104.168.109.197

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       104.168.0.0 - 104.168.127.255
CIDR:           104.168.0.0/17
NetName:        CC-18
NetHandle:      NET-104-168-0-0-1
Parent:         NET104 (NET-104-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   HostPapa (HOSTP-7)
RegDate:        2014-08-27
Updated:        2024-02-02
Comment:        Geofeed https://geofeeds.oniaas.io/geofeeds.csv
Ref:            https://rdap.arin.net/registry/ip/104.168.0.0



OrgName:        HostPapa
OrgId:          HOSTP-7
Address:        325 Delaware Avenue
Address:        Suite 300
City:           Buffalo
StateProv:      NY
PostalCode:     14202
Country:        US
RegDate:        2016-06-06
Updated:        2025-10-05
Ref:            https://rdap.arin.net/registry/entity/HOSTP-7


OrgAbuseHandle: NETAB23-ARIN
OrgAbuseName:   NETABUSE
OrgAbusePhone:  +1-905-315-3455 
OrgAbuseEmail:  net-abuse-global@hostpapa.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/NETAB23-ARIN

OrgTechHandle: NETTE9-ARIN
OrgTechName:   NETTECH
OrgTechPhone:  +1-905-315-3455 
OrgTechEmail:  net-tech-global@hostpapa.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NETTE9-ARIN

RAbuseHandle: NETAB27-ARIN
RAbuseName:   NETABUSE-COLOCROSSING
RAbusePhone:  +1-800-518-9716 
RAbuseEmail:  abuse@colocrossing.com
RAbuseRef:    https://rdap.arin.net/registry/entity/NETAB27-ARIN

RTechHandle: NETTE11-ARIN
RTechName:   NETTECH-COLOCROSSING
RTechPhone:  +1-800-518-9716 
RTechEmail:  support@colocrossing.com
RTechRef:    https://rdap.arin.net/registry/entity/NETTE11-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.109.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29502
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.168.109.197.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026042702 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 14:24:30 CST 2026
;; MSG SIZE  rcvd: 108

Host info

197.109.168.104.in-addr.arpa domain name pointer 104-168-109-197-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.109.168.104.in-addr.arpa	name = 104-168-109-197-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.253.62.48	attack	1582724233 - 02/26/2020 14:37:13 Host: 180.253.62.48/180.253.62.48 Port: 445 TCP Blocked	2020-02-26 23:40:31
148.70.246.130	attackspambots	Feb 26 15:50:48 * sshd[26208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.246.130 Feb 26 15:50:50 * sshd[26208]: Failed password for invalid user ts3server from 148.70.246.130 port 51309 ssh2	2020-02-26 23:14:04
213.169.39.218	attackspam	$f2bV_matches	2020-02-26 23:08:45
14.63.223.226	attackspambots	Feb 26 15:53:32 vps647732 sshd[30486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 Feb 26 15:53:34 vps647732 sshd[30486]: Failed password for invalid user cashier from 14.63.223.226 port 35140 ssh2 ...	2020-02-26 23:12:19
222.186.175.148	attackspam	2020-02-26T16:19:57.727636 sshd[480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-02-26T16:19:59.342023 sshd[480]: Failed password for root from 222.186.175.148 port 41108 ssh2 2020-02-26T16:20:03.680989 sshd[480]: Failed password for root from 222.186.175.148 port 41108 ssh2 2020-02-26T16:19:57.727636 sshd[480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-02-26T16:19:59.342023 sshd[480]: Failed password for root from 222.186.175.148 port 41108 ssh2 2020-02-26T16:20:03.680989 sshd[480]: Failed password for root from 222.186.175.148 port 41108 ssh2 ...	2020-02-26 23:24:37
213.158.10.101	attackbots	Feb 26 05:04:25 tdfoods sshd\[18471\]: Invalid user ftp from 213.158.10.101 Feb 26 05:04:25 tdfoods sshd\[18471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101ppp10.telegraph.spb.ru Feb 26 05:04:28 tdfoods sshd\[18471\]: Failed password for invalid user ftp from 213.158.10.101 port 56329 ssh2 Feb 26 05:08:26 tdfoods sshd\[18809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101ppp10.telegraph.spb.ru user=postfix Feb 26 05:08:29 tdfoods sshd\[18809\]: Failed password for postfix from 213.158.10.101 port 59617 ssh2	2020-02-26 23:10:54
190.202.54.12	attack	Feb 26 15:13:58 localhost sshd\[7636\]: Invalid user liangying from 190.202.54.12 port 23100 Feb 26 15:13:58 localhost sshd\[7636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.202.54.12 Feb 26 15:14:00 localhost sshd\[7636\]: Failed password for invalid user liangying from 190.202.54.12 port 23100 ssh2 Feb 26 15:19:04 localhost sshd\[7763\]: Invalid user tom from 190.202.54.12 port 41058 Feb 26 15:19:04 localhost sshd\[7763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.202.54.12 ...	2020-02-26 23:22:23
46.105.132.32	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-02-26 23:21:07
122.252.238.220	attack	Unauthorised access (Feb 26) SRC=122.252.238.220 LEN=52 TTL=118 ID=6420 DF TCP DPT=445 WINDOW=8192 SYN	2020-02-26 23:16:38
113.110.224.72	attackbotsspam	suspicious action Wed, 26 Feb 2020 10:37:30 -0300	2020-02-26 23:11:44
78.189.182.175	attackbots	DATE:2020-02-26 14:35:10, IP:78.189.182.175, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-26 23:18:32
212.64.23.30	attackspam	$f2bV_matches	2020-02-26 23:39:47
45.67.15.100	attack	Feb 26 08:37:32 mail sshd\[14258\]: Invalid user oracle from 45.67.15.100 ...	2020-02-26 23:05:53
212.64.29.78	attackspam	$f2bV_matches	2020-02-26 23:37:44
91.143.167.153	attack	suspicious action Wed, 26 Feb 2020 10:37:25 -0300	2020-02-26 23:17:56

Recently Reported IPs

10.132.222.123	121.230.89.97	2606:4700:10::6814:8062	2606:4700:10::6814:8426
2606:4700:10::6816:3973	131.9.39.151	178.22.135.141	58.240.69.236
136.249.240.220	191.206.80.25	12.12.96.130	166.112.130.151
196.152.213.82	36.140.162.242	49.231.122.72	2606:4700:10::6814:7291
2606:4700:10::6814:7152	2606:4700:10::6816:526	150.109.12.46	185.145.240.105