104.248.136.49

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.136.19	attack	Jul 2 18:04:21 host sshd[13973]: Failed password for root from 104.248.136.19 port 44042 ssh2 Jul 2 18:04:21 host sshd[13976]: Failed password for root from 104.248.136.19 port 44330 ssh2 Jul 2 18:04:21 host sshd[13967]: Failed password for root from 104.248.136.19 port 43946 ssh2 Jul 2 18:04:21 host sshd[13979]: Failed password for root from 104.248.136.19 port 44426 ssh2	2022-07-05 20:33:49
104.248.136.138	attack	xmlrpc attack	2020-05-03 00:41:43

Type

Details

Datetime

104.248.136.19

attack

Jul  2 18:04:21 host sshd[13973]: Failed password for root from 104.248.136.19 port 44042 ssh2
Jul  2 18:04:21 host sshd[13976]: Failed password for root from 104.248.136.19 port 44330 ssh2
Jul  2 18:04:21 host sshd[13967]: Failed password for root from 104.248.136.19 port 43946 ssh2
Jul  2 18:04:21 host sshd[13979]: Failed password for root from 104.248.136.19 port 44426 ssh2

2022-07-05 20:33:49

104.248.136.138

attack

xmlrpc attack

2020-05-03 00:41:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.136.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.136.49.			IN	A

;; AUTHORITY SECTION:
.			315	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 14:08:17 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 49.136.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.136.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.136.245.194	attack	$f2bV_matches	2020-07-16 06:16:41
13.78.143.166	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-16 06:40:14
103.94.6.69	attack	Jul 16 00:03:53 home sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.6.69 Jul 16 00:03:55 home sshd[5601]: Failed password for invalid user travis from 103.94.6.69 port 46254 ssh2 Jul 16 00:07:09 home sshd[5907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.6.69 ...	2020-07-16 06:11:32
77.130.135.14	attack	Jul 16 00:07:06 melroy-server sshd[20793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.130.135.14 Jul 16 00:07:08 melroy-server sshd[20793]: Failed password for invalid user it from 77.130.135.14 port 10178 ssh2 ...	2020-07-16 06:11:59
54.37.232.108	attackbotsspam	Jul 15 23:07:21 l02a sshd[31670]: Invalid user test123 from 54.37.232.108 Jul 15 23:07:21 l02a sshd[31670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.ip-54-37-232.eu Jul 15 23:07:21 l02a sshd[31670]: Invalid user test123 from 54.37.232.108 Jul 15 23:07:23 l02a sshd[31670]: Failed password for invalid user test123 from 54.37.232.108 port 46848 ssh2	2020-07-16 06:31:57
64.225.119.100	attackbots	1408. On Jul 15 2020 experienced a Brute Force SSH login attempt -> 52 unique times by 64.225.119.100.	2020-07-16 06:39:12
113.231.69.168	attackbots	Telnet Server BruteForce Attack	2020-07-16 06:13:22
34.94.222.56	attackspam	(sshd) Failed SSH login from 34.94.222.56 (US/United States/56.222.94.34.bc.googleusercontent.com): 10 in the last 3600 secs	2020-07-16 06:16:29
218.148.74.205	attackspam	Fail2Ban Ban Triggered HTTP Fake Web Crawler	2020-07-16 06:33:13
67.209.79.254	attackspambots	1425. On Jul 15 2020 experienced a Brute Force SSH login attempt -> 2 unique times by 67.209.79.254.	2020-07-16 06:15:43
67.207.89.207	attackspambots	1424. On Jul 15 2020 experienced a Brute Force SSH login attempt -> 4 unique times by 67.207.89.207.	2020-07-16 06:16:15
77.28.90.179	attackbotsspam	Automatic report - Port Scan Attack	2020-07-16 06:35:21
67.188.97.3	attack	1420. On Jul 15 2020 experienced a Brute Force SSH login attempt -> 3 unique times by 67.188.97.3.	2020-07-16 06:19:48
68.183.100.153	attackspambots	1428. On Jul 15 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 68.183.100.153.	2020-07-16 06:12:36
67.199.132.235	attackbotsspam	1421. On Jul 15 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 67.199.132.235.	2020-07-16 06:19:15

Recently Reported IPs

104.248.131.44	104.248.138.8	104.248.141.5	104.248.143.42
104.248.141.21	105.213.76.24	104.248.143.24	104.248.148.101
104.248.159.20	104.248.159.147	104.248.159.194	104.248.159.145
104.248.159.218	104.248.159.205	104.248.159.178	104.248.159.214
104.248.159.230	104.248.159.18	104.248.159.228	104.248.159.39