104.244.230.242

Basic Info

City: unknown

Region: unknown

Country: Jamaica

Internet Service Provider: Digicel Jamaica

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 445	2020-06-26 03:38:22

Comments on same subnet:

IP	Type	Details	Datetime
104.244.230.189	attackspambots	Automatic report - XMLRPC Attack	2020-03-27 07:20:29
104.244.230.210	attackbotsspam	Host Scan	2019-12-05 19:51:39
104.244.230.30	attackspambots	Autoban 104.244.230.30 AUTH/CONNECT	2019-11-18 17:26:25
104.244.230.172	attack	SASL Brute Force	2019-08-11 23:59:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.244.230.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35539
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.244.230.242.		IN	A

;; AUTHORITY SECTION:
.			277	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062502 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 26 03:38:19 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 242.230.244.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.230.244.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.254.0.113	attackspambots	Brute force attempt	2019-12-28 23:46:08
144.91.82.224	attackspam	Attempted to connect 2 times to port 80 TCP	2019-12-28 23:08:33
95.143.135.226	attackspambots	95.143.135.226 - - [28/Dec/2019:09:30:15 -0500] "GET /?page=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&action=view& HTTP/1.1" 200 17545 "https://ccbrass.com/?page=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&action=view&" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-12-28 23:19:03
192.99.152.160	attackspambots	" "	2019-12-28 23:17:57
123.16.108.73	attackspam	Unauthorized connection attempt from IP address 123.16.108.73 on Port 445(SMB)	2019-12-28 23:28:29
14.63.174.149	attackspambots	Dec 28 15:24:56 srv-ubuntu-dev3 sshd[19906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 user=mysql Dec 28 15:24:58 srv-ubuntu-dev3 sshd[19906]: Failed password for mysql from 14.63.174.149 port 33433 ssh2 Dec 28 15:27:34 srv-ubuntu-dev3 sshd[20119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 user=root Dec 28 15:27:36 srv-ubuntu-dev3 sshd[20119]: Failed password for root from 14.63.174.149 port 44637 ssh2 Dec 28 15:31:56 srv-ubuntu-dev3 sshd[20453]: Invalid user lewelling from 14.63.174.149 Dec 28 15:31:56 srv-ubuntu-dev3 sshd[20453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 Dec 28 15:31:56 srv-ubuntu-dev3 sshd[20453]: Invalid user lewelling from 14.63.174.149 Dec 28 15:31:58 srv-ubuntu-dev3 sshd[20453]: Failed password for invalid user lewelling from 14.63.174.149 port 55913 ssh2 Dec 28 15:34:40 srv-ubuntu-d ...	2019-12-28 23:05:31
60.241.15.166	attackspam	Dec 28 15:29:42 exim[14969]: [1\56] 1ilD64-0003tR-Dc H=60-241-15-166.tpgi.com.au [60.241.15.166] F= rejected after DATA: This message scored 19.7 spam points.	2019-12-28 23:34:18
148.76.108.146	attack	Dec 28 15:25:22 Invalid user paulette from 148.76.108.146 port 35632	2019-12-28 23:38:01
51.91.247.125	attack	12/28/2019-15:33:08.141421 51.91.247.125 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 53	2019-12-28 23:10:46
77.89.207.22	attackspam	77.89.207.22 - - [28/Dec/2019:09:29:49 -0500] "GET /?page=../../../../../../../../etc/passwd%00&action=view& HTTP/1.1" 200 17544 "https://ccbrass.com/?page=../../../../../../../../etc/passwd%00&action=view&" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-12-28 23:41:40
74.82.47.3	attackbots	Unauthorized connection attempt detected from IP address 74.82.47.3 to port 873	2019-12-28 23:22:48
61.221.84.14	attackspambots	srv.marc-hoffrichter.de:80 61.221.84.14 - - [28/Dec/2019:15:30:07 +0100] "GET / HTTP/1.1" 400 0 "-" "-" srv.marc-hoffrichter.de:80 61.221.84.14 - - [28/Dec/2019:15:30:29 +0100] "GET / HTTP/1.1" 400 0 "-" "-"	2019-12-28 23:10:01
115.159.66.109	attackbots	$f2bV_matches	2019-12-28 23:46:39
192.52.242.127	attackbots	Dec 28 15:25:56 v22018086721571380 sshd[9195]: Failed password for invalid user tmpuser from 192.52.242.127 port 55524 ssh2	2019-12-28 23:23:47
14.244.195.163	attack	19/12/28@09:30:27: FAIL: Alarm-Network address from=14.244.195.163 19/12/28@09:30:27: FAIL: Alarm-Network address from=14.244.195.163 ...	2019-12-28 23:11:42

Recently Reported IPs

58.247.201.44	167.71.88.180	1.55.108.102	192.99.98.62
179.70.122.149	94.25.230.251	20.118.58.3	10.128.134.228
70.207.144.169	162.12.217.133	58.57.0.98	193.27.229.68
191.95.150.196	182.57.202.112	114.231.105.174	47.62.179.15
172.86.125.116	191.235.70.69	91.96.120.135	82.65.85.163