204.11.144.104

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 204.11.144.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63605
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;204.11.144.104.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 03:06:22 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 104.144.11.204.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.144.11.204.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.118.161.29	attack	srv02 Mass scanning activity detected Target: 1717 ..	2020-10-10 01:43:47
197.253.9.50	attackspambots	Automatic report - Banned IP Access	2020-10-10 01:52:43
167.172.157.79	attackspambots	web site upload, session attack, gosh - all the tricks!!	2020-10-10 02:01:25
82.67.91.74	attackspam	(cxs) cxs mod_security triggered by 82.67.91.74 (FR/France/rob76-1_migr-82-67-91-74.fbx.proxad.net): 1 in the last 3600 secs	2020-10-10 01:42:22
138.68.100.102	attackbotsspam	Lines containing failures of 138.68.100.102 Oct 8 08:42:23 newdogma sshd[22234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.102 user=r.r Oct 8 08:42:25 newdogma sshd[22234]: Failed password for r.r from 138.68.100.102 port 36538 ssh2 Oct 8 08:42:26 newdogma sshd[22234]: Received disconnect from 138.68.100.102 port 36538:11: Bye Bye [preauth] Oct 8 08:42:26 newdogma sshd[22234]: Disconnected from authenticating user r.r 138.68.100.102 port 36538 [preauth] Oct 8 08:58:51 newdogma sshd[22800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.102 user=r.r Oct 8 08:58:53 newdogma sshd[22800]: Failed password for r.r from 138.68.100.102 port 37066 ssh2 Oct 8 08:58:55 newdogma sshd[22800]: Received disconnect from 138.68.100.102 port 37066:11: Bye Bye [preauth] Oct 8 08:58:55 newdogma sshd[22800]: Disconnected from authenticating user r.r 138.68.100.102 port 37066........ ------------------------------	2020-10-10 02:09:51
112.85.42.73	attackspam	Oct 9 18:17:20 mavik sshd[4714]: Failed password for root from 112.85.42.73 port 36781 ssh2 Oct 9 18:17:22 mavik sshd[4714]: Failed password for root from 112.85.42.73 port 36781 ssh2 Oct 9 18:18:27 mavik sshd[4735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.73 user=root Oct 9 18:18:29 mavik sshd[4735]: Failed password for root from 112.85.42.73 port 59645 ssh2 Oct 9 18:18:31 mavik sshd[4735]: Failed password for root from 112.85.42.73 port 59645 ssh2 ...	2020-10-10 02:07:18
103.251.45.235	attackspambots	Oct 9 19:43:29 con01 sshd[1129014]: Failed password for invalid user deployer from 103.251.45.235 port 48666 ssh2 Oct 9 19:44:15 con01 sshd[1130627]: Invalid user test from 103.251.45.235 port 57748 Oct 9 19:44:15 con01 sshd[1130627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.251.45.235 Oct 9 19:44:15 con01 sshd[1130627]: Invalid user test from 103.251.45.235 port 57748 Oct 9 19:44:17 con01 sshd[1130627]: Failed password for invalid user test from 103.251.45.235 port 57748 ssh2 ...	2020-10-10 02:12:59
58.249.55.68	attackspambots	sshguard	2020-10-10 01:39:37
51.83.69.142	attackbots	Oct 9 13:32:54 Tower sshd[30397]: Connection from 51.83.69.142 port 35790 on 192.168.10.220 port 22 rdomain "" Oct 9 13:32:56 Tower sshd[30397]: Failed password for root from 51.83.69.142 port 35790 ssh2 Oct 9 13:32:56 Tower sshd[30397]: Received disconnect from 51.83.69.142 port 35790:11: Bye Bye [preauth] Oct 9 13:32:56 Tower sshd[30397]: Disconnected from authenticating user root 51.83.69.142 port 35790 [preauth]	2020-10-10 01:46:08
158.69.197.113	attackbots	Oct 9 15:11:30 *** sshd[1527]: Invalid user jimmy4834 from 158.69.197.113	2020-10-10 02:04:25
104.244.75.112	attackbotsspam	Invalid user postgres from 104.244.75.112 port 33168	2020-10-10 01:57:34
107.174.26.66	attackbots	Oct 9 20:23:41 pkdns2 sshd\[38464\]: Address 107.174.26.66 maps to airywork.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 9 20:23:41 pkdns2 sshd\[38464\]: Invalid user ubnt from 107.174.26.66Oct 9 20:23:43 pkdns2 sshd\[38464\]: Failed password for invalid user ubnt from 107.174.26.66 port 43538 ssh2Oct 9 20:23:44 pkdns2 sshd\[38466\]: Address 107.174.26.66 maps to airywork.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Oct 9 20:23:44 pkdns2 sshd\[38466\]: Invalid user admin from 107.174.26.66Oct 9 20:23:45 pkdns2 sshd\[38466\]: Failed password for invalid user admin from 107.174.26.66 port 35666 ssh2Oct 9 20:23:46 pkdns2 sshd\[38468\]: Address 107.174.26.66 maps to airywork.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! ...	2020-10-10 01:43:16
69.163.252.247	attack	[ThuOct0822:44:11.1044182020][:error][pid27673:tid47492326594304][client69.163.252.247:56794][client69.163.252.247]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"426"][id"330131"][rev"3"][msg"Atomicorp.comWAFRules:MaliciousBotBlocked$FakeMozillaUserAgentStringDetected$"][severity"CRITICAL"][hostname"panyluz.ch"][uri"/wp/index.php"][unique_id"X396GzgSbtvwjJCGO1WJFQAAAIA"]\,referer:panyluz.ch[ThuOct0822:44:11.8075282020][:error][pid27739:tid47492330796800][client69.163.252.247:44656][client69.163.252.247]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"426"][id"330131"][rev"3"][msg"Atomicorp.comWAFRules:Malici	2020-10-10 01:51:00
94.102.51.78	attackspambots	Oct 9 12:46:02 haigwepa sshd[8112]: Failed password for root from 94.102.51.78 port 45205 ssh2 Oct 9 12:46:06 haigwepa sshd[8112]: Failed password for root from 94.102.51.78 port 45205 ssh2 ...	2020-10-10 02:03:42
5.188.62.14	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-09T16:50:38Z and 2020-10-09T17:01:50Z	2020-10-10 01:59:26

Recently Reported IPs

169.156.255.14	142.231.135.17	222.41.61.135	155.254.215.127
89.237.1.77	95.198.11.246	211.33.155.165	226.22.174.176
245.248.195.131	230.229.248.73	193.13.236.109	9.205.196.165
195.176.188.184	176.87.115.216	100.201.149.23	244.90.196.96
74.181.85.93	205.222.178.105	9.226.63.211	247.249.219.202