104.22.41.169 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.22.41.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13337
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.22.41.169.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:34:44 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 169.41.22.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.41.22.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.235.24.222	attack	Invalid user developer from 60.235.24.222 port 43880	2020-08-30 16:41:28
145.239.29.217	attackbots	145.239.29.217 - - \[30/Aug/2020:10:07:46 +0200\] "POST /wp-login.php HTTP/1.0" 200 5615 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.29.217 - - \[30/Aug/2020:10:07:47 +0200\] "POST /wp-login.php HTTP/1.0" 200 5607 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.29.217 - - \[30/Aug/2020:10:07:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 5593 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-08-30 16:48:44
177.91.184.169	attack	Attempted Brute Force (dovecot)	2020-08-30 16:42:15
206.41.176.101	attackbotsspam	Registration form abuse	2020-08-30 16:36:42
177.68.200.31	attackbots	DATE:2020-08-30 05:45:26, IP:177.68.200.31, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-30 16:50:56
188.166.49.21	attack	Aug 29 19:26:29 eddieflores sshd\[3764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.49.21 user=root Aug 29 19:26:31 eddieflores sshd\[3764\]: Failed password for root from 188.166.49.21 port 39532 ssh2 Aug 29 19:30:11 eddieflores sshd\[4003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.49.21 user=root Aug 29 19:30:13 eddieflores sshd\[4003\]: Failed password for root from 188.166.49.21 port 49520 ssh2 Aug 29 19:34:01 eddieflores sshd\[4227\]: Invalid user lib from 188.166.49.21	2020-08-30 16:33:56
106.54.48.208	attack	Aug 29 22:10:02 hanapaa sshd\[6875\]: Invalid user test from 106.54.48.208 Aug 29 22:10:02 hanapaa sshd\[6875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.48.208 Aug 29 22:10:04 hanapaa sshd\[6875\]: Failed password for invalid user test from 106.54.48.208 port 37862 ssh2 Aug 29 22:12:02 hanapaa sshd\[6978\]: Invalid user louwg from 106.54.48.208 Aug 29 22:12:02 hanapaa sshd\[6978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.48.208	2020-08-30 16:18:40
82.147.112.21	attackspam	srvr3: (mod_security) mod_security (id:920350) triggered by 82.147.112.21 (RU/Russia/21.112.147.82.ntg.enforta.com): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/30 05:47:02 [error] 79373#0: 839 [client 82.147.112.21] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159875922217.505643"] [ref "o0,14v21,14"], client: 82.147.112.21, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-30 16:22:36
110.165.40.168	attackbots	Invalid user sun1 from 110.165.40.168 port 42142	2020-08-30 16:46:30
203.66.168.81	attack	SSH Brute-Force attacks	2020-08-30 16:46:59
95.182.122.131	attackbotsspam	Invalid user pz from 95.182.122.131 port 49583	2020-08-30 16:24:10
67.205.132.149	attack	Brute force 50 attempts	2020-08-30 16:30:54
119.96.171.162	attackbots	Aug 30 07:42:41 santamaria sshd\[18300\]: Invalid user git from 119.96.171.162 Aug 30 07:42:41 santamaria sshd\[18300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.171.162 Aug 30 07:42:43 santamaria sshd\[18300\]: Failed password for invalid user git from 119.96.171.162 port 43676 ssh2 ...	2020-08-30 16:28:28
72.28.48.101	attackbots	Port 22 Scan, PTR: None	2020-08-30 16:23:10
95.154.24.73	attack	Triggered by Fail2Ban at Ares web server	2020-08-30 17:01:09

Recently Reported IPs

104.22.41.166	222.113.206.79	104.22.41.170	104.22.41.171
104.22.41.174	104.22.41.172	104.22.41.185	104.22.41.188
104.22.41.201	104.22.41.209	104.22.41.211	104.22.41.196
104.22.41.187	104.22.41.194	104.22.41.220	104.22.41.230
104.22.41.232	104.22.41.241	104.22.41.246	104.22.41.247