104.248.114.13

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.114.67	attackbots	5x Failed Password	2020-10-04 06:17:48
104.248.114.67	attackspambots	20 attempts against mh-ssh on cloud	2020-10-03 22:22:23
104.248.114.67	attackspambots	Invalid user dev from 104.248.114.67 port 59414	2020-10-03 14:04:37
104.248.114.67	attackspambots	Sep 3 11:38:26 root sshd[22122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 Sep 3 11:38:28 root sshd[22122]: Failed password for invalid user newuser from 104.248.114.67 port 47676 ssh2 Sep 3 11:51:03 root sshd[23755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 ...	2020-09-03 20:41:58
104.248.114.67	attack	Fail2Ban Ban Triggered	2020-09-03 12:27:00
104.248.114.67	attackspambots	2020-09-02T22:04:40.586385paragon sshd[16470]: Invalid user bruna from 104.248.114.67 port 42176 2020-09-02T22:04:40.589576paragon sshd[16470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 2020-09-02T22:04:40.586385paragon sshd[16470]: Invalid user bruna from 104.248.114.67 port 42176 2020-09-02T22:04:43.308337paragon sshd[16470]: Failed password for invalid user bruna from 104.248.114.67 port 42176 ssh2 2020-09-02T22:06:54.612715paragon sshd[16497]: Invalid user ftp-user from 104.248.114.67 port 50356 ...	2020-09-03 04:45:21
104.248.114.67	attack	Invalid user gokul from 104.248.114.67 port 42258	2020-09-02 16:30:45
104.248.114.67	attack	104.248.114.67 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 1 20:18:57 server5 sshd[7133]: Failed password for root from 51.75.207.61 port 50106 ssh2 Sep 1 20:22:25 server5 sshd[8562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 user=root Sep 1 20:21:11 server5 sshd[8104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.177.169.1 user=root Sep 1 20:21:13 server5 sshd[8104]: Failed password for root from 95.177.169.1 port 53290 ssh2 Sep 1 20:20:40 server5 sshd[7996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.210.224 user=root Sep 1 20:20:43 server5 sshd[7996]: Failed password for root from 192.241.210.224 port 34504 ssh2 IP Addresses Blocked: 51.75.207.61 (FR/France/-)	2020-09-02 09:33:47
104.248.114.67	attackspambots	2020-08-31T12:25:03.958255abusebot-4.cloudsearch.cf sshd[18950]: Invalid user webserver from 104.248.114.67 port 49152 2020-08-31T12:25:03.963512abusebot-4.cloudsearch.cf sshd[18950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 2020-08-31T12:25:03.958255abusebot-4.cloudsearch.cf sshd[18950]: Invalid user webserver from 104.248.114.67 port 49152 2020-08-31T12:25:05.842163abusebot-4.cloudsearch.cf sshd[18950]: Failed password for invalid user webserver from 104.248.114.67 port 49152 ssh2 2020-08-31T12:28:27.598943abusebot-4.cloudsearch.cf sshd[19184]: Invalid user ubuntu from 104.248.114.67 port 55310 2020-08-31T12:28:27.604464abusebot-4.cloudsearch.cf sshd[19184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 2020-08-31T12:28:27.598943abusebot-4.cloudsearch.cf sshd[19184]: Invalid user ubuntu from 104.248.114.67 port 55310 2020-08-31T12:28:29.488147abusebot-4.cloudsearch.c ...	2020-09-01 04:37:58
104.248.114.248	attackbots	Aug 27 19:34:05 vps639187 sshd\[16264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.248 user=root Aug 27 19:34:07 vps639187 sshd\[16264\]: Failed password for root from 104.248.114.248 port 45844 ssh2 Aug 27 19:43:43 vps639187 sshd\[16347\]: Invalid user admin from 104.248.114.248 port 37146 Aug 27 19:43:43 vps639187 sshd\[16347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.248 ...	2020-08-28 02:15:02
104.248.114.67	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-14T15:24:25Z and 2020-08-14T15:32:08Z	2020-08-15 00:34:26
104.248.114.67	attackspam	Aug 6 02:08:06 piServer sshd[28798]: Failed password for root from 104.248.114.67 port 39580 ssh2 Aug 6 02:10:49 piServer sshd[29223]: Failed password for root from 104.248.114.67 port 58714 ssh2 ...	2020-08-06 08:52:50
104.248.114.67	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T06:49:50Z and 2020-08-03T06:51:10Z	2020-08-03 15:33:52
104.248.114.67	attack	(sshd) Failed SSH login from 104.248.114.67 (US/United States/-): 5 in the last 3600 secs	2020-08-01 01:16:57
104.248.114.67	attackbots	2020-07-30T03:55:38.834200server.mjenks.net sshd[101376]: Invalid user ylx from 104.248.114.67 port 38008 2020-07-30T03:55:38.839909server.mjenks.net sshd[101376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 2020-07-30T03:55:38.834200server.mjenks.net sshd[101376]: Invalid user ylx from 104.248.114.67 port 38008 2020-07-30T03:55:40.877944server.mjenks.net sshd[101376]: Failed password for invalid user ylx from 104.248.114.67 port 38008 ssh2 2020-07-30T03:59:24.528508server.mjenks.net sshd[101798]: Invalid user helpdesk from 104.248.114.67 port 50742 ...	2020-07-30 18:48:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.114.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45311
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.114.13.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:51:31 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 13.114.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.114.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.173.52.44	attackbotsspam	1591588022 - 06/08/2020 05:47:02 Host: 118.173.52.44/118.173.52.44 Port: 445 TCP Blocked	2020-06-08 19:00:51
188.241.45.85	attackbotsspam	Jun 8 05:22:24 web01.agentur-b-2.de postfix/smtpd[1323114]: NOQUEUE: reject: RCPT from unknown[188.241.45.85]: 554 5.7.1 Service unavailable; Client host [188.241.45.85] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/188.241.45.85 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<153consulting.com> Jun 8 05:22:24 web01.agentur-b-2.de postfix/smtpd[1323114]: lost connection after RCPT from unknown[188.241.45.85] Jun 8 05:26:53 web01.agentur-b-2.de postfix/smtpd[1323114]: NOQUEUE: reject: RCPT from unknown[188.241.45.85]: 554 5.7.1 Service unavailable; Client host [188.241.45.85] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/188.241.45.85 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<193828.com> Jun 8 05:26:54 web01.agentur-b-2.de postfix/smtpd[1323114]: NOQUEUE: reject: RCPT from unknown[188.241.45.85]: 554 5.7.1	2020-06-08 18:36:09
89.145.166.197	attack	2020-06-08T12:37:59.618983snf-827550 sshd[10582]: Failed password for root from 89.145.166.197 port 33924 ssh2 2020-06-08T12:41:15.300482snf-827550 sshd[10613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.145.166.197 user=root 2020-06-08T12:41:17.558695snf-827550 sshd[10613]: Failed password for root from 89.145.166.197 port 37484 ssh2 ...	2020-06-08 18:53:03
87.246.7.70	attackbotsspam	Rude login attack (716 tries in 1d)	2020-06-08 18:47:21
186.216.70.142	attack	Jun 8 05:19:55 mail.srvfarm.net postfix/smtps/smtpd[671713]: warning: unknown[186.216.70.142]: SASL PLAIN authentication failed: Jun 8 05:19:55 mail.srvfarm.net postfix/smtps/smtpd[671713]: lost connection after AUTH from unknown[186.216.70.142] Jun 8 05:25:40 mail.srvfarm.net postfix/smtps/smtpd[672319]: warning: unknown[186.216.70.142]: SASL PLAIN authentication failed: Jun 8 05:25:41 mail.srvfarm.net postfix/smtps/smtpd[672319]: lost connection after AUTH from unknown[186.216.70.142] Jun 8 05:26:14 mail.srvfarm.net postfix/smtpd[673263]: warning: unknown[186.216.70.142]: SASL PLAIN authentication failed:	2020-06-08 18:38:03
177.39.35.22	attack	Jun 8 05:09:35 mail.srvfarm.net postfix/smtps/smtpd[653854]: warning: unknown[177.39.35.22]: SASL PLAIN authentication failed: Jun 8 05:09:35 mail.srvfarm.net postfix/smtps/smtpd[653854]: lost connection after AUTH from unknown[177.39.35.22] Jun 8 05:10:44 mail.srvfarm.net postfix/smtps/smtpd[653842]: warning: unknown[177.39.35.22]: SASL PLAIN authentication failed: Jun 8 05:10:45 mail.srvfarm.net postfix/smtps/smtpd[653842]: lost connection after AUTH from unknown[177.39.35.22] Jun 8 05:18:15 mail.srvfarm.net postfix/smtps/smtpd[653852]: warning: unknown[177.39.35.22]: SASL PLAIN authentication failed:	2020-06-08 18:40:31
178.165.99.208	attackbots	SSH bruteforce	2020-06-08 19:07:37
115.99.14.202	attackspambots	Jun 8 06:21:22 vps687878 sshd\[21079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.99.14.202 user=root Jun 8 06:21:24 vps687878 sshd\[21079\]: Failed password for root from 115.99.14.202 port 48350 ssh2 Jun 8 06:25:34 vps687878 sshd\[21824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.99.14.202 user=root Jun 8 06:25:36 vps687878 sshd\[21824\]: Failed password for root from 115.99.14.202 port 51320 ssh2 Jun 8 06:29:49 vps687878 sshd\[22533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.99.14.202 user=root ...	2020-06-08 19:00:17
112.85.42.185	attackspam	Jun 8 12:51:59 debian kernel: [512476.688654] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=112.85.42.185 DST=89.252.131.35 LEN=923 TOS=0x00 PREC=0x00 TTL=46 ID=14516 DF PROTO=TCP SPT=15832 DPT=22 WINDOW=229 RES=0x00 ACK PSH URGP=0	2020-06-08 18:58:08
103.98.176.248	attackspambots	Jun 8 10:37:32 vps647732 sshd[31329]: Failed password for root from 103.98.176.248 port 39466 ssh2 ...	2020-06-08 19:11:46
78.8.160.209	attackspambots	Jun 8 05:28:39 mail.srvfarm.net postfix/smtps/smtpd[673819]: warning: unknown[78.8.160.209]: SASL PLAIN authentication failed: Jun 8 05:28:39 mail.srvfarm.net postfix/smtps/smtpd[673819]: lost connection after AUTH from unknown[78.8.160.209] Jun 8 05:32:20 mail.srvfarm.net postfix/smtpd[671463]: warning: unknown[78.8.160.209]: SASL PLAIN authentication failed: Jun 8 05:32:20 mail.srvfarm.net postfix/smtpd[671463]: lost connection after AUTH from unknown[78.8.160.209] Jun 8 05:35:28 mail.srvfarm.net postfix/smtpd[673263]: warning: unknown[78.8.160.209]: SASL PLAIN authentication failed:	2020-06-08 18:31:18
51.255.150.119	attackbots	odoo8 ...	2020-06-08 18:54:47
122.51.195.104	attack	Jun 8 08:45:51 xeon sshd[38266]: Failed password for root from 122.51.195.104 port 38692 ssh2	2020-06-08 19:12:43
139.59.59.102	attackbots	Jun 8 09:48:24 PorscheCustomer sshd[14434]: Failed password for root from 139.59.59.102 port 39658 ssh2 Jun 8 09:51:53 PorscheCustomer sshd[14586]: Failed password for root from 139.59.59.102 port 34936 ssh2 ...	2020-06-08 18:59:37
45.178.3.37	attackspam	(sshd) Failed SSH login from 45.178.3.37 (AR/Argentina/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 8 12:01:07 ubnt-55d23 sshd[23367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.178.3.37 user=root Jun 8 12:01:10 ubnt-55d23 sshd[23367]: Failed password for root from 45.178.3.37 port 36015 ssh2	2020-06-08 18:53:28

Recently Reported IPs

104.248.116.213	104.248.118.35	104.248.135.5	104.248.12.194
104.248.120.163	104.248.13.76	104.248.137.40	104.248.138.150
104.248.126.101	46.149.161.57	104.248.139.93	104.248.142.32
104.248.144.135	104.248.150.19	104.248.150.22	104.248.149.215
104.248.146.112	104.248.159.41	104.248.158.7	104.248.151.104