104.168.149.244

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Hostwinds LLC.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ICMP MP Probe, Scan -	2019-10-04 01:32:32

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.149.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61262
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.168.149.244.		IN	A

;; AUTHORITY SECTION:
.			394	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100300 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 04 01:32:28 CST 2019
;; MSG SIZE  rcvd: 119

Host info

244.149.168.104.in-addr.arpa domain name pointer client-104-168-149-244.hostwindsdns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
244.149.168.104.in-addr.arpa	name = client-104-168-149-244.hostwindsdns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.66.28.207	attack	Feb 14 13:46:53 marvibiene sshd[2674]: Invalid user byu from 34.66.28.207 port 42204 Feb 14 13:46:53 marvibiene sshd[2674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.66.28.207 Feb 14 13:46:53 marvibiene sshd[2674]: Invalid user byu from 34.66.28.207 port 42204 Feb 14 13:46:55 marvibiene sshd[2674]: Failed password for invalid user byu from 34.66.28.207 port 42204 ssh2 ...	2020-02-15 03:05:01
179.26.116.65	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 02:44:05
106.54.242.239	attackbotsspam	Feb 12 07:18:00 josie sshd[3174]: Connection closed by 106.54.242.239 Feb 13 23:18:21 josie sshd[21206]: Invalid user postgres from 106.54.242.239 Feb 13 23:18:21 josie sshd[21206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 Feb 13 23:18:22 josie sshd[21206]: Failed password for invalid user postgres from 106.54.242.239 port 44590 ssh2 Feb 13 23:18:22 josie sshd[21212]: Received disconnect from 106.54.242.239: 11: Bye Bye Feb 13 23:26:29 josie sshd[5501]: Invalid user kang from 106.54.242.239 Feb 13 23:26:29 josie sshd[5501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 Feb 13 23:26:30 josie sshd[5501]: Failed password for invalid user kang from 106.54.242.239 port 37186 ssh2 Feb 13 23:26:31 josie sshd[5524]: Received disconnect from 106.54.242.239: 11: Bye Bye Feb 13 23:28:21 josie sshd[10544]: Invalid user ldanko from 106.54.242.239 Feb 13 23:28:21 j........ -------------------------------	2020-02-15 02:38:11
184.105.139.70	attackspam	TCP port 8080: Scan and connection	2020-02-15 03:03:22
104.168.28.195	attack	Feb 11 19:45:19 myhostname sshd[24432]: Invalid user pul from 104.168.28.195 Feb 11 19:45:19 myhostname sshd[24432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.28.195 Feb 11 19:45:21 myhostname sshd[24432]: Failed password for invalid user pul from 104.168.28.195 port 43799 ssh2 Feb 11 19:45:21 myhostname sshd[24432]: Received disconnect from 104.168.28.195 port 43799:11: Bye Bye [preauth] Feb 11 19:45:21 myhostname sshd[24432]: Disconnected from 104.168.28.195 port 43799 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.168.28.195	2020-02-15 02:51:59
179.254.12.125	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 02:53:44
184.105.139.71	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:01:27
222.186.30.145	attack	Feb 14 09:09:02 web1 sshd\[21072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.145 user=root Feb 14 09:09:04 web1 sshd\[21072\]: Failed password for root from 222.186.30.145 port 44916 ssh2 Feb 14 09:09:06 web1 sshd\[21072\]: Failed password for root from 222.186.30.145 port 44916 ssh2 Feb 14 09:09:09 web1 sshd\[21072\]: Failed password for root from 222.186.30.145 port 44916 ssh2 Feb 14 09:12:22 web1 sshd\[21441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.145 user=root	2020-02-15 03:18:28
184.105.139.125	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 03:07:24
202.147.198.155	attack	Feb 11 09:41:48 vpxxxxxxx22308 sshd[11361]: Invalid user hostname from 202.147.198.155 Feb 11 09:41:48 vpxxxxxxx22308 sshd[11361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.147.198.155 Feb 11 09:41:51 vpxxxxxxx22308 sshd[11361]: Failed password for invalid user hostname from 202.147.198.155 port 54714 ssh2 Feb 11 09:43:45 vpxxxxxxx22308 sshd[11623]: Invalid user dei from 202.147.198.155 Feb 11 09:43:45 vpxxxxxxx22308 sshd[11623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.147.198.155 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=202.147.198.155	2020-02-15 02:55:54
185.230.82.40	attackbots	Feb 14 19:48:07 MK-Soft-VM5 sshd[20306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.230.82.40 Feb 14 19:48:09 MK-Soft-VM5 sshd[20306]: Failed password for invalid user deploy from 185.230.82.40 port 34804 ssh2 ...	2020-02-15 02:57:37
35.154.98.248	attack	Brute-force attempt banned	2020-02-15 02:47:36
179.168.48.44	attackbots	SSH/22 MH Probe, BF, Hack -	2020-02-15 03:03:41
223.71.167.164	attackspambots	14.02.2020 18:37:14 Connection to port 1812 blocked by firewall	2020-02-15 03:08:38
41.221.168.167	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.221.168.167 user=root Failed password for root from 41.221.168.167 port 60804 ssh2 Invalid user oracle from 41.221.168.167 port 44431 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.221.168.167 Failed password for invalid user oracle from 41.221.168.167 port 44431 ssh2	2020-02-15 03:18:08

Recently Reported IPs

74.124.101.84	104.155.208.250	94.97.254.13	100.107.34.90
142.144.17.40	148.57.120.198	49.81.39.56	87.66.69.3
104.154.32.201	146.185.206.222	95.181.177.34	118.77.238.179
136.52.125.162	125.30.255.91	103.7.29.12	40.219.64.71
147.54.43.206	169.78.63.242	112.39.180.169	182.253.93.218