104.219.248.12

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.219.248.45	attack	This IOC was found in a github gist: https://gist.github.com/b66feefc03dc4c17d0b7d16ca4158374 with the title "a list of ebay phishing domains that i discovered when combing through certificate data (through the .top TLD) " by ANeilan For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-06-19 22:10:29
104.219.248.88	attackbotsspam	This IOC was found in a github gist: https://gist.github.com/b66feefc03dc4c17d0b7d16ca4158374 with the title "a list of ebay phishing domains that i discovered when combing through certificate data (through the .top TLD) " by ANeilan For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-06-19 21:58:52
104.219.248.110	attack	Probing for files and paths: /old/	2020-05-23 07:29:31
104.219.248.2	attackspambots	xmlrpc attack	2019-10-19 04:00:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.219.248.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43816
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.219.248.12.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022201 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 23 04:08:02 CST 2022
;; MSG SIZE  rcvd: 107

Host info

12.248.219.104.in-addr.arpa domain name pointer host33.registrar-servers.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.248.219.104.in-addr.arpa	name = host33.registrar-servers.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.24.5.135	attack	Invalid user ywr from 118.24.5.135 port 48342	2020-01-10 23:12:02
94.231.68.216	attackbotsspam	Jan 10 16:14:37 mail sshd[17388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.231.68.216 Jan 10 16:14:37 mail sshd[17390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.231.68.216 ...	2020-01-10 23:21:38
103.97.124.200	attackspambots	Invalid user lky from 103.97.124.200 port 54582	2020-01-10 23:19:45
157.230.58.196	attackspambots	Jan 10 04:57:50 eddieflores sshd\[24373\]: Invalid user sts from 157.230.58.196 Jan 10 04:57:50 eddieflores sshd\[24373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.58.196 Jan 10 04:57:52 eddieflores sshd\[24373\]: Failed password for invalid user sts from 157.230.58.196 port 36774 ssh2 Jan 10 04:59:34 eddieflores sshd\[24520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.58.196 user=root Jan 10 04:59:36 eddieflores sshd\[24520\]: Failed password for root from 157.230.58.196 port 53726 ssh2	2020-01-10 23:05:24
134.209.108.97	attackbotsspam	Invalid user admin from 134.209.108.97 port 55740	2020-01-10 23:08:55
78.180.15.35	attack	Invalid user msfadmin from 78.180.15.35 port 53340	2020-01-10 23:23:00
180.180.122.31	attackspam	Jan 9 21:33:20 server sshd\[11189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=node-o4f.pool-180-180.dynamic.totinternet.net user=root Jan 9 21:33:22 server sshd\[11189\]: Failed password for root from 180.180.122.31 port 40939 ssh2 Jan 10 16:13:43 server sshd\[31306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=node-o4f.pool-180-180.dynamic.totinternet.net user=root Jan 10 16:13:45 server sshd\[31306\]: Failed password for root from 180.180.122.31 port 40834 ssh2 Jan 10 16:23:43 server sshd\[1423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=node-o4f.pool-180-180.dynamic.totinternet.net user=root ...	2020-01-10 23:39:50
54.39.151.22	attackbotsspam	Invalid user dev from 54.39.151.22 port 60298	2020-01-10 23:26:21
51.255.50.238	attackspam	Invalid user ahc from 51.255.50.238 port 33900	2020-01-10 23:26:46
110.12.8.10	attackspam	Jan 9 14:35:29 tuxlinux sshd[47044]: Invalid user icinga from 110.12.8.10 port 63663 Jan 9 14:35:29 tuxlinux sshd[47044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.12.8.10 Jan 9 14:35:29 tuxlinux sshd[47044]: Invalid user icinga from 110.12.8.10 port 63663 Jan 9 14:35:29 tuxlinux sshd[47044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.12.8.10 Jan 9 14:35:29 tuxlinux sshd[47044]: Invalid user icinga from 110.12.8.10 port 63663 Jan 9 14:35:29 tuxlinux sshd[47044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.12.8.10 Jan 9 14:35:31 tuxlinux sshd[47044]: Failed password for invalid user icinga from 110.12.8.10 port 63663 ssh2 ...	2020-01-10 23:45:28
41.32.84.174	attackbots	Invalid user admin from 41.32.84.174 port 50474	2020-01-10 23:30:49
104.248.29.180	attack	Invalid user buscador from 104.248.29.180 port 40596	2020-01-10 23:18:15
51.254.51.182	attackspam	...	2020-01-10 23:27:22
140.143.222.95	attackspam	Invalid user mym from 140.143.222.95 port 46486	2020-01-10 23:06:06
106.75.78.135	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-10 23:16:39

Recently Reported IPs

104.219.248.118	104.219.248.120	40.126.170.55	104.219.248.16
104.219.248.243	104.219.248.71	104.219.248.84	104.219.248.90
104.219.250.136	104.219.250.170	104.219.250.20	104.219.250.50
104.22.0.17	104.22.1.17	104.22.10.8	104.22.11.8
104.22.14.227	88.191.24.45	104.22.15.227	104.22.23.174