109.162.242.104

Basic Info

City: unknown

Region: unknown

Country: Iran (ISLAMIC Republic Of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.162.242.237	attackbotsspam	Unauthorized IMAP connection attempt	2020-08-08 13:04:47
109.162.242.119	attack	Unauthorized IMAP connection attempt	2020-08-08 12:28:51
109.162.242.201	attackbots	Unauthorized IMAP connection attempt	2020-07-29 00:35:56
109.162.242.177	attackspambots	VNC brute force attack detected by fail2ban	2020-07-05 16:11:43
109.162.242.249	attack	failed_logins	2020-06-13 21:21:21
109.162.242.2	attackspambots	(imapd) Failed IMAP login from 109.162.242.2 (IR/Iran/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 11 16:40:13 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=109.162.242.2, lip=5.63.12.44, TLS, session=	2020-06-12 03:03:23
109.162.242.157	attackbotsspam	Jun 8 05:35:25 mail.srvfarm.net postfix/smtps/smtpd[673725]: warning: unknown[109.162.242.157]: SASL PLAIN authentication failed: Jun 8 05:35:25 mail.srvfarm.net postfix/smtps/smtpd[673725]: lost connection after AUTH from unknown[109.162.242.157] Jun 8 05:38:01 mail.srvfarm.net postfix/smtps/smtpd[673725]: warning: unknown[109.162.242.157]: SASL PLAIN authentication failed: Jun 8 05:38:01 mail.srvfarm.net postfix/smtps/smtpd[673725]: lost connection after AUTH from unknown[109.162.242.157] Jun 8 05:43:14 mail.srvfarm.net postfix/smtpd[671306]: warning: unknown[109.162.242.157]: SASL PLAIN authentication failed:	2020-06-08 18:28:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.162.242.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16696
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.162.242.104.		IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 17:16:29 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 104.242.162.109.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.242.162.109.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.216	attackspambots	Aug 2 08:42:11 vps sshd[453354]: Failed password for root from 218.92.0.216 port 44471 ssh2 Aug 2 08:42:13 vps sshd[453354]: Failed password for root from 218.92.0.216 port 44471 ssh2 Aug 2 08:42:17 vps sshd[453889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.216 user=root Aug 2 08:42:19 vps sshd[453889]: Failed password for root from 218.92.0.216 port 58590 ssh2 Aug 2 08:42:23 vps sshd[453889]: Failed password for root from 218.92.0.216 port 58590 ssh2 ...	2020-08-02 14:43:19
111.161.74.121	attackbots	Aug 2 05:35:04 Ubuntu-1404-trusty-64-minimal sshd\[27809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.121 user=root Aug 2 05:35:06 Ubuntu-1404-trusty-64-minimal sshd\[27809\]: Failed password for root from 111.161.74.121 port 60314 ssh2 Aug 2 05:47:01 Ubuntu-1404-trusty-64-minimal sshd\[746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.121 user=root Aug 2 05:47:03 Ubuntu-1404-trusty-64-minimal sshd\[746\]: Failed password for root from 111.161.74.121 port 44596 ssh2 Aug 2 05:52:38 Ubuntu-1404-trusty-64-minimal sshd\[3546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.121 user=root	2020-08-02 14:48:38
212.185.58.83	attackbotsspam	Aug 2 08:25:33 PorscheCustomer sshd[17080]: Failed password for root from 212.185.58.83 port 39865 ssh2 Aug 2 08:31:31 PorscheCustomer sshd[17140]: Failed password for root from 212.185.58.83 port 59048 ssh2 ...	2020-08-02 14:40:13
192.99.212.132	attack	Aug 2 06:50:35 *** sshd[5920]: User root from 192.99.212.132 not allowed because not listed in AllowUsers	2020-08-02 14:51:34
92.222.74.255	attackbots	2020-08-02T05:34:43.877971ns386461 sshd\[19116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=255.ip-92-222-74.eu user=root 2020-08-02T05:34:45.884686ns386461 sshd\[19116\]: Failed password for root from 92.222.74.255 port 37366 ssh2 2020-08-02T05:48:08.829262ns386461 sshd\[32168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=255.ip-92-222-74.eu user=root 2020-08-02T05:48:10.647335ns386461 sshd\[32168\]: Failed password for root from 92.222.74.255 port 48136 ssh2 2020-08-02T05:52:43.859489ns386461 sshd\[3998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=255.ip-92-222-74.eu user=root ...	2020-08-02 14:44:10
106.12.202.180	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-02 14:22:08
111.229.93.104	attack	2020-08-02T05:51:46.168026ns386461 sshd\[3123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.93.104 user=root 2020-08-02T05:51:48.914532ns386461 sshd\[3123\]: Failed password for root from 111.229.93.104 port 56718 ssh2 2020-08-02T05:54:15.117214ns386461 sshd\[5328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.93.104 user=root 2020-08-02T05:54:17.650477ns386461 sshd\[5328\]: Failed password for root from 111.229.93.104 port 51700 ssh2 2020-08-02T05:56:30.455292ns386461 sshd\[7437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.93.104 user=root ...	2020-08-02 14:39:06
124.133.4.154	attackspam	Aug 2 07:43:42 vps639187 sshd\[4947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.133.4.154 user=root Aug 2 07:43:43 vps639187 sshd\[4947\]: Failed password for root from 124.133.4.154 port 42021 ssh2 Aug 2 07:48:13 vps639187 sshd\[4965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.133.4.154 user=root ...	2020-08-02 14:16:45
194.87.138.218	attackbotsspam	Unauthorized connection attempt detected from IP address 194.87.138.218 to port 23	2020-08-02 14:54:46
85.209.0.251	attackbots	...	2020-08-02 14:41:42
189.47.214.28	attack	Aug 2 07:12:11 rocket sshd[18946]: Failed password for root from 189.47.214.28 port 53920 ssh2 Aug 2 07:17:14 rocket sshd[19686]: Failed password for root from 189.47.214.28 port 37108 ssh2 ...	2020-08-02 14:24:57
81.199.122.12	attackbots	Aug 2 05:50:39 host sshd[24397]: Invalid user admin from 81.199.122.12 port 57212 Aug 2 05:50:43 host sshd[24413]: Invalid user admin from 81.199.122.12 port 45038 Aug 2 05:50:51 host sshd[24415]: Invalid user admin from 81.199.122.12 port 56376 Aug 2 05:51:02 host sshd[24418]: Invalid user admin from 81.199.122.12 port 49302 Aug 2 05:51:10 host sshd[24421]: Invalid user admin from 81.199.122.12 port 53314 Aug 2 05:51:14 host sshd[24423]: Invalid user admin from 81.199.122.12 port 46624 Aug 2 05:51:19 host sshd[24425]: Invalid user pi from 81.199.122.12 port 58066 Aug 2 0 ...	2020-08-02 14:39:57
185.19.28.178	attackbots	Aug 2 06:32:08 lnxded64 sshd[31021]: Failed password for root from 185.19.28.178 port 43710 ssh2 Aug 2 06:32:08 lnxded64 sshd[31021]: Failed password for root from 185.19.28.178 port 43710 ssh2	2020-08-02 14:52:03
206.189.198.237	attackspambots	Invalid user zhuht from 206.189.198.237 port 49266	2020-08-02 14:24:36
114.33.99.246	attackbots	Telnet Server BruteForce Attack	2020-08-02 14:28:36

Recently Reported IPs

109.162.241.98	109.162.242.111	109.162.242.1	109.162.242.12
109.162.242.113	109.162.242.11	109.162.242.114	109.162.242.116
109.162.242.127	109.162.242.132	109.162.242.120	109.162.242.122
109.162.242.124	109.162.242.135	109.162.242.136	109.162.242.118
109.162.242.129	109.162.242.138	16.142.121.21	109.162.242.143