104.255.169.157

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.255.169.32	attackbotsspam	xmlrpc attack	2020-06-24 13:21:42
104.255.169.139	attackspambots	12/27/2019-17:56:45.586835 104.255.169.139 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-28 07:14:49
104.255.169.139	attackbots	SMB Server BruteForce Attack	2019-12-23 05:20:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.255.169.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7202
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.255.169.157.		IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031100 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 11 19:52:50 CST 2022
;; MSG SIZE  rcvd: 108

Host info

157.169.255.104.in-addr.arpa domain name pointer server2.umpquanexushosting.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.169.255.104.in-addr.arpa	name = server2.umpquanexushosting.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.49.140	attack	Dec 3 06:41:27 hcbbdb sshd\[30729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.ip-51-38-49.eu user=root Dec 3 06:41:30 hcbbdb sshd\[30729\]: Failed password for root from 51.38.49.140 port 55626 ssh2 Dec 3 06:47:42 hcbbdb sshd\[31444\]: Invalid user lisa from 51.38.49.140 Dec 3 06:47:42 hcbbdb sshd\[31444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.ip-51-38-49.eu Dec 3 06:47:44 hcbbdb sshd\[31444\]: Failed password for invalid user lisa from 51.38.49.140 port 38242 ssh2	2019-12-03 14:57:14
118.69.65.193	attackspam	Unauthorised access (Dec 3) SRC=118.69.65.193 LEN=52 TTL=110 ID=11394 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-03 15:19:06
52.203.197.242	attackbots	2019-12-03T06:20:28.790103shield sshd\[19958\]: Invalid user dorcey from 52.203.197.242 port 53725 2019-12-03T06:20:28.794445shield sshd\[19958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-203-197-242.compute-1.amazonaws.com 2019-12-03T06:20:30.754161shield sshd\[19958\]: Failed password for invalid user dorcey from 52.203.197.242 port 53725 ssh2 2019-12-03T06:29:51.356481shield sshd\[22771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-52-203-197-242.compute-1.amazonaws.com user=root 2019-12-03T06:29:52.938063shield sshd\[22771\]: Failed password for root from 52.203.197.242 port 59997 ssh2	2019-12-03 14:59:00
222.186.180.147	attackspam	Dec 3 08:08:26 dcd-gentoo sshd[9673]: User root from 222.186.180.147 not allowed because none of user's groups are listed in AllowGroups Dec 3 08:08:28 dcd-gentoo sshd[9673]: error: PAM: Authentication failure for illegal user root from 222.186.180.147 Dec 3 08:08:26 dcd-gentoo sshd[9673]: User root from 222.186.180.147 not allowed because none of user's groups are listed in AllowGroups Dec 3 08:08:28 dcd-gentoo sshd[9673]: error: PAM: Authentication failure for illegal user root from 222.186.180.147 Dec 3 08:08:26 dcd-gentoo sshd[9673]: User root from 222.186.180.147 not allowed because none of user's groups are listed in AllowGroups Dec 3 08:08:28 dcd-gentoo sshd[9673]: error: PAM: Authentication failure for illegal user root from 222.186.180.147 Dec 3 08:08:28 dcd-gentoo sshd[9673]: Failed keyboard-interactive/pam for invalid user root from 222.186.180.147 port 45454 ssh2 ...	2019-12-03 15:11:19
103.127.241.14	attackbots	Port 22 Scan, PTR: PTR record not found	2019-12-03 15:28:58
218.92.0.141	attackbots	Nov 30 23:42:38 microserver sshd[60306]: Failed none for root from 218.92.0.141 port 17038 ssh2 Nov 30 23:42:39 microserver sshd[60306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Nov 30 23:42:40 microserver sshd[60306]: Failed password for root from 218.92.0.141 port 17038 ssh2 Nov 30 23:42:44 microserver sshd[60306]: Failed password for root from 218.92.0.141 port 17038 ssh2 Nov 30 23:42:47 microserver sshd[60306]: Failed password for root from 218.92.0.141 port 17038 ssh2 Dec 1 04:03:45 microserver sshd[16679]: Failed none for root from 218.92.0.141 port 61045 ssh2 Dec 1 04:03:46 microserver sshd[16679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 1 04:03:47 microserver sshd[16679]: Failed password for root from 218.92.0.141 port 61045 ssh2 Dec 1 04:03:51 microserver sshd[16679]: Failed password for root from 218.92.0.141 port 61045 ssh2 Dec 1 04:03:54 microserve	2019-12-03 15:15:22
46.38.144.32	attackbotsspam	Dec 3 08:19:15 webserver postfix/smtpd\[30340\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 3 08:20:29 webserver postfix/smtpd\[30505\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 3 08:21:41 webserver postfix/smtpd\[30340\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 3 08:22:58 webserver postfix/smtpd\[30340\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 3 08:24:10 webserver postfix/smtpd\[30340\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-03 15:29:23
185.175.93.5	attackbots	12/03/2019-02:17:56.132048 185.175.93.5 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-03 15:18:31
198.199.76.59	attack	Port 22 Scan, PTR: None	2019-12-03 15:09:06
23.129.64.155	attackspambots	12/03/2019-07:29:55.278291 23.129.64.155 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 57	2019-12-03 14:57:43
118.25.62.121	attackbotsspam	118.25.62.121 - - \[03/Dec/2019:07:29:18 +0100\] "POST /wuwu11.php HTTP/1.1" 302 228 "-" "Mozilla/5.0 \(X11\; Linux x86_64\; rv:52.0\) Gecko/20100101 Firefox/52.0" 118.25.62.121 - - \[03/Dec/2019:07:29:19 +0100\] "POST /xw.php HTTP/1.1" 302 224 "-" "Mozilla/5.0 \(X11\; Linux x86_64\; rv:52.0\) Gecko/20100101 Firefox/52.0" 118.25.62.121 - - \[03/Dec/2019:07:29:19 +0100\] "POST /xw1.php HTTP/1.1" 302 225 "-" "Mozilla/5.0 \(X11\; Linux x86_64\; rv:52.0\) Gecko/20100101 Firefox/52.0" 118.25.62.121 - - \[03/Dec/2019:07:29:20 +0100\] "POST /9678.php HTTP/1.1" 302 226 "-" "Mozilla/5.0 \(X11\; Linux x86_64\; rv:52.0\) Gecko/20100101 Firefox/52.0" 118.25.62.121 - - \[03/Dec/2019:07:29:20 +0100\] "POST /wc.php HTTP/1.1" 302 224 "-" "Mozilla/5.0 \(X11\; Linux x86_64\; rv:52.0\) Gecko/20100101 Firefox/52.0" 118.25.62.121 - - \[03/Dec/2019:07:29:20 +0100\] "POST /xx.php HTTP/1.1" 302 224 "-" "Mozilla/5.0 \(X11\; Linux x86_64\; rv:52.0\) Gecko/20100101 Firefox/52.0" 118.25.62.121 - - \[03/Dec/2019:0 ...	2019-12-03 15:29:44
222.186.173.180	attack	2019-12-03T07:22:09.866178abusebot-3.cloudsearch.cf sshd\[4223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root	2019-12-03 15:26:06
117.212.247.40	attack	Connection by 117.212.247.40 on port: 23 got caught by honeypot at 12/3/2019 5:29:57 AM	2019-12-03 15:07:29
111.230.223.94	attackbotsspam	2019-12-03T07:57:11.805265scmdmz1 sshd\[21762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.223.94 user=admin 2019-12-03T07:57:13.861379scmdmz1 sshd\[21762\]: Failed password for admin from 111.230.223.94 port 36012 ssh2 2019-12-03T08:05:02.446947scmdmz1 sshd\[22865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.223.94 user=root ...	2019-12-03 15:20:23
128.199.247.115	attackspambots	Dec 3 08:00:19 mail sshd[16269]: Failed password for root from 128.199.247.115 port 49182 ssh2 Dec 3 08:06:41 mail sshd[17916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.247.115 Dec 3 08:06:43 mail sshd[17916]: Failed password for invalid user server from 128.199.247.115 port 59992 ssh2	2019-12-03 15:12:49

Recently Reported IPs

104.255.169.152	104.255.171.56	104.255.192.115	104.255.194.245
104.255.194.35	104.255.195.120	105.235.74.157	104.255.196.55
104.255.196.60	104.255.213.26	104.255.220.39	104.255.220.69
104.255.32.135	104.255.33.40	104.255.46.82	104.255.75.199
104.27.104.113	104.27.104.114	104.27.105.113	104.27.105.114