104.218.48.211

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.218.48.196	attackspambots	trying to access non-authorized port	2020-05-07 20:44:53
104.218.48.196	attackbotsspam	Unauthorized connection attempt detected from IP address 104.218.48.196 to port 81 [T]	2020-05-07 02:15:03
104.218.48.196	attack	Port 81 (TorPark onion routing) access denied	2020-05-01 02:02:04
104.218.48.196	attack	port	2020-04-29 05:34:04
104.218.48.196	attack	" "	2020-04-28 08:07:08
104.218.48.196	attackbots	scans 2 times in preceeding hours on the ports (in chronological order) 5500 60001	2020-04-25 21:10:41
104.218.48.196	attack	Apr 24 06:16:01 master sshd[13147]: Failed password for invalid user admin from 104.218.48.196 port 40336 ssh2 Apr 24 06:16:05 master sshd[13149]: Failed password for root from 104.218.48.196 port 42206 ssh2 Apr 24 06:16:09 master sshd[13151]: Failed password for root from 104.218.48.196 port 44376 ssh2 Apr 24 06:16:12 master sshd[13153]: Failed password for invalid user admin from 104.218.48.196 port 47124 ssh2 Apr 24 06:16:16 master sshd[13155]: Failed password for invalid user ubnt from 104.218.48.196 port 49034 ssh2 Apr 24 06:16:20 master sshd[13157]: Failed password for invalid user admin from 104.218.48.196 port 50614 ssh2 Apr 24 06:16:23 master sshd[13159]: Failed password for invalid user user from 104.218.48.196 port 52868 ssh2 Apr 24 06:16:26 master sshd[13161]: Failed password for invalid user usuario from 104.218.48.196 port 54710 ssh2 Apr 24 06:16:30 master sshd[13163]: Failed password for invalid user telnet from 104.218.48.196 port 56830 ssh2	2020-04-24 18:05:02
104.218.48.106	attackbotsspam	this ip attack my router.	2020-01-14 21:51:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.218.48.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19298
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.218.48.211.			IN	A

;; AUTHORITY SECTION:
.			159	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052502 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 26 06:19:19 CST 2022
;; MSG SIZE  rcvd: 107

Host info

211.48.218.104.in-addr.arpa domain name pointer srv211.emhancemail.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
211.48.218.104.in-addr.arpa	name = srv211.emhancemail.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.19.202.253	attack	Sniffing for wp-login	2019-10-26 05:05:15
165.22.112.45	attackbotsspam	Oct 25 22:29:02 MK-Soft-VM7 sshd[12901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.112.45 Oct 25 22:29:05 MK-Soft-VM7 sshd[12901]: Failed password for invalid user billing1 from 165.22.112.45 port 59184 ssh2 ...	2019-10-26 05:07:02
222.186.173.154	attackspambots	2019-10-25T20:29:47.393396hub.schaetter.us sshd\[29686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root 2019-10-25T20:29:49.403716hub.schaetter.us sshd\[29686\]: Failed password for root from 222.186.173.154 port 42160 ssh2 2019-10-25T20:29:53.517512hub.schaetter.us sshd\[29686\]: Failed password for root from 222.186.173.154 port 42160 ssh2 2019-10-25T20:29:57.855676hub.schaetter.us sshd\[29686\]: Failed password for root from 222.186.173.154 port 42160 ssh2 2019-10-25T20:30:01.544388hub.schaetter.us sshd\[29686\]: Failed password for root from 222.186.173.154 port 42160 ssh2 ...	2019-10-26 04:32:49
94.191.4.220	attackspam	Oct 26 02:00:00 areeb-Workstation sshd[19911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.4.220 Oct 26 02:00:01 areeb-Workstation sshd[19911]: Failed password for invalid user user from 94.191.4.220 port 40830 ssh2 ...	2019-10-26 04:32:18
182.254.172.63	attackbots	Oct 25 20:25:43 localhost sshd\[54605\]: Invalid user password from 182.254.172.63 port 54446 Oct 25 20:25:43 localhost sshd\[54605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.63 Oct 25 20:25:44 localhost sshd\[54605\]: Failed password for invalid user password from 182.254.172.63 port 54446 ssh2 Oct 25 20:29:34 localhost sshd\[54685\]: Invalid user imexp123456 from 182.254.172.63 port 59046 Oct 25 20:29:34 localhost sshd\[54685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.63 ...	2019-10-26 04:52:02
202.73.9.76	attackspambots	Oct 25 20:20:45 ip-172-31-1-72 sshd\[9212\]: Invalid user sa from 202.73.9.76 Oct 25 20:20:45 ip-172-31-1-72 sshd\[9212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.73.9.76 Oct 25 20:20:47 ip-172-31-1-72 sshd\[9212\]: Failed password for invalid user sa from 202.73.9.76 port 48352 ssh2 Oct 25 20:29:43 ip-172-31-1-72 sshd\[9339\]: Invalid user ceng from 202.73.9.76 Oct 25 20:29:43 ip-172-31-1-72 sshd\[9339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.73.9.76	2019-10-26 04:41:53
47.98.39.61	attack	port scan and connect, tcp 5432 (postgresql)	2019-10-26 04:40:23
91.225.196.152	attack	ENG,WP GET /wp-login.php	2019-10-26 04:55:52
46.142.153.65	attackspam	Oct 25 20:34:45 **** sshd[29006]: Did not receive identification string from 46.142.153.65 port 54456	2019-10-26 05:07:39
50.73.104.225	attack	RDP-Bruteforce \| Cancer2Ban-Autoban for Windows (see: https://github.com/Zeziroth/Cancer2Ban)	2019-10-26 04:49:27
159.203.201.131	attackbotsspam	Unauthorized SSH login attempts	2019-10-26 04:33:54
103.26.40.143	attack	Oct 21 14:16:54 uapps sshd[17597]: Address 103.26.40.143 maps to 103-26-40-143.static.hostcentral.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 21 14:16:54 uapps sshd[17597]: User r.r from 103.26.40.143 not allowed because not listed in AllowUsers Oct 21 14:16:54 uapps sshd[17597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.40.143 user=r.r Oct 21 14:16:56 uapps sshd[17597]: Failed password for invalid user r.r from 103.26.40.143 port 43806 ssh2 Oct 21 14:16:56 uapps sshd[17597]: Received disconnect from 103.26.40.143: 11: Bye Bye [preauth] Oct 21 14:30:17 uapps sshd[17673]: Address 103.26.40.143 maps to 103-26-40-143.static.hostcentral.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 21 14:30:18 uapps sshd[17673]: Failed password for invalid user epifania from 103.26.40.143 port 44344 ssh2 Oct 21 14:30:19 uapps sshd[17673]: Received disconnect from 103.2........ -------------------------------	2019-10-26 05:05:00
106.12.26.160	attack	Oct 25 22:24:59 vmanager6029 sshd\[11872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.160 user=root Oct 25 22:25:00 vmanager6029 sshd\[11872\]: Failed password for root from 106.12.26.160 port 50436 ssh2 Oct 25 22:29:38 vmanager6029 sshd\[11946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.160 user=root	2019-10-26 04:47:38
89.122.192.141	attackspam	Automatic report - Banned IP Access	2019-10-26 04:58:21
121.182.166.81	attack	" "	2019-10-26 04:52:16

Recently Reported IPs

104.218.48.197	104.218.48.222	104.218.49.84	104.218.51.157
104.218.51.236	104.218.52.155	104.218.52.210	104.218.52.7
104.218.52.70	104.218.53.10	104.218.55.179	104.218.61.138
104.218.8.218	104.218.8.243	124.8.7.146	104.219.12.24
104.22.78.69	104.22.79.69	104.221.160.250	104.221.178.4