104.41.60.8 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Invalid user admin from 104.41.60.8 port 1536	2020-07-18 18:38:49
attack	Jun 29 12:09:05 mout sshd[7249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.41.60.8 user=root Jun 29 12:09:07 mout sshd[7249]: Failed password for root from 104.41.60.8 port 2752 ssh2 Jun 29 12:09:07 mout sshd[7249]: Disconnected from authenticating user root 104.41.60.8 port 2752 [preauth]	2020-06-29 18:34:09
attack	Jun 27 15:13:03 pkdns2 sshd\[61251\]: Invalid user testuser from 104.41.60.8Jun 27 15:13:06 pkdns2 sshd\[61251\]: Failed password for invalid user testuser from 104.41.60.8 port 2752 ssh2Jun 27 15:13:27 pkdns2 sshd\[61264\]: Invalid user testuser from 104.41.60.8Jun 27 15:13:29 pkdns2 sshd\[61264\]: Failed password for invalid user testuser from 104.41.60.8 port 2752 ssh2Jun 27 15:21:24 pkdns2 sshd\[61809\]: Invalid user testuser from 104.41.60.8Jun 27 15:21:26 pkdns2 sshd\[61809\]: Failed password for invalid user testuser from 104.41.60.8 port 2752 ssh2 ...	2020-06-27 21:35:27
attackspambots	Jun 27 07:10:25 tuxlinux sshd[33839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.41.60.8 user=root Jun 27 07:10:27 tuxlinux sshd[33839]: Failed password for root from 104.41.60.8 port 2752 ssh2 Jun 27 07:10:25 tuxlinux sshd[33839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.41.60.8 user=root Jun 27 07:10:27 tuxlinux sshd[33839]: Failed password for root from 104.41.60.8 port 2752 ssh2 ...	2020-06-27 13:14:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.41.60.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46899
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.41.60.8.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062700 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 27 13:14:32 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 8.60.41.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.60.41.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
98.100.250.202	attackspam	Bruteforce detected by fail2ban	2020-08-06 02:35:40
209.85.167.65	normal	sending fraudulent emails: Hallo, ich bin Omar Ali, ich bin Banker hier in Dubai. Ich habe Sie bezüglich eines Kontos eines Staatsbürgers Ihres Landes kontaktiert. Dieser Mann starb vor 12 Jahren und erwähnte niemanden, der sein bei unserer Bank hinterlegtes Geld geerbt hatte. Die Bank erlaubte mir, den nächsten Verwandten mit einem verstorbenen Kunden zu finden, aber ich fand ihn nicht. Dieses Konto wird beschlagnahmt, wenn niemand erklärt, dass das Bankkonto der nächste Angehörige ist. Ich habe mich daher entschlossen, Sie zum gegenseitigen Nutzen zu kontaktieren. Ich warte auf Ihre Antwort für weitere Details. Respektvoll, Omar Ali	2020-08-06 02:29:05
112.85.42.187	attack	2020-08-05T14:06:31.117993uwu-server sshd[3602275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root 2020-08-05T14:06:33.049855uwu-server sshd[3602275]: Failed password for root from 112.85.42.187 port 26560 ssh2 2020-08-05T14:06:31.117993uwu-server sshd[3602275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root 2020-08-05T14:06:33.049855uwu-server sshd[3602275]: Failed password for root from 112.85.42.187 port 26560 ssh2 2020-08-05T14:06:37.346599uwu-server sshd[3602275]: Failed password for root from 112.85.42.187 port 26560 ssh2 ...	2020-08-06 02:21:29
118.24.119.49	attackspambots	Aug 5 13:09:17 rocket sshd[20440]: Failed password for root from 118.24.119.49 port 59592 ssh2 Aug 5 13:13:09 rocket sshd[21006]: Failed password for root from 118.24.119.49 port 43706 ssh2 ...	2020-08-06 02:45:07
194.181.66.137	attackspam	(sshd) Failed SSH login from 194.181.66.137 (PL/Poland/-): 5 in the last 3600 secs	2020-08-06 02:32:15
60.167.239.99	attackspambots	Aug 5 05:11:06 dignus sshd[20859]: Failed password for root from 60.167.239.99 port 42422 ssh2 Aug 5 05:12:04 dignus sshd[20955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.239.99 user=root Aug 5 05:12:06 dignus sshd[20955]: Failed password for root from 60.167.239.99 port 48526 ssh2 Aug 5 05:13:13 dignus sshd[21087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.239.99 user=root Aug 5 05:13:15 dignus sshd[21087]: Failed password for root from 60.167.239.99 port 54628 ssh2 ...	2020-08-06 02:41:00
104.223.143.101	attackbots	Aug 5 19:10:27 host sshd[16915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=06.systemx1.work user=root Aug 5 19:10:30 host sshd[16915]: Failed password for root from 104.223.143.101 port 33258 ssh2 ...	2020-08-06 02:49:37
222.186.175.167	attack	Aug 5 20:27:56 amit sshd\[443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root Aug 5 20:27:58 amit sshd\[443\]: Failed password for root from 222.186.175.167 port 63226 ssh2 Aug 5 20:28:01 amit sshd\[443\]: Failed password for root from 222.186.175.167 port 63226 ssh2 ...	2020-08-06 02:30:24
112.15.38.248	attackspambots	(smtpauth) Failed SMTP AUTH login from 112.15.38.248 (CN/China/-): 5 in the last 3600 secs	2020-08-06 02:15:13
193.148.70.216	attackspambots	B: Abusive ssh attack	2020-08-06 02:39:14
45.236.116.130	attack	45.236.116.130 - - [05/Aug/2020:19:31:59 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 45.236.116.130 - - [05/Aug/2020:19:32:01 +0100] "POST /wp-login.php HTTP/1.1" 302 5 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 45.236.116.130 - - [05/Aug/2020:19:42:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-08-06 02:46:56
81.171.19.24	attack	81.171.19.24 - - [05/Aug/2020:15:05:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 81.171.19.24 - - [05/Aug/2020:15:05:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2132 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 81.171.19.24 - - [05/Aug/2020:15:05:46 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-06 02:38:14
210.5.85.150	attack	Bruteforce detected by fail2ban	2020-08-06 02:48:38
13.125.138.70	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-06 02:41:52
167.99.170.83	attackbotsspam	2020-08-05T13:22:48.467629morrigan.ad5gb.com sshd[3448400]: Failed password for root from 167.99.170.83 port 41002 ssh2 2020-08-05T13:22:48.628030morrigan.ad5gb.com sshd[3448400]: Disconnected from authenticating user root 167.99.170.83 port 41002 [preauth]	2020-08-06 02:22:55

Recently Reported IPs

110.169.30.251	64.148.83.148	232.136.60.239	194.4.161.201
39.68.28.63	114.57.76.4	208.213.158.74	113.240.33.148
54.219.150.226	120.197.54.120	30.19.217.144	152.38.129.103
11.23.189.100	239.100.86.98	42.80.99.205	77.228.43.153
74.85.46.43	86.124.209.99	91.77.198.11	116.108.80.150