167.172.104.45

Basic Info

City: Frankfurt am Main

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.172.104.136	attack	Aug 14 21:44:37 cdc sshd[14331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.104.136 user=pi Aug 14 21:44:39 cdc sshd[14331]: Failed password for invalid user pi from 167.172.104.136 port 37528 ssh2	2020-08-15 05:15:02
167.172.104.200	attackbots	[portscan] Port scan	2020-06-14 04:45:09
167.172.104.134	attack	scans once in preceeding hours on the ports (in chronological order) 7000 resulting in total of 13 scans from 167.172.0.0/16 block.	2020-04-25 23:27:03

Type

Details

Datetime

167.172.104.136

attack

Aug 14 21:44:37 cdc sshd[14331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.104.136  user=pi
Aug 14 21:44:39 cdc sshd[14331]: Failed password for invalid user pi from 167.172.104.136 port 37528 ssh2

2020-08-15 05:15:02

167.172.104.200

attackbots

[portscan] Port scan

2020-06-14 04:45:09

167.172.104.134

attack

scans once in preceeding hours on the ports (in chronological order) 7000 resulting in total of 13 scans from 167.172.0.0/16 block.

2020-04-25 23:27:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.172.104.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55022
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.172.104.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025091000 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 10 17:00:54 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 45.104.172.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.104.172.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.68.237.104	attackspam	port	2020-03-28 15:28:51
198.108.66.234	attack	firewall-block, port(s): 21313/tcp	2020-03-28 15:41:38
31.169.18.90	attack	Unauthorised access (Mar 28) SRC=31.169.18.90 LEN=40 TTL=57 ID=65049 TCP DPT=23 WINDOW=28897 SYN	2020-03-28 15:30:00
80.211.190.224	attackspambots	SSH brute force attempt	2020-03-28 16:04:42
103.247.13.34	attackbotsspam	DATE:2020-03-28 04:46:16, IP:103.247.13.34, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-28 15:52:15
222.186.15.10	attackspambots	03/28/2020-03:42:57.090353 222.186.15.10 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-28 15:43:41
162.243.129.242	attack	firewall-block, port(s): 2525/tcp	2020-03-28 16:00:38
206.189.172.90	attack	Mar 28 07:01:52 host sshd\[3803\]: User user from 206.189.172.90 not allowed because none of user's groups are listed in AllowGroups	2020-03-28 15:46:01
92.118.38.66	attackspam	2020-03-28 08:35:04 dovecot_login authenticator failed for \(User\) \[92.118.38.66\]: 535 Incorrect authentication data \(set_id=mailing@no-server.de\) 2020-03-28 08:35:20 dovecot_login authenticator failed for \(User\) \[92.118.38.66\]: 535 Incorrect authentication data \(set_id=mailing@no-server.de\) 2020-03-28 08:35:41 dovecot_login authenticator failed for \(User\) \[92.118.38.66\]: 535 Incorrect authentication data \(set_id=status@no-server.de\) 2020-03-28 08:36:01 dovecot_login authenticator failed for \(User\) \[92.118.38.66\]: 535 Incorrect authentication data \(set_id=status@no-server.de\) 2020-03-28 08:36:13 dovecot_login authenticator failed for \(User\) \[92.118.38.66\]: 535 Incorrect authentication data \(set_id=status@no-server.de\) ...	2020-03-28 15:36:45
223.240.70.4	attack	Mar 28 01:51:33 ws22vmsma01 sshd[121853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.240.70.4 Mar 28 01:51:35 ws22vmsma01 sshd[121853]: Failed password for invalid user wpt from 223.240.70.4 port 56374 ssh2 ...	2020-03-28 15:44:33
134.209.194.217	attackspam	sshd jail - ssh hack attempt	2020-03-28 15:23:35
114.237.109.196	attack	SpamScore above: 10.0	2020-03-28 15:14:51
118.99.110.25	attackbotsspam	DATE:2020-03-28 04:47:01, IP:118.99.110.25, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-28 15:21:21
222.186.31.83	attackspambots	Mar 28 12:05:37 gw1 sshd[15121]: Failed password for root from 222.186.31.83 port 17208 ssh2 Mar 28 12:05:40 gw1 sshd[15121]: Failed password for root from 222.186.31.83 port 17208 ssh2 ...	2020-03-28 15:11:31
14.29.205.220	attackspam	Invalid user free from 14.29.205.220 port 37671	2020-03-28 15:34:33

Recently Reported IPs

222.22.221.16	10.197.188.203	60.23.154.116	57.151.97.194
178.242.38.203	40.207.166.113	194.187.179.175	194.187.179.173
99.91.15.98	14.212.103.145	38.127.61.6	121.37.111.190
74.249.128.108	18.200.255.1	181.161.8.8	192.168.8.8
63.35.196.223	190.89.57.96	172.86.88.200	103.254.189.226