104.239.136.13

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.239.136.8	attack	May 16 15:19:24 sip sshd[286907]: Invalid user benutzer from 104.239.136.8 port 32844 May 16 15:19:26 sip sshd[286907]: Failed password for invalid user benutzer from 104.239.136.8 port 32844 ssh2 May 16 15:24:39 sip sshd[286934]: Invalid user laureen from 104.239.136.8 port 45268 ...	2020-05-17 03:08:17
104.239.136.8	attackspam	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-16 02:33:23
104.239.136.8	attack	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-15 20:17:30
104.239.136.8	attack	DATE:2020-05-14 02:43:04, IP:104.239.136.8, PORT:ssh SSH brute force auth (docker-dc)	2020-05-14 09:20:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.239.136.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10882
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.239.136.13.			IN	A

;; AUTHORITY SECTION:
.			125	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030700 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 07 19:02:06 CST 2022
;; MSG SIZE  rcvd: 107

Host info

13.136.239.104.in-addr.arpa domain name pointer imagescape.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.136.239.104.in-addr.arpa	name = imagescape.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.193.24.48	attackspam	FTP Brute Force	2019-12-25 18:40:52
101.89.150.171	attackbots	Dec 25 06:40:09 localhost sshd\[6302\]: Invalid user yonghwan from 101.89.150.171 port 56830 Dec 25 06:40:09 localhost sshd\[6302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.150.171 Dec 25 06:40:11 localhost sshd\[6302\]: Failed password for invalid user yonghwan from 101.89.150.171 port 56830 ssh2 Dec 25 06:44:57 localhost sshd\[6429\]: Invalid user @@@@@@@ from 101.89.150.171 port 55968 Dec 25 06:44:57 localhost sshd\[6429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.150.171 ...	2019-12-25 18:41:22
104.248.227.130	attack	SSH Brute Force, server-1 sshd[3752]: Failed password for invalid user cresci from 104.248.227.130 port 52104 ssh2	2019-12-25 18:17:46
49.229.29.50	attackbotsspam	Unauthorized connection attempt detected from IP address 49.229.29.50 to port 445	2019-12-25 18:28:31
193.19.119.26	normal	Hello	2019-12-25 18:34:11
193.19.119.26	normal	Ok answer my questions	2019-12-25 18:33:26
103.226.174.227	attackspam	Unauthorized connection attempt detected from IP address 103.226.174.227 to port 445	2019-12-25 18:44:04
151.49.241.22	attack	Lines containing failures of 151.49.241.22 Dec 25 07:31:37 HOSTNAME sshd[7443]: Address 151.49.241.22 maps to adsl-ull-22-241.49-151.wind.hostname, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 25 07:31:37 HOSTNAME sshd[7443]: Invalid user ching from 151.49.241.22 port 37236 Dec 25 07:31:37 HOSTNAME sshd[7443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.49.241.22 Dec 25 07:31:39 HOSTNAME sshd[7443]: Failed password for invalid user ching from 151.49.241.22 port 37236 ssh2 Dec 25 07:31:39 HOSTNAME sshd[7443]: Received disconnect from 151.49.241.22 port 37236:11: Bye Bye [preauth] Dec 25 07:31:39 HOSTNAME sshd[7443]: Disconnected from 151.49.241.22 port 37236 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=151.49.241.22	2019-12-25 18:49:14
103.81.156.56	attackbotsspam	Dec 25 10:57:44 XXX sshd[57471]: Invalid user banzhoff from 103.81.156.56 port 64414	2019-12-25 18:14:46
189.50.43.10	attackbots	Unauthorized connection attempt detected from IP address 189.50.43.10 to port 8080	2019-12-25 18:34:37
14.231.206.169	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 25-12-2019 06:25:11.	2019-12-25 18:17:32
117.50.122.81	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-25 18:24:35
101.108.95.237	attackspam	1577255078 - 12/25/2019 07:24:38 Host: 101.108.95.237/101.108.95.237 Port: 445 TCP Blocked	2019-12-25 18:35:35
42.101.34.122	attackspambots	--- report --- Dec 25 04:59:38 sshd: Connection from 42.101.34.122 port 54862 Dec 25 04:59:40 sshd: Invalid user gpadmin from 42.101.34.122 Dec 25 04:59:42 sshd: Failed password for invalid user gpadmin from 42.101.34.122 port 54862 ssh2	2019-12-25 18:22:56
51.15.192.14	attackbotsspam	Dec 25 08:26:49 h2177944 sshd\[27098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.192.14 user=root Dec 25 08:26:51 h2177944 sshd\[27098\]: Failed password for root from 51.15.192.14 port 60140 ssh2 Dec 25 08:29:59 h2177944 sshd\[27186\]: Invalid user smolt from 51.15.192.14 port 35880 Dec 25 08:29:59 h2177944 sshd\[27186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.192.14 ...	2019-12-25 18:23:38

Recently Reported IPs

104.238.57.137	104.239.144.228	233.18.239.200	104.239.146.190
104.239.163.45	104.239.168.207	104.239.240.193	104.239.250.30
217.245.198.184	104.24.10.73	30.172.135.122	104.24.11.103
104.24.12.103	104.24.130.50	104.24.145.100	104.24.148.17
104.24.149.17	104.24.161.119	104.24.164.150	104.24.165.14