159.104.41.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.104.41.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.104.41.14.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020201 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 07:31:42 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 14.41.104.159.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.41.104.159.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.17.155.13	attackspambots	Aug 9 13:19:43 spidey sshd[9400]: Invalid user nexthink from 175.17.155.13 port 49916 Aug 9 13:21:08 spidey sshd[9594]: Invalid user admin from 175.17.155.13 port 59966 Aug 9 13:21:10 spidey sshd[9603]: Invalid user admin from 175.17.155.13 port 60187 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.17.155.13	2020-08-10 04:41:47
201.72.190.98	attackbotsspam	Aug 9 20:11:52 db sshd[21134]: User root from 201.72.190.98 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-10 04:24:47
211.234.119.189	attackbotsspam	Aug 9 20:41:32 ip-172-31-61-156 sshd[12218]: Invalid user Asdf@123 from 211.234.119.189 Aug 9 20:41:35 ip-172-31-61-156 sshd[12218]: Failed password for invalid user Asdf@123 from 211.234.119.189 port 60994 ssh2 Aug 9 20:41:32 ip-172-31-61-156 sshd[12218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.234.119.189 Aug 9 20:41:32 ip-172-31-61-156 sshd[12218]: Invalid user Asdf@123 from 211.234.119.189 Aug 9 20:41:35 ip-172-31-61-156 sshd[12218]: Failed password for invalid user Asdf@123 from 211.234.119.189 port 60994 ssh2 ...	2020-08-10 04:56:00
141.98.81.208	attack	Brute-force attempt banned	2020-08-10 04:52:34
121.122.81.195	attackbots	Aug 6 12:54:41 scivo sshd[2914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.81.195 user=r.r Aug 6 12:54:43 scivo sshd[2914]: Failed password for r.r from 121.122.81.195 port 27290 ssh2 Aug 6 12:54:43 scivo sshd[2914]: Received disconnect from 121.122.81.195: 11: Bye Bye [preauth] Aug 6 12:59:17 scivo sshd[3171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.81.195 user=r.r Aug 6 12:59:19 scivo sshd[3171]: Failed password for r.r from 121.122.81.195 port 21425 ssh2 Aug 6 12:59:19 scivo sshd[3171]: Received disconnect from 121.122.81.195: 11: Bye Bye [preauth] Aug 6 13:03:54 scivo sshd[3398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.81.195 user=r.r Aug 6 13:03:57 scivo sshd[3398]: Failed password for r.r from 121.122.81.195 port 54912 ssh2 Aug 6 13:03:57 scivo sshd[3398]: Received disconnect from 121.122......... -------------------------------	2020-08-10 04:23:24
213.21.57.39	attackspam	rdp	2020-08-10 04:25:36
119.45.138.160	attackbots	Aug 3 01:01:27 rama sshd[388151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.138.160 user=r.r Aug 3 01:01:29 rama sshd[388151]: Failed password for r.r from 119.45.138.160 port 44734 ssh2 Aug 3 01:01:29 rama sshd[388151]: Received disconnect from 119.45.138.160: 11: Bye Bye [preauth] Aug 3 01:03:58 rama sshd[388863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.138.160 user=r.r Aug 3 01:04:00 rama sshd[388863]: Failed password for r.r from 119.45.138.160 port 41010 ssh2 Aug 3 01:04:00 rama sshd[388863]: Received disconnect from 119.45.138.160: 11: Bye Bye [preauth] Aug 3 01:05:42 rama sshd[389667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.138.160 user=r.r Aug 3 01:05:44 rama sshd[389667]: Failed password for r.r from 119.45.138.160 port 56436 ssh2 Aug 3 01:05:45 rama sshd[389667]: Received disconnect from........ -------------------------------	2020-08-10 04:29:21
106.13.37.164	attack	2020-08-09T20:17:47.028294shield sshd\[17331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.37.164 user=root 2020-08-09T20:17:48.920564shield sshd\[17331\]: Failed password for root from 106.13.37.164 port 47396 ssh2 2020-08-09T20:22:10.903238shield sshd\[17721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.37.164 user=root 2020-08-09T20:22:13.372388shield sshd\[17721\]: Failed password for root from 106.13.37.164 port 54034 ssh2 2020-08-09T20:26:34.208487shield sshd\[18095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.37.164 user=root	2020-08-10 04:33:48
107.170.104.125	attack	2020-08-09T21:56:27.997487centos sshd[20212]: Failed password for root from 107.170.104.125 port 43798 ssh2 2020-08-09T22:00:06.046799centos sshd[20432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.104.125 user=root 2020-08-09T22:00:08.083477centos sshd[20432]: Failed password for root from 107.170.104.125 port 55696 ssh2 ...	2020-08-10 04:26:13
182.77.61.19	attackbotsspam	Unauthorised access (Aug 9) SRC=182.77.61.19 LEN=40 TTL=49 ID=7571 TCP DPT=23 WINDOW=64783 SYN	2020-08-10 04:58:06
168.253.114.236	attackbots	(eximsyntax) Exim syntax errors from 168.253.114.236 (NG/Nigeria/host-168-253-114-236.ngcomworld.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-10 00:56:27 SMTP call from [168.253.114.236] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?")	2020-08-10 04:34:31
82.64.32.76	attackspam	Aug 9 22:21:46 jane sshd[6429]: Failed password for root from 82.64.32.76 port 59740 ssh2 ...	2020-08-10 04:41:00
36.92.1.31	attack	CMS (WordPress or Joomla) login attempt.	2020-08-10 04:36:26
140.143.61.200	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T17:03:04Z and 2020-08-09T17:12:14Z	2020-08-10 04:23:51
2.58.12.176	attackbotsspam	RDP brute forcing (d)	2020-08-10 04:57:11

Recently Reported IPs

254.127.6.150	149.173.1.111	162.243.131.120	103.76.14.102
147.135.116.15	66.191.91.115	83.43.110.226	212.133.83.88
80.252.141.31	181.230.116.38	114.76.83.26	160.176.74.155
158.59.220.170	117.197.86.31	95.159.31.93	189.67.19.99
38.88.38.110	221.20.213.238	16.35.136.9	144.104.81.127