104.219.248.68

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.219.248.45	attack	This IOC was found in a github gist: https://gist.github.com/b66feefc03dc4c17d0b7d16ca4158374 with the title "a list of ebay phishing domains that i discovered when combing through certificate data (through the .top TLD) " by ANeilan For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-06-19 22:10:29
104.219.248.88	attackbotsspam	This IOC was found in a github gist: https://gist.github.com/b66feefc03dc4c17d0b7d16ca4158374 with the title "a list of ebay phishing domains that i discovered when combing through certificate data (through the .top TLD) " by ANeilan For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-06-19 21:58:52
104.219.248.110	attack	Probing for files and paths: /old/	2020-05-23 07:29:31
104.219.248.2	attackspambots	xmlrpc attack	2019-10-19 04:00:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.219.248.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16199
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.219.248.68.			IN	A

;; AUTHORITY SECTION:
.			1	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:22:02 CST 2022
;; MSG SIZE  rcvd: 107

Host info

68.248.219.104.in-addr.arpa domain name pointer premium14.web-hosting.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.248.219.104.in-addr.arpa	name = premium14.web-hosting.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.82.15.160	attackspambots	Icarus honeypot on github	2020-10-06 18:52:10
68.183.126.143	attack	SSH login attempts.	2020-10-06 19:01:44
49.232.157.17	attack	Oct 6 12:32:40 server sshd[3878]: Failed password for root from 49.232.157.17 port 32784 ssh2 Oct 6 12:34:58 server sshd[5153]: Failed password for root from 49.232.157.17 port 35350 ssh2 Oct 6 12:37:23 server sshd[6492]: Failed password for root from 49.232.157.17 port 37926 ssh2	2020-10-06 19:13:58
39.99.210.38	attackspam	Oct 6 12:23:54 con01 sshd[4146420]: Failed password for root from 39.99.210.38 port 52622 ssh2 Oct 6 12:24:39 con01 sshd[4147839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.99.210.38 user=root Oct 6 12:24:41 con01 sshd[4147839]: Failed password for root from 39.99.210.38 port 58054 ssh2 Oct 6 12:25:26 con01 sshd[4149081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.99.210.38 user=root Oct 6 12:25:28 con01 sshd[4149081]: Failed password for root from 39.99.210.38 port 35246 ssh2 ...	2020-10-06 19:19:49
163.172.40.236	attackspam	163.172.40.236 - - [06/Oct/2020:14:40:19 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-10-06 18:59:36
49.234.131.75	attackbotsspam	2020-10-06T12:26:32.860602amanda2.illicoweb.com sshd\[24036\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 user=root 2020-10-06T12:26:35.271828amanda2.illicoweb.com sshd\[24036\]: Failed password for root from 49.234.131.75 port 47076 ssh2 2020-10-06T12:31:31.890493amanda2.illicoweb.com sshd\[24396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 user=root 2020-10-06T12:31:34.015662amanda2.illicoweb.com sshd\[24396\]: Failed password for root from 49.234.131.75 port 49022 ssh2 2020-10-06T12:36:25.487395amanda2.illicoweb.com sshd\[24551\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 user=root ...	2020-10-06 18:56:54
203.190.55.213	attackspambots	SSH login attempts.	2020-10-06 18:59:00
51.77.230.49	attackspambots	Invalid user xh from 51.77.230.49 port 34176	2020-10-06 19:18:30
88.214.41.27	attack	$f2bV_matches	2020-10-06 19:12:58
45.112.69.185	attackspambots	22/tcp 8291/tcp... [2020-10-05]5pkt,2pt.(tcp)	2020-10-06 19:00:44
222.95.180.220	attackbots	23/tcp [2020-10-05]1pkt	2020-10-06 18:47:10
90.180.207.135	attackspam	60681/udp [2020-10-05]1pkt	2020-10-06 18:56:28
178.62.118.53	attackspam	Oct 6 10:11:04 ns3033917 sshd[2173]: Failed password for root from 178.62.118.53 port 49039 ssh2 Oct 6 10:19:55 ns3033917 sshd[2251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53 user=root Oct 6 10:19:58 ns3033917 sshd[2251]: Failed password for root from 178.62.118.53 port 52683 ssh2 ...	2020-10-06 19:11:35
136.243.142.18	attack	Oct 6 10:54:00 ms-srv sshd[16250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.243.142.18 user=root Oct 6 10:54:03 ms-srv sshd[16250]: Failed password for invalid user root from 136.243.142.18 port 33542 ssh2	2020-10-06 18:48:25
62.4.16.46	attackbots	Oct 6 10:22:11 jumpserver sshd[523747]: Failed password for root from 62.4.16.46 port 35662 ssh2 Oct 6 10:25:52 jumpserver sshd[523756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.4.16.46 user=root Oct 6 10:25:54 jumpserver sshd[523756]: Failed password for root from 62.4.16.46 port 51864 ssh2 ...	2020-10-06 18:56:02

Recently Reported IPs

104.219.248.63	104.219.248.47	104.219.248.66	104.219.248.91
104.219.248.72	104.219.248.96	104.219.250.206	104.219.251.10
104.219.251.247	104.219.41.228	104.219.251.34	104.219.54.206
104.22.0.102	104.219.72.113	104.219.72.53	104.219.55.4
104.219.73.20	104.22.0.114	104.22.0.115	104.22.0.111