104.234.115.148

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.234.115.113	botsattackproxy	Brute-force attacker IP	2025-07-31 16:31:35
104.234.115.249	botsattackproxy	Brute-force attacker IP	2025-06-18 13:09:55
104.234.115.7	spamattackproxy	Brute-force attacker IP	2025-06-05 18:21:44
104.234.115.177	attackproxy	Bad IP	2025-05-22 16:11:03
104.234.115.6	botsattackproxy	Brute-force attacker IP	2025-05-22 13:01:17
104.234.115.77	spambotsattack	Malicious IP	2025-05-20 12:52:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.234.115.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7160
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.234.115.148.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025042400 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 24 16:00:06 CST 2025
;; MSG SIZE  rcvd: 108

Host info

148.115.234.104.in-addr.arpa domain name pointer crawler148.deepfield.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.115.234.104.in-addr.arpa	name = crawler148.deepfield.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.241.19.60	attack	Hit honeypot r.	2020-07-14 05:45:58
95.56.166.242	attackspam	Unauthorized connection attempt from IP address 95.56.166.242 on Port 445(SMB)	2020-07-14 06:07:13
222.186.169.194	attackbotsspam	Jul 13 23:48:03 nextcloud sshd\[15865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Jul 13 23:48:05 nextcloud sshd\[15865\]: Failed password for root from 222.186.169.194 port 44678 ssh2 Jul 13 23:48:18 nextcloud sshd\[15865\]: Failed password for root from 222.186.169.194 port 44678 ssh2	2020-07-14 05:54:53
118.68.165.234	attack	Unauthorized connection attempt from IP address 118.68.165.234 on Port 445(SMB)	2020-07-14 06:02:14
49.50.236.243	attack	Unauthorized connection attempt from IP address 49.50.236.243 on Port 445(SMB)	2020-07-14 06:11:46
177.125.89.86	attack	Unauthorized connection attempt from IP address 177.125.89.86 on Port 445(SMB)	2020-07-14 06:14:24
82.65.1.45	attackspam	DATE:2020-07-13 22:30:42, IP:82.65.1.45, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-07-14 06:14:54
141.98.217.58	attack	Jul 13 23:43:36 debian-2gb-nbg1-2 kernel: \[16935188.596852\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=141.98.217.58 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=40541 PROTO=TCP SPT=46954 DPT=8299 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-14 05:49:03
178.134.136.170	attack	Unauthorized connection attempt from IP address 178.134.136.170 on Port 445(SMB)	2020-07-14 06:05:15
45.138.74.46	spamattack	attack on 2020-07-13 Return-Path: Received: from [217.72.192.66] ([217.72.192.66]) by mx.emig.kundenserver.de (mxeue112 [217.72.192.66]) with ESMTP (Nemesis) id 1MNMAm-1kFToG3oRW-00Oqlo for ; Mon, 13 Jul 2020 20:32:19 +0200 Received: from kjtyz.hjgdfsdbgfgh.bw ([45.138.74.46]) by mx.emig.kundenserver.de (mxeue112 [217.72.192.66]) with ESMTP (Nemesis) id 1N8YgJ-1kzEkF3lon-014X2V for ; Mon, 13 Jul 2020 20:32:18 +0200 Received: from thing.nutrimment.nl () by mx.emig.kundenserver.de (mxeue110 ) with ESMTP (Nemesis) id 1MeBpR-1kTyvO0IHX-00bLGO for ; Mon, 13 Jul 2020 11:23:53 +0200 Date: Tue, 31 Dec 2105 23:59:59 +0100 From: =?UTF-8?B?TWNEb25hbGRcJ3M=?= To: lilly@online.de Message-ID:	2020-07-14 05:49:19
178.33.146.17	attack	Jul 13 22:27:59 ns382633 sshd\[17780\]: Invalid user yux from 178.33.146.17 port 39534 Jul 13 22:27:59 ns382633 sshd\[17780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.146.17 Jul 13 22:28:00 ns382633 sshd\[17780\]: Failed password for invalid user yux from 178.33.146.17 port 39534 ssh2 Jul 13 22:30:52 ns382633 sshd\[18403\]: Invalid user samara from 178.33.146.17 port 37434 Jul 13 22:30:52 ns382633 sshd\[18403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.146.17	2020-07-14 06:04:16
212.95.137.19	attack	623. On Jul 13 2020 experienced a Brute Force SSH login attempt -> 38 unique times by 212.95.137.19.	2020-07-14 06:01:43
103.89.176.73	attack	Jul 13 23:48:17 abendstille sshd\[27378\]: Invalid user ftp_user from 103.89.176.73 Jul 13 23:48:17 abendstille sshd\[27378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.89.176.73 Jul 13 23:48:19 abendstille sshd\[27378\]: Failed password for invalid user ftp_user from 103.89.176.73 port 52238 ssh2 Jul 13 23:51:34 abendstille sshd\[30481\]: Invalid user ftpuser from 103.89.176.73 Jul 13 23:51:34 abendstille sshd\[30481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.89.176.73 ...	2020-07-14 05:52:40
27.109.129.83	attack	Automatic report - Port Scan Attack	2020-07-14 05:52:58
36.72.212.29	attackspambots	Jul 13 22:31:17 rancher-0 sshd[289062]: Invalid user pi from 36.72.212.29 port 60325 Jul 13 22:31:17 rancher-0 sshd[289061]: Invalid user pi from 36.72.212.29 port 28255 ...	2020-07-14 05:43:39

Recently Reported IPs

222.92.41.194	27.35.55.76	172.31.102.104	134.70.210.131
167.99.50.137	137.184.207.161	218.2.112.242	169.22.81.162
138.189.82.73	20.84.144.136	117.222.45.129	1.94.127.142
135.149.157.23	176.102.135.139	143.110.211.38	35.193.185.178
167.99.150.255	226.56.214.127	83.169.253.113	185.163.253.108