172.105.104.158

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.105.104.115	attack	SSH Scan	2020-09-24 22:01:41
172.105.104.115	attack	Port Scan: UDP/27016	2020-09-24 13:54:02
172.105.104.115	attackspam	" "	2020-09-24 05:22:20
172.105.104.172	attackspambots	scans once in preceeding hours on the ports (in chronological order) 27015 resulting in total of 5 scans from 172.104.0.0/15 block.	2020-05-22 00:28:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.105.104.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 112
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.105.104.158.		IN	A

;; AUTHORITY SECTION:
.			501	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 21:59:08 CST 2022
;; MSG SIZE  rcvd: 108

Host info

158.104.105.172.in-addr.arpa domain name pointer kianuko.breezeweb.ca.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.104.105.172.in-addr.arpa	name = kianuko.breezeweb.ca.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.220.101.16	attackspam	Sep 6 09:37:09 inter-technics sshd[15955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.16 user=root Sep 6 09:37:11 inter-technics sshd[15955]: Failed password for root from 185.220.101.16 port 27384 ssh2 Sep 6 09:37:13 inter-technics sshd[15955]: Failed password for root from 185.220.101.16 port 27384 ssh2 Sep 6 09:37:09 inter-technics sshd[15955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.16 user=root Sep 6 09:37:11 inter-technics sshd[15955]: Failed password for root from 185.220.101.16 port 27384 ssh2 Sep 6 09:37:13 inter-technics sshd[15955]: Failed password for root from 185.220.101.16 port 27384 ssh2 Sep 6 09:37:09 inter-technics sshd[15955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.16 user=root Sep 6 09:37:11 inter-technics sshd[15955]: Failed password for root from 185.220.101.16 port 27384 ssh2 S ...	2020-09-06 16:54:14
151.62.82.247	attackbotsspam	Sep 5 23:53:00 tor-proxy-02 sshd\[27681\]: Invalid user pi from 151.62.82.247 port 38978 Sep 5 23:53:00 tor-proxy-02 sshd\[27681\]: Connection closed by 151.62.82.247 port 38978 \[preauth\] Sep 5 23:53:01 tor-proxy-02 sshd\[27683\]: Invalid user pi from 151.62.82.247 port 38980 ...	2020-09-06 16:46:46
103.152.244.254	attackspam	Attempted connection to port 445.	2020-09-06 16:44:11
61.7.144.24	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-06 17:01:07
121.241.244.92	attackbotsspam	Sep 6 09:52:18 minden010 sshd[5265]: Failed password for root from 121.241.244.92 port 59650 ssh2 Sep 6 09:56:38 minden010 sshd[6778]: Failed password for root from 121.241.244.92 port 46853 ssh2 ...	2020-09-06 16:43:28
199.76.38.123	attack	$f2bV_matches	2020-09-06 17:16:57
125.76.246.102	attack	Unauthorized connection attempt from IP address 125.76.246.102 on Port 445(SMB)	2020-09-06 16:41:32
41.115.73.204	attack	Attempted connection to port 445.	2020-09-06 17:13:35
5.137.236.213	attack	Attempted connection to port 8080.	2020-09-06 17:08:06
186.7.90.72	attackspam	Attempted connection to port 445.	2020-09-06 16:39:02
45.175.2.103	attack	Attempted Brute Force (dovecot)	2020-09-06 16:55:33
190.85.122.194	attackspambots	Unauthorized connection attempt from IP address 190.85.122.194 on Port 445(SMB)	2020-09-06 17:08:28
113.123.235.163	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-09-06 17:06:56
60.8.123.159	attackspam	Forbidden directory scan :: 2020/09/05 16:45:57 [error] 1010#1010: *1532907 access forbidden by rule, client: 60.8.123.159, server: [censored_2], request: "GET /news/tag/depth:4 HTTP/1.1", host: "www.[censored_2]"	2020-09-06 16:54:48
78.85.5.247	attack	Unauthorized connection attempt from IP address 78.85.5.247 on Port 445(SMB)	2020-09-06 17:02:44

Recently Reported IPs

172.105.10.28	172.105.187.147	172.105.190.212	172.105.187.69
172.105.185.98	172.105.19.218	172.105.188.192	172.105.191.106
172.105.182.108	172.105.189.205	172.105.19.117	172.105.182.238
172.105.191.248	172.105.184.16	172.105.191.99	172.105.193.18
172.105.194.106	172.105.192.87	172.105.191.22	172.105.192.165