104.41.45.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.41.45.235	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-09-30 00:04:43
104.41.45.19	attackspambots	We detected a phishing web site hosted at: ==== https://ssl-localwebmailseguro.brazilsouth.cloudapp.azure.com/indexlocaweb.html?$number-$number-$number-$number ==== This is a fake website pretending to be Locaweb website with the intent of committing fraud against the organization and/or its users. The organization's legitimate website is: ==== https://webmail-seguro.com.br/ ==== We kindly ask your cooperation, according to your policies to cease this activity and shut down the phishing page; Thanks in advance. We would also appreciate a reply that this message has been received. Graciously.	2020-02-17 23:10:16

Type

Details

Datetime

104.41.45.235

attackspambots

SSH/22 MH Probe, BF, Hack -

2020-09-30 00:04:43

104.41.45.19

attackspambots

We detected a phishing web site hosted at:

====
https://ssl-localwebmailseguro.brazilsouth.cloudapp.azure.com/indexlocaweb.html?$number-$number-$number-$number
====

This is a fake website pretending to be Locaweb website with the intent of committing fraud against the organization and/or its users. The organization's legitimate website is:
====
https://webmail-seguro.com.br/
====

We kindly ask your cooperation, according to your policies to cease this activity and shut down the phishing page;

Thanks in advance. We would also appreciate a reply that this message has been received.

Graciously.

2020-02-17 23:10:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.41.45.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26380
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.41.45.22.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:33:00 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 22.45.41.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 22.45.41.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.66.255.220	attackspam	reported through recidive - multiple failed attempts(SSH)	2020-06-13 17:02:44
115.29.5.153	attackbotsspam	Jun 13 13:38:31 gw1 sshd[25617]: Failed password for root from 115.29.5.153 port 60850 ssh2 ...	2020-06-13 17:06:38
201.11.70.28	attackbotsspam	Bruteforce detected by fail2ban	2020-06-13 17:30:36
111.229.28.34	attackbotsspam	Failed password for root from 111.229.28.34 port 35846 ssh2 Invalid user ieg from 111.229.28.34 port 34046 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.28.34 Invalid user ieg from 111.229.28.34 port 34046 Failed password for invalid user ieg from 111.229.28.34 port 34046 ssh2	2020-06-13 17:07:05
69.59.79.3	attackbots	Invalid user op from 69.59.79.3 port 60760	2020-06-13 17:02:11
122.224.217.46	attackspam	Failed password for invalid user root from 122.224.217.46 port 33722 ssh2	2020-06-13 17:03:58
118.25.14.19	attackspambots	Jun 13 00:57:41 pi sshd[4615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.14.19 Jun 13 00:57:42 pi sshd[4615]: Failed password for invalid user xun from 118.25.14.19 port 51264 ssh2	2020-06-13 16:50:35
107.170.37.74	attack	Jun 13 08:07:23 ns37 sshd[8129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.37.74	2020-06-13 17:09:29
203.0.107.173	attack	Jun 13 06:06:11 firewall sshd[18422]: Failed password for invalid user jianhaoc from 203.0.107.173 port 44428 ssh2 Jun 13 06:07:19 firewall sshd[18479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.0.107.173 user=root Jun 13 06:07:20 firewall sshd[18479]: Failed password for root from 203.0.107.173 port 57638 ssh2 ...	2020-06-13 17:28:03
192.254.250.164	attackspam	Wordpress malicious attack:[octausername]	2020-06-13 17:31:11
165.22.69.147	attack	ssh brute force	2020-06-13 17:25:05
181.236.165.34	attackspambots	Wordpress malicious attack:[sshd]	2020-06-13 17:24:36
41.191.237.157	attackspam	Failed password for invalid user pxe from 41.191.237.157 port 37170 ssh2	2020-06-13 16:54:10
58.220.39.133	attackspambots	Jun 13 01:57:17 dignus sshd[18183]: Invalid user pat from 58.220.39.133 port 43366 Jun 13 01:57:17 dignus sshd[18183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.220.39.133 Jun 13 01:57:19 dignus sshd[18183]: Failed password for invalid user pat from 58.220.39.133 port 43366 ssh2 Jun 13 02:01:11 dignus sshd[18520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.220.39.133 user=root Jun 13 02:01:14 dignus sshd[18520]: Failed password for root from 58.220.39.133 port 57422 ssh2 ...	2020-06-13 17:10:05
87.65.101.131	attack	Unauthorized connection attempt detected from IP address 87.65.101.131 to port 23	2020-06-13 17:18:19

Recently Reported IPs

104.41.44.123	104.41.46.236	104.41.45.52	104.41.5.138
104.41.46.210	101.109.79.125	104.41.5.140	104.41.46.238
104.41.48.48	104.41.5.5	104.41.50.91	104.41.46.166
104.41.5.226	104.41.50.88	104.41.52.142	104.41.51.173
104.41.55.138	104.41.56.83	101.109.79.137	104.41.6.182