103.45.172.240

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shenzhen Qianhai bird cloud computing Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 103.45.172.240 on Port 445(SMB)	2019-07-25 13:38:08

Comments on same subnet:

IP	Type	Details	Datetime
103.45.172.66	attackspambots	Unauthorized connection attempt detected from IP address 103.45.172.66 to port 2220 [J]	2020-01-26 20:55:17
103.45.172.66	attackbotsspam	fail2ban	2020-01-19 17:25:57
103.45.172.66	attack	Unauthorized connection attempt detected from IP address 103.45.172.66 to port 2220 [J]	2020-01-18 18:15:55
103.45.172.40	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-25 14:01:08
103.45.172.121	attack	Unauthorized connection attempt from IP address 103.45.172.121 on Port 445(SMB)	2019-07-02 23:55:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.45.172.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46441
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.45.172.240.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 13:37:54 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 240.172.45.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 240.172.45.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.1.30.114	attack	Jun 30 11:48:33 mail.srvfarm.net postfix/smtpd[1528055]: warning: unknown[189.1.30.114]: SASL PLAIN authentication failed: Jun 30 11:48:33 mail.srvfarm.net postfix/smtpd[1528055]: lost connection after AUTH from unknown[189.1.30.114] Jun 30 11:49:53 mail.srvfarm.net postfix/smtps/smtpd[1528891]: warning: unknown[189.1.30.114]: SASL PLAIN authentication failed: Jun 30 11:49:53 mail.srvfarm.net postfix/smtps/smtpd[1528891]: lost connection after AUTH from unknown[189.1.30.114] Jun 30 11:51:15 mail.srvfarm.net postfix/smtpd[1527570]: warning: unknown[189.1.30.114]: SASL PLAIN authentication failed:	2020-07-01 18:45:22
181.226.108.36	attackbotsspam	5555/tcp [2020-06-25]1pkt	2020-07-01 18:28:36
62.169.235.101	attack	Unauthorized connection attempt detected from IP address 62.169.235.101 to port 8000	2020-07-01 18:43:35
117.2.184.40	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-07-01 18:08:51
36.73.83.162	attackbotsspam	445/tcp [2020-06-30]1pkt	2020-07-01 18:47:57
159.65.176.156	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-01 18:46:48
185.39.11.47	attackbotsspam	Jun 30 20:29:25 debian-2gb-nbg1-2 kernel: \[15800401.951195\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.39.11.47 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=63765 PROTO=TCP SPT=44602 DPT=35607 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-01 18:45:43
159.65.30.66	attackbotsspam	2020-06-30T18:27:48.663702ionos.janbro.de sshd[60558]: Invalid user share from 159.65.30.66 port 47916 2020-06-30T18:27:50.438557ionos.janbro.de sshd[60558]: Failed password for invalid user share from 159.65.30.66 port 47916 ssh2 2020-06-30T18:31:46.536411ionos.janbro.de sshd[60576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.30.66 user=root 2020-06-30T18:31:48.370922ionos.janbro.de sshd[60576]: Failed password for root from 159.65.30.66 port 45492 ssh2 2020-06-30T18:35:27.140703ionos.janbro.de sshd[60585]: Invalid user andy from 159.65.30.66 port 43188 2020-06-30T18:35:27.294893ionos.janbro.de sshd[60585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.30.66 2020-06-30T18:35:27.140703ionos.janbro.de sshd[60585]: Invalid user andy from 159.65.30.66 port 43188 2020-06-30T18:35:29.166226ionos.janbro.de sshd[60585]: Failed password for invalid user andy from 159.65.30.66 port 43188 ssh2 2 ...	2020-07-01 18:47:01
71.6.231.81	attackbots	portscan	2020-07-01 18:19:55
162.244.118.48	attack	Attempted hack of Yahoo account	2020-07-01 18:32:15
122.116.39.143	attackbots	TCP (SYN) 122.116.39.143:13144 -> port 23, len 44	2020-07-01 18:42:26
218.161.116.53	attackbotsspam	TCP (SYN) 218.161.116.53:58669 -> port 23, len 44	2020-07-01 18:15:59
103.60.212.2	attackspam	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-07-01 18:33:57
185.57.28.218	attackbotsspam	445/tcp 445/tcp 445/tcp... [2020-04-29/06-24]5pkt,1pt.(tcp)	2020-07-01 18:32:47
37.111.48.178	attack	445/tcp 445/tcp 445/tcp... [2020-06-21/28]5pkt,1pt.(tcp)	2020-07-01 18:31:40

Recently Reported IPs

45.235.8.219	230.249.170.153	36.77.166.121	68.237.116.120
64.96.188.206	157.62.3.182	36.228.145.82	130.39.210.49
188.35.60.237	58.27.240.66	160.16.58.94	159.192.222.53
228.247.40.207	80.237.68.228	114.237.188.129	14.181.35.182
174.35.25.53	112.113.193.98	192.190.42.38	88.190.152.99