8.8.4.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
8.8.4.4	attackspambots	Aug 11 20:22:49 mail kernel: [295965.272612] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=8.8.4.4 DST=77.73.69.240 LEN=119 TOS=0x00 PREC=0x00 TTL=110 ID=55041 PROTO=UDP SPT=53 DPT=32830 LEN=99 Aug 11 20:22:49 mail kernel: [295965.272654] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=8.8.4.4 DST=77.73.69.240 LEN=95 TOS=0x00 PREC=0x00 TTL=110 ID=11630 PROTO=UDP SPT=53 DPT=32830 LEN=75 ...	2019-08-12 07:23:08
8.8.4.4	attack	Aug 11 12:28:11 mail kernel: [267488.275597] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=8.8.4.4 DST=77.73.69.240 LEN=150 TOS=0x00 PREC=0x00 TTL=110 ID=32028 PROTO=UDP SPT=53 DPT=38140 LEN=130 ...	2019-08-11 19:19:34

Type

Details

Datetime

8.8.4.4

attackspambots

Aug 11 20:22:49 mail kernel: [295965.272612] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=8.8.4.4 DST=77.73.69.240 LEN=119 TOS=0x00 PREC=0x00 TTL=110 ID=55041 PROTO=UDP SPT=53 DPT=32830 LEN=99 
Aug 11 20:22:49 mail kernel: [295965.272654] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=8.8.4.4 DST=77.73.69.240 LEN=95 TOS=0x00 PREC=0x00 TTL=110 ID=11630 PROTO=UDP SPT=53 DPT=32830 LEN=75 
...

2019-08-12 07:23:08

8.8.4.4

attack

Aug 11 12:28:11 mail kernel: [267488.275597] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=8.8.4.4 DST=77.73.69.240 LEN=150 TOS=0x00 PREC=0x00 TTL=110 ID=32028 PROTO=UDP SPT=53 DPT=38140 LEN=130 
...

2019-08-11 19:19:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 8.8.4.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15726
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;8.8.4.14.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 04:19:57 CST 2022
;; MSG SIZE  rcvd: 101

Host info

Host 14.4.8.8.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.4.8.8.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.215.153.151	attackspam	1588220555 - 04/30/2020 06:22:35 Host: 112.215.153.151/112.215.153.151 Port: 445 TCP Blocked	2020-04-30 19:56:47
177.159.103.9	attack	(imapd) Failed IMAP login from 177.159.103.9 (BR/Brazil/trontec.static.gvt.net.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 30 08:52:40 ir1 dovecot[264309]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=177.159.103.9, lip=5.63.12.44, TLS, session=	2020-04-30 19:41:18
111.177.117.52	attack	lfd: (smtpauth) Failed SMTP AUTH login from 111.177.117.52 (-): 5 in the last 3600 secs - Tue May 29 18:56:38 2018	2020-04-30 20:05:00
157.230.61.132	attack	Apr 30 13:29:45 server sshd[57958]: Failed password for invalid user mythtv from 157.230.61.132 port 36328 ssh2 Apr 30 13:33:26 server sshd[61037]: Failed password for invalid user zjw from 157.230.61.132 port 47078 ssh2 Apr 30 13:37:01 server sshd[63978]: Failed password for invalid user redmine from 157.230.61.132 port 57820 ssh2	2020-04-30 19:52:10
60.178.34.170	attackspam	Brute force blocker - service: proftpd1 - aantal: 54 - Thu May 31 05:30:18 2018	2020-04-30 19:54:05
45.119.212.93	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-04-30 19:53:28
86.84.41.217	attack	RDP Brute-Force (honeypot 6)	2020-04-30 19:44:12
37.59.123.166	attackspam	Apr 30 10:17:37 host sshd[19230]: Invalid user User from 37.59.123.166 port 53006 ...	2020-04-30 20:09:54
45.117.82.134	attack	2020-04-30T10:55:03.884829homeassistant sshd[22541]: Invalid user yuyue from 45.117.82.134 port 59592 2020-04-30T10:55:03.894737homeassistant sshd[22541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.117.82.134 ...	2020-04-30 19:38:15
220.173.45.35	attackbotsspam	Brute force blocker - service: proftpd1, proftpd2 - aantal: 30 - Tue May 29 12:35:17 2018	2020-04-30 19:58:07
191.96.249.196	attackbots	Brute force blocker - service: exim2 - aantal: 25 - Fri Jun 1 19:35:14 2018	2020-04-30 19:40:55
206.189.132.8	attack	Apr 30 12:35:46 nextcloud sshd\[24431\]: Invalid user admin from 206.189.132.8 Apr 30 12:35:46 nextcloud sshd\[24431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.8 Apr 30 12:35:49 nextcloud sshd\[24431\]: Failed password for invalid user admin from 206.189.132.8 port 36332 ssh2	2020-04-30 19:45:19
87.0.187.111	attack	Unauthorized connection attempt detected from IP address 87.0.187.111 to port 445	2020-04-30 20:10:58
37.228.116.129	spam	Spammail mit unerwünschtem Sexangeboten. Passt auch überhaupt nicht zu meinem Profil. Da ich über Freenet schon gehackt wurde über russische Server, könnte meine E-Mailadresse aus diesen alten Vorfällen stammen. Ich habe vor kurzem eine Warnung von Apple über unerwünschte Aktionen auf meinen Internetaktionen bekommen, die ich zu entfernen versucht habe. Das ist mir wohl auch auf dem E-Mail Postfach von Apple gelungen. Aber auf dem Original Freenet Kanal ist mir das wohl nicht gelungen.	2020-04-30 19:53:58
96.239.123.227	attack	RDPBruteCAu	2020-04-30 19:46:46

Recently Reported IPs

109.122.221.72	185.220.101.156	107.158.85.107	185.68.217.159
104.6.77.65	156.197.205.193	187.120.187.66	38.25.152.138
201.210.174.151	61.75.245.6	182.214.214.109	41.46.184.159
113.77.18.27	101.132.76.96	211.62.59.147	40.107.2.128
178.72.71.183	117.111.1.94	221.13.12.41	27.5.37.254