104.239.136.159

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.239.136.8	attack	May 16 15:19:24 sip sshd[286907]: Invalid user benutzer from 104.239.136.8 port 32844 May 16 15:19:26 sip sshd[286907]: Failed password for invalid user benutzer from 104.239.136.8 port 32844 ssh2 May 16 15:24:39 sip sshd[286934]: Invalid user laureen from 104.239.136.8 port 45268 ...	2020-05-17 03:08:17
104.239.136.8	attackspam	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-16 02:33:23
104.239.136.8	attack	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-15 20:17:30
104.239.136.8	attack	DATE:2020-05-14 02:43:04, IP:104.239.136.8, PORT:ssh SSH brute force auth (docker-dc)	2020-05-14 09:20:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.239.136.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41756
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.239.136.159.		IN	A

;; AUTHORITY SECTION:
.			459	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 11:44:50 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 159.136.239.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 159.136.239.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
164.163.237.119	attackbotsspam	Unauthorized connection attempt from IP address 164.163.237.119 on Port 445(SMB)	2019-11-05 01:23:38
218.150.220.202	attackbots	2019-11-04T14:32:12.948396abusebot-5.cloudsearch.cf sshd\[15779\]: Invalid user robert from 218.150.220.202 port 43004	2019-11-05 01:53:54
95.213.177.122	attackspam	95.213.177.122 was recorded 16 times by 3 hosts attempting to connect to the following ports: 8080,8000,3128,1080,8081,3129,8888,65531,32525,54321. Incident counter (4h, 24h, all-time): 16, 93, 268	2019-11-05 01:45:04
59.63.188.56	attackbotsspam	Unauthorized connection attempt from IP address 59.63.188.56 on Port 445(SMB)	2019-11-05 01:41:59
118.70.171.4	attack	Unauthorized connection attempt from IP address 118.70.171.4 on Port 445(SMB)	2019-11-05 02:00:55
51.15.99.106	attackspam	Nov 4 14:28:31 web8 sshd\[9007\]: Invalid user zv from 51.15.99.106 Nov 4 14:28:31 web8 sshd\[9007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.99.106 Nov 4 14:28:32 web8 sshd\[9007\]: Failed password for invalid user zv from 51.15.99.106 port 41168 ssh2 Nov 4 14:32:27 web8 sshd\[10933\]: Invalid user ftp from 51.15.99.106 Nov 4 14:32:27 web8 sshd\[10933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.99.106	2019-11-05 01:40:52
188.166.77.159	attackspam	Nov 4 10:00:56 ny01 sshd[27217]: Failed password for root from 188.166.77.159 port 43382 ssh2 Nov 4 10:04:59 ny01 sshd[27593]: Failed password for root from 188.166.77.159 port 54558 ssh2	2019-11-05 01:59:59
106.13.101.220	attackbotsspam	Nov 4 18:29:53 meumeu sshd[5348]: Failed password for root from 106.13.101.220 port 50956 ssh2 Nov 4 18:34:05 meumeu sshd[5934]: Failed password for root from 106.13.101.220 port 58366 ssh2 ...	2019-11-05 01:38:22
92.119.160.106	attack	Nov 4 18:30:22 mc1 kernel: \[4174928.117273\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=25446 PROTO=TCP SPT=56856 DPT=47298 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 18:31:59 mc1 kernel: \[4175025.132659\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=10809 PROTO=TCP SPT=56856 DPT=46686 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 4 18:35:54 mc1 kernel: \[4175259.774039\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=55500 PROTO=TCP SPT=56856 DPT=46775 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-05 02:02:16
106.13.67.22	attack	Nov 4 17:36:36 vmanager6029 sshd\[23728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22 user=root Nov 4 17:36:38 vmanager6029 sshd\[23728\]: Failed password for root from 106.13.67.22 port 38128 ssh2 Nov 4 17:41:30 vmanager6029 sshd\[23911\]: Invalid user l4d2 from 106.13.67.22 port 43462 Nov 4 17:41:30 vmanager6029 sshd\[23911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.67.22	2019-11-05 01:21:32
106.13.219.171	attackspam	$f2bV_matches	2019-11-05 02:03:25
50.232.156.154	attackspam	Automatic report - XMLRPC Attack	2019-11-05 01:20:13
175.124.43.123	attackspam	Nov 4 10:07:12 plusreed sshd[28411]: Invalid user www from 175.124.43.123 ...	2019-11-05 02:00:25
106.12.56.143	attack	Nov 4 04:47:13 sachi sshd\[2000\]: Invalid user ftpuser123 from 106.12.56.143 Nov 4 04:47:13 sachi sshd\[2000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.143 Nov 4 04:47:15 sachi sshd\[2000\]: Failed password for invalid user ftpuser123 from 106.12.56.143 port 43322 ssh2 Nov 4 04:52:26 sachi sshd\[2415\]: Invalid user Stone123 from 106.12.56.143 Nov 4 04:52:26 sachi sshd\[2415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.143	2019-11-05 01:22:01
187.174.164.99	attackbots	Unauthorized connection attempt from IP address 187.174.164.99 on Port 445(SMB)	2019-11-05 01:30:07

Recently Reported IPs

104.239.160.218	104.239.166.97	104.239.183.28	104.24.31.8
104.24.254.12	104.24.251.13	104.24.30.8	104.24.255.12
104.24.253.24	104.24.3.35	104.24.4.44	104.24.252.24
104.24.27.32	104.24.5.44	104.24.75.11	104.24.254.7
104.24.8.56	104.24.8.70	104.24.74.11	104.24.86.7