104.248.13.16 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-03-17 05:49:06

Comments on same subnet:

IP	Type	Details	Datetime
104.248.136.19	attack	Jul 2 18:04:21 host sshd[13973]: Failed password for root from 104.248.136.19 port 44042 ssh2 Jul 2 18:04:21 host sshd[13976]: Failed password for root from 104.248.136.19 port 44330 ssh2 Jul 2 18:04:21 host sshd[13967]: Failed password for root from 104.248.136.19 port 43946 ssh2 Jul 2 18:04:21 host sshd[13979]: Failed password for root from 104.248.136.19 port 44426 ssh2	2022-07-05 20:33:49
104.248.130.10	attackspambots	Oct 13 13:54:01 ajax sshd[30630]: Failed password for root from 104.248.130.10 port 51490 ssh2 Oct 13 13:57:38 ajax sshd[31719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.10	2020-10-13 21:22:10
104.248.130.10	attackspam	$f2bV_matches	2020-10-13 12:48:46
104.248.130.10	attack	Oct 12 23:29:47 mout sshd[11709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.10 user=root Oct 12 23:29:49 mout sshd[11709]: Failed password for root from 104.248.130.10 port 33700 ssh2	2020-10-13 05:36:45
104.248.130.10	attackbots	(sshd) Failed SSH login from 104.248.130.10 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 17:45:45 server2 sshd[5588]: Invalid user urbaldo from 104.248.130.10 port 43142 Oct 12 17:45:47 server2 sshd[5588]: Failed password for invalid user urbaldo from 104.248.130.10 port 43142 ssh2 Oct 12 17:53:34 server2 sshd[7075]: Invalid user todd from 104.248.130.10 port 39720 Oct 12 17:53:35 server2 sshd[7075]: Failed password for invalid user todd from 104.248.130.10 port 39720 ssh2 Oct 12 17:58:00 server2 sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.10 user=root	2020-10-13 03:28:41
104.248.130.10	attack	2020-10-12T10:06:45.308138server.espacesoutien.com sshd[4478]: Failed password for invalid user nesus from 104.248.130.10 port 59156 ssh2 2020-10-12T10:09:48.884519server.espacesoutien.com sshd[4706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.10 user=root 2020-10-12T10:09:51.087322server.espacesoutien.com sshd[4706]: Failed password for root from 104.248.130.10 port 34288 ssh2 2020-10-12T10:13:03.737922server.espacesoutien.com sshd[5348]: Invalid user yosshimu from 104.248.130.10 port 37650 ...	2020-10-12 19:00:17
104.248.130.10	attack	Oct 2 21:07:17 icinga sshd[17414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.130.10 Oct 2 21:07:19 icinga sshd[17414]: Failed password for invalid user temp from 104.248.130.10 port 42444 ssh2 Oct 2 21:18:18 icinga sshd[34166]: Failed password for root from 104.248.130.10 port 44596 ssh2 ...	2020-10-03 06:05:11
104.248.130.10	attackspambots	2020-10-02T16:36:47.063896Z 268056658fdc New connection: 104.248.130.10:34632 (172.17.0.5:2222) [session: 268056658fdc] 2020-10-02T16:50:24.829396Z 05779c6ab74b New connection: 104.248.130.10:33808 (172.17.0.5:2222) [session: 05779c6ab74b]	2020-10-03 01:31:46
104.248.130.10	attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-02 22:01:09
104.248.130.10	attack	Brute-force attempt banned	2020-10-02 18:32:43
104.248.130.10	attackspam	Brute-force attempt banned	2020-10-02 15:05:41
104.248.131.113	attackbotsspam	Oct 1 01:00:19 haigwepa sshd[3976]: Failed password for root from 104.248.131.113 port 19932 ssh2 ...	2020-10-01 08:13:15
104.248.131.113	attackspam	2020-09-30T16:32:13.434091shield sshd\[5022\]: Invalid user cgi from 104.248.131.113 port 52048 2020-09-30T16:32:13.445193shield sshd\[5022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.131.113 2020-09-30T16:32:15.014608shield sshd\[5022\]: Failed password for invalid user cgi from 104.248.131.113 port 52048 ssh2 2020-09-30T16:35:27.039161shield sshd\[5367\]: Invalid user alex from 104.248.131.113 port 41728 2020-09-30T16:35:27.050789shield sshd\[5367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.131.113	2020-10-01 00:45:16
104.248.131.113	attack	$f2bV_matches	2020-09-30 17:01:22
104.248.130.17	attackspambots	Invalid user nginx from 104.248.130.17 port 58826	2020-09-29 03:58:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.13.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60396
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.13.16.			IN	A

;; AUTHORITY SECTION:
.			496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031601 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 05:49:02 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 16.13.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.13.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.205.140.76	attack	DATE:2020-05-22 22:16:19, IP:103.205.140.76, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-05-23 07:03:22
180.125.173.87	attackspambots		2020-05-23 06:42:25
185.176.27.182	attackspam	Portscan or hack attempt detected by psad/fwsnort	2020-05-23 06:51:15
111.229.172.178	attackbotsspam	sshd: Failed password for invalid user .... from 111.229.172.178 port 45438 ssh2	2020-05-23 06:52:54
61.177.172.128	attackspambots	May 23 00:58:32 santamaria sshd\[12620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root May 23 00:58:34 santamaria sshd\[12620\]: Failed password for root from 61.177.172.128 port 10647 ssh2 May 23 00:58:55 santamaria sshd\[12622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root ...	2020-05-23 07:01:41
118.69.55.101	attack	Invalid user dxj from 118.69.55.101 port 49951	2020-05-23 06:34:55
37.211.49.61	attackbotsspam	May 21 23:09:46 mail sshd[15534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.211.49.61 May 21 23:09:48 mail sshd[15534]: Failed password for invalid user gix from 37.211.49.61 port 42414 ssh2 ...	2020-05-23 06:27:35
220.248.30.58	attackspam	Invalid user vhy from 220.248.30.58 port 48439	2020-05-23 06:45:39
188.247.182.146	attackbots	Subject: Low quality medications are to be blamed that many people lose their health and even lives.	2020-05-23 06:38:03
49.88.112.67	attackspambots	May 22 19:34:29 dns1 sshd[8650]: Failed password for root from 49.88.112.67 port 10632 ssh2 May 22 19:34:33 dns1 sshd[8650]: Failed password for root from 49.88.112.67 port 10632 ssh2 May 22 19:34:37 dns1 sshd[8650]: Failed password for root from 49.88.112.67 port 10632 ssh2	2020-05-23 06:39:08
186.88.176.47	attackspam	Port probing on unauthorized port 445	2020-05-23 06:55:18
171.244.51.114	attack	Invalid user dcd from 171.244.51.114 port 49998	2020-05-23 06:58:37
106.38.91.247	attackbotsspam	May 23 00:30:54 meumeu sshd[156078]: Invalid user ntu from 106.38.91.247 port 35732 May 23 00:30:54 meumeu sshd[156078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.38.91.247 May 23 00:30:54 meumeu sshd[156078]: Invalid user ntu from 106.38.91.247 port 35732 May 23 00:30:56 meumeu sshd[156078]: Failed password for invalid user ntu from 106.38.91.247 port 35732 ssh2 May 23 00:34:42 meumeu sshd[156488]: Invalid user yaoyiming from 106.38.91.247 port 35100 May 23 00:34:42 meumeu sshd[156488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.38.91.247 May 23 00:34:42 meumeu sshd[156488]: Invalid user yaoyiming from 106.38.91.247 port 35100 May 23 00:34:45 meumeu sshd[156488]: Failed password for invalid user yaoyiming from 106.38.91.247 port 35100 ssh2 May 23 00:38:14 meumeu sshd[156863]: Invalid user llf from 106.38.91.247 port 34464 ...	2020-05-23 06:59:12
78.195.178.119	attack	May 22 16:04:35 r.ca sshd[11211]: Failed password for invalid user pi from 78.195.178.119 port 40395 ssh2	2020-05-23 06:28:25
222.186.180.147	attack	2020-05-23T01:01:17.424264sd-86998 sshd[11134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-05-23T01:01:19.193404sd-86998 sshd[11134]: Failed password for root from 222.186.180.147 port 14396 ssh2 2020-05-23T01:01:21.982156sd-86998 sshd[11134]: Failed password for root from 222.186.180.147 port 14396 ssh2 2020-05-23T01:01:17.424264sd-86998 sshd[11134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-05-23T01:01:19.193404sd-86998 sshd[11134]: Failed password for root from 222.186.180.147 port 14396 ssh2 2020-05-23T01:01:21.982156sd-86998 sshd[11134]: Failed password for root from 222.186.180.147 port 14396 ssh2 2020-05-23T01:01:17.424264sd-86998 sshd[11134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root 2020-05-23T01:01:19.193404sd-86998 sshd[11134]: Failed password for roo ...	2020-05-23 07:04:05

Recently Reported IPs

78.123.169.147	188.26.243.12	204.147.87.30	201.154.202.131
233.215.147.9	246.202.204.57	212.10.14.65	162.243.129.134
159.81.6.187	185.65.243.131	122.224.185.45	202.99.149.126
190.37.82.167	64.178.239.243	99.141.193.229	61.94.123.150
92.251.94.98	194.140.140.38	45.182.136.139	92.153.28.149