104.248.122.148

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Jun 22 22:30:36 h1745522 sshd[25449]: Invalid user adminuser from 104.248.122.148 port 59478 Jun 22 22:30:36 h1745522 sshd[25449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 Jun 22 22:30:36 h1745522 sshd[25449]: Invalid user adminuser from 104.248.122.148 port 59478 Jun 22 22:30:37 h1745522 sshd[25449]: Failed password for invalid user adminuser from 104.248.122.148 port 59478 ssh2 Jun 22 22:33:51 h1745522 sshd[25558]: Invalid user xl from 104.248.122.148 port 59338 Jun 22 22:33:51 h1745522 sshd[25558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 Jun 22 22:33:51 h1745522 sshd[25558]: Invalid user xl from 104.248.122.148 port 59338 Jun 22 22:33:53 h1745522 sshd[25558]: Failed password for invalid user xl from 104.248.122.148 port 59338 ssh2 Jun 22 22:37:11 h1745522 sshd[25674]: Invalid user debian from 104.248.122.148 port 59196 ...	2020-06-23 04:46:48
attackspam	Jun 21 11:14:38 master sshd[3160]: Failed password for root from 104.248.122.148 port 52942 ssh2 Jun 21 11:34:32 master sshd[4193]: Failed password for root from 104.248.122.148 port 53356 ssh2 Jun 21 11:38:14 master sshd[4310]: Failed password for invalid user shimada from 104.248.122.148 port 55016 ssh2 Jun 21 11:41:53 master sshd[4501]: Failed password for invalid user eduardo2 from 104.248.122.148 port 56678 ssh2 Jun 21 11:45:06 master sshd[4641]: Failed password for invalid user area from 104.248.122.148 port 58340 ssh2 Jun 21 11:48:21 master sshd[4730]: Failed password for invalid user dodsserver from 104.248.122.148 port 60002 ssh2 Jun 21 11:51:34 master sshd[4868]: Failed password for invalid user wsd from 104.248.122.148 port 33432 ssh2 Jun 21 11:54:48 master sshd[4965]: Failed password for invalid user consul from 104.248.122.148 port 35094 ssh2 Jun 21 11:58:05 master sshd[5059]: Failed password for root from 104.248.122.148 port 36746 ssh2	2020-06-21 18:16:32
attack	Jun 8 17:35:49 eventyay sshd[10791]: Failed password for root from 104.248.122.148 port 39108 ssh2 Jun 8 17:39:15 eventyay sshd[10863]: Failed password for root from 104.248.122.148 port 41838 ssh2 ...	2020-06-08 23:50:48
attackbots	Jun 8 12:42:46 hosting sshd[558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 user=root Jun 8 12:42:48 hosting sshd[558]: Failed password for root from 104.248.122.148 port 41048 ssh2 ...	2020-06-08 18:09:48
attackbotsspam	Jun 6 03:24:50 web9 sshd\[26649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 user=root Jun 6 03:24:52 web9 sshd\[26649\]: Failed password for root from 104.248.122.148 port 51266 ssh2 Jun 6 03:28:12 web9 sshd\[27185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 user=root Jun 6 03:28:15 web9 sshd\[27185\]: Failed password for root from 104.248.122.148 port 54972 ssh2 Jun 6 03:31:47 web9 sshd\[27769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 user=root	2020-06-06 21:39:12
attackspam	May 26 03:35:54 vps647732 sshd[11156]: Failed password for root from 104.248.122.148 port 50228 ssh2 ...	2020-05-26 10:32:08
attack	Failed password for invalid user administrator from 104.248.122.148 port 39146 ssh2	2020-05-26 03:22:03
attackspambots	(sshd) Failed SSH login from 104.248.122.148 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 24 11:13:18 srv sshd[25618]: Invalid user aes from 104.248.122.148 port 59846 May 24 11:13:20 srv sshd[25618]: Failed password for invalid user aes from 104.248.122.148 port 59846 ssh2 May 24 11:39:59 srv sshd[26877]: Invalid user bny from 104.248.122.148 port 34694 May 24 11:40:01 srv sshd[26877]: Failed password for invalid user bny from 104.248.122.148 port 34694 ssh2 May 24 11:42:23 srv sshd[26975]: Invalid user bol from 104.248.122.148 port 45260	2020-05-24 17:13:29
attackspambots	May 12 12:51:46 ift sshd\[12711\]: Invalid user max from 104.248.122.148May 12 12:51:47 ift sshd\[12711\]: Failed password for invalid user max from 104.248.122.148 port 34858 ssh2May 12 12:55:22 ift sshd\[13669\]: Invalid user game from 104.248.122.148May 12 12:55:24 ift sshd\[13669\]: Failed password for invalid user game from 104.248.122.148 port 45082 ssh2May 12 12:59:00 ift sshd\[13786\]: Failed password for root from 104.248.122.148 port 55310 ssh2 ...	2020-05-12 18:16:34
attackspambots	<6 unauthorized SSH connections	2020-05-01 15:14:38
attackspam	2020-04-30T14:15:03.438141ns386461 sshd\[32761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 user=root 2020-04-30T14:15:05.142365ns386461 sshd\[32761\]: Failed password for root from 104.248.122.148 port 45646 ssh2 2020-04-30T14:24:51.512515ns386461 sshd\[9534\]: Invalid user sistemas from 104.248.122.148 port 48170 2020-04-30T14:24:51.516957ns386461 sshd\[9534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.148 2020-04-30T14:24:53.612115ns386461 sshd\[9534\]: Failed password for invalid user sistemas from 104.248.122.148 port 48170 ssh2 ...	2020-05-01 03:52:15

Comments on same subnet:

IP	Type	Details	Datetime
104.248.122.143	attackspambots	Sep 18 14:55:34 sip sshd[1644402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.143 user=root Sep 18 14:55:37 sip sshd[1644402]: Failed password for root from 104.248.122.143 port 39224 ssh2 Sep 18 14:59:28 sip sshd[1644428]: Invalid user oracle from 104.248.122.143 port 50508 ...	2020-09-18 21:06:55
104.248.122.143	attackbots	" "	2020-09-18 13:26:09
104.248.122.143	attackbotsspam	Brute%20Force%20SSH	2020-09-18 03:40:30
104.248.122.143	attackspambots	scans once in preceeding hours on the ports (in chronological order) 10584 resulting in total of 5 scans from 104.248.0.0/16 block.	2020-09-11 03:22:38
104.248.122.143	attack	10584/tcp 27986/tcp 11925/tcp... [2020-07-12/09-10]189pkt,71pt.(tcp)	2020-09-10 18:52:06
104.248.122.143	attackspam	TCP (SYN) 104.248.122.143:40877 -> port 31849, len 44	2020-09-04 03:44:55
104.248.122.143	attack	TCP ports : 13846 / 29592	2020-09-03 19:20:28
104.248.122.143	attack	TCP (SYN) 104.248.122.143:43209 -> port 6696, len 44	2020-08-25 01:17:05
104.248.122.143	attackspam	Port scan: Attack repeated for 24 hours	2020-08-11 13:14:19
104.248.122.143	attackbots	2020-08-10T04:08:18.537662centos sshd[26613]: Failed password for root from 104.248.122.143 port 44282 ssh2 2020-08-10T04:10:23.810323centos sshd[27128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.143 user=root 2020-08-10T04:10:25.524016centos sshd[27128]: Failed password for root from 104.248.122.143 port 34702 ssh2 ...	2020-08-10 12:24:39
104.248.122.143	attackspam	scans once in preceeding hours on the ports (in chronological order) 3173 resulting in total of 3 scans from 104.248.0.0/16 block.	2020-08-07 23:28:53
104.248.122.143	attack	Fail2Ban Ban Triggered	2020-08-07 05:47:03
104.248.122.143	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 15325 resulting in total of 6 scans from 104.248.0.0/16 block.	2020-08-05 21:53:41
104.248.122.143	attack	Port Scan ...	2020-07-30 14:45:57
104.248.122.143	attack	Invalid user jzy from 104.248.122.143 port 39834	2020-07-26 14:50:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.122.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55048
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.122.148.		IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020043001 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 03:52:12 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 148.122.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.122.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.254.95	attackspam	$f2bV_matches	2020-06-02 18:20:53
118.24.71.83	attackbots	Jun 1 21:38:45 server1 sshd\[11096\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.71.83 user=root Jun 1 21:38:47 server1 sshd\[11096\]: Failed password for root from 118.24.71.83 port 55808 ssh2 Jun 1 21:43:06 server1 sshd\[12758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.71.83 user=root Jun 1 21:43:08 server1 sshd\[12758\]: Failed password for root from 118.24.71.83 port 46162 ssh2 Jun 1 21:47:29 server1 sshd\[14052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.71.83 user=root ...	2020-06-02 17:59:14
219.101.192.141	attackbots	Jun 2 12:01:02 DAAP sshd[8098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.101.192.141 user=root Jun 2 12:01:04 DAAP sshd[8098]: Failed password for root from 219.101.192.141 port 43140 ssh2 Jun 2 12:05:35 DAAP sshd[8140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.101.192.141 user=root Jun 2 12:05:37 DAAP sshd[8140]: Failed password for root from 219.101.192.141 port 49270 ssh2 Jun 2 12:10:08 DAAP sshd[8256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.101.192.141 user=root Jun 2 12:10:10 DAAP sshd[8256]: Failed password for root from 219.101.192.141 port 55402 ssh2 ...	2020-06-02 18:15:50
222.186.42.7	attackspambots	2020-06-02T09:56:54.903223abusebot-7.cloudsearch.cf sshd[25542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root 2020-06-02T09:56:56.441317abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:58.463068abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:54.903223abusebot-7.cloudsearch.cf sshd[25542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root 2020-06-02T09:56:56.441317abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:58.463068abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:54.903223abusebot-7.cloudsearch.cf sshd[25542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho ...	2020-06-02 17:58:18
218.92.0.201	attackspambots	Jun 2 11:47:28 legacy sshd[22482]: Failed password for root from 218.92.0.201 port 39802 ssh2 Jun 2 11:47:30 legacy sshd[22482]: Failed password for root from 218.92.0.201 port 39802 ssh2 Jun 2 11:47:32 legacy sshd[22482]: Failed password for root from 218.92.0.201 port 39802 ssh2 ...	2020-06-02 18:05:22
177.52.255.67	attackbots	$f2bV_matches	2020-06-02 18:16:08
139.199.157.235	attack	Jun 2 09:07:04 mail sshd\[31758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.157.235 user=root Jun 2 09:07:06 mail sshd\[31758\]: Failed password for root from 139.199.157.235 port 47338 ssh2 Jun 2 09:15:27 mail sshd\[32091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.157.235 user=root ...	2020-06-02 18:05:55
121.69.89.78	attackbotsspam	Jun 2 04:18:39 Tower sshd[29314]: Connection from 121.69.89.78 port 46542 on 192.168.10.220 port 22 rdomain "" Jun 2 04:18:41 Tower sshd[29314]: Failed password for root from 121.69.89.78 port 46542 ssh2 Jun 2 04:18:41 Tower sshd[29314]: Received disconnect from 121.69.89.78 port 46542:11: Bye Bye [preauth] Jun 2 04:18:41 Tower sshd[29314]: Disconnected from authenticating user root 121.69.89.78 port 46542 [preauth]	2020-06-02 17:42:57
60.234.54.34	attackbots	Automatic report - XMLRPC Attack	2020-06-02 18:09:52
27.254.190.106	attack	SIP/5060 Probe, BF, Hack -	2020-06-02 17:54:20
212.3.211.106	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-02 17:45:32
85.18.98.208	attackbots	5x Failed Password	2020-06-02 18:19:04
83.196.105.38	attackbots	2020-06-02T04:51:23.3625791495-001 sshd[7037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-ncy-1-265-38.w83-196.abo.wanadoo.fr user=root 2020-06-02T04:51:25.5795571495-001 sshd[7037]: Failed password for root from 83.196.105.38 port 60080 ssh2 2020-06-02T04:55:00.7587571495-001 sshd[7129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-ncy-1-265-38.w83-196.abo.wanadoo.fr user=root 2020-06-02T04:55:02.7649761495-001 sshd[7129]: Failed password for root from 83.196.105.38 port 38186 ssh2 2020-06-02T04:58:40.7878531495-001 sshd[7231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-ncy-1-265-38.w83-196.abo.wanadoo.fr user=root 2020-06-02T04:58:43.4438001495-001 sshd[7231]: Failed password for root from 83.196.105.38 port 44520 ssh2 ...	2020-06-02 18:11:28
82.133.19.74	attackbotsspam	Jun 2 07:09:07 debian-2gb-nbg1-2 kernel: \[13333316.203708\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=82.133.19.74 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=31 PROTO=TCP SPT=44585 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-02 18:13:33
61.50.99.26	attackspambots	Jun 1 06:17:27 nbi-636 sshd[18333]: User r.r from 61.50.99.26 not allowed because not listed in AllowUsers Jun 1 06:17:27 nbi-636 sshd[18333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.50.99.26 user=r.r Jun 1 06:17:29 nbi-636 sshd[18333]: Failed password for invalid user r.r from 61.50.99.26 port 2267 ssh2 Jun 1 06:17:31 nbi-636 sshd[18333]: Received disconnect from 61.50.99.26 port 2267:11: Bye Bye [preauth] Jun 1 06:17:31 nbi-636 sshd[18333]: Disconnected from invalid user r.r 61.50.99.26 port 2267 [preauth] Jun 1 06:32:50 nbi-636 sshd[22823]: User r.r from 61.50.99.26 not allowed because not listed in AllowUsers Jun 1 06:32:50 nbi-636 sshd[22823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.50.99.26 user=r.r Jun 1 06:32:52 nbi-636 sshd[22823]: Failed password for invalid user r.r from 61.50.99.26 port 61982 ssh2 Jun 1 06:32:52 nbi-636 sshd[22823]: Received disco........ -------------------------------	2020-06-02 18:14:06

Recently Reported IPs

164.83.132.238	127.78.132.240	116.49.115.113	234.210.192.2
64.227.37.93	42.98.254.229	93.104.211.117	45.88.13.44
187.162.252.225	103.28.161.126	77.42.121.37	114.47.165.126
92.169.67.98	177.188.175.84	222.255.236.125	221.226.28.82
112.3.29.199	213.103.131.93	162.243.143.234	109.241.19.184