104.219.248.48

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.219.248.45	attack	This IOC was found in a github gist: https://gist.github.com/b66feefc03dc4c17d0b7d16ca4158374 with the title "a list of ebay phishing domains that i discovered when combing through certificate data (through the .top TLD) " by ANeilan For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-06-19 22:10:29
104.219.248.88	attackbotsspam	This IOC was found in a github gist: https://gist.github.com/b66feefc03dc4c17d0b7d16ca4158374 with the title "a list of ebay phishing domains that i discovered when combing through certificate data (through the .top TLD) " by ANeilan For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-06-19 21:58:52
104.219.248.110	attack	Probing for files and paths: /old/	2020-05-23 07:29:31
104.219.248.2	attackspambots	xmlrpc attack	2019-10-19 04:00:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.219.248.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29597
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.219.248.48.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:31:38 CST 2022
;; MSG SIZE  rcvd: 107

Host info

48.248.219.104.in-addr.arpa domain name pointer server139-4.web-hosting.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.248.219.104.in-addr.arpa	name = server139-4.web-hosting.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.36.126.81	attackbotsspam	Sep 14 19:44:21 dedicated sshd[14231]: Invalid user md from 54.36.126.81 port 30820	2019-09-15 01:51:58
96.1.72.4	attackspam	Sep 14 09:26:07 localhost sshd\[484\]: Invalid user sales from 96.1.72.4 port 46548 Sep 14 09:26:07 localhost sshd\[484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.1.72.4 Sep 14 09:26:09 localhost sshd\[484\]: Failed password for invalid user sales from 96.1.72.4 port 46548 ssh2 ...	2019-09-15 01:20:06
156.209.150.222	attackspambots	Honeypot attack, port: 23, PTR: host-156.209.222.150-static.tedata.net.	2019-09-15 01:27:45
207.91.147.68	attackspam	SMB Server BruteForce Attack	2019-09-15 01:33:23
154.216.1.76	attackspambots	SMB Server BruteForce Attack	2019-09-15 01:39:09
106.12.14.254	attack	Sep 14 12:49:02 bouncer sshd\[27730\]: Invalid user opc from 106.12.14.254 port 42262 Sep 14 12:49:02 bouncer sshd\[27730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.14.254 Sep 14 12:49:05 bouncer sshd\[27730\]: Failed password for invalid user opc from 106.12.14.254 port 42262 ssh2 ...	2019-09-15 00:33:44
182.50.114.14	attack	Sep 14 07:31:05 xtremcommunity sshd\[74682\]: Invalid user ml from 182.50.114.14 port 62491 Sep 14 07:31:05 xtremcommunity sshd\[74682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.50.114.14 Sep 14 07:31:08 xtremcommunity sshd\[74682\]: Failed password for invalid user ml from 182.50.114.14 port 62491 ssh2 Sep 14 07:35:32 xtremcommunity sshd\[74787\]: Invalid user ftpalert from 182.50.114.14 port 21903 Sep 14 07:35:32 xtremcommunity sshd\[74787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.50.114.14 ...	2019-09-15 01:09:32
45.71.208.253	attack	Sep 11 10:30:16 itv-usvr-01 sshd[12636]: Invalid user test4 from 45.71.208.253 Sep 11 10:30:16 itv-usvr-01 sshd[12636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.71.208.253 Sep 11 10:30:16 itv-usvr-01 sshd[12636]: Invalid user test4 from 45.71.208.253 Sep 11 10:30:18 itv-usvr-01 sshd[12636]: Failed password for invalid user test4 from 45.71.208.253 port 43978 ssh2 Sep 11 10:37:17 itv-usvr-01 sshd[12914]: Invalid user apitest from 45.71.208.253	2019-09-15 00:30:57
212.237.137.119	attackspam	Sep 14 12:10:17 srv206 sshd[16128]: Invalid user jg from 212.237.137.119 ...	2019-09-15 01:04:15
13.230.239.9	attack	xmlrpc attack	2019-09-15 01:24:44
206.189.231.196	attack	WordPress wp-login brute force :: 206.189.231.196 0.064 BYPASS [14/Sep/2019:16:43:03 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 3989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-15 01:43:22
51.158.101.121	attackspam	Sep 14 15:17:24 MK-Soft-VM6 sshd\[23580\]: Invalid user text from 51.158.101.121 port 40036 Sep 14 15:17:24 MK-Soft-VM6 sshd\[23580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.101.121 Sep 14 15:17:25 MK-Soft-VM6 sshd\[23580\]: Failed password for invalid user text from 51.158.101.121 port 40036 ssh2 ...	2019-09-15 00:52:57
177.101.255.28	attackbots	Sep 14 18:33:24 dev0-dcde-rnet sshd[5121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.101.255.28 Sep 14 18:33:26 dev0-dcde-rnet sshd[5121]: Failed password for invalid user richy from 177.101.255.28 port 47178 ssh2 Sep 14 18:38:19 dev0-dcde-rnet sshd[5470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.101.255.28	2019-09-15 01:08:48
188.131.170.119	attackspam	Sep 10 04:16:11 itv-usvr-01 sshd[23444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.170.119 user=ubuntu Sep 10 04:16:12 itv-usvr-01 sshd[23444]: Failed password for ubuntu from 188.131.170.119 port 41164 ssh2 Sep 10 04:19:55 itv-usvr-01 sshd[23766]: Invalid user admin from 188.131.170.119 Sep 10 04:19:55 itv-usvr-01 sshd[23766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.170.119 Sep 10 04:19:55 itv-usvr-01 sshd[23766]: Invalid user admin from 188.131.170.119 Sep 10 04:19:58 itv-usvr-01 sshd[23766]: Failed password for invalid user admin from 188.131.170.119 port 47370 ssh2	2019-09-15 00:48:34
143.208.181.33	attackspambots	Sep 14 18:36:10 icinga sshd[27637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.181.33 Sep 14 18:36:12 icinga sshd[27637]: Failed password for invalid user anish from 143.208.181.33 port 58198 ssh2 ...	2019-09-15 00:40:08

Recently Reported IPs

104.22.11.233	104.22.12.15	104.219.248.64	104.22.10.233
104.219.41.65	104.22.13.15	104.22.13.3	104.22.12.3
104.22.18.219	104.22.15.74	104.22.14.74	104.22.25.242
104.22.21.133	104.22.20.133	104.22.4.51	104.22.19.219
104.22.24.242	104.22.38.208	104.22.39.208	104.22.44.171