104.248.115.50

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.115.254	attackbotsspam	104.248.115.254 - - [24/Jun/2020:13:08:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.115.254 - - [24/Jun/2020:13:08:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.115.254 - - [24/Jun/2020:13:08:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-24 22:05:14
104.248.115.254	attack	timhelmke.de 104.248.115.254 [16/May/2020:23:26:45 +0200] "POST /wp-login.php HTTP/1.1" 200 5987 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" timhelmke.de 104.248.115.254 [16/May/2020:23:26:48 +0200] "POST /wp-login.php HTTP/1.1" 200 5941 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-23 06:28:11
104.248.115.231	attack	IP attempted unauthorised action	2019-11-12 01:10:46
104.248.115.231	attackspam	2019-11-05T14:41:17.380815abusebot.cloudsearch.cf sshd\[4884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.115.231 user=root	2019-11-05 23:29:41
104.248.115.231	attackbotsspam	Oct 27 10:09:51 ncomp sshd[5359]: Invalid user zimbra from 104.248.115.231 Oct 27 10:09:51 ncomp sshd[5359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.115.231 Oct 27 10:09:51 ncomp sshd[5359]: Invalid user zimbra from 104.248.115.231 Oct 27 10:09:52 ncomp sshd[5359]: Failed password for invalid user zimbra from 104.248.115.231 port 49030 ssh2	2019-10-27 17:21:51
104.248.115.231	attack	Invalid user usuario from 104.248.115.231 port 58726	2019-10-25 02:56:28
104.248.115.231	attackspam	SSH Brute-Force reported by Fail2Ban	2019-10-22 15:06:55
104.248.115.231	attackbotsspam	Oct 21 14:28:49 localhost sshd\[24454\]: Invalid user usuario from 104.248.115.231 port 41512 Oct 21 14:28:49 localhost sshd\[24454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.115.231 Oct 21 14:28:51 localhost sshd\[24454\]: Failed password for invalid user usuario from 104.248.115.231 port 41512 ssh2	2019-10-21 22:07:14
104.248.115.231	attackbotsspam	" "	2019-10-17 02:49:08
104.248.115.231	attack	Oct 16 07:21:24 * sshd[29010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.115.231 Oct 16 07:21:26 * sshd[29010]: Failed password for invalid user jboss from 104.248.115.231 port 38560 ssh2	2019-10-16 13:59:16
104.248.115.231	attack	Oct 15 09:43:54 vps01 sshd[8044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.115.231 Oct 15 09:43:57 vps01 sshd[8044]: Failed password for invalid user admin from 104.248.115.231 port 38620 ssh2	2019-10-15 16:46:11
104.248.115.231	attackspam	Invalid user oracle from 104.248.115.231 port 43558	2019-10-11 21:19:42
104.248.115.231	attackspam	Oct 10 20:11:45 thevastnessof sshd[20890]: Failed password for root from 104.248.115.231 port 53192 ssh2 ...	2019-10-11 04:25:56
104.248.115.231	attack	Invalid user test from 104.248.115.231 port 46080	2019-10-11 03:26:29
104.248.115.231	attackspam	Oct 8 19:42:53 arianus sshd\[15019\]: Unable to negotiate with 104.248.115.231 port 44406: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 \[preauth\] ...	2019-10-09 02:19:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.115.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19303
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.115.50.			IN	A

;; AUTHORITY SECTION:
.			534	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 02:20:38 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 50.115.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 50.115.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.65.136.170	attack	Nov 17 15:52:36 vps691689 sshd[7007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.65.136.170 Nov 17 15:52:38 vps691689 sshd[7007]: Failed password for invalid user p@w0rd from 58.65.136.170 port 28584 ssh2 ...	2019-11-18 03:20:44
218.250.99.65	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/218.250.99.65/ HK - 1H : (57) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN4760 IP : 218.250.99.65 CIDR : 218.250.96.0/19 PREFIX COUNT : 283 UNIQUE IP COUNT : 1705728 ATTACKS DETECTED ASN4760 : 1H - 1 3H - 3 6H - 11 12H - 19 24H - 20 DateTime : 2019-11-17 15:39:31 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-18 03:30:57
45.182.110.2	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-11-18 03:46:01
175.152.109.211	attackspambots	Bad bot requested remote resources	2019-11-18 03:21:26
222.74.186.186	attack	404 NOT FOUND	2019-11-18 03:09:23
123.20.164.192	attack	Nov 17 08:40:12 mailman postfix/smtpd[7148]: warning: unknown[123.20.164.192]: SASL PLAIN authentication failed: authentication failure	2019-11-18 03:05:14
121.226.84.1	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/121.226.84.1/ CN - 1H : (740) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 121.226.84.1 CIDR : 121.226.0.0/17 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 22 3H - 58 6H - 90 12H - 185 24H - 318 DateTime : 2019-11-17 15:39:33 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-18 03:30:06
106.54.227.36	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-18 03:13:14
61.90.78.95	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-11-18 03:21:46
52.81.126.101	attack	Nov 17 16:44:34 fr01 sshd[14746]: Invalid user standarddocument from 52.81.126.101 Nov 17 16:44:34 fr01 sshd[14746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.81.126.101 Nov 17 16:44:34 fr01 sshd[14746]: Invalid user standarddocument from 52.81.126.101 Nov 17 16:44:36 fr01 sshd[14746]: Failed password for invalid user standarddocument from 52.81.126.101 port 59336 ssh2 ...	2019-11-18 03:30:35
129.213.40.57	attack	Nov 17 18:22:29 vps691689 sshd[9924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.40.57 Nov 17 18:22:31 vps691689 sshd[9924]: Failed password for invalid user debian from 129.213.40.57 port 34703 ssh2 ...	2019-11-18 03:42:28
51.68.64.220	attack	Brute-force attempt banned	2019-11-18 03:06:34
51.38.57.78	attack	Nov 17 18:02:01 jane sshd[5821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.57.78 Nov 17 18:02:03 jane sshd[5821]: Failed password for invalid user iamsemon from 51.38.57.78 port 48052 ssh2 ...	2019-11-18 03:10:32
129.211.10.228	attackbots	Nov 17 17:59:40 mail sshd[27917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.10.228 user=mysql Nov 17 17:59:42 mail sshd[27917]: Failed password for mysql from 129.211.10.228 port 17688 ssh2 Nov 17 18:18:42 mail sshd[30443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.10.228 user=root Nov 17 18:18:45 mail sshd[30443]: Failed password for root from 129.211.10.228 port 9764 ssh2 Nov 17 18:23:11 mail sshd[30925]: Invalid user intraweb from 129.211.10.228 ...	2019-11-18 03:29:40
106.52.24.64	attackbots	Nov 17 15:14:32 ns382633 sshd\[23076\]: Invalid user joey from 106.52.24.64 port 59724 Nov 17 15:14:32 ns382633 sshd\[23076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.24.64 Nov 17 15:14:35 ns382633 sshd\[23076\]: Failed password for invalid user joey from 106.52.24.64 port 59724 ssh2 Nov 17 15:39:21 ns382633 sshd\[27937\]: Invalid user vcsa from 106.52.24.64 port 42118 Nov 17 15:39:21 ns382633 sshd\[27937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.24.64	2019-11-18 03:42:55

Recently Reported IPs

104.248.115.74	104.248.115.240	104.248.115.33	104.248.115.65
104.248.115.6	104.248.115.236	104.248.115.9	104.248.116.136
104.248.116.154	104.248.116.176	104.248.116.210	104.248.116.64
104.248.117.129	104.248.117.133	104.248.116.125	104.248.117.156
104.248.117.17	104.248.117.244	104.248.117.3	104.248.117.54