104.16.1.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.16.128.7	attackbots	[SYS1] Unsolicited Traffic - Port=ICMP (1x)	2020-10-14 06:25:42
104.16.181.15	attackbotsspam	spam host / http://firstmailer.info/firstmailer/link.php?M=	2020-08-18 00:51:56
104.16.120.50	attackspambots	SSH login attempts.	2020-06-19 19:02:30
104.16.119.50	attack	SSH login attempts.	2020-06-19 18:05:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.16.1.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35614
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.16.1.85.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040102 1800 900 604800 86400

;; Query time: 79 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 01 22:58:46 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 85.1.16.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.1.16.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.234.28.121	attackspambots	35.234.28.121 - - [24/Jun/2020:13:07:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2017 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.234.28.121 - - [24/Jun/2020:13:07:45 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.234.28.121 - - [24/Jun/2020:13:07:46 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-24 22:29:18
73.41.104.30	attackspam	2020-06-24T11:00:25.757140ns386461 sshd\[23414\]: Invalid user sy1 from 73.41.104.30 port 33273 2020-06-24T11:00:25.761575ns386461 sshd\[23414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-41-104-30.hsd1.ca.comcast.net 2020-06-24T11:00:27.785447ns386461 sshd\[23414\]: Failed password for invalid user sy1 from 73.41.104.30 port 33273 ssh2 2020-06-24T16:10:39.399088ns386461 sshd\[14584\]: Invalid user sysdbadmin from 73.41.104.30 port 40852 2020-06-24T16:10:39.404436ns386461 sshd\[14584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-41-104-30.hsd1.ca.comcast.net ...	2020-06-24 22:25:59
105.209.180.46	attackspam	20/6/24@08:59:23: FAIL: Alarm-Network address from=105.209.180.46 ...	2020-06-24 22:28:34
5.135.185.27	attackbotsspam	$f2bV_matches	2020-06-24 22:33:47
45.234.32.223	attackbotsspam	Automatic report - Port Scan Attack	2020-06-24 21:53:07
190.204.178.85	attackspam	20/6/24@08:08:30: FAIL: Alarm-Network address from=190.204.178.85 ...	2020-06-24 21:51:55
3.7.202.184	attackspam	Jun 24 13:16:10 ns392434 sshd[2135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.7.202.184 user=root Jun 24 13:16:11 ns392434 sshd[2135]: Failed password for root from 3.7.202.184 port 35840 ssh2 Jun 24 13:28:20 ns392434 sshd[2389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.7.202.184 user=root Jun 24 13:28:22 ns392434 sshd[2389]: Failed password for root from 3.7.202.184 port 47318 ssh2 Jun 24 13:39:03 ns392434 sshd[2756]: Invalid user musikbot from 3.7.202.184 port 48248 Jun 24 13:39:03 ns392434 sshd[2756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.7.202.184 Jun 24 13:39:03 ns392434 sshd[2756]: Invalid user musikbot from 3.7.202.184 port 48248 Jun 24 13:39:05 ns392434 sshd[2756]: Failed password for invalid user musikbot from 3.7.202.184 port 48248 ssh2 Jun 24 14:08:21 ns392434 sshd[3558]: Invalid user soc from 3.7.202.184 port 50998	2020-06-24 21:59:57
194.87.138.46	attackbotsspam	Jun 24 08:22:26 xxxxxxx5185820 sshd[31148]: Invalid user fake from 194.87.138.46 port 35238 Jun 24 08:22:27 xxxxxxx5185820 sshd[31148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.87.138.46 Jun 24 08:22:29 xxxxxxx5185820 sshd[31148]: Failed password for invalid user fake from 194.87.138.46 port 35238 ssh2 Jun 24 08:22:29 xxxxxxx5185820 sshd[31148]: Received disconnect from 194.87.138.46 port 35238:11: Bye Bye [preauth] Jun 24 08:22:29 xxxxxxx5185820 sshd[31148]: Disconnected from 194.87.138.46 port 35238 [preauth] Jun 24 08:22:29 xxxxxxx5185820 sshd[31153]: Invalid user admin from 194.87.138.46 port 37930 Jun 24 08:22:29 xxxxxxx5185820 sshd[31153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.87.138.46 Jun 24 08:22:31 xxxxxxx5185820 sshd[31153]: Failed password for invalid user admin from 194.87.138.46 port 37930 ssh2 Jun 24 08:22:31 xxxxxxx5185820 sshd[31153]: Received discon........ -------------------------------	2020-06-24 22:02:25
171.15.17.161	attackspambots	2020-06-24T14:14:39.168056shield sshd\[17430\]: Invalid user konstantin from 171.15.17.161 port 8458 2020-06-24T14:14:39.171403shield sshd\[17430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.15.17.161 2020-06-24T14:14:41.187028shield sshd\[17430\]: Failed password for invalid user konstantin from 171.15.17.161 port 8458 ssh2 2020-06-24T14:17:02.679207shield sshd\[17798\]: Invalid user admin from 171.15.17.161 port 17707 2020-06-24T14:17:02.683382shield sshd\[17798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.15.17.161	2020-06-24 22:30:10
218.92.0.208	attack	Jun 24 15:36:37 eventyay sshd[1297]: Failed password for root from 218.92.0.208 port 35420 ssh2 Jun 24 15:39:40 eventyay sshd[1350]: Failed password for root from 218.92.0.208 port 37239 ssh2 ...	2020-06-24 21:58:57
196.249.98.30	attackspambots	Automatic report - Port Scan Attack	2020-06-24 22:16:36
159.89.162.186	attack	159.89.162.186 - - [24/Jun/2020:14:08:26 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.162.186 - - [24/Jun/2020:14:08:27 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.162.186 - - [24/Jun/2020:14:08:28 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-24 21:54:36
51.255.197.164	attackspam	Jun 24 13:50:53 rush sshd[26548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164 Jun 24 13:50:56 rush sshd[26548]: Failed password for invalid user quercia from 51.255.197.164 port 46186 ssh2 Jun 24 13:56:50 rush sshd[26720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164 ...	2020-06-24 22:12:34
222.186.175.212	attack	Jun 24 14:11:19 ip-172-31-61-156 sshd[2408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Jun 24 14:11:21 ip-172-31-61-156 sshd[2408]: Failed password for root from 222.186.175.212 port 52660 ssh2 ...	2020-06-24 22:19:05
119.27.165.49	attackbotsspam	Jun 24 14:33:11 srv-ubuntu-dev3 sshd[69065]: Invalid user x from 119.27.165.49 Jun 24 14:33:11 srv-ubuntu-dev3 sshd[69065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.165.49 Jun 24 14:33:11 srv-ubuntu-dev3 sshd[69065]: Invalid user x from 119.27.165.49 Jun 24 14:33:13 srv-ubuntu-dev3 sshd[69065]: Failed password for invalid user x from 119.27.165.49 port 33207 ssh2 Jun 24 14:35:44 srv-ubuntu-dev3 sshd[69442]: Invalid user steve from 119.27.165.49 Jun 24 14:35:44 srv-ubuntu-dev3 sshd[69442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.165.49 Jun 24 14:35:44 srv-ubuntu-dev3 sshd[69442]: Invalid user steve from 119.27.165.49 Jun 24 14:35:46 srv-ubuntu-dev3 sshd[69442]: Failed password for invalid user steve from 119.27.165.49 port 47058 ssh2 Jun 24 14:38:24 srv-ubuntu-dev3 sshd[69949]: Invalid user linda from 119.27.165.49 ...	2020-06-24 22:20:07

Recently Reported IPs

104.16.1.84	104.16.1.86	104.16.1.87	104.16.1.88
104.16.1.89	104.16.1.9	104.16.1.90	104.16.1.91
104.16.1.92	104.16.1.93	104.16.1.94	104.16.10.208
104.16.100.241	104.16.100.82	104.16.101.241	104.16.101.82
104.16.102.241	104.16.103.241	104.16.105.11	104.16.109.183