104.45.41.56 - IPInfo

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.45.41.45	attackbots	104.45.41.45 - - [13/Oct/2020:22:53:08 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.45.41.45 - - [13/Oct/2020:23:07:16 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-14 06:33:03

Type

Details

Datetime

104.45.41.45

attackbots

104.45.41.45 - - [13/Oct/2020:22:53:08 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
104.45.41.45 - - [13/Oct/2020:23:07:16 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-10-14 06:33:03

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 104.45.41.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;104.45.41.56.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 18:16:13 CST 2021
;; MSG SIZE  rcvd: 41

'

Host info

Host 56.41.45.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.41.45.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
128.199.95.163	attackbots	May 8 23:00:45 web1 sshd[20189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.163 user=root May 8 23:00:47 web1 sshd[20189]: Failed password for root from 128.199.95.163 port 47032 ssh2 May 8 23:04:38 web1 sshd[21078]: Invalid user tammy from 128.199.95.163 port 60388 May 8 23:04:38 web1 sshd[21078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.163 May 8 23:04:38 web1 sshd[21078]: Invalid user tammy from 128.199.95.163 port 60388 May 8 23:04:40 web1 sshd[21078]: Failed password for invalid user tammy from 128.199.95.163 port 60388 ssh2 May 8 23:06:18 web1 sshd[21851]: Invalid user hr from 128.199.95.163 port 49156 May 8 23:06:18 web1 sshd[21851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.95.163 May 8 23:06:18 web1 sshd[21851]: Invalid user hr from 128.199.95.163 port 49156 May 8 23:06:20 web1 sshd[21851]: Failed pas ...	2020-05-09 01:33:21
81.91.177.66	attack	May 8 17:01:15 [host] kernel: [5578886.953411] [U May 8 17:02:44 [host] kernel: [5578975.689852] [U May 8 17:03:34 [host] kernel: [5579025.468558] [U May 8 17:09:09 [host] kernel: [5579360.714924] [U May 8 17:11:05 [host] kernel: [5579476.451261] [U May 8 17:17:30 [host] kernel: [5579861.380462] [U	2020-05-09 01:34:07
188.166.144.207	attackbots	2020-05-08T10:35:34.413082mail.thespaminator.com sshd[2756]: Invalid user web from 188.166.144.207 port 60072 2020-05-08T10:35:36.625680mail.thespaminator.com sshd[2756]: Failed password for invalid user web from 188.166.144.207 port 60072 ssh2 ...	2020-05-09 01:31:54
59.52.92.78	attackspambots	Icarus honeypot on github	2020-05-09 01:18:23
222.186.175.217	attackspambots	sshd jail - ssh hack attempt	2020-05-09 01:53:04
52.175.218.201	attack	2020-05-08T10:47:01.596093linuxbox-skyline sshd[29026]: Invalid user david from 52.175.218.201 port 59978 ...	2020-05-09 01:36:24
187.95.209.228	attackbotsspam	Automatic report - Port Scan Attack	2020-05-09 01:43:24
186.121.204.10	attack	May 8 18:15:24 ns382633 sshd\[25607\]: Invalid user troy from 186.121.204.10 port 51580 May 8 18:15:24 ns382633 sshd\[25607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.121.204.10 May 8 18:15:26 ns382633 sshd\[25607\]: Failed password for invalid user troy from 186.121.204.10 port 51580 ssh2 May 8 18:18:51 ns382633 sshd\[25988\]: Invalid user zabbix from 186.121.204.10 port 41996 May 8 18:18:51 ns382633 sshd\[25988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.121.204.10	2020-05-09 01:27:53
112.85.42.180	attackbots	May 8 19:26:34 home sshd[11759]: Failed password for root from 112.85.42.180 port 29013 ssh2 May 8 19:26:44 home sshd[11759]: Failed password for root from 112.85.42.180 port 29013 ssh2 May 8 19:26:47 home sshd[11759]: Failed password for root from 112.85.42.180 port 29013 ssh2 May 8 19:26:47 home sshd[11759]: error: maximum authentication attempts exceeded for root from 112.85.42.180 port 29013 ssh2 [preauth] ...	2020-05-09 01:50:54
150.136.67.237	attackbots	2020-05-08T14:07:43.184748mail.broermann.family sshd[5052]: Failed password for root from 150.136.67.237 port 53452 ssh2 2020-05-08T14:11:13.486555mail.broermann.family sshd[5172]: Invalid user ferenc from 150.136.67.237 port 34404 2020-05-08T14:11:13.490509mail.broermann.family sshd[5172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.67.237 2020-05-08T14:11:13.486555mail.broermann.family sshd[5172]: Invalid user ferenc from 150.136.67.237 port 34404 2020-05-08T14:11:15.009510mail.broermann.family sshd[5172]: Failed password for invalid user ferenc from 150.136.67.237 port 34404 ssh2 ...	2020-05-09 01:34:49
195.54.160.211	attackbotsspam	05/08/2020-13:37:19.483301 195.54.160.211 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-09 01:42:25
186.91.236.67	attackbotsspam	Brute forcing RDP port 3389	2020-05-09 01:58:30
23.129.64.209	attack	SNORT TCP Port: 25 Classtype misc-attack - ET TOR Known Tor Exit Node Traffic group 99 - - Destination xx.xx.4.1 Port: 25 - - Source 23.129.64.209 Port: 31690 (Listed on abuseat-org barracuda spamcop zen-spamhaus eatingmonkey spam-sorbs MailSpike (spam wave plus L3-L5)) (167)	2020-05-09 01:11:57
193.95.24.114	attackbotsspam	$f2bV_matches	2020-05-09 01:39:27
54.71.115.235	attack	54.71.115.235 - - [08/May/2020:15:11:52 +0200] "GET /wp-login.php HTTP/1.1" 200 6539 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [08/May/2020:15:11:55 +0200] "POST /wp-login.php HTTP/1.1" 200 6790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [08/May/2020:15:11:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-09 01:37:50

Recently Reported IPs

76.45.33.3	89.205.227.147	62.89.210.49	78.69.41.57
13.212.6.108	13.212.6.178	149.56.171.125	23.148.145.28
142.93.195.169	34.86.35.22	172.58.121.218	24.72.66.44
174.90.223.82	207.46.13.134	40.77.167.58	138.63.253.189
192.241.210.196	67.69.76.74	165.68.127.207	143.198.53.174