104.236.2.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.236.244.98	attack	Oct 12 14:41:14 sip sshd[1914609]: Failed password for invalid user netfonts from 104.236.244.98 port 43420 ssh2 Oct 12 14:44:34 sip sshd[1914639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.244.98 user=root Oct 12 14:44:36 sip sshd[1914639]: Failed password for root from 104.236.244.98 port 49008 ssh2 ...	2020-10-12 21:38:31
104.236.226.237	attack	ET SCAN NMAP -sS window 1024	2020-10-12 20:34:28
104.236.226.237	attackbotsspam	Oct 12 04:42:12 xxx sshd[12956]: Did not receive identification string from 104.236.226.237 Oct 12 04:42:48 xxx sshd[12960]: Did not receive identification string from 104.236.226.237 Oct 12 04:43:08 xxx sshd[12983]: Did not receive identification string from 104.236.226.237 Oct 12 05:31:37 xxx sshd[17634]: Did not receive identification string from 104.236.226.237 Oct 12 05:31:54 xxx sshd[17635]: Did not receive identification string from 104.236.226.237 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.236.226.237	2020-10-12 12:03:13
104.236.207.70	attack	Oct 10 05:50:29 web1 sshd[31091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 05:50:31 web1 sshd[31091]: Failed password for root from 104.236.207.70 port 58224 ssh2 Oct 10 05:55:05 web1 sshd[32659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 05:55:07 web1 sshd[32659]: Failed password for root from 104.236.207.70 port 50466 ssh2 Oct 10 05:58:21 web1 sshd[1280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 05:58:23 web1 sshd[1280]: Failed password for root from 104.236.207.70 port 57172 ssh2 Oct 10 06:01:40 web1 sshd[2448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 user=root Oct 10 06:01:42 web1 sshd[2448]: Failed password for root from 104.236.207.70 port 35642 ssh2 Oct 10 06:05:00 web1 sshd[3505]: ...	2020-10-10 03:07:07
104.236.228.230	attack	(sshd) Failed SSH login from 104.236.228.230 (US/United States/-): 5 in the last 3600 secs	2020-10-10 02:35:28
104.236.207.70	attackspam	Oct 9 10:12:02 lnxweb62 sshd[22047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70	2020-10-09 18:56:11
104.236.228.230	attackbotsspam	2020-10-09T07:30:18.113939server.espacesoutien.com sshd[28971]: Invalid user joshua from 104.236.228.230 port 60726 2020-10-09T07:30:20.222612server.espacesoutien.com sshd[28971]: Failed password for invalid user joshua from 104.236.228.230 port 60726 ssh2 2020-10-09T07:33:23.458175server.espacesoutien.com sshd[29253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.228.230 user=ftp 2020-10-09T07:33:24.950639server.espacesoutien.com sshd[29253]: Failed password for ftp from 104.236.228.230 port 55812 ssh2 ...	2020-10-09 18:20:33
104.236.207.70	attackspam	Oct 2 19:25:50 staging sshd[180907]: Invalid user reach from 104.236.207.70 port 60598 Oct 2 19:25:50 staging sshd[180907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 Oct 2 19:25:50 staging sshd[180907]: Invalid user reach from 104.236.207.70 port 60598 Oct 2 19:25:52 staging sshd[180907]: Failed password for invalid user reach from 104.236.207.70 port 60598 ssh2 ...	2020-10-03 03:37:13
104.236.207.70	attackspambots	Oct 2 18:37:39 fhem-rasp sshd[21269]: Invalid user andrew from 104.236.207.70 port 36612 ...	2020-10-03 02:26:01
104.236.207.70	attack	fail2ban	2020-10-02 22:54:54
104.236.207.70	attack	fail2ban	2020-10-02 19:26:37
104.236.207.70	attack	20 attempts against mh-ssh on echoip	2020-10-02 12:16:32
104.236.207.70	attackspambots	2020-09-30T16:36:49.995927ionos.janbro.de sshd[187671]: Failed password for invalid user ftpuser2 from 104.236.207.70 port 33266 ssh2 2020-09-30T16:40:22.805913ionos.janbro.de sshd[187700]: Invalid user long from 104.236.207.70 port 42356 2020-09-30T16:40:22.870399ionos.janbro.de sshd[187700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 2020-09-30T16:40:22.805913ionos.janbro.de sshd[187700]: Invalid user long from 104.236.207.70 port 42356 2020-09-30T16:40:25.238171ionos.janbro.de sshd[187700]: Failed password for invalid user long from 104.236.207.70 port 42356 ssh2 2020-09-30T16:43:58.358930ionos.janbro.de sshd[187734]: Invalid user Redistoor from 104.236.207.70 port 51442 2020-09-30T16:43:58.405147ionos.janbro.de sshd[187734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.207.70 2020-09-30T16:43:58.358930ionos.janbro.de sshd[187734]: Invalid user Redistoor from 104.236.207.70 ...	2020-10-01 04:05:23
104.236.207.70	attackspam	Tried sshing with brute force.	2020-09-30 20:14:45
104.236.207.70	attackbotsspam	2020-09-30T02:13:04.859436Z e298aeb8a697 New connection: 104.236.207.70:60760 (172.17.0.5:2222) [session: e298aeb8a697] 2020-09-30T02:19:27.090070Z 791bec47229f New connection: 104.236.207.70:45474 (172.17.0.5:2222) [session: 791bec47229f]	2020-09-30 12:41:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.236.2.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.236.2.139.			IN	A

;; AUTHORITY SECTION:
.			183	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 13:43:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 139.2.236.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.2.236.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.44.113.33	attackspambots	Sep 10 16:51:20 vps691689 sshd[23354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.44.113.33 Sep 10 16:51:22 vps691689 sshd[23354]: Failed password for invalid user svnuser from 187.44.113.33 port 36555 ssh2 ...	2019-09-10 23:01:13
81.92.149.60	attackspam	Sep 10 16:50:46 core sshd[2142]: Invalid user steam from 81.92.149.60 port 53622 Sep 10 16:50:48 core sshd[2142]: Failed password for invalid user steam from 81.92.149.60 port 53622 ssh2 ...	2019-09-10 23:00:22
80.237.68.228	attackspambots	Sep 10 14:28:59 hosting sshd[13935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.237.68.228 user=admin Sep 10 14:29:02 hosting sshd[13935]: Failed password for admin from 80.237.68.228 port 52482 ssh2 ...	2019-09-10 22:52:59
122.171.55.140	attackspam	[Sun Aug 11 09:14:57.270714 2019] [access_compat:error] [pid 4214] [client 122.171.55.140:7673] AH01797: client denied by server configuration: /var/www/html/josh/wp-login.php ...	2019-09-10 23:24:30
49.68.61.92	attackbots	Brute force SMTP login attempts.	2019-09-10 22:25:38
51.38.130.198	attack	Sep 10 14:17:30 SilenceServices sshd[4168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.198 Sep 10 14:17:32 SilenceServices sshd[4168]: Failed password for invalid user bernd from 51.38.130.198 port 34792 ssh2 Sep 10 14:18:14 SilenceServices sshd[4492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.198	2019-09-10 22:47:02
193.22.154.74	attack	Jun 28 15:09:44 mercury smtpd[16684]: 190d3ba2ff8e6ca6 smtp event=failed-command address=193.22.154.74 host=193.22.154.74 command="RCPT to:" result="550 Invalid recipient" ...	2019-09-10 22:42:57
112.64.32.118	attackbotsspam	Sep 10 16:32:35 legacy sshd[2580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 Sep 10 16:32:38 legacy sshd[2580]: Failed password for invalid user tempo from 112.64.32.118 port 59538 ssh2 Sep 10 16:35:55 legacy sshd[2735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.32.118 ...	2019-09-10 22:40:51
157.41.38.13	attackbotsspam	Unauthorized connection attempt from IP address 157.41.38.13 on Port 445(SMB)	2019-09-10 22:23:43
112.167.165.193	attackbotsspam	Sep 10 17:29:27 yabzik sshd[9900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.167.165.193 Sep 10 17:29:30 yabzik sshd[9900]: Failed password for invalid user postgres from 112.167.165.193 port 43254 ssh2 Sep 10 17:36:26 yabzik sshd[12564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.167.165.193	2019-09-10 22:54:07
113.97.29.55	attackspambots	Unauthorized connection attempt from IP address 113.97.29.55 on Port 445(SMB)	2019-09-10 22:57:36
120.31.71.235	attack	Sep 10 16:16:37 rpi sshd[8723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.31.71.235 Sep 10 16:16:40 rpi sshd[8723]: Failed password for invalid user teamspeak3 from 120.31.71.235 port 56069 ssh2	2019-09-10 22:21:41
103.51.153.235	attackspam	Sep 10 04:23:52 hpm sshd\[27717\]: Invalid user user3 from 103.51.153.235 Sep 10 04:23:52 hpm sshd\[27717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.51.153.235 Sep 10 04:23:55 hpm sshd\[27717\]: Failed password for invalid user user3 from 103.51.153.235 port 54316 ssh2 Sep 10 04:30:18 hpm sshd\[28247\]: Invalid user teamspeak from 103.51.153.235 Sep 10 04:30:18 hpm sshd\[28247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.51.153.235	2019-09-10 22:35:35
77.247.108.77	attackspam	09/10/2019-09:57:29.128370 77.247.108.77 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 75	2019-09-10 22:56:30
14.228.139.195	attack	Unauthorized connection attempt from IP address 14.228.139.195 on Port 445(SMB)	2019-09-10 22:54:40

Recently Reported IPs

103.99.251.42	103.99.251.74	103.99.251.78	103.99.251.82
103.99.251.60	103.99.26.145	103.99.251.58	103.99.251.62
103.99.251.76	103.99.26.161	103.99.26.17	103.99.26.193
103.99.26.33	103.99.26.2	103.99.26.5	103.99.26.6
103.99.3.104	103.99.26.254	103.99.26.9	103.99.3.43