104.6.94.103 - IPInfo

Basic Info

City: Crestwood

Region: Kentucky

Country: United States

Internet Service Provider: AT&T Corp.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Fail2Ban Ban Triggered	2019-11-30 04:42:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.6.94.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46993
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.6.94.103.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 04:42:02 CST 2019
;; MSG SIZE  rcvd: 116

Host info

103.94.6.104.in-addr.arpa domain name pointer 104-6-94-103.lightspeed.lsvlky.sbcglobal.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.94.6.104.in-addr.arpa	name = 104-6-94-103.lightspeed.lsvlky.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.57.80.42	attackspam	Registration form abuse	2020-08-27 12:15:26
206.189.184.16	attackspambots	206.189.184.16 - - [27/Aug/2020:05:44:51 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.184.16 - - [27/Aug/2020:05:57:44 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-27 12:07:59
34.91.106.225	attackspam	34.91.106.225 - - [27/Aug/2020:04:57:24 +0100] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.91.106.225 - - [27/Aug/2020:04:57:24 +0100] "POST /wp-login.php HTTP/1.1" 200 1839 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.91.106.225 - - [27/Aug/2020:04:57:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1845 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-27 12:13:45
192.99.45.31	attackspam	192.99.45.31 was recorded 10 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 10, 20, 20	2020-08-27 10:12:22
106.13.10.242	attackbotsspam	2020-08-26 20:30:54,725 fail2ban.actions [937]: NOTICE [sshd] Ban 106.13.10.242 2020-08-26 21:05:18,404 fail2ban.actions [937]: NOTICE [sshd] Ban 106.13.10.242 2020-08-26 21:38:18,045 fail2ban.actions [937]: NOTICE [sshd] Ban 106.13.10.242 2020-08-26 22:12:23,086 fail2ban.actions [937]: NOTICE [sshd] Ban 106.13.10.242 2020-08-26 22:46:16,855 fail2ban.actions [937]: NOTICE [sshd] Ban 106.13.10.242 ...	2020-08-27 10:26:42
106.12.173.236	attackbots	Aug 26 22:07:09 game-panel sshd[31214]: Failed password for root from 106.12.173.236 port 58010 ssh2 Aug 26 22:11:34 game-panel sshd[31568]: Failed password for root from 106.12.173.236 port 58739 ssh2	2020-08-27 10:25:05
118.174.29.89	attack	Brute forcing RDP port 3389	2020-08-27 12:03:40
31.163.170.102	attackbots	port scan and connect, tcp 23 (telnet)	2020-08-27 10:22:02
193.243.164.90	attack	TCP (SYN) 193.243.164.90:50871 -> port 445, len 44	2020-08-27 10:15:10
170.246.86.160	attackspambots	Unauthorized connection attempt from IP address 170.246.86.160 on Port 445(SMB)	2020-08-27 10:26:14
111.125.70.22	attackspambots	Aug 27 02:15:17 server sshd[12589]: Failed password for invalid user packet from 111.125.70.22 port 51465 ssh2 Aug 27 02:19:57 server sshd[18572]: Failed password for root from 111.125.70.22 port 55618 ssh2 Aug 27 02:24:44 server sshd[24873]: Failed password for invalid user alex from 111.125.70.22 port 59790 ssh2	2020-08-27 10:18:01
186.154.34.254	attack	Unauthorized connection attempt from IP address 186.154.34.254 on Port 445(SMB)	2020-08-27 10:28:37
144.34.170.117	attackbots	Aug 26 20:54:21 er4gw sshd[21170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.170.117	2020-08-27 10:16:42
49.235.221.172	attackspambots	Invalid user sistemas from 49.235.221.172 port 33194	2020-08-27 10:15:51
123.31.12.173	attack	$f2bV_matches	2020-08-27 12:15:09

Recently Reported IPs

131.172.155.118	63.182.182.2	50.193.232.210	120.85.146.222
82.117.249.1	134.61.166.105	81.84.235.2	105.173.152.98
80.240.50.8	2.84.251.132	56.247.193.99	201.30.80.9
183.240.231.87	76.168.138.8	12.15.242.131	62.33.138.1
66.182.119.15	112.170.112.158	195.50.90.28	70.56.166.146