104.245.97.14 - IPInfo

Basic Info

City: unknown

Region: Zuid Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.245.97.42	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 104.245.97.42 (ns2.racklot.com): 5 in the last 3600 secs - Thu Jun 28 22:57:28 2018	2020-02-23 21:45:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.245.97.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47843
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.245.97.14.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022082700 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 27 14:48:25 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 14.97.245.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.97.245.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.2.67.59	attackspam	41525/udp [2019-06-22]1pkt	2019-06-23 15:00:18
217.136.4.88	attackspam	SSHAttack	2019-06-23 14:31:06
179.145.49.105	attackbotsspam	Lines containing failures of 179.145.49.105 Jun 20 06:01:34 ariston sshd[300]: Bad protocol version identification '' from 179.145.49.105 port 49016 Jun 20 06:01:37 ariston sshd[301]: Invalid user support from 179.145.49.105 port 50078 Jun 20 06:01:37 ariston sshd[301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.145.49.105 Jun 20 06:01:39 ariston sshd[301]: Failed password for invalid user support from 179.145.49.105 port 50078 ssh2 Jun 20 06:01:40 ariston sshd[301]: Connection closed by invalid user support 179.145.49.105 port 50078 [preauth] Jun 20 06:01:41 ariston sshd[311]: Invalid user ubnt from 179.145.49.105 port 54098 Jun 20 06:01:41 ariston sshd[311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.145.49.105 Jun 20 06:01:44 ariston sshd[311]: Failed password for invalid user ubnt from 179.145.49.105 port 54098 ssh2 Jun 20 06:01:45 ariston sshd[311]: Connection closed by........ ------------------------------	2019-06-23 15:17:08
157.7.130.79	attack	fail2ban honeypot	2019-06-23 15:01:14
119.197.77.52	attack	Jun 23 01:47:04 aat-srv002 sshd[3027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.197.77.52 Jun 23 01:47:06 aat-srv002 sshd[3027]: Failed password for invalid user philippe from 119.197.77.52 port 43070 ssh2 Jun 23 01:48:56 aat-srv002 sshd[3066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.197.77.52 Jun 23 01:48:59 aat-srv002 sshd[3066]: Failed password for invalid user staffa from 119.197.77.52 port 56934 ssh2 ...	2019-06-23 14:50:20
41.110.188.5	attack	port scan and connect, tcp 8080 (http-proxy)	2019-06-23 14:38:12
218.17.158.45	attackspam	139/tcp [2019-06-22]1pkt	2019-06-23 14:42:17
177.95.26.94	attackspambots	" "	2019-06-23 14:48:40
40.112.65.88	attackbots	Jun 19 16:09:01 shared06 sshd[20108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.65.88 user=nagios Jun 19 16:09:03 shared06 sshd[20108]: Failed password for nagios from 40.112.65.88 port 53070 ssh2 Jun 19 16:09:03 shared06 sshd[20108]: Received disconnect from 40.112.65.88 port 53070:11: Bye Bye [preauth] Jun 19 16:09:03 shared06 sshd[20108]: Disconnected from 40.112.65.88 port 53070 [preauth] Jun 19 16:13:06 shared06 sshd[21856]: Invalid user da from 40.112.65.88 Jun 19 16:13:06 shared06 sshd[21856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.65.88 Jun 19 16:13:08 shared06 sshd[21856]: Failed password for invalid user da from 40.112.65.88 port 43668 ssh2 Jun 19 16:13:08 shared06 sshd[21856]: Received disconnect from 40.112.65.88 port 43668:11: Bye Bye [preauth] Jun 19 16:13:08 shared06 sshd[21856]: Disconnected from 40.112.65.88 port 43668 [preauth] ........ ---------------------------------------------	2019-06-23 14:57:46
47.198.224.40	attackspam	Jun 22 23:28:05 gcems sshd\[28565\]: Invalid user admin@root from 47.198.224.40 port 59612 Jun 22 23:28:05 gcems sshd\[28565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.198.224.40 Jun 22 23:28:07 gcems sshd\[28565\]: Failed password for invalid user admin@root from 47.198.224.40 port 59612 ssh2 Jun 22 23:32:16 gcems sshd\[28703\]: Invalid user ip from 47.198.224.40 port 48840 Jun 22 23:32:16 gcems sshd\[28703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.198.224.40 ...	2019-06-23 14:55:15
119.51.179.165	attackspambots	23/tcp [2019-06-22]1pkt	2019-06-23 14:30:23
191.53.223.80	attackspam	SMTP-sasl brute force ...	2019-06-23 14:38:39
2400:6180:0:d1::578:d001	attack	[munged]::443 2400:6180:0:d1::578:d001 - - [23/Jun/2019:02:09:57 +0200] "POST /[munged]: HTTP/1.1" 200 6975 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::578:d001 - - [23/Jun/2019:02:10:11 +0200] "POST /[munged]: HTTP/1.1" 200 6985 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::578:d001 - - [23/Jun/2019:02:10:11 +0200] "POST /[munged]: HTTP/1.1" 200 6985 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::578:d001 - - [23/Jun/2019:02:10:17 +0200] "POST /[munged]: HTTP/1.1" 200 6958 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::578:d001 - - [23/Jun/2019:02:10:17 +0200] "POST /[munged]: HTTP/1.1" 200 6958 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2400:6180:0:d1::578:d001 - - [23/Jun/2019:02:10:23 +020	2019-06-23 15:05:57
82.119.111.122	attackbots	Automatic report - Web App Attack	2019-06-23 15:15:38
173.21.14.190	attack	23/tcp 23/tcp 23/tcp... [2019-06-22]4pkt,1pt.(tcp)	2019-06-23 15:10:50

Recently Reported IPs

185.212.57.206	139.59.108.118	79.193.93.239	109.42.242.226
56.192.36.47	185.222.93.202	51.83.72.118	174.127.195.106
174.127.195.86	51.222.44.128	146.115.105.237	46.121.41.190
182.74.167.147	58.41.222.139	132.154.103.132	46.19.85.32
132.154.103.135	194.233.69.8	2804:18:834:8d88:909a:4de8:6fc0:6f7d	173.216.197.156