104.144.79.189

Basic Info

City: Buffalo

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.144.79.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4913
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.144.79.189.			IN	A

;; AUTHORITY SECTION:
.			473	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040402 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 05 18:55:38 CST 2022
;; MSG SIZE  rcvd: 107

Host info

189.79.144.104.in-addr.arpa domain name pointer 2bcl5pgh.bitumedia.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
189.79.144.104.in-addr.arpa	name = 2bcl5pgh.bitumedia.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.160.126.50	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 21:12:11
35.134.241.168	attackbotsspam	(sshd) Failed SSH login from 35.134.241.168 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 1 12:47:28 server4 sshd[18294]: Invalid user admin from 35.134.241.168 Sep 1 12:47:31 server4 sshd[18294]: Failed password for invalid user admin from 35.134.241.168 port 36928 ssh2 Sep 1 12:47:31 server4 sshd[18304]: Invalid user admin from 35.134.241.168 Sep 1 12:47:33 server4 sshd[18304]: Failed password for invalid user admin from 35.134.241.168 port 36995 ssh2 Sep 1 12:47:34 server4 sshd[18308]: Invalid user admin from 35.134.241.168	2020-09-02 21:28:27
5.170.166.158	attackspam	Port probing on unauthorized port 445	2020-09-02 20:52:34
129.226.61.157	attackspam	Invalid user clarice from 129.226.61.157 port 40024	2020-09-02 21:05:31
190.15.203.50	attack	Invalid user cstrike from 190.15.203.50 port 40438	2020-09-02 20:50:40
134.175.2.7	attackspam	Invalid user alexa from 134.175.2.7 port 53824	2020-09-02 21:27:04
111.72.194.235	attackbotsspam	Sep 1 21:15:55 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:07 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:23 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:42 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 1 21:16:53 srv01 postfix/smtpd\[12683\]: warning: unknown\[111.72.194.235\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-02 21:09:36
222.186.42.213	attackbotsspam	[SID1] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-02 21:28:52
157.230.10.212	attack	Sep 2 14:39:37 sso sshd[7172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.10.212 Sep 2 14:39:40 sso sshd[7172]: Failed password for invalid user vnc from 157.230.10.212 port 32850 ssh2 ...	2020-09-02 21:13:29
176.124.231.76	attackbots	176.124.231.76 - - [02/Sep/2020:08:32:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 176.124.231.76 - - [02/Sep/2020:08:32:02 +0100] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 176.124.231.76 - - [02/Sep/2020:08:32:04 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-02 21:10:44
68.183.12.127	attackbotsspam	invalid login attempt (admin1)	2020-09-02 21:19:21
59.110.138.221	attackspam	59.110.138.221 - - \[02/Sep/2020:15:17:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 8308 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 59.110.138.221 - - \[02/Sep/2020:15:17:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 8128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 59.110.138.221 - - \[02/Sep/2020:15:17:21 +0200\] "POST /wp-login.php HTTP/1.0" 200 8121 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-02 21:28:05
167.250.52.240	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 21:20:26
202.143.112.193	attack	Sep 1 17:28:13 freedom sshd\[24896\]: Invalid user ftpuser from 202.143.112.193 port 9802 Sep 1 17:29:20 freedom sshd\[24902\]: Invalid user git from 202.143.112.193 port 43011 Sep 1 17:30:26 freedom sshd\[24915\]: Invalid user oracle from 202.143.112.193 port 19710 Sep 1 17:32:41 freedom sshd\[24936\]: Invalid user ftpuser from 202.143.112.193 port 29610 Sep 1 17:33:52 freedom sshd\[24940\]: Invalid user oracle from 202.143.112.193 port 62813 ...	2020-09-02 21:14:42
95.70.154.13	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 21:07:14

Recently Reported IPs

104.144.79.180	104.144.79.26	104.144.79.73	104.144.79.95
104.144.8.185	104.144.80.145	104.144.80.158	104.144.82.102
104.144.82.106	104.144.82.12	104.144.82.126	104.144.82.135
104.144.82.163	128.11.214.113	104.144.82.176	104.144.82.179
104.144.82.213	104.144.82.231	104.144.82.251	104.144.82.30