104.239.136.152

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.239.136.8	attack	May 16 15:19:24 sip sshd[286907]: Invalid user benutzer from 104.239.136.8 port 32844 May 16 15:19:26 sip sshd[286907]: Failed password for invalid user benutzer from 104.239.136.8 port 32844 ssh2 May 16 15:24:39 sip sshd[286934]: Invalid user laureen from 104.239.136.8 port 45268 ...	2020-05-17 03:08:17
104.239.136.8	attackspam	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-16 02:33:23
104.239.136.8	attack	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-15 20:17:30
104.239.136.8	attack	DATE:2020-05-14 02:43:04, IP:104.239.136.8, PORT:ssh SSH brute force auth (docker-dc)	2020-05-14 09:20:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.239.136.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.239.136.152.		IN	A

;; AUTHORITY SECTION:
.			321	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032000 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 16:36:39 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 152.136.239.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.136.239.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.172.193.120	attackspam	Unauthorized connection attempt detected from IP address 52.172.193.120 to port 1433	2020-07-22 15:09:58
52.188.58.41	attackspam	Unauthorized connection attempt detected from IP address 52.188.58.41 to port 1433	2020-07-22 15:36:18
188.10.245.254	attackbotsspam	2020-07-22T08:22:12.053104v22018076590370373 sshd[29548]: Invalid user minh from 188.10.245.254 port 59439 2020-07-22T08:22:12.058586v22018076590370373 sshd[29548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.10.245.254 2020-07-22T08:22:12.053104v22018076590370373 sshd[29548]: Invalid user minh from 188.10.245.254 port 59439 2020-07-22T08:22:14.217968v22018076590370373 sshd[29548]: Failed password for invalid user minh from 188.10.245.254 port 59439 ssh2 2020-07-22T08:27:47.369277v22018076590370373 sshd[27021]: Invalid user adrian from 188.10.245.254 port 57256 ...	2020-07-22 15:49:27
23.30.120.241	attackspambots	Unauthorized connection attempt detected from IP address 23.30.120.241 to port 23	2020-07-22 15:14:45
87.26.153.177	attackspam	Unauthorized connection attempt detected from IP address 87.26.153.177 to port 80	2020-07-22 15:30:26
186.0.137.82	attackspambots	Unauthorized connection attempt detected from IP address 186.0.137.82 to port 445	2020-07-22 15:21:17
220.74.99.173	attack	Unauthorized connection attempt detected from IP address 220.74.99.173 to port 23	2020-07-22 15:45:39
5.234.175.58	attack	Unauthorized connection attempt detected from IP address 5.234.175.58 to port 8080	2020-07-22 15:43:53
211.38.154.57	attack	Unauthorized connection attempt detected from IP address 211.38.154.57 to port 23	2020-07-22 15:46:26
50.235.76.162	attack	Unauthorized connection attempt detected from IP address 50.235.76.162 to port 23	2020-07-22 15:11:09
193.228.91.11	attackspam	TCP (SYN) 193.228.91.11:50805 -> port 22, len 48	2020-07-22 15:48:26
36.112.131.191	attackbotsspam	Unauthorized connection attempt detected from IP address 36.112.131.191 to port 7124	2020-07-22 15:13:51
151.235.190.239	attackbots	Unauthorized connection attempt detected from IP address 151.235.190.239 to port 8080	2020-07-22 15:24:40
134.209.182.158	attackbotsspam	Unauthorized connection attempt detected from IP address 134.209.182.158 to port 6588	2020-07-22 15:25:53
193.56.28.158	attack	Unauthorized connection attempt detected from IP address 193.56.28.158 to port 1080	2020-07-22 15:20:19

Recently Reported IPs

104.239.135.165	104.239.140.21	104.239.140.6	104.239.141.192
104.239.141.6	104.239.142.52	104.239.144.171	104.239.144.223
104.239.145.4	104.247.72.235	104.247.77.7	104.247.78.124
104.247.78.140	104.247.78.190	104.247.78.203	104.247.78.89
104.247.79.126	104.247.81.32	104.248.0.130	104.248.1.154