169.0.104.230 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Afrihost (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-11-24 13:58:00

Comments on same subnet:

IP	Type	Details	Datetime
169.0.104.163	attackbotsspam	Automatic report - Port Scan Attack	2020-01-27 18:06:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 169.0.104.230
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61269
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;169.0.104.230.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112301 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 24 13:57:53 CST 2019
;; MSG SIZE  rcvd: 117

Host info

230.104.0.169.in-addr.arpa domain name pointer 169-0-104-230.ip.afrihost.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
230.104.0.169.in-addr.arpa	name = 169-0-104-230.ip.afrihost.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.17.253.106	attack	445/tcp 445/tcp 445/tcp... [2019-06-13/08-12]17pkt,1pt.(tcp)	2019-08-13 04:01:50
159.65.137.23	attackbotsspam	Aug 12 12:40:23 aat-srv002 sshd[12187]: Failed password for root from 159.65.137.23 port 57812 ssh2 Aug 12 12:47:53 aat-srv002 sshd[12286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.137.23 Aug 12 12:47:55 aat-srv002 sshd[12286]: Failed password for invalid user danilete from 159.65.137.23 port 51444 ssh2 ...	2019-08-13 03:53:57
34.80.72.249	attackbotsspam	Aug 12 20:52:38 tuxlinux sshd[47185]: Invalid user nathan from 34.80.72.249 port 46656 Aug 12 20:52:38 tuxlinux sshd[47185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.72.249 Aug 12 20:52:38 tuxlinux sshd[47185]: Invalid user nathan from 34.80.72.249 port 46656 Aug 12 20:52:38 tuxlinux sshd[47185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.72.249 Aug 12 20:52:38 tuxlinux sshd[47185]: Invalid user nathan from 34.80.72.249 port 46656 Aug 12 20:52:38 tuxlinux sshd[47185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.72.249 Aug 12 20:52:40 tuxlinux sshd[47185]: Failed password for invalid user nathan from 34.80.72.249 port 46656 ssh2 ...	2019-08-13 04:12:58
118.126.96.180	attackbots	fail2ban honeypot	2019-08-13 04:26:39
106.12.75.175	attack	Aug 12 21:45:07 dev0-dcde-rnet sshd[13127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175 Aug 12 21:45:09 dev0-dcde-rnet sshd[13127]: Failed password for invalid user zq from 106.12.75.175 port 32982 ssh2 Aug 12 21:48:57 dev0-dcde-rnet sshd[13130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.175	2019-08-13 03:51:58
45.118.145.51	attack	$f2bV_matches	2019-08-13 04:08:02
213.14.116.235	attack	www.goldgier.de 213.14.116.235 \[12/Aug/2019:15:28:51 +0200\] "POST /wp-login.php HTTP/1.1" 200 8722 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.goldgier.de 213.14.116.235 \[12/Aug/2019:15:28:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 8722 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-08-13 03:53:10
42.48.104.45	attackspambots	5322/tcp 4922/tcp 4722/tcp... [2019-06-12/08-12]125pkt,34pt.(tcp)	2019-08-13 03:44:49
218.92.0.185	attack	Aug 12 18:31:32 MK-Soft-VM4 sshd\[8913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.185 user=root Aug 12 18:31:34 MK-Soft-VM4 sshd\[8913\]: Failed password for root from 218.92.0.185 port 24049 ssh2 Aug 12 18:31:36 MK-Soft-VM4 sshd\[8913\]: Failed password for root from 218.92.0.185 port 24049 ssh2 ...	2019-08-13 03:49:08
103.75.103.211	attack	Aug 12 20:04:55 yabzik sshd[17580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.103.211 Aug 12 20:04:57 yabzik sshd[17580]: Failed password for invalid user sales from 103.75.103.211 port 50392 ssh2 Aug 12 20:09:52 yabzik sshd[19279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.103.211	2019-08-13 04:10:17
103.87.123.162	attackbotsspam	445/tcp 445/tcp [2019-07-30/08-12]2pkt	2019-08-13 03:53:28
154.41.3.166	attackbots	445/tcp 445/tcp 445/tcp... [2019-06-22/08-12]4pkt,1pt.(tcp)	2019-08-13 03:50:58
220.76.205.178	attackbotsspam	Aug 12 20:51:01 Ubuntu-1404-trusty-64-minimal sshd\[27685\]: Invalid user dspace from 220.76.205.178 Aug 12 20:51:01 Ubuntu-1404-trusty-64-minimal sshd\[27685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.178 Aug 12 20:51:03 Ubuntu-1404-trusty-64-minimal sshd\[27685\]: Failed password for invalid user dspace from 220.76.205.178 port 48669 ssh2 Aug 12 20:57:51 Ubuntu-1404-trusty-64-minimal sshd\[29445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.178 user=root Aug 12 20:57:53 Ubuntu-1404-trusty-64-minimal sshd\[29445\]: Failed password for root from 220.76.205.178 port 50095 ssh2	2019-08-13 04:14:15
113.161.21.95	attack	445/tcp 445/tcp [2019-07-09/08-12]2pkt	2019-08-13 04:26:11
148.153.12.203	attackspam	445/tcp 445/tcp [2019-07-05/08-12]2pkt	2019-08-13 03:57:20

Recently Reported IPs

149.84.222.179	180.165.158.228	45.179.88.249	85.105.133.168
178.170.54.191	153.162.67.55	52.219.4.197	190.51.203.203
45.183.94.153	120.74.158.158	41.202.170.84	216.158.229.90
62.148.143.182	238.183.31.47	174.146.171.245	96.23.195.210
245.88.149.30	129.74.50.183	98.215.54.164	7.134.50.9