161.187.104.214

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.187.104.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64518
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;161.187.104.214.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020301 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 04:00:51 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 214.104.187.161.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.104.187.161.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.209.209.15	attack	SSH login attempts.	2020-10-05 17:02:08
190.204.254.67	attackbots	1601843849 - 10/04/2020 22:37:29 Host: 190.204.254.67/190.204.254.67 Port: 445 TCP Blocked	2020-10-05 16:45:51
51.15.17.226	attackspam	Automatic report - Banned IP Access	2020-10-05 16:46:09
86.104.101.42	attack	Listed on zen-spamhaus also barracudaCentral / proto=6 . srcport=9907 . dstport=445 SMB . (3515)	2020-10-05 17:13:20
46.249.32.146	attackspambots	[2020-10-04 19:46:17] NOTICE[1182][C-000012c9] chan_sip.c: Call from '' (46.249.32.146:61792) to extension '011441904911054' rejected because extension not found in context 'public'. [2020-10-04 19:46:17] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-04T19:46:17.310-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441904911054",SessionID="0x7f22f854d238",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.249.32.146/61792",ACLName="no_extension_match" [2020-10-04 19:46:50] NOTICE[1182][C-000012cb] chan_sip.c: Call from '' (46.249.32.146:55337) to extension '9011441904911054' rejected because extension not found in context 'public'. ...	2020-10-05 17:19:42
183.83.47.186	attackbotsspam	Oct 4 21:37:11 ms-srv sshd[22478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.83.47.186 Oct 4 21:37:14 ms-srv sshd[22478]: Failed password for invalid user system from 183.83.47.186 port 6794 ssh2	2020-10-05 16:51:25
157.245.95.42	attackbots	"Found User-Agent associated with security scanner - Matched Data: nmap scripting engine found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; nmap scripting engine; hs://nmap.org/book/nse.html)"	2020-10-05 17:23:33
123.207.145.66	attack	123.207.145.66 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 5 04:02:33 server2 sshd[25196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.253.133 user=root Oct 5 04:02:35 server2 sshd[25196]: Failed password for root from 172.81.253.133 port 41854 ssh2 Oct 5 04:03:00 server2 sshd[25554]: Failed password for root from 49.135.43.11 port 58740 ssh2 Oct 5 04:03:07 server2 sshd[25822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 user=root Oct 5 04:03:08 server2 sshd[25876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.107.34 user=root IP Addresses Blocked: 172.81.253.133 (CN/China/-) 49.135.43.11 (JP/Japan/-)	2020-10-05 17:25:15
112.85.42.110	attackbotsspam	" "	2020-10-05 17:27:02
185.221.134.250	attackspam	185.221.134.250 was recorded 5 times by 3 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 40, 522	2020-10-05 17:21:27
160.155.113.19	attackspam	Oct 5 08:11:41 web8 sshd\[28911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.155.113.19 user=root Oct 5 08:11:43 web8 sshd\[28911\]: Failed password for root from 160.155.113.19 port 36419 ssh2 Oct 5 08:15:21 web8 sshd\[30650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.155.113.19 user=root Oct 5 08:15:23 web8 sshd\[30650\]: Failed password for root from 160.155.113.19 port 33347 ssh2 Oct 5 08:19:06 web8 sshd\[32570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.155.113.19 user=root	2020-10-05 16:36:25
45.143.221.3	attackspam	Port scanning [5 denied]	2020-10-05 17:01:23
41.85.161.147	attackspam	Automatic report - Banned IP Access	2020-10-05 16:40:46
104.223.197.227	attackbots	Oct 5 05:10:40 ns382633 sshd\[26631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.227 user=root Oct 5 05:10:42 ns382633 sshd\[26631\]: Failed password for root from 104.223.197.227 port 38294 ssh2 Oct 5 05:18:59 ns382633 sshd\[27629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.227 user=root Oct 5 05:19:02 ns382633 sshd\[27629\]: Failed password for root from 104.223.197.227 port 58364 ssh2 Oct 5 05:23:31 ns382633 sshd\[28179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.227 user=root	2020-10-05 16:53:23
138.219.100.78	attack	DATE:2020-10-05 09:06:04, IP:138.219.100.78, PORT:ssh SSH brute force auth (docker-dc)	2020-10-05 17:02:37

Recently Reported IPs

59.12.187.31	5.158.201.134	242.106.187.128	34.154.159.182
109.159.194.251	80.209.105.183	97.101.47.150	245.202.117.22
20.165.131.10	3.201.19.124	80.142.147.18	30.148.147.197
240.108.140.135	250.109.61.28	33.45.159.152	246.187.145.135
14.159.0.10	208.133.129.127	80.140.97.102	76.152.124.131