104.168.21.164

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.168.214.53	attackspambots	[f2b] sshd bruteforce, retries: 1	2020-10-12 05:31:58
104.168.214.53	attack	[f2b] sshd bruteforce, retries: 1	2020-10-11 21:38:42
104.168.214.53	attack	5x Failed Password	2020-10-11 13:35:31
104.168.214.53	attackbotsspam	20 attempts against mh-ssh on ice	2020-10-11 06:59:12
104.168.214.86	attack	Oct 8 11:05:14 mail postfix/smtpd[27643]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: authentication failure	2020-10-09 05:12:13
104.168.214.86	attack	Oct 7 22:46:27 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6 Oct 7 22:46:34 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6	2020-10-08 21:25:49
104.168.214.86	attack	Oct 7 22:46:27 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6 Oct 7 22:46:34 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6	2020-10-08 13:19:54
104.168.214.86	attackspam	Oct 7 22:46:27 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6 Oct 7 22:46:34 mellenthin postfix/smtpd[26683]: warning: hwsrv-786714.hostwindsdns.com[104.168.214.86]: SASL login authentication failed: UGFzc3dvcmQ6	2020-10-08 08:40:21
104.168.214.168	attack	DATE:2020-08-17 05:56:55, IP:104.168.214.168, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-08-17 17:12:38
104.168.21.186	attack		2020-08-14 23:01:33
104.168.219.192	attack	14 - Undeliverable: Emails for p*r@rc.com	2020-08-06 07:41:11
104.168.21.186	attack	Automatic report - Banned IP Access	2020-08-01 18:08:31
104.168.219.197	attackspam	13.07.2020 12:23:00 Recursive DNS scan	2020-07-13 22:02:03
104.168.219.181	attack	Port Scan	2020-05-29 20:45:06
104.168.219.2	attack	Unauthorized connection attempt detected from IP address 104.168.219.2 to port 23	2020-04-03 16:35:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.21.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20143
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.168.21.164.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031602 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 17 04:55:11 CST 2022
;; MSG SIZE  rcvd: 107

Host info

164.21.168.104.in-addr.arpa domain name pointer 104-168-21-164-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.21.168.104.in-addr.arpa	name = 104-168-21-164-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.169.68	attackbots	SSH Brute-Force. Ports scanning.	2020-07-27 15:33:27
96.125.168.246	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-27 16:03:05
201.184.169.106	attackspam	2020-07-27T09:18:40+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-27 15:39:45
106.12.105.130	attackbots	Jul 27 00:52:52 ws24vmsma01 sshd[230179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.130 Jul 27 00:52:54 ws24vmsma01 sshd[230179]: Failed password for invalid user gb from 106.12.105.130 port 45584 ssh2 ...	2020-07-27 15:33:55
84.241.42.26	attackspambots	Jul 27 05:52:12 debian-2gb-nbg1-2 kernel: \[18080439.776377\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=84.241.42.26 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x40 TTL=112 ID=15778 DF PROTO=TCP SPT=61449 DPT=1433 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2020-07-27 16:06:53
192.144.154.178	attackbotsspam	wp BF attempts	2020-07-27 15:57:01
212.64.59.227	attack	Jul 27 10:54:44 dhoomketu sshd[1924782]: Invalid user tir from 212.64.59.227 port 23687 Jul 27 10:54:44 dhoomketu sshd[1924782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.59.227 Jul 27 10:54:44 dhoomketu sshd[1924782]: Invalid user tir from 212.64.59.227 port 23687 Jul 27 10:54:46 dhoomketu sshd[1924782]: Failed password for invalid user tir from 212.64.59.227 port 23687 ssh2 Jul 27 10:56:22 dhoomketu sshd[1924860]: Invalid user webadmin from 212.64.59.227 port 43169 ...	2020-07-27 16:07:24
124.67.255.183	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-07-27 15:52:36
120.132.13.131	attack	Jul 27 02:57:22 lanister sshd[18840]: Invalid user server from 120.132.13.131 Jul 27 02:57:22 lanister sshd[18840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.13.131 Jul 27 02:57:22 lanister sshd[18840]: Invalid user server from 120.132.13.131 Jul 27 02:57:24 lanister sshd[18840]: Failed password for invalid user server from 120.132.13.131 port 42229 ssh2	2020-07-27 15:38:49
152.231.140.150	attackspam	Jul 27 09:25:25 vps sshd[793912]: Failed password for invalid user httpd from 152.231.140.150 port 43030 ssh2 Jul 27 09:29:04 vps sshd[806899]: Invalid user uhs from 152.231.140.150 port 41485 Jul 27 09:29:04 vps sshd[806899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.231.140.150 Jul 27 09:29:07 vps sshd[806899]: Failed password for invalid user uhs from 152.231.140.150 port 41485 ssh2 Jul 27 09:32:37 vps sshd[823833]: Invalid user kf from 152.231.140.150 port 39950 ...	2020-07-27 15:38:16
176.31.252.148	attackspam	2020-07-27T09:02:54.257895mail.standpoint.com.ua sshd[24249]: Invalid user tin from 176.31.252.148 port 39688 2020-07-27T09:02:54.260933mail.standpoint.com.ua sshd[24249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=infra01.linalis.com 2020-07-27T09:02:54.257895mail.standpoint.com.ua sshd[24249]: Invalid user tin from 176.31.252.148 port 39688 2020-07-27T09:02:57.219457mail.standpoint.com.ua sshd[24249]: Failed password for invalid user tin from 176.31.252.148 port 39688 ssh2 2020-07-27T09:06:48.110369mail.standpoint.com.ua sshd[24820]: Invalid user oracle from 176.31.252.148 port 45657 ...	2020-07-27 16:01:38
118.27.9.23	attackspambots	Jul 27 08:47:40 db sshd[15551]: Invalid user jason from 118.27.9.23 port 38208 ...	2020-07-27 15:34:40
111.253.51.64	attackbotsspam	Unauthorised access (Jul 27) SRC=111.253.51.64 LEN=52 TTL=108 ID=24065 DF TCP DPT=445 WINDOW=8192 SYN	2020-07-27 16:07:43
103.74.118.168	attackbots	Automatic report - Banned IP Access	2020-07-27 15:35:20
45.238.232.42	attackbots	$f2bV_matches	2020-07-27 15:52:52

Recently Reported IPs

104.168.198.184	104.168.218.186	104.168.218.30	104.168.219.149
104.168.242.151	104.168.243.160	17.95.72.145	104.168.244.210
104.168.244.248	104.168.245.103	104.168.245.106	104.168.245.113
104.168.245.114	104.168.245.117	104.168.247.153	104.168.247.178
104.168.248.80	104.168.249.11	104.168.251.95	133.239.210.151