172.104.5.143 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.104.50.172	attackspam	CloudCIX Reconnaissance Scan Detected, PTR: li1630-172.members.linode.com.	2020-06-01 07:30:38
172.104.56.229	attack	Mar 16 21:39:43 itv-usvr-01 sshd[13697]: Invalid user support from 172.104.56.229 Mar 16 21:39:43 itv-usvr-01 sshd[13697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.56.229 Mar 16 21:39:43 itv-usvr-01 sshd[13697]: Invalid user support from 172.104.56.229 Mar 16 21:39:45 itv-usvr-01 sshd[13697]: Failed password for invalid user support from 172.104.56.229 port 16122 ssh2 Mar 16 21:39:43 itv-usvr-01 sshd[13697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.56.229 Mar 16 21:39:43 itv-usvr-01 sshd[13697]: Invalid user support from 172.104.56.229 Mar 16 21:39:45 itv-usvr-01 sshd[13697]: Failed password for invalid user support from 172.104.56.229 port 16122 ssh2	2020-03-17 03:46:44
172.104.52.110	attackbots	Lines containing failures of 172.104.52.110 Feb 20 14:07:04 dns01 sshd[973]: Invalid user admin from 172.104.52.110 port 58800 Feb 20 14:07:04 dns01 sshd[973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.52.110 Feb 20 14:07:06 dns01 sshd[973]: Failed password for invalid user admin from 172.104.52.110 port 58800 ssh2 Feb 20 14:07:06 dns01 sshd[973]: Connection closed by invalid user admin 172.104.52.110 port 58800 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=172.104.52.110	2020-02-21 01:22:48
172.104.51.17	attack	172.104.51.17 was recorded 9 times by 9 hosts attempting to connect to the following ports: 19. Incident counter (4h, 24h, all-time): 9, 21, 21	2019-11-21 19:27:33
172.104.55.205	attackspam	Brute force attack to crack SMTP password (port 25 / 587)	2019-08-01 03:29:02
172.104.50.233	attack	fail2ban honeypot	2019-08-01 01:05:11
172.104.55.186	attack	2019-07-26T14:40:29.432096lon01.zurich-datacenter.net sshd\[11042\]: Invalid user ec2-user from 172.104.55.186 port 35404 2019-07-26T14:40:29.438036lon01.zurich-datacenter.net sshd\[11042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li1635-186.members.linode.com 2019-07-26T14:40:30.937014lon01.zurich-datacenter.net sshd\[11042\]: Failed password for invalid user ec2-user from 172.104.55.186 port 35404 ssh2 2019-07-26T14:47:42.323499lon01.zurich-datacenter.net sshd\[11175\]: Invalid user steven from 172.104.55.186 port 34496 2019-07-26T14:47:42.328914lon01.zurich-datacenter.net sshd\[11175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li1635-186.members.linode.com ...	2019-07-26 22:20:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.104.5.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33592
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.104.5.143.			IN	A

;; AUTHORITY SECTION:
.			445	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:49:29 CST 2022
;; MSG SIZE  rcvd: 106

Host info

143.5.104.172.in-addr.arpa domain name pointer jerry-se-li-na-east-scanners-5.li.binaryedge.ninja.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
143.5.104.172.in-addr.arpa	name = jerry-se-li-na-east-scanners-5.li.binaryedge.ninja.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.32.44.233	attackbots	Jun 10 08:38:17 vps639187 sshd\[7078\]: Invalid user sinusbot from 178.32.44.233 port 41450 Jun 10 08:38:17 vps639187 sshd\[7078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.44.233 Jun 10 08:38:19 vps639187 sshd\[7078\]: Failed password for invalid user sinusbot from 178.32.44.233 port 41450 ssh2 ...	2020-06-10 14:41:53
163.172.158.40	attack	20 attempts against mh-ssh on echoip	2020-06-10 14:25:54
171.244.139.142	attackbots	Jun 10 09:01:28 lukav-desktop sshd\[8372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.139.142 user=root Jun 10 09:01:29 lukav-desktop sshd\[8372\]: Failed password for root from 171.244.139.142 port 46468 ssh2 Jun 10 09:03:16 lukav-desktop sshd\[8404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.139.142 user=root Jun 10 09:03:18 lukav-desktop sshd\[8404\]: Failed password for root from 171.244.139.142 port 42232 ssh2 Jun 10 09:05:06 lukav-desktop sshd\[10364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.139.142 user=root	2020-06-10 14:33:36
45.14.150.103	attackbotsspam	$f2bV_matches	2020-06-10 14:13:16
59.22.233.81	attackspam	Jun 10 08:19:41 h1745522 sshd[14938]: Invalid user test from 59.22.233.81 port 34424 Jun 10 08:19:41 h1745522 sshd[14938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.22.233.81 Jun 10 08:19:41 h1745522 sshd[14938]: Invalid user test from 59.22.233.81 port 34424 Jun 10 08:19:43 h1745522 sshd[14938]: Failed password for invalid user test from 59.22.233.81 port 34424 ssh2 Jun 10 08:25:57 h1745522 sshd[15140]: Invalid user checkfs from 59.22.233.81 port 60611 Jun 10 08:25:57 h1745522 sshd[15140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.22.233.81 Jun 10 08:25:57 h1745522 sshd[15140]: Invalid user checkfs from 59.22.233.81 port 60611 Jun 10 08:25:59 h1745522 sshd[15140]: Failed password for invalid user checkfs from 59.22.233.81 port 60611 ssh2 Jun 10 08:29:22 h1745522 sshd[15284]: Invalid user password from 59.22.233.81 port 58182 ...	2020-06-10 14:48:48
220.133.228.153	attackspambots	port scan and connect, tcp 8080 (http-proxy)	2020-06-10 14:14:08
144.34.210.56	attackspam	$f2bV_matches	2020-06-10 14:14:21
27.43.190.109	attack	Automatic report - Port Scan Attack	2020-06-10 14:29:48
207.36.12.30	attackbots	Jun 10 05:52:26 vmd48417 sshd[24120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.36.12.30	2020-06-10 14:42:25
51.79.55.183	attackspam	2020-06-10T07:14:32.777458amanda2.illicoweb.com sshd\[20982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-51-79-55.net user=root 2020-06-10T07:14:34.197958amanda2.illicoweb.com sshd\[20982\]: Failed password for root from 51.79.55.183 port 53704 ssh2 2020-06-10T07:20:51.546088amanda2.illicoweb.com sshd\[21172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-51-79-55.net user=root 2020-06-10T07:20:53.748659amanda2.illicoweb.com sshd\[21172\]: Failed password for root from 51.79.55.183 port 37060 ssh2 2020-06-10T07:24:24.019099amanda2.illicoweb.com sshd\[21541\]: Invalid user Juhana from 51.79.55.183 port 40986 2020-06-10T07:24:24.022958amanda2.illicoweb.com sshd\[21541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-51-79-55.net ...	2020-06-10 14:46:34
213.217.1.34	attackbotsspam	SSH Scan	2020-06-10 14:48:34
64.225.70.13	attackbotsspam	Jun 10 07:39:42 vps647732 sshd[24965]: Failed password for root from 64.225.70.13 port 52086 ssh2 ...	2020-06-10 14:42:39
111.93.10.213	attack	Jun 9 23:52:38 Tower sshd[32120]: Connection from 111.93.10.213 port 45698 on 192.168.10.220 port 22 rdomain "" Jun 9 23:52:40 Tower sshd[32120]: Invalid user simran from 111.93.10.213 port 45698 Jun 9 23:52:40 Tower sshd[32120]: error: Could not get shadow information for NOUSER Jun 9 23:52:40 Tower sshd[32120]: Failed password for invalid user simran from 111.93.10.213 port 45698 ssh2 Jun 9 23:52:40 Tower sshd[32120]: Received disconnect from 111.93.10.213 port 45698:11: Bye Bye [preauth] Jun 9 23:52:40 Tower sshd[32120]: Disconnected from invalid user simran 111.93.10.213 port 45698 [preauth]	2020-06-10 14:23:45
79.124.62.82	attackspambots	TCP (SYN) 79.124.62.82:59615 -> port 9920, len 44	2020-06-10 14:44:54
180.76.101.244	attack	Jun 10 03:48:08 onepixel sshd[130871]: Failed password for invalid user system from 180.76.101.244 port 40814 ssh2 Jun 10 03:52:40 onepixel sshd[131472]: Invalid user as from 180.76.101.244 port 40508 Jun 10 03:52:40 onepixel sshd[131472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.101.244 Jun 10 03:52:40 onepixel sshd[131472]: Invalid user as from 180.76.101.244 port 40508 Jun 10 03:52:42 onepixel sshd[131472]: Failed password for invalid user as from 180.76.101.244 port 40508 ssh2	2020-06-10 14:34:15

Recently Reported IPs

8.144.164.133	157.100.93.34	103.151.246.34	47.243.74.252
63.46.16.167	47.97.194.44	197.52.99.231	178.72.71.249
162.142.125.89	151.139.14.253	157.245.157.166	79.31.53.162
101.249.88.150	168.91.87.47	93.115.53.52	73.211.45.11
223.90.187.153	213.87.53.167	124.121.157.221	172.247.21.75