104.45.41.16 - IPInfo

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.45.41.45	attackbots	104.45.41.45 - - [13/Oct/2020:22:53:08 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.45.41.45 - - [13/Oct/2020:23:07:16 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-14 06:33:03

Type

Details

Datetime

104.45.41.45

attackbots

104.45.41.45 - - [13/Oct/2020:22:53:08 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
104.45.41.45 - - [13/Oct/2020:23:07:16 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-10-14 06:33:03

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 104.45.41.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26727
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;104.45.41.16.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 18:16:12 CST 2021
;; MSG SIZE  rcvd: 41

'

Host info

Host 16.41.45.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.41.45.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.29.159.121	attackbotsspam	blogonese.net 181.29.159.121 [31/May/2020:22:25:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" blogonese.net 181.29.159.121 [31/May/2020:22:25:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4263 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-06-01 06:10:33
115.231.231.3	attackbots	May 31 21:37:27 game-panel sshd[17754]: Failed password for root from 115.231.231.3 port 54384 ssh2 May 31 21:39:45 game-panel sshd[17969]: Failed password for root from 115.231.231.3 port 54464 ssh2	2020-06-01 06:27:05
181.129.14.218	attack	Jun 1 04:29:43 webhost01 sshd[17223]: Failed password for root from 181.129.14.218 port 21197 ssh2 ...	2020-06-01 05:47:04
222.186.175.148	attackspambots	May 31 23:55:56 abendstille sshd\[26161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root May 31 23:55:57 abendstille sshd\[26165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root May 31 23:55:59 abendstille sshd\[26161\]: Failed password for root from 222.186.175.148 port 27182 ssh2 May 31 23:55:59 abendstille sshd\[26165\]: Failed password for root from 222.186.175.148 port 19356 ssh2 May 31 23:56:02 abendstille sshd\[26161\]: Failed password for root from 222.186.175.148 port 27182 ssh2 ...	2020-06-01 05:59:37
195.231.81.43	attackspambots	Lines containing failures of 195.231.81.43 May 31 01:22:22 mailserver sshd[10434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.231.81.43 user=r.r May 31 01:22:25 mailserver sshd[10434]: Failed password for r.r from 195.231.81.43 port 36556 ssh2 May 31 01:22:25 mailserver sshd[10434]: Received disconnect from 195.231.81.43 port 36556:11: Bye Bye [preauth] May 31 01:22:25 mailserver sshd[10434]: Disconnected from authenticating user r.r 195.231.81.43 port 36556 [preauth] May 31 01:35:11 mailserver sshd[11980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.231.81.43 user=r.r May 31 01:35:14 mailserver sshd[11980]: Failed password for r.r from 195.231.81.43 port 41982 ssh2 May 31 01:35:14 mailserver sshd[11980]: Received disconnect from 195.231.81.43 port 41982:11: Bye Bye [preauth] May 31 01:35:14 mailserver sshd[11980]: Disconnected from authenticating user r.r 195.231.81.43 por........ ------------------------------	2020-06-01 06:18:11
193.106.29.75	attackspambots	05/31/2020-16:25:13.852605 193.106.29.75 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-01 06:08:54
190.151.50.214	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-06-01 05:55:02
210.22.54.179	attackspambots	Jun 1 00:00:24 prod4 sshd\[18325\]: Failed password for root from 210.22.54.179 port 45668 ssh2 Jun 1 00:04:10 prod4 sshd\[19976\]: Failed password for root from 210.22.54.179 port 6594 ssh2 Jun 1 00:07:54 prod4 sshd\[21100\]: Failed password for root from 210.22.54.179 port 31856 ssh2 ...	2020-06-01 06:25:10
113.204.205.66	attackbotsspam	May 31 18:02:30 NPSTNNYC01T sshd[5274]: Failed password for root from 113.204.205.66 port 60783 ssh2 May 31 18:05:56 NPSTNNYC01T sshd[5628]: Failed password for root from 113.204.205.66 port 14630 ssh2 ...	2020-06-01 06:15:55
14.177.236.1	attackspambots	2020-05-3123:30:391jfVXS-0003Zq-FH\<=info@whatsup2013.chH=\(localhost\)[61.149.46.154]:49916P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3024id=0ce9ffcac1ea3fccef11e7b4bf6b52fedd372ccf99@whatsup2013.chT="tofosterjohnny69"forfosterjohnny69@gmail.comazncsanova@gmail.comynostrosam@yahoo.com2020-05-3123:29:141jfVW5-0003Rn-Nx\<=info@whatsup2013.chH=\(localhost\)[14.177.236.1]:36790P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2969id=ac84e5848fa47182a15fa9faf1251cb093792f53f0@whatsup2013.chT="tocg190081"forcg190081@gmail.comisaias.velasquez.24@icloud.comtrollface201404@gmail.com2020-05-3123:31:081jfVXv-0003aw-6C\<=info@whatsup2013.chH=\(localhost\)[14.161.47.197]:37294P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3002id=8c1bb0727952877457a95f0c07d3ea46658f4e345e@whatsup2013.chT="tooluwasegun5026"foroluwasegun5026@gmail.combothadanie56@gmail.comronsrmassie@gmail.com2020-05-312	2020-06-01 06:16:45
91.209.235.28	attack	May 31 22:37:02 vps687878 sshd\[12290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.235.28 user=root May 31 22:37:03 vps687878 sshd\[12290\]: Failed password for root from 91.209.235.28 port 37730 ssh2 May 31 22:41:21 vps687878 sshd\[12846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.235.28 user=root May 31 22:41:23 vps687878 sshd\[12846\]: Failed password for root from 91.209.235.28 port 41660 ssh2 May 31 22:45:28 vps687878 sshd\[13239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.235.28 user=root ...	2020-06-01 05:47:19
148.70.102.69	attackspam	May 31 17:34:44 NPSTNNYC01T sshd[2344]: Failed password for root from 148.70.102.69 port 51666 ssh2 May 31 17:38:47 NPSTNNYC01T sshd[2778]: Failed password for root from 148.70.102.69 port 39766 ssh2 ...	2020-06-01 05:56:59
142.93.239.197	attack	[ssh] SSH attack	2020-06-01 05:57:11
68.183.236.92	attackbots	May 31 23:31:38 h2779839 sshd[24674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.236.92 user=root May 31 23:31:40 h2779839 sshd[24674]: Failed password for root from 68.183.236.92 port 38514 ssh2 May 31 23:33:27 h2779839 sshd[24733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.236.92 user=root May 31 23:33:29 h2779839 sshd[24733]: Failed password for root from 68.183.236.92 port 37870 ssh2 May 31 23:35:13 h2779839 sshd[24792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.236.92 user=root May 31 23:35:15 h2779839 sshd[24792]: Failed password for root from 68.183.236.92 port 37150 ssh2 May 31 23:36:58 h2779839 sshd[24830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.236.92 user=root May 31 23:37:00 h2779839 sshd[24830]: Failed password for root from 68.183.236.92 port 36522 ssh2 May ...	2020-06-01 06:04:15
188.166.164.10	attackspam	May 31 17:22:04 firewall sshd[13695]: Failed password for root from 188.166.164.10 port 42320 ssh2 May 31 17:25:10 firewall sshd[13813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.164.10 user=root May 31 17:25:11 firewall sshd[13813]: Failed password for root from 188.166.164.10 port 45828 ssh2 ...	2020-06-01 06:09:36

Recently Reported IPs

41.206.128.190	84.238.234.220	76.45.33.3	89.205.227.147
62.89.210.49	78.69.41.57	13.212.6.108	13.212.6.178
149.56.171.125	23.148.145.28	142.93.195.169	34.86.35.22
172.58.121.218	24.72.66.44	174.90.223.82	207.46.13.134
40.77.167.58	138.63.253.189	192.241.210.196	67.69.76.74