104.248.138.189

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.138.121	attack	Invalid user public from 104.248.138.121 port 44700	2020-09-16 00:37:25
104.248.138.121	attackbotsspam	Sep 15 10:17:29 [-] sshd[15089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.121 user=root Sep 15 10:17:30 [-] sshd[15089]: Failed password for invalid user root from 104.248.138.121 port 52676 ssh2 Sep 15 10:26:48 [-] sshd[15284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.121 user=root	2020-09-15 16:28:37
104.248.138.121	attackbotsspam	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-09-14 01:56:07
104.248.138.121	attack	frenzy	2020-09-13 17:51:05
104.248.138.121	attack	Invalid user stephane from 104.248.138.121 port 34704	2020-08-29 07:34:49
104.248.138.221	attackbotsspam	Invalid user zhuowang from 104.248.138.221 port 60666	2020-07-29 01:55:08
104.248.138.221	attackspam	Jul 27 22:13:49 haigwepa sshd[17585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.221 Jul 27 22:13:51 haigwepa sshd[17585]: Failed password for invalid user zxj from 104.248.138.221 port 48756 ssh2 ...	2020-07-28 04:15:21
104.248.138.221	attack	Invalid user cp from 104.248.138.221 port 53760	2020-07-27 06:06:01
104.248.138.221	attackspambots	Jul 25 19:01:29 george sshd[29732]: Failed password for invalid user ssh from 104.248.138.221 port 41482 ssh2 Jul 25 19:05:13 george sshd[29810]: Invalid user tt from 104.248.138.221 port 55100 Jul 25 19:05:13 george sshd[29810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.221 Jul 25 19:05:14 george sshd[29810]: Failed password for invalid user tt from 104.248.138.221 port 55100 ssh2 Jul 25 19:08:48 george sshd[29828]: Invalid user ubuntu from 104.248.138.221 port 40484 ...	2020-07-26 07:48:23
104.248.138.221	attackbots	Invalid user cp from 104.248.138.221 port 53760	2020-07-25 18:10:11
104.248.138.221	attack	Jul 23 18:09:14 django-0 sshd[8070]: Invalid user ftpuser from 104.248.138.221 ...	2020-07-24 02:22:35
104.248.138.221	attack	Jul 21 18:15:12 server1 sshd\[30327\]: Invalid user banco from 104.248.138.221 Jul 21 18:15:12 server1 sshd\[30327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.221 Jul 21 18:15:14 server1 sshd\[30327\]: Failed password for invalid user banco from 104.248.138.221 port 54322 ssh2 Jul 21 18:18:48 server1 sshd\[31350\]: Invalid user deposito from 104.248.138.221 Jul 21 18:18:48 server1 sshd\[31350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.221 ...	2020-07-22 08:20:57
104.248.138.221	attackbots	$f2bV_matches	2020-07-16 15:41:22
104.248.138.221	attackspambots	2020-07-12T03:47:44.046284abusebot-5.cloudsearch.cf sshd[24778]: Invalid user wangxiaoyi from 104.248.138.221 port 58792 2020-07-12T03:47:44.057803abusebot-5.cloudsearch.cf sshd[24778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.221 2020-07-12T03:47:44.046284abusebot-5.cloudsearch.cf sshd[24778]: Invalid user wangxiaoyi from 104.248.138.221 port 58792 2020-07-12T03:47:46.063015abusebot-5.cloudsearch.cf sshd[24778]: Failed password for invalid user wangxiaoyi from 104.248.138.221 port 58792 ssh2 2020-07-12T03:56:02.002750abusebot-5.cloudsearch.cf sshd[24838]: Invalid user gitosis from 104.248.138.221 port 51402 2020-07-12T03:56:02.008431abusebot-5.cloudsearch.cf sshd[24838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.138.221 2020-07-12T03:56:02.002750abusebot-5.cloudsearch.cf sshd[24838]: Invalid user gitosis from 104.248.138.221 port 51402 2020-07-12T03:56:03.712676abusebot-5.c ...	2020-07-12 12:39:25
104.248.138.221	attackbots	Failed password for invalid user krfarms from 104.248.138.221 port 49908 ssh2	2020-07-10 00:03:41

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 104.248.138.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42183
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;104.248.138.189.		IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:54:54 CST 2021
;; MSG SIZE  rcvd: 44

'

Host info

Host 189.138.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.138.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.65.138	attack	Sep 12 13:20:09 hcbb sshd\[12041\]: Invalid user upload from 167.99.65.138 Sep 12 13:20:09 hcbb sshd\[12041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138 Sep 12 13:20:12 hcbb sshd\[12041\]: Failed password for invalid user upload from 167.99.65.138 port 49904 ssh2 Sep 12 13:27:05 hcbb sshd\[12674\]: Invalid user postgres from 167.99.65.138 Sep 12 13:27:05 hcbb sshd\[12674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138	2019-09-13 07:44:40
106.12.33.57	attackspambots	Automated report - ssh fail2ban: Sep 12 22:15:06 authentication failure Sep 12 22:15:08 wrong password, user=vnc, port=42356, ssh2 Sep 12 22:19:04 authentication failure	2019-09-13 07:42:33
178.128.107.61	attack	Sep 12 13:28:35 web9 sshd\[26832\]: Invalid user web from 178.128.107.61 Sep 12 13:28:35 web9 sshd\[26832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.107.61 Sep 12 13:28:37 web9 sshd\[26832\]: Failed password for invalid user web from 178.128.107.61 port 43405 ssh2 Sep 12 13:35:45 web9 sshd\[28282\]: Invalid user vg from 178.128.107.61 Sep 12 13:35:45 web9 sshd\[28282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.107.61	2019-09-13 08:08:53
90.94.133.38	attackspambots	Automatic report - Port Scan Attack	2019-09-13 08:27:17
14.177.133.15	attack	445/tcp [2019-09-12]1pkt	2019-09-13 08:28:08
111.93.168.222	attack	445/tcp [2019-09-12]1pkt	2019-09-13 07:45:31
206.189.221.160	attackbotsspam	Sep 12 19:47:59 ny01 sshd[10897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160 Sep 12 19:48:01 ny01 sshd[10897]: Failed password for invalid user P@ssw0rd from 206.189.221.160 port 52150 ssh2 Sep 12 19:54:04 ny01 sshd[11899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160	2019-09-13 08:26:22
113.141.66.255	attackspam	Sep 12 05:46:28 wbs sshd\[25214\]: Invalid user gitgit123 from 113.141.66.255 Sep 12 05:46:28 wbs sshd\[25214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.66.255 Sep 12 05:46:29 wbs sshd\[25214\]: Failed password for invalid user gitgit123 from 113.141.66.255 port 41197 ssh2 Sep 12 05:51:46 wbs sshd\[25703\]: Invalid user 123456 from 113.141.66.255 Sep 12 05:51:46 wbs sshd\[25703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.141.66.255	2019-09-13 07:58:38
206.189.53.117	attack	Sep 8 23:59:58 cumulus sshd[17411]: Invalid user web1 from 206.189.53.117 port 33354 Sep 8 23:59:58 cumulus sshd[17411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.53.117 Sep 8 23:59:59 cumulus sshd[17411]: Failed password for invalid user web1 from 206.189.53.117 port 33354 ssh2 Sep 8 23:59:59 cumulus sshd[17411]: Received disconnect from 206.189.53.117 port 33354:11: Bye Bye [preauth] Sep 8 23:59:59 cumulus sshd[17411]: Disconnected from 206.189.53.117 port 33354 [preauth] Sep 9 00:10:21 cumulus sshd[17859]: Invalid user plex from 206.189.53.117 port 46708 Sep 9 00:10:21 cumulus sshd[17859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.53.117 Sep 9 00:10:23 cumulus sshd[17859]: Failed password for invalid user plex from 206.189.53.117 port 46708 ssh2 Sep 9 00:10:23 cumulus sshd[17859]: Received disconnect from 206.189.53.117 port 46708:11: Bye Bye [preauth]........ -------------------------------	2019-09-13 07:56:13
201.234.55.197	attackspambots	445/tcp [2019-09-12]1pkt	2019-09-13 07:50:37
37.187.192.162	attack	Sep 12 14:20:15 hcbb sshd\[17522\]: Invalid user mcadmin from 37.187.192.162 Sep 12 14:20:15 hcbb sshd\[17522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-37-187-192.eu Sep 12 14:20:18 hcbb sshd\[17522\]: Failed password for invalid user mcadmin from 37.187.192.162 port 46160 ssh2 Sep 12 14:24:23 hcbb sshd\[17858\]: Invalid user miusuario from 37.187.192.162 Sep 12 14:24:23 hcbb sshd\[17858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-37-187-192.eu	2019-09-13 08:31:51
219.239.47.66	attackspambots	Sep 12 06:05:44 web1 sshd\[30168\]: Invalid user test123 from 219.239.47.66 Sep 12 06:05:44 web1 sshd\[30168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.239.47.66 Sep 12 06:05:46 web1 sshd\[30168\]: Failed password for invalid user test123 from 219.239.47.66 port 42544 ssh2 Sep 12 06:07:58 web1 sshd\[30346\]: Invalid user demo2 from 219.239.47.66 Sep 12 06:07:59 web1 sshd\[30346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.239.47.66	2019-09-13 08:30:36
190.151.105.182	attackspam	Sep 12 23:55:46 web8 sshd\[26368\]: Invalid user minecraft from 190.151.105.182 Sep 12 23:55:46 web8 sshd\[26368\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.105.182 Sep 12 23:55:48 web8 sshd\[26368\]: Failed password for invalid user minecraft from 190.151.105.182 port 51356 ssh2 Sep 13 00:04:50 web8 sshd\[30541\]: Invalid user user from 190.151.105.182 Sep 13 00:04:50 web8 sshd\[30541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.105.182	2019-09-13 08:19:34
65.188.145.176	attackbotsspam	445/tcp [2019-09-12]1pkt	2019-09-13 08:31:33
51.38.37.128	attack	Sep 12 23:39:41 SilenceServices sshd[18804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.37.128 Sep 12 23:39:43 SilenceServices sshd[18804]: Failed password for invalid user 136 from 51.38.37.128 port 40329 ssh2 Sep 12 23:44:54 SilenceServices sshd[20717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.37.128	2019-09-13 08:20:11

Recently Reported IPs

134.209.253.24	143.255.2.165	151.243.199.171	157.55.198.61
167.249.102.253	172.105.174.117	177.86.126.87	223.230.107.155
178.205.230.91	185.140.102.15	190.185.119.13	190.94.136.99
195.3.129.219	198.199.92.41	176.122.100.10	20.51.255.113
27.213.103.160	34.96.130.23	35.176.206.61	42.235.163.53