104.239.136.159

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.239.136.8	attack	May 16 15:19:24 sip sshd[286907]: Invalid user benutzer from 104.239.136.8 port 32844 May 16 15:19:26 sip sshd[286907]: Failed password for invalid user benutzer from 104.239.136.8 port 32844 ssh2 May 16 15:24:39 sip sshd[286934]: Invalid user laureen from 104.239.136.8 port 45268 ...	2020-05-17 03:08:17
104.239.136.8	attackspam	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-16 02:33:23
104.239.136.8	attack	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-15 20:17:30
104.239.136.8	attack	DATE:2020-05-14 02:43:04, IP:104.239.136.8, PORT:ssh SSH brute force auth (docker-dc)	2020-05-14 09:20:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.239.136.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41756
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.239.136.159.		IN	A

;; AUTHORITY SECTION:
.			459	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 11:44:50 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 159.136.239.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 159.136.239.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.191.79.125	attackbots	Unauthorized access to SSH at 1/Oct/2020:20:40:25 +0000.	2020-10-02 17:23:30
46.101.4.101	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-02T09:19:03Z and 2020-10-02T09:25:45Z	2020-10-02 17:29:31
185.202.1.104	attack	Repeated RDP login failures. Last user: Administrator	2020-10-02 17:43:41
183.58.22.146	attackbotsspam	Repeated RDP login failures. Last user: Office	2020-10-02 17:52:58
142.93.235.47	attackbotsspam	2020-10-02T08:06:08.925177abusebot-4.cloudsearch.cf sshd[455]: Invalid user test from 142.93.235.47 port 47348 2020-10-02T08:06:08.931647abusebot-4.cloudsearch.cf sshd[455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 2020-10-02T08:06:08.925177abusebot-4.cloudsearch.cf sshd[455]: Invalid user test from 142.93.235.47 port 47348 2020-10-02T08:06:10.678886abusebot-4.cloudsearch.cf sshd[455]: Failed password for invalid user test from 142.93.235.47 port 47348 ssh2 2020-10-02T08:09:31.934480abusebot-4.cloudsearch.cf sshd[565]: Invalid user user from 142.93.235.47 port 53400 2020-10-02T08:09:31.942004abusebot-4.cloudsearch.cf sshd[565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.47 2020-10-02T08:09:31.934480abusebot-4.cloudsearch.cf sshd[565]: Invalid user user from 142.93.235.47 port 53400 2020-10-02T08:09:34.225961abusebot-4.cloudsearch.cf sshd[565]: Failed password for invalid ...	2020-10-02 17:24:21
45.146.167.167	attackspambots	Repeated RDP login failures. Last user: Test	2020-10-02 17:47:21
103.89.91.82	attackspam	Oct 2 09:46:47 relay postfix/smtpd\[8533\]: warning: unknown\[103.89.91.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 09:47:00 relay postfix/smtpd\[7989\]: warning: unknown\[103.89.91.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 09:47:21 relay postfix/smtpd\[7989\]: warning: unknown\[103.89.91.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 09:47:37 relay postfix/smtpd\[12027\]: warning: unknown\[103.89.91.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 09:47:45 relay postfix/smtpd\[8533\]: warning: unknown\[103.89.91.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-02 17:33:06
39.65.19.112	attack	Port scan detected on ports: 8080[TCP], 8080[TCP], 8080[TCP]	2020-10-02 17:36:03
103.154.234.245	attackbotsspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 17:32:31
120.31.239.194	attack	Repeated RDP login failures. Last user: Scan	2020-10-02 17:45:23
49.88.112.73	attackbotsspam	Oct 2 09:24:25 onepixel sshd[4175984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.73 user=root Oct 2 09:24:27 onepixel sshd[4175984]: Failed password for root from 49.88.112.73 port 10627 ssh2 Oct 2 09:24:25 onepixel sshd[4175984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.73 user=root Oct 2 09:24:27 onepixel sshd[4175984]: Failed password for root from 49.88.112.73 port 10627 ssh2 Oct 2 09:24:31 onepixel sshd[4175984]: Failed password for root from 49.88.112.73 port 10627 ssh2	2020-10-02 17:28:30
150.107.149.11	attack	TCP (SYN) 150.107.149.11:59244 -> port 27584, len 44	2020-10-02 17:33:55
213.108.134.121	attackbotsspam	Repeated RDP login failures. Last user: Test	2020-10-02 17:43:00
187.62.177.81	attackbotsspam	Repeated RDP login failures. Last user: Compta	2020-10-02 17:52:35
76.69.154.149	attackspambots	trying to access non-authorized port	2020-10-02 17:20:55

Recently Reported IPs

104.239.160.218	104.239.166.97	104.239.183.28	104.24.31.8
104.24.254.12	104.24.251.13	104.24.30.8	104.24.255.12
104.24.253.24	104.24.3.35	104.24.4.44	104.24.252.24
104.24.27.32	104.24.5.44	104.24.75.11	104.24.254.7
104.24.8.56	104.24.8.70	104.24.74.11	104.24.86.7