104.239.136.152

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.239.136.8	attack	May 16 15:19:24 sip sshd[286907]: Invalid user benutzer from 104.239.136.8 port 32844 May 16 15:19:26 sip sshd[286907]: Failed password for invalid user benutzer from 104.239.136.8 port 32844 ssh2 May 16 15:24:39 sip sshd[286934]: Invalid user laureen from 104.239.136.8 port 45268 ...	2020-05-17 03:08:17
104.239.136.8	attackspam	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-16 02:33:23
104.239.136.8	attack	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-15 20:17:30
104.239.136.8	attack	DATE:2020-05-14 02:43:04, IP:104.239.136.8, PORT:ssh SSH brute force auth (docker-dc)	2020-05-14 09:20:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.239.136.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.239.136.152.		IN	A

;; AUTHORITY SECTION:
.			321	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032000 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 16:36:39 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 152.136.239.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.136.239.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.176.16.110	attackspam	Telnet Server BruteForce Attack	2019-07-27 13:21:54
2.76.234.78	attack	utm - spam	2019-07-27 13:28:31
46.3.96.70	attackspambots	Port scan: Attack repeated for 24 hours	2019-07-27 14:18:25
202.51.120.22	attackbotsspam	proto=tcp . spt=51752 . dpt=25 . (listed on Blocklist de Jul 26) (279)	2019-07-27 14:12:46
113.57.95.12	attack	2019-07-27T05:54:05.301042abusebot-5.cloudsearch.cf sshd\[21034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.57.95.12 user=root	2019-07-27 13:56:06
200.27.18.242	attack	proto=tcp . spt=51980 . dpt=25 . (listed on Blocklist de Jul 26) (277)	2019-07-27 14:18:05
139.99.123.74	attackbots	Automatic report - Banned IP Access	2019-07-27 14:04:39
62.215.195.90	attackspambots	Unauthorised access (Jul 27) SRC=62.215.195.90 LEN=52 TTL=116 ID=6874 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-27 14:11:45
121.46.27.10	attack	Jul 27 07:28:32 ns3367391 sshd\[21520\]: Invalid user vagrant from 121.46.27.10 port 34258 Jul 27 07:28:32 ns3367391 sshd\[21520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.27.10 ...	2019-07-27 13:51:15
92.252.243.239	attackbots	Automatic report - Port Scan Attack	2019-07-27 13:50:30
49.84.213.159	attack	Jul 27 01:44:01 vps200512 sshd\[14686\]: Invalid user wmw from 49.84.213.159 Jul 27 01:44:01 vps200512 sshd\[14686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.84.213.159 Jul 27 01:44:02 vps200512 sshd\[14686\]: Failed password for invalid user wmw from 49.84.213.159 port 37191 ssh2 Jul 27 01:53:56 vps200512 sshd\[14788\]: Invalid user access!@\#\$% from 49.84.213.159 Jul 27 01:53:56 vps200512 sshd\[14788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.84.213.159	2019-07-27 14:07:23
160.16.216.114	attackspambots	Jul 27 05:10:28 MK-Soft-VM3 sshd\[21668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.216.114 user=root Jul 27 05:10:30 MK-Soft-VM3 sshd\[21668\]: Failed password for root from 160.16.216.114 port 44428 ssh2 Jul 27 05:15:23 MK-Soft-VM3 sshd\[21895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.216.114 user=root ...	2019-07-27 13:21:27
85.174.227.52	attackspambots	proto=tcp . spt=47257 . dpt=25 . (listed on Blocklist de Jul 26) (290)	2019-07-27 13:47:28
89.100.21.40	attackspam	Jul 27 10:35:55 vibhu-HP-Z238-Microtower-Workstation sshd\[1302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.21.40 user=root Jul 27 10:35:56 vibhu-HP-Z238-Microtower-Workstation sshd\[1302\]: Failed password for root from 89.100.21.40 port 52028 ssh2 Jul 27 10:40:46 vibhu-HP-Z238-Microtower-Workstation sshd\[1528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.21.40 user=root Jul 27 10:40:48 vibhu-HP-Z238-Microtower-Workstation sshd\[1528\]: Failed password for root from 89.100.21.40 port 46766 ssh2 Jul 27 10:45:28 vibhu-HP-Z238-Microtower-Workstation sshd\[1679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.21.40 user=root ...	2019-07-27 13:18:29
115.73.173.226	attackbots	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-27 07:14:23]	2019-07-27 13:25:46

Recently Reported IPs

104.239.135.165	104.239.140.21	104.239.140.6	104.239.141.192
104.239.141.6	104.239.142.52	104.239.144.171	104.239.144.223
104.239.145.4	104.247.72.235	104.247.77.7	104.247.78.124
104.247.78.140	104.247.78.190	104.247.78.203	104.247.78.89
104.247.79.126	104.247.81.32	104.248.0.130	104.248.1.154