 45582 2019-10-11T09:59:34.592341shield sshd\[7552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.23	2019-10-11 18:11:43

Recently Reported IPs

149.28.107.1	146.170.219.170	114.27.156.125	8.194.83.31
120.123.153.246	96.63.203.225	161.164.234.235	207.10.42.12
7.120.76.2	89.208.107.43	155.99.74.225	89.208.107.247
22.64.38.223	165.234.52.238	58.180.65.73	154.243.245.219
112.146.231.77	93.113.5.244	96.54.138.82	134.197.239.77