104.239.136.99

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: PACE

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.239.136.8	attack	May 16 15:19:24 sip sshd[286907]: Invalid user benutzer from 104.239.136.8 port 32844 May 16 15:19:26 sip sshd[286907]: Failed password for invalid user benutzer from 104.239.136.8 port 32844 ssh2 May 16 15:24:39 sip sshd[286934]: Invalid user laureen from 104.239.136.8 port 45268 ...	2020-05-17 03:08:17
104.239.136.8	attackspam	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-16 02:33:23
104.239.136.8	attack	May 13 20:59:57 ns sshd[3515]: Connection from 104.239.136.8 port 37264 on 134.119.39.98 port 22 May 13 20:59:58 ns sshd[3515]: Invalid user postgres from 104.239.136.8 port 37264 May 13 20:59:58 ns sshd[3515]: Failed password for invalid user postgres from 104.239.136.8 port 37264 ssh2 May 13 20:59:58 ns sshd[3515]: Received disconnect from 104.239.136.8 port 37264:11: Bye Bye [preauth] May 13 20:59:58 ns sshd[3515]: Disconnected from 104.239.136.8 port 37264 [preauth] May 13 21:07:10 ns sshd[23139]: Connection from 104.239.136.8 port 40782 on 134.119.39.98 port 22 May 13 21:07:17 ns sshd[23139]: Connection closed by 104.239.136.8 port 40782 [preauth] May 13 21:09:28 ns sshd[19026]: Connection from 104.239.136.8 port 32796 on 134.119.39.98 port 22 May 13 21:09:33 ns sshd[19026]: Invalid user eom from 104.239.136.8 port 32796 May 13 21:09:33 ns sshd[19026]: Failed password for invalid user eom from 104.239.136.8 port 32796 ssh2 May 13 21:09:33 ns sshd[19026]: Received d........ -------------------------------	2020-05-15 20:17:30
104.239.136.8	attack	DATE:2020-05-14 02:43:04, IP:104.239.136.8, PORT:ssh SSH brute force auth (docker-dc)	2020-05-14 09:20:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.239.136.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37834
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.239.136.99.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040600 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 07 00:02:30 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 99.136.239.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.136.239.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.167.77.79	attackbots	Nov 4 15:59:23 server sshd\[3654\]: Invalid user pi from 62.167.77.79 Nov 4 15:59:23 server sshd\[3654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=adsl-62-167-77-79.adslplus.ch Nov 4 15:59:24 server sshd\[3656\]: Invalid user pi from 62.167.77.79 Nov 4 15:59:24 server sshd\[3656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=adsl-62-167-77-79.adslplus.ch Nov 4 15:59:25 server sshd\[3656\]: Failed password for invalid user pi from 62.167.77.79 port 47114 ssh2 ...	2019-11-04 21:39:35
14.190.193.205	attack	Unauthorised access (Nov 4) SRC=14.190.193.205 LEN=52 TTL=53 ID=7346 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-04 21:01:50
185.209.0.18	attackspam	185.209.0.18 was recorded 7 times by 2 hosts attempting to connect to the following ports: 23308,23346,23340,23392,23327,23357,23331. Incident counter (4h, 24h, all-time): 7, 47, 192	2019-11-04 21:22:56
80.188.112.168	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2019-11-04 20:59:28
77.37.150.9	attackbots	Nov 4 07:17:22 c10 sshd[32581]: Failed password for r.r from 77.37.150.9 port 50319 ssh2 Nov 4 07:17:24 c10 sshd[32581]: Failed password for r.r from 77.37.150.9 port 50319 ssh2 Nov 4 07:17:26 c10 sshd[32581]: Failed password for r.r from 77.37.150.9 port 50319 ssh2 Nov 4 07:17:28 c10 sshd[32581]: Failed password for r.r from 77.37.150.9 port 50319 ssh2 Nov 4 07:17:31 c10 sshd[32581]: Failed password for r.r from 77.37.150.9 port 50319 ssh2 Nov 4 07:17:33 c10 sshd[32581]: Failed password for r.r from 77.37.150.9 port 50319 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=77.37.150.9	2019-11-04 21:34:32
195.228.22.54	attackspam	web-1 [ssh_2] SSH Attack	2019-11-04 21:08:35
104.131.36.183	attack	Automatic report - XMLRPC Attack	2019-11-04 21:23:14
51.77.157.78	attackspambots	Nov 4 09:27:40 minden010 sshd[7166]: Failed password for root from 51.77.157.78 port 44974 ssh2 Nov 4 09:31:22 minden010 sshd[10934]: Failed password for root from 51.77.157.78 port 54108 ssh2 Nov 4 09:34:57 minden010 sshd[14548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.157.78 ...	2019-11-04 21:10:17
52.13.107.136	attackbots	Bad bot/spoofed identity	2019-11-04 21:24:35
110.49.70.240	attackbots	2019-11-04T05:51:34.372929Z 9b1dbea383d5 New connection: 110.49.70.240:26685 (172.17.0.3:2222) [session: 9b1dbea383d5] 2019-11-04T06:21:24.029639Z 315652662491 New connection: 110.49.70.240:31517 (172.17.0.3:2222) [session: 315652662491]	2019-11-04 21:19:12
23.94.154.183	attackbotsspam	(From eric@talkwithcustomer.com) Hey, You have a website naturalhealthdcs.com, right? Of course you do. I am looking at your website now. It gets traffic every day – that you’re probably spending $2 / $4 / $10 or more a click to get. Not including all of the work you put into creating social media, videos, blog posts, emails, and so on. So you’re investing seriously in getting people to that site. But how’s it working? Great? Okay? Not so much? If that answer could be better, then it’s likely you’re putting a lot of time, effort, and money into an approach that’s not paying off like it should. Now… imagine doubling your lead conversion in just minutes… In fact, I’ll go even better. You could actually get up to 100X more conversions! I’m not making this up. As Chris Smith, best-selling author of The Conversion Code says: Speed is essential - there is a 100x decrease in Leads when a Lead is contacted within 14 minutes vs being contacted within 5 minutes. He’s backed up by a st	2019-11-04 21:03:13
80.82.64.176	attackbotsspam	attack against WP site	2019-11-04 21:27:42
159.203.193.245	attackbotsspam	Nov 4 06:21:05 nopemail postfix/smtps/smtpd[8657]: SSL_accept error from unknown[159.203.193.245]: lost connection ...	2019-11-04 21:30:21
69.16.221.104	attackbots	2019-11-04T14:22:04.344777mail01 postfix/smtpd[24738]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T14:22:23.038043mail01 postfix/smtpd[21003]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T14:28:28.344158mail01 postfix/smtpd[21099]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 21:32:56
198.46.225.100	attackspambots	(From eric@talkwithcustomer.com) Hey, You have a website naturalhealthdcs.com, right? Of course you do. I am looking at your website now. It gets traffic every day – that you’re probably spending $2 / $4 / $10 or more a click to get. Not including all of the work you put into creating social media, videos, blog posts, emails, and so on. So you’re investing seriously in getting people to that site. But how’s it working? Great? Okay? Not so much? If that answer could be better, then it’s likely you’re putting a lot of time, effort, and money into an approach that’s not paying off like it should. Now… imagine doubling your lead conversion in just minutes… In fact, I’ll go even better. You could actually get up to 100X more conversions! I’m not making this up. As Chris Smith, best-selling author of The Conversion Code says: Speed is essential - there is a 100x decrease in Leads when a Lead is contacted within 14 minutes vs being contacted within 5 minutes. He’s backed up by a st	2019-11-04 21:06:21

Recently Reported IPs

104.239.136.230	104.239.141.61	104.239.143.16	104.239.145.157
104.239.149.112	104.239.168.56	104.239.187.244	104.239.225.156
104.239.230.64	104.24.1.10	104.24.1.6	104.248.221.56
104.248.232.213	104.248.233.181	104.248.243.167	104.248.245.231
104.248.255.152	104.248.26.249	104.248.29.248	104.248.32.191