104.192.82.140

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Dignitas Technology Inc

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 104.192.82.140 to port 1433 [J]	2020-03-03 01:49:37
attack	02/29/2020-23:55:37.582280 104.192.82.140 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-03-01 16:22:22

Comments on same subnet:

IP	Type	Details	Datetime
104.192.82.99	attackbots	SSH Brute-Forcing (server2)	2020-08-12 13:50:56
104.192.82.99	attack	Aug 6 14:23:49 cosmoit sshd[27185]: Failed password for root from 104.192.82.99 port 55218 ssh2	2020-08-06 20:41:07
104.192.82.99	attackbots	Jul 18 15:26:56 hidden sshd[60375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 Jul 18 15:26:58 hidden sshd[60375]: Failed password for invalid user fvs from 104.192.82.99 port 34716 ssh2	2020-07-19 03:03:40
104.192.82.99	attack	2020-07-13T20:29:11.970744+02:00 sshd[8894]: Failed password for invalid user adm02 from 104.192.82.99 port 51824 ssh2	2020-07-14 02:41:52
104.192.82.99	attackbots	SSH Invalid Login	2020-07-02 03:45:35
104.192.82.99	attack	Invalid user gen from 104.192.82.99 port 39274	2020-06-27 07:05:33
104.192.82.99	attackbotsspam	$f2bV_matches	2020-06-26 02:37:01
104.192.82.99	attackbots	Jun 18 19:34:43 gw1 sshd[13901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 Jun 18 19:34:45 gw1 sshd[13901]: Failed password for invalid user db2inst1 from 104.192.82.99 port 52718 ssh2 ...	2020-06-18 22:51:40
104.192.82.99	attack	prod11 ...	2020-06-13 01:00:07
104.192.82.99	attack	Jun 10 12:57:19 zulu412 sshd\[14590\]: Invalid user lorenzo from 104.192.82.99 port 53392 Jun 10 12:57:19 zulu412 sshd\[14590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 Jun 10 12:57:21 zulu412 sshd\[14590\]: Failed password for invalid user lorenzo from 104.192.82.99 port 53392 ssh2 ...	2020-06-11 02:15:44
104.192.82.99	attack	" "	2020-06-09 07:04:58
104.192.82.99	attackbots	Failed password for root from 104.192.82.99 port 36802 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 user=root Failed password for root from 104.192.82.99 port 58640 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 user=root Failed password for root from 104.192.82.99 port 52238 ssh2	2020-06-01 07:41:16
104.192.82.99	attack	Invalid user zhaowu from 104.192.82.99 port 58266	2020-05-23 13:16:58
104.192.82.99	attack	May 3 18:33:41 piServer sshd[25559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 May 3 18:33:44 piServer sshd[25559]: Failed password for invalid user wesley from 104.192.82.99 port 47060 ssh2 May 3 18:38:37 piServer sshd[25952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.192.82.99 ...	2020-05-04 01:13:37
104.192.82.99	attack	$f2bV_matches	2020-05-02 16:36:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.192.82.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19101
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.192.82.140.			IN	A

;; AUTHORITY SECTION:
.			384	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030100 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 01 16:22:15 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 140.82.192.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 140.82.192.104.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.30.251.233	attack	Email rejected due to spam filtering	2020-03-09 09:05:47
104.236.250.155	attack	SSH invalid-user multiple login try	2020-03-09 09:26:34
121.122.85.2	attack	23/tcp [2020-03-08]1pkt	2020-03-09 08:59:34
116.108.190.58	attackbots	Automatic report - Port Scan Attack	2020-03-09 09:31:07
222.186.15.166	attackbotsspam	Mar 9 02:20:26 [host] sshd[19505]: pam_unix(sshd: Mar 9 02:20:28 [host] sshd[19505]: Failed passwor Mar 9 02:20:30 [host] sshd[19505]: Failed passwor	2020-03-09 09:21:29
188.209.47.54	attack	Email rejected due to spam filtering	2020-03-09 09:27:21
103.61.198.42	attackspam	Unauthorized connection attempt from IP address 103.61.198.42 on Port 25(SMTP)	2020-03-09 09:23:37
154.209.69.90	attackbots	ECShop Remote Code Execution Vulnerability	2020-03-09 09:22:00
113.188.249.255	attackbots	Netgear DGN Device Remote Command Execution Vulnerability	2020-03-09 09:18:50
103.133.111.105	attackspambots	" "	2020-03-09 09:01:12
185.74.36.121	attackspam	Automatic report - Port Scan Attack	2020-03-09 09:37:13
182.253.90.40	attack	Unauthorized connection attempt from IP address 182.253.90.40 on Port 445(SMB)	2020-03-09 09:24:04
190.187.91.113	attackbotsspam	firewall-block, port(s): 445/tcp	2020-03-09 09:34:07
42.81.160.96	attack	SSH brute force	2020-03-09 09:20:13
124.105.201.105	attackbotsspam	Unauthorized connection attempt from IP address 124.105.201.105 on Port 445(SMB)	2020-03-09 09:33:07

Recently Reported IPs

93.23.218.125	53.158.176.226	78.80.112.43	123.24.72.173
120.239.176.168	79.49.142.133	120.28.234.16	14.115.91.139
176.108.234.125	50.75.243.232	58.251.61.225	121.154.250.15
223.27.21.9	182.143.24.169	80.195.10.0	3.29.97.75
177.188.214.26	155.4.175.167	85.84.221.57	131.162.92.112