104.248.145.175

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.145.254	attackbots	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-29 04:25:26
104.248.145.254	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-28 20:40:54
104.248.145.254	attackspam	firewall-block, port(s): 4205/tcp	2020-09-28 12:47:46
104.248.145.254	attack	TCP (SYN) 104.248.145.254:59928 -> port 15830, len 44	2020-09-04 03:43:34
104.248.145.254	attackspam	TCP ports : 11182 / 15830	2020-09-03 19:19:07
104.248.145.254	attack	TCP (SYN) 104.248.145.254:51047 -> port 31845, len 44	2020-08-13 04:54:36
104.248.145.254	attackbots	" "	2020-08-07 07:34:25
104.248.145.254	attack	Aug 6 16:45:53 debian-2gb-nbg1-2 kernel: \[18983609.468139\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.145.254 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=16833 PROTO=TCP SPT=43412 DPT=32345 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 03:27:55
104.248.145.254	attackbots	scans once in preceeding hours on the ports (in chronological order) 8748 resulting in total of 6 scans from 104.248.0.0/16 block.	2020-08-05 20:37:31
104.248.145.254	attackbotsspam	TCP (SYN) 104.248.145.254:48778 -> port 2378, len 44	2020-08-02 23:36:48
104.248.145.254	attack	Port scan denied	2020-07-28 02:07:35
104.248.145.254	attackbots	firewall-block, port(s): 8532/tcp	2020-07-18 19:01:14
104.248.145.254	attackspam	firewall-block, port(s): 29634/tcp	2020-07-07 00:13:46
104.248.145.163	attackspam	Invalid user acj from 104.248.145.163 port 60982	2020-02-12 02:45:08
104.248.145.163	attackbots	Jan 31 00:05:40 php1 sshd\[4148\]: Invalid user sumita from 104.248.145.163 Jan 31 00:05:40 php1 sshd\[4148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163 Jan 31 00:05:42 php1 sshd\[4148\]: Failed password for invalid user sumita from 104.248.145.163 port 49590 ssh2 Jan 31 00:09:03 php1 sshd\[4514\]: Invalid user ilavalagi from 104.248.145.163 Jan 31 00:09:03 php1 sshd\[4514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163	2020-01-31 18:14:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.145.175
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30738
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.145.175.		IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 14:11:15 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 175.145.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 175.145.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.94.77.51	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-01-12 07:19:02
222.186.175.147	attackspam	Jan 12 01:44:58 ncomp sshd[29527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.147 user=root Jan 12 01:45:00 ncomp sshd[29527]: Failed password for root from 222.186.175.147 port 63612 ssh2 Jan 12 01:45:03 ncomp sshd[29527]: Failed password for root from 222.186.175.147 port 63612 ssh2 Jan 12 01:44:58 ncomp sshd[29527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.147 user=root Jan 12 01:45:00 ncomp sshd[29527]: Failed password for root from 222.186.175.147 port 63612 ssh2 Jan 12 01:45:03 ncomp sshd[29527]: Failed password for root from 222.186.175.147 port 63612 ssh2	2020-01-12 07:53:54
123.180.68.242	attackspambots	2020-01-11 15:04:56 dovecot_login authenticator failed for (edcho) [123.180.68.242]:54523 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=wangying@lerctr.org) 2020-01-11 15:05:03 dovecot_login authenticator failed for (dfnfq) [123.180.68.242]:54523 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=wangying@lerctr.org) 2020-01-11 15:05:14 dovecot_login authenticator failed for (uzeih) [123.180.68.242]:54523 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=wangying@lerctr.org) ...	2020-01-12 07:49:02
179.52.48.240	attackbots	Jan 11 22:45:09 sxvn sshd[1531925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.52.48.240 Jan 11 22:45:09 sxvn sshd[1531927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.52.48.240	2020-01-12 07:44:03
196.192.110.65	attack	Invalid user teste from 196.192.110.65 port 51106	2020-01-12 07:44:56
49.88.112.113	attackbotsspam	Jan 11 18:21:00 plusreed sshd[23948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Jan 11 18:21:02 plusreed sshd[23948]: Failed password for root from 49.88.112.113 port 29984 ssh2 ...	2020-01-12 07:24:59
222.186.175.167	attack	2020-01-11T23:55:59.462403abusebot.cloudsearch.cf sshd[1847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root 2020-01-11T23:56:01.384662abusebot.cloudsearch.cf sshd[1847]: Failed password for root from 222.186.175.167 port 63220 ssh2 2020-01-11T23:56:04.529882abusebot.cloudsearch.cf sshd[1847]: Failed password for root from 222.186.175.167 port 63220 ssh2 2020-01-11T23:55:59.462403abusebot.cloudsearch.cf sshd[1847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root 2020-01-11T23:56:01.384662abusebot.cloudsearch.cf sshd[1847]: Failed password for root from 222.186.175.167 port 63220 ssh2 2020-01-11T23:56:04.529882abusebot.cloudsearch.cf sshd[1847]: Failed password for root from 222.186.175.167 port 63220 ssh2 2020-01-11T23:55:59.462403abusebot.cloudsearch.cf sshd[1847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost= ...	2020-01-12 07:56:40
222.186.42.155	attack	Jan 11 23:31:41 marvibiene sshd[61958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Jan 11 23:31:43 marvibiene sshd[61958]: Failed password for root from 222.186.42.155 port 59141 ssh2 Jan 11 23:31:45 marvibiene sshd[61958]: Failed password for root from 222.186.42.155 port 59141 ssh2 Jan 11 23:31:41 marvibiene sshd[61958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Jan 11 23:31:43 marvibiene sshd[61958]: Failed password for root from 222.186.42.155 port 59141 ssh2 Jan 11 23:31:45 marvibiene sshd[61958]: Failed password for root from 222.186.42.155 port 59141 ssh2 ...	2020-01-12 07:32:18
188.166.232.14	attack	SSH Login Bruteforce	2020-01-12 07:57:12
222.186.173.142	attackspambots	Jan 12 00:14:24 163-172-32-151 sshd[5438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Jan 12 00:14:26 163-172-32-151 sshd[5438]: Failed password for root from 222.186.173.142 port 10910 ssh2 ...	2020-01-12 07:21:39
185.93.3.114	attackspambots	0,53-01/01 [bc00/m58] PostRequest-Spammer scoring: brussels	2020-01-12 07:52:00
103.4.116.66	attack	Unauthorized connection attempt detected from IP address 103.4.116.66 to port 80	2020-01-12 07:41:10
58.218.66.197	attackbots	01/11/2020-22:05:38.646355 58.218.66.197 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-12 07:30:29
189.202.204.230	attackbots	Jan 7 20:20:33 vzhost sshd[3772]: reveeclipse mapping checking getaddrinfo for mail.ciatej.net.mx [189.202.204.230] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 7 20:20:33 vzhost sshd[3772]: Invalid user eoq from 189.202.204.230 Jan 7 20:20:33 vzhost sshd[3772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.202.204.230 Jan 7 20:20:35 vzhost sshd[3772]: Failed password for invalid user eoq from 189.202.204.230 port 59261 ssh2 Jan 7 20:28:38 vzhost sshd[6199]: reveeclipse mapping checking getaddrinfo for mail.ciatej.net.mx [189.202.204.230] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 7 20:28:38 vzhost sshd[6199]: Invalid user test03 from 189.202.204.230 Jan 7 20:28:38 vzhost sshd[6199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.202.204.230 Jan 7 20:28:39 vzhost sshd[6199]: Failed password for invalid user test03 from 189.202.204.230 port 53499 ssh2 Jan 7 20:32:14 vzhost sshd[........ -------------------------------	2020-01-12 07:50:40
104.196.4.163	attack	Port 22 Scan, PTR: None	2020-01-12 07:53:28

Recently Reported IPs

104.248.137.116	104.248.145.157	104.248.147.224	104.248.153.129
104.248.149.100	104.248.149.154	104.248.153.148	104.21.192.185
104.248.155.123	104.248.15.220	104.248.157.56	104.248.167.26
149.167.23.55	48.218.134.69	104.21.196.114	104.21.199.37
104.25.202.15	104.25.202.96	104.25.203.15	104.25.201.96