172.104.150.45

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.104.150.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.104.150.45.			IN	A

;; AUTHORITY SECTION:
.			146	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 21:55:30 CST 2022
;; MSG SIZE  rcvd: 107

Host info

45.150.104.172.in-addr.arpa domain name pointer li1666-45.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.150.104.172.in-addr.arpa	name = li1666-45.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.234.218.156	attackbots	Oct 4 09:18:54 mail postfix/smtpd\[9782\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 4 09:27:34 mail postfix/smtpd\[10124\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 4 10:02:02 mail postfix/smtpd\[10980\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 4 10:10:38 mail postfix/smtpd\[10980\]: warning: unknown\[185.234.218.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-10-04 17:19:51
148.102.16.206	attack	Oct 1 20:22:10 mxgate1 postfix/postscreen[18533]: CONNECT from [148.102.16.206]:34625 to [176.31.12.44]:25 Oct 1 20:22:10 mxgate1 postfix/dnsblog[18538]: addr 148.102.16.206 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 1 20:22:10 mxgate1 postfix/dnsblog[18535]: addr 148.102.16.206 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 1 20:22:10 mxgate1 postfix/dnsblog[18536]: addr 148.102.16.206 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 1 20:22:11 mxgate1 postfix/dnsblog[18537]: addr 148.102.16.206 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 1 20:22:16 mxgate1 postfix/postscreen[18533]: DNSBL rank 5 for [148.102.16.206]:34625 Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=148.102.16.206	2019-10-04 17:20:41
165.227.11.173	attackbotsspam	Nov 30 03:22:34 server6 sshd[4166]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.173] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 30 03:22:35 server6 sshd[4166]: Failed password for invalid user tecnici from 165.227.11.173 port 45351 ssh2 Nov 30 03:22:35 server6 sshd[4166]: Received disconnect from 165.227.11.173: 11: Bye Bye [preauth] Nov 30 04:42:27 server6 sshd[30609]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.173] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 30 04:42:29 server6 sshd[30609]: Failed password for invalid user ts3 from 165.227.11.173 port 38217 ssh2 Nov 30 04:42:29 server6 sshd[30609]: Received disconnect from 165.227.11.173: 11: Bye Bye [preauth] Nov 30 06:00:31 server6 sshd[3014]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.17 .... truncated .... reauth] Dec 1 20:01:30 server6 sshd[18427]: reveeclipse mapping checking getaddrinfo for 209310.clou........ -------------------------------	2019-10-04 17:17:30
178.62.23.108	attackspam	Oct 3 20:35:06 hanapaa sshd\[16936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.23.108 user=root Oct 3 20:35:09 hanapaa sshd\[16936\]: Failed password for root from 178.62.23.108 port 38348 ssh2 Oct 3 20:39:09 hanapaa sshd\[17418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.23.108 user=root Oct 3 20:39:11 hanapaa sshd\[17418\]: Failed password for root from 178.62.23.108 port 51398 ssh2 Oct 3 20:43:19 hanapaa sshd\[17758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.23.108 user=root	2019-10-04 17:39:19
92.222.71.125	attackbots	2019-09-30T16:11:37.457586tmaserv sshd[21349]: Invalid user tester from 92.222.71.125 port 50670 2019-09-30T16:11:37.461425tmaserv sshd[21349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-92-222-71.eu 2019-09-30T16:11:39.317742tmaserv sshd[21349]: Failed password for invalid user tester from 92.222.71.125 port 50670 ssh2 2019-09-30T16:22:35.927365tmaserv sshd[22054]: Invalid user chicago from 92.222.71.125 port 46172 2019-09-30T16:22:35.930845tmaserv sshd[22054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-92-222-71.eu 2019-09-30T16:22:38.117736tmaserv sshd[22054]: Failed password for invalid user chicago from 92.222.71.125 port 46172 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=92.222.71.125	2019-10-04 17:05:53
94.177.224.127	attack	Oct 4 06:27:32 ms-srv sshd[36536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root Oct 4 06:27:34 ms-srv sshd[36536]: Failed password for invalid user root from 94.177.224.127 port 44144 ssh2	2019-10-04 17:13:05
167.99.221.140	attackspambots	Sep 30 06:05:45 XXX sshd[31709]: User r.r from 167.99.221.140 not allowed because none of user's groups are listed in AllowGroups Sep 30 06:05:45 XXX sshd[31709]: Received disconnect from 167.99.221.140: 11: Bye Bye [preauth] Sep 30 06:05:46 XXX sshd[31711]: User r.r from 167.99.221.140 not allowed because none of user's groups are listed in AllowGroups Sep 30 06:05:46 XXX sshd[31711]: Received disconnect from 167.99.221.140: 11: Bye Bye [preauth] Sep 30 06:05:46 XXX sshd[31713]: User mail from 167.99.221.140 not allowed because none of user's groups are listed in AllowGroups Sep 30 06:05:46 XXX sshd[31713]: Received disconnect from 167.99.221.140: 11: Bye Bye [preauth] Sep 30 06:05:46 XXX sshd[31715]: Invalid user tpip from 167.99.221.140 Sep 30 06:05:46 XXX sshd[31715]: Received disconnect from 167.99.221.140: 11: Bye Bye [preauth] Sep 30 06:05:46 XXX sshd[31717]: User r.r from 167.99.221.140 not allowed because none of user's groups are listed in AllowGroups Sep 30 0........ -------------------------------	2019-10-04 17:28:43
35.192.101.121	attackspambots	fail2ban honeypot	2019-10-04 17:32:13
193.70.32.148	attack	Oct 4 06:46:11 www5 sshd\[33983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.32.148 user=root Oct 4 06:46:13 www5 sshd\[33983\]: Failed password for root from 193.70.32.148 port 52122 ssh2 Oct 4 06:52:43 www5 sshd\[35034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.32.148 user=root ...	2019-10-04 17:11:52
74.92.210.138	attackbotsspam	$f2bV_matches	2019-10-04 16:50:02
70.35.204.95	attackspam	Oct 4 09:35:18 ovpn sshd\[12430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.35.204.95 user=root Oct 4 09:35:20 ovpn sshd\[12430\]: Failed password for root from 70.35.204.95 port 49396 ssh2 Oct 4 09:44:52 ovpn sshd\[13997\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.35.204.95 user=root Oct 4 09:44:54 ovpn sshd\[13997\]: Failed password for root from 70.35.204.95 port 56210 ssh2 Oct 4 09:48:37 ovpn sshd\[14596\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.35.204.95 user=root	2019-10-04 16:59:20
167.114.157.86	attackspam	2019-10-04T09:09:43.429019abusebot-2.cloudsearch.cf sshd\[9217\]: Invalid user Welcome@123 from 167.114.157.86 port 49084	2019-10-04 17:36:30
212.47.250.50	attackspambots	Oct 4 11:20:04 jupiter sshd\[57253\]: Invalid user butter from 212.47.250.50 Oct 4 11:20:04 jupiter sshd\[57253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.250.50 Oct 4 11:20:06 jupiter sshd\[57253\]: Failed password for invalid user butter from 212.47.250.50 port 37700 ssh2 ...	2019-10-04 17:36:59
185.36.81.236	attackbotsspam	Rude login attack (7 tries in 1d)	2019-10-04 16:56:14
213.216.33.190	attackspambots	Oct 1 16:07:17 h2034429 postfix/smtpd[25088]: connect from unknown[213.216.33.190] Oct x@x Oct 1 16:07:17 h2034429 postfix/smtpd[25088]: lost connection after DATA from unknown[213.216.33.190] Oct 1 16:07:17 h2034429 postfix/smtpd[25088]: disconnect from unknown[213.216.33.190] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 Oct 1 16:07:21 h2034429 postfix/smtpd[25088]: connect from unknown[213.216.33.190] Oct x@x Oct 1 16:07:22 h2034429 postfix/smtpd[25088]: lost connection after DATA from unknown[213.216.33.190] Oct 1 16:07:22 h2034429 postfix/smtpd[25088]: disconnect from unknown[213.216.33.190] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 Oct 1 16:07:23 h2034429 postfix/smtpd[25088]: connect from unknown[213.216.33.190] Oct x@x Oct 1 16:07:24 h2034429 postfix/smtpd[25088]: lost connection after DATA from unknown[213.216.33.190] Oct 1 16:07:24 h2034429 postfix/smtpd[25088]: disconnect from unknown[213.216.33.190] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ --------------------------------	2019-10-04 17:16:24

Recently Reported IPs

172.104.150.133	172.104.151.198	172.104.150.215	172.104.151.41
172.104.15.44	172.104.151.248	172.104.151.61	172.104.152.153
172.104.154.35	172.104.155.87	172.104.151.58	172.104.153.244
172.104.158.14	172.104.158.209	172.104.155.74	172.104.152.78
172.104.153.91	172.104.158.201	172.104.158.33	172.104.158.57