Go
104.130.24.227
is probably a
Hacker
95 %
United States
Report Abuse
9attacks reported
5Brute-ForceSSH
3FTP Brute-ForceHacking
1Port Scan
from 3 distinct reporters
and 1 distinct sources : AbuseIPDB
104.130.24.227 was first signaled at 2020-08-04 00:42 and last record was at 2020-08-04 13:40.
IP

104.130.24.227

Organization
Rackspace Hosting
Localisation
United States
Indiana, South Bend
NetRange : First & Last IP
104.130.0.0 - 104.130.255.255
Network CIDR
104.130.0.0/16

Cybercrime IP Feeds

Date UTC Category Sub Categories Source List Source Logs
2020-08-04 13:40 attacks Brute-ForceSSH AbuseIPDB 20 attempts against mh-ssh on pluto
2020-08-04 12:51 attacks Brute-ForceSSH AbuseIPDB 20 attempts against mh-ssh on leaf
2020-08-04 12:10 attacks Brute-ForceSSH AbuseIPDB 20 attempts against mh-ssh on mist
2020-08-04 12:06 attacks FTP Brute-ForceHacking AbuseIPDB Aug 4 11:21:01 www sshd[26644]: Bad protocol version identification '' from 104.130.24.227 Aug 4 11:21:02 www sshd[26645]: pam_unix(sshd:aut
2020-08-04 08:17 attacks Brute-ForceSSH AbuseIPDB 20 attempts against mh-ssh on db-pre
2020-08-04 07:26 attacks Port Scan AbuseIPDB Probing for vulnerable services
2020-08-04 04:27 attacks FTP Brute-ForceHacking AbuseIPDB Aug 4 11:21:01 www sshd[26644]: Bad protocol version identification '' from 104.130.24.227 Aug 4 11:21:02 www sshd[26645]: pam_unix(sshd:aut
2020-08-04 02:29 attacks Brute-ForceSSH AbuseIPDB 20 attempts against mh-ssh on storm
2020-08-04 00:42 attacks FTP Brute-ForceHacking AbuseIPDB Aug 4 11:21:01 www sshd[26644]: Bad protocol version identification '' from 104.130.24.227 Aug 4 11:21:02 www sshd[26645]: pam_unix(sshd:aut
only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

abuse
IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)
anonymizer
Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.
attacks
bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.
malware
Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware

Whois

NetRange: 104.130.0.0 - 104.130.255.255
CIDR: 104.130.0.0/16
NetName: RACKS-8-NET-16
NetHandle: NET-104-130-0-0-1
Parent: NET104 (NET-104-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS19994
Organization: Rackspace Hosting (RACKS-8)
RegDate: 2014-05-19
Updated: 2014-05-19
Ref: https://rdap.arin.net/registry/ip/ 104.130.0.0

Rackspace Hosting (RACKS-8)

OrgNOCHandle: HANSE157-ARIN
OrgNOCName: Hansell, Chris
OrgNOCPhone: +1-210-312-4000
OrgNOCEmail: hostmaster@rackspace.com
OrgNOCRef: https://rdap.arin.net/registry/entity/HANSE157-ARIN

OrgTechHandle: HANSE157-ARIN
OrgTechName: Hansell, Chris
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: https://rdap.arin.net/registry/entity/HANSE157-ARIN

OrgTechHandle: IPADM17-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPADM17-ARIN

OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName: Abuse Desk
OrgAbusePhone: +1-210-312-4000
OrgAbuseEmail: abuse@rackspace.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE45-ARIN

OrgTechHandle: ZR9-ARIN
OrgTechName: Rackspace, com
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: https://rdap.arin.net/registry/entity/ZR9-ARIN


NetRange: 104.130.254.0 - 104.130.255.255
CIDR: 104.130.254.0/23
NetName: RACKS-8-1419028578928946
NetHandle: NET-104-130-254-0-1
Parent: RACKS-8-NET-16 (NET-104-130-0-0-1)
NetType: Reassigned
OriginAS:
Customer: Cloud Loadbalancing as a Service-LBaaS (DFW) (C05534823)
RegDate: 2014-12-19
Updated: 2014-12-19
Ref: https://rdap.arin.net/registry/ip/104.130.254.0

CustName: Cloud Loadbalancing as a Service-LBaaS (DFW)
Address: 5000 Walzem Rd.
City: San Antonio
StateProv: TX
PostalCode: 78218
Country: US
RegDate: 2014-12-19
Updated: 2014-12-19
Ref: https://rdap.arin.net/registry/entity/C05534823

OrgNOCHandle: HANSE157-ARIN
OrgNOCName: Hansell, Chris
OrgNOCPhone: +1-210-312-4000
OrgNOCEmail: hostmaster@rackspace.com
OrgNOCRef: https://rdap.arin.net/registry/entity/HANSE157-ARIN

OrgTechHandle: HANSE157-ARIN
OrgTechName: Hansell, Chris
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: https://rdap.arin.net/registry/entity/HANSE157-ARIN

OrgTechHandle: IPADM17-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPADM17-ARIN

OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName: Abuse Desk
OrgAbusePhone: +1-210-312-4000
OrgAbuseEmail: abuse@rackspace.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE45-ARIN

OrgTechHandle: ZR9-ARIN
OrgTechName: Rackspace, com
OrgTechPhone: +1-210-312-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: https://rdap.arin.net/registry/entity/ZR9-ARIN
most specific ip range is highlighted
Updated : 2020-07-28