104.168.242.229

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Hostwinds LLC.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-01-24 21:03:47

Comments on same subnet:

IP	Type	Details	Datetime
104.168.242.61	attackbotsspam	TCP Port: 25 invalid blocked dnsbl-sorbs also spam-sorbs and truncate-gbudb (228)	2020-02-21 01:16:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.168.242.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62535
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.168.242.229.		IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012400 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 21:03:43 CST 2020
;; MSG SIZE  rcvd: 119

Host info

229.242.168.104.in-addr.arpa domain name pointer hwsrv-669106.hostwindsdns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
229.242.168.104.in-addr.arpa	name = hwsrv-669106.hostwindsdns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.75.8.129	attackbots	Sep 30 09:05:54 ny01 sshd[20517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.8.129 Sep 30 09:05:56 ny01 sshd[20517]: Failed password for invalid user y from 106.75.8.129 port 48356 ssh2 Sep 30 09:10:29 ny01 sshd[21267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.8.129	2019-09-30 21:43:42
182.176.121.129	attack	19/9/30@08:15:55: FAIL: Alarm-Intrusion address from=182.176.121.129 ...	2019-09-30 21:26:32
115.159.65.195	attackbotsspam	Sep 30 13:41:13 vtv3 sshd\[20753\]: Invalid user git_user from 115.159.65.195 port 38398 Sep 30 13:41:13 vtv3 sshd\[20753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.65.195 Sep 30 13:41:15 vtv3 sshd\[20753\]: Failed password for invalid user git_user from 115.159.65.195 port 38398 ssh2 Sep 30 13:44:37 vtv3 sshd\[22354\]: Invalid user osmc from 115.159.65.195 port 41404 Sep 30 13:44:37 vtv3 sshd\[22354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.65.195 Sep 30 13:58:06 vtv3 sshd\[29312\]: Invalid user enisa from 115.159.65.195 port 53446 Sep 30 13:58:06 vtv3 sshd\[29312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.65.195 Sep 30 13:58:08 vtv3 sshd\[29312\]: Failed password for invalid user enisa from 115.159.65.195 port 53446 ssh2 Sep 30 14:01:44 vtv3 sshd\[31334\]: Invalid user oracle from 115.159.65.195 port 56478 Sep 30 14:01:44 vtv3 sshd\	2019-09-30 21:46:42
119.108.3.128	attackbots	Automated reporting of FTP Brute Force	2019-09-30 21:54:58
46.148.120.111	attackspam	B: Magento admin pass test (wrong country)	2019-09-30 21:48:46
185.62.85.150	attack	Sep 30 03:19:25 php1 sshd\[10098\]: Invalid user alex from 185.62.85.150 Sep 30 03:19:25 php1 sshd\[10098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.85.150 Sep 30 03:19:27 php1 sshd\[10098\]: Failed password for invalid user alex from 185.62.85.150 port 41280 ssh2 Sep 30 03:23:42 php1 sshd\[10507\]: Invalid user fnd from 185.62.85.150 Sep 30 03:23:42 php1 sshd\[10507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.62.85.150	2019-09-30 21:39:37
92.53.65.97	attackbotsspam	3724/tcp 3614/tcp 3917/tcp... [2019-09-10/29]265pkt,237pt.(tcp)	2019-09-30 21:30:36
185.176.27.42	attackbotsspam	09/30/2019-08:42:06.202087 185.176.27.42 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-30 21:12:49
213.239.154.35	attackbotsspam	09/30/2019-15:09:56.051322 213.239.154.35 Protocol: 6 ET CHAT IRC PING command	2019-09-30 21:28:02
23.129.64.100	attack	Sep 30 13:21:45 thevastnessof sshd[4131]: Failed password for root from 23.129.64.100 port 43143 ssh2 ...	2019-09-30 21:40:41
82.251.218.18	attackbots	22/tcp 22/tcp [2019-08-13/09-30]2pkt	2019-09-30 21:54:06
51.38.162.232	attackbots	Sep 30 13:07:07 thevastnessof sshd[3758]: Failed password for root from 51.38.162.232 port 37905 ssh2 ...	2019-09-30 21:18:51
222.90.86.4	attackspam	Automated reporting of FTP Brute Force	2019-09-30 21:35:20
77.247.181.163	attackspambots	$f2bV_matches	2019-09-30 21:51:49
52.17.180.188	attackbots	$f2bV_matches_ltvn	2019-09-30 21:34:49

Recently Reported IPs

61.183.52.146	111.93.145.20	104.168.160.86	61.178.223.218
51.79.85.124	182.253.110.172	106.12.159.174	185.16.60.218
121.131.74.159	103.55.146.143	61.134.23.203	114.237.109.228
85.207.53.66	217.182.193.13	103.217.178.174	43.226.145.213
103.197.199.7	216.68.91.104	59.9.237.142	102.184.207.84