172.104.44.116

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.104.44.238	attackspambots	Jul 31 02:08:33 pixelmemory sshd[3599449]: Failed password for root from 172.104.44.238 port 53664 ssh2 Jul 31 02:12:51 pixelmemory sshd[3604399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.44.238 user=root Jul 31 02:12:54 pixelmemory sshd[3604399]: Failed password for root from 172.104.44.238 port 38328 ssh2 Jul 31 02:17:06 pixelmemory sshd[3608816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.44.238 user=root Jul 31 02:17:08 pixelmemory sshd[3608816]: Failed password for root from 172.104.44.238 port 51216 ssh2 ...	2020-07-31 17:46:05

Type

Details

Datetime

172.104.44.238

attackspambots

Jul 31 02:08:33 pixelmemory sshd[3599449]: Failed password for root from 172.104.44.238 port 53664 ssh2
Jul 31 02:12:51 pixelmemory sshd[3604399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.44.238  user=root
Jul 31 02:12:54 pixelmemory sshd[3604399]: Failed password for root from 172.104.44.238 port 38328 ssh2
Jul 31 02:17:06 pixelmemory sshd[3608816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.44.238  user=root
Jul 31 02:17:08 pixelmemory sshd[3608816]: Failed password for root from 172.104.44.238 port 51216 ssh2
...

2020-07-31 17:46:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.104.44.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61207
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.104.44.116.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 15:13:22 CST 2022
;; MSG SIZE  rcvd: 107

Host info

116.44.104.172.in-addr.arpa domain name pointer li1624-116.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.44.104.172.in-addr.arpa	name = li1624-116.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
42.115.214.150	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-06 17:44:44
115.58.61.1	attack	web Attack on Website at 2020-02-05.	2020-02-06 17:33:00
77.85.199.209	attack	Feb 05 23:39:49 askasleikir sshd[17509]: Failed password for invalid user pjd from 77.85.199.209 port 59824 ssh2	2020-02-06 17:20:44
178.128.217.58	attackbotsspam	Feb 5 20:10:20 web9 sshd\[11381\]: Invalid user fqn from 178.128.217.58 Feb 5 20:10:20 web9 sshd\[11381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.58 Feb 5 20:10:22 web9 sshd\[11381\]: Failed password for invalid user fqn from 178.128.217.58 port 42998 ssh2 Feb 5 20:12:14 web9 sshd\[11622\]: Invalid user jgp from 178.128.217.58 Feb 5 20:12:14 web9 sshd\[11622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.58	2020-02-06 17:59:02
223.16.235.57	attackbotsspam	Honeypot attack, port: 5555, PTR: 57-235-16-223-on-nets.com.	2020-02-06 17:21:00
112.72.77.1	attackspam	web Attack on Wordpress site at 2020-02-05.	2020-02-06 17:36:34
1.4.180.172	attackbotsspam	5555/tcp [2020-02-06]1pkt	2020-02-06 17:54:26
106.52.116.101	attack	Feb 6 07:55:59 lnxmysql61 sshd[29621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.116.101	2020-02-06 17:41:23
110.137.127.217	attackspam	Honeypot attack, port: 445, PTR: 217.subnet110-137-127.speedy.telkom.net.id.	2020-02-06 18:05:44
103.206.226.1	attackbots	web Attack on Website at 2020-02-05.	2020-02-06 17:50:01
78.128.113.132	attackbots	2020-02-06 10:01:13 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=adminabc@no-server.de\) 2020-02-06 10:01:20 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=adminabc\) 2020-02-06 10:02:15 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=21admin@no-server.de\) 2020-02-06 10:02:22 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=21admin\) 2020-02-06 10:07:52 dovecot_login authenticator failed for \(\[78.128.113.132\]\) \[78.128.113.132\]: 535 Incorrect authentication data \(set_id=admin123@no-server.de\) ...	2020-02-06 17:17:10
92.118.38.57	attack	Feb 6 11:00:30 v22019058497090703 postfix/smtpd[16896]: warning: unknown[92.118.38.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 6 11:01:03 v22019058497090703 postfix/smtpd[16896]: warning: unknown[92.118.38.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 6 11:01:35 v22019058497090703 postfix/smtpd[16896]: warning: unknown[92.118.38.57]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-02-06 18:06:01
104.244.77.2	attackspambots	SSH login attempts with user root at 2020-02-05.	2020-02-06 17:45:57
200.159.224.122	attackspambots	Unauthorized connection attempt detected from IP address 200.159.224.122 to port 1433 [J]	2020-02-06 18:02:29
104.152.52.3	attack	Brute-Force on ftp at 2020-02-05.	2020-02-06 17:47:01

Recently Reported IPs

172.104.42.230	172.104.44.165	172.104.44.197	172.104.48.121
172.104.49.161	172.104.42.237	172.104.49.180	172.104.45.89
172.104.46.32	172.104.45.66	172.104.50.244	172.104.48.79
172.104.51.32	172.104.47.193	172.104.52.148	172.104.52.71
172.104.52.240	172.104.54.178	172.104.54.28	172.104.54.123