104.192.4.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.192.4.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19714
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.192.4.145.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031602 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 17 05:04:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

145.4.192.104.in-addr.arpa domain name pointer leon.renthese.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.4.192.104.in-addr.arpa	name = leon.renthese.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.7.128.74	attackbotsspam	Sep 8 07:07:43 [host] sshd[3938]: Invalid user www from 190.7.128.74 Sep 8 07:07:43 [host] sshd[3938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.7.128.74 Sep 8 07:07:44 [host] sshd[3938]: Failed password for invalid user www from 190.7.128.74 port 28108 ssh2	2019-09-08 13:15:43
93.114.66.66	attack	fail2ban honeypot	2019-09-08 13:45:12
222.138.169.124	attack	Automatic report - Port Scan Attack	2019-09-08 13:57:10
153.36.236.35	attackspam	Sep 8 07:27:51 andromeda sshd\[47950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root Sep 8 07:27:54 andromeda sshd\[47950\]: Failed password for root from 153.36.236.35 port 64951 ssh2 Sep 8 07:27:56 andromeda sshd\[47950\]: Failed password for root from 153.36.236.35 port 64951 ssh2	2019-09-08 13:39:40
172.81.204.249	attack	Sep 7 23:54:11 hb sshd\[4803\]: Invalid user mc from 172.81.204.249 Sep 7 23:54:11 hb sshd\[4803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.204.249 Sep 7 23:54:13 hb sshd\[4803\]: Failed password for invalid user mc from 172.81.204.249 port 52680 ssh2 Sep 7 23:58:25 hb sshd\[5180\]: Invalid user musikbot from 172.81.204.249 Sep 7 23:58:25 hb sshd\[5180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.204.249	2019-09-08 13:07:09
94.42.178.137	attack	Sep 7 21:38:25 web8 sshd\[29832\]: Invalid user passwd from 94.42.178.137 Sep 7 21:38:25 web8 sshd\[29832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.42.178.137 Sep 7 21:38:27 web8 sshd\[29832\]: Failed password for invalid user passwd from 94.42.178.137 port 44580 ssh2 Sep 7 21:44:06 web8 sshd\[32559\]: Invalid user 12 from 94.42.178.137 Sep 7 21:44:06 web8 sshd\[32559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.42.178.137	2019-09-08 13:16:17
45.136.109.34	attackspam	Portscan or hack attempt detected by psad/fwsnort	2019-09-08 13:56:44
46.229.213.106	attackbots	Malicious phishing, ISP Timeweb Ltd; repetitive redirects; blacklists; aggregate spam volume up to 5/day Unsolicited bulk spam - dominol.club, Timeweb Ltd - 92.53.119.43 Spam link batel-dollar.ddnsking.com = 5.23.54.120 (previously 176.57.208.216) Timeweb Ltd - blacklisted – REPETITIVE BLACKLISTED IP - URLSCAN.IO REDIRECT LIST: - Effective URL: https://todayinsidernews.net = 192.241.177.202 DigitalOcean - www.circlestraight.com = 185.117.118.51, Creanova - mgsse.swiftlink.company = 107.174.17.90, 118.184.32.7 Shanghai Anchnet Network - ddnsking.com = 8.23.224.108, Vitalwerks Internet Solutions - code.jquery.com = 205.185.208.52 Highwinds Network Group, Inc. Sender domain dominol.club = Timeweb Ltd 46.229.213.52, 46.229.212.250, 5.23.55.227, 162.255.119.8, 46.229.213.106, 46.229.213.65, 46.229.212.240, 46.229.213.130, 46.229.213.5, 46.229.212.228, 46.229.213.69, 46.229.213.118	2019-09-08 12:56:11
138.197.103.160	attackspam	Sep 8 01:52:05 tux-35-217 sshd\[19305\]: Invalid user 123456 from 138.197.103.160 port 51422 Sep 8 01:52:05 tux-35-217 sshd\[19305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 Sep 8 01:52:07 tux-35-217 sshd\[19305\]: Failed password for invalid user 123456 from 138.197.103.160 port 51422 ssh2 Sep 8 01:56:13 tux-35-217 sshd\[19309\]: Invalid user password from 138.197.103.160 port 37472 Sep 8 01:56:13 tux-35-217 sshd\[19309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 ...	2019-09-08 13:28:00
211.64.67.48	attack	Sep 7 19:07:16 hiderm sshd\[12021\]: Invalid user csgoserver from 211.64.67.48 Sep 7 19:07:16 hiderm sshd\[12021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.64.67.48 Sep 7 19:07:18 hiderm sshd\[12021\]: Failed password for invalid user csgoserver from 211.64.67.48 port 37838 ssh2 Sep 7 19:12:19 hiderm sshd\[12511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.64.67.48 user=mysql Sep 7 19:12:21 hiderm sshd\[12511\]: Failed password for mysql from 211.64.67.48 port 49430 ssh2	2019-09-08 13:29:09
94.176.77.55	attackspambots	Unauthorised access (Sep 8) SRC=94.176.77.55 LEN=40 TTL=244 ID=47389 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Sep 8) SRC=94.176.77.55 LEN=40 TTL=244 ID=33007 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Sep 8) SRC=94.176.77.55 LEN=40 TTL=244 ID=48917 DF TCP DPT=23 WINDOW=14600 SYN	2019-09-08 13:27:02
81.22.45.146	attackbots	3389/tcp 3389/tcp 3389/tcp... [2019-08-02/09-07]94pkt,1pt.(tcp)	2019-09-08 13:43:17
192.124.185.13	attackspam	[portscan] Port scan	2019-09-08 13:59:41
109.70.100.21	attack	Automatic report - Banned IP Access	2019-09-08 13:42:16
162.255.119.8	attackspambots	Malicious phishing, ISP Timeweb Ltd; repetitive redirects; blacklists; aggregate spam volume up to 5/day Unsolicited bulk spam - dominol.club, Timeweb Ltd - 92.53.119.43 Spam link batel-dollar.ddnsking.com = 5.23.54.120 (previously 176.57.208.216) Timeweb Ltd - blacklisted – REPETITIVE BLACKLISTED IP - URLSCAN.IO REDIRECT LIST: - Effective URL: https://todayinsidernews.net = 192.241.177.202 DigitalOcean - www.circlestraight.com = 185.117.118.51, Creanova - mgsse.swiftlink.company = 107.174.17.90, 118.184.32.7 Shanghai Anchnet Network - ddnsking.com = 8.23.224.108, Vitalwerks Internet Solutions - code.jquery.com = 205.185.208.52 Highwinds Network Group, Inc. Sender domain dominol.club = Timeweb Ltd 46.229.213.52, 46.229.212.250, 5.23.55.227, 162.255.119.8, 46.229.213.106, 46.229.213.65, 46.229.212.240, 46.229.213.130, 46.229.213.5, 46.229.212.228, 46.229.213.69, 46.229.213.118	2019-09-08 13:12:36

Recently Reported IPs

104.192.3.147	104.198.97.184	104.199.139.235	104.199.182.36
104.199.191.253	104.199.192.147	104.199.223.218	104.199.38.53
104.199.4.139	104.199.77.233	104.199.94.238	104.199.98.12
104.20.133.128	104.20.133.188	104.20.134.128	104.20.14.9
63.3.216.255	104.20.143.107	104.20.144.107	104.20.15.9