104.248.145.206

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.145.254	attackbots	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-29 04:25:26
104.248.145.254	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-28 20:40:54
104.248.145.254	attackspam	firewall-block, port(s): 4205/tcp	2020-09-28 12:47:46
104.248.145.254	attack	TCP (SYN) 104.248.145.254:59928 -> port 15830, len 44	2020-09-04 03:43:34
104.248.145.254	attackspam	TCP ports : 11182 / 15830	2020-09-03 19:19:07
104.248.145.254	attack	TCP (SYN) 104.248.145.254:51047 -> port 31845, len 44	2020-08-13 04:54:36
104.248.145.254	attackbots	" "	2020-08-07 07:34:25
104.248.145.254	attack	Aug 6 16:45:53 debian-2gb-nbg1-2 kernel: \[18983609.468139\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.145.254 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=16833 PROTO=TCP SPT=43412 DPT=32345 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 03:27:55
104.248.145.254	attackbots	scans once in preceeding hours on the ports (in chronological order) 8748 resulting in total of 6 scans from 104.248.0.0/16 block.	2020-08-05 20:37:31
104.248.145.254	attackbotsspam	TCP (SYN) 104.248.145.254:48778 -> port 2378, len 44	2020-08-02 23:36:48
104.248.145.254	attack	Port scan denied	2020-07-28 02:07:35
104.248.145.254	attackbots	firewall-block, port(s): 8532/tcp	2020-07-18 19:01:14
104.248.145.254	attackspam	firewall-block, port(s): 29634/tcp	2020-07-07 00:13:46
104.248.145.163	attackspam	Invalid user acj from 104.248.145.163 port 60982	2020-02-12 02:45:08
104.248.145.163	attackbots	Jan 31 00:05:40 php1 sshd\[4148\]: Invalid user sumita from 104.248.145.163 Jan 31 00:05:40 php1 sshd\[4148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163 Jan 31 00:05:42 php1 sshd\[4148\]: Failed password for invalid user sumita from 104.248.145.163 port 49590 ssh2 Jan 31 00:09:03 php1 sshd\[4514\]: Invalid user ilavalagi from 104.248.145.163 Jan 31 00:09:03 php1 sshd\[4514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.145.163	2020-01-31 18:14:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.145.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.145.206.		IN	A

;; AUTHORITY SECTION:
.			41	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:23:44 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 206.145.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 206.145.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.61.133.172	attack	2019-09-07T01:47:39.074107abusebot-5.cloudsearch.cf sshd\[11417\]: Invalid user debian from 182.61.133.172 port 35768	2019-09-07 09:53:09
222.120.192.102	attack	Sep 7 02:50:14 [host] sshd[28479]: Invalid user police from 222.120.192.102 Sep 7 02:50:14 [host] sshd[28479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.120.192.102 Sep 7 02:50:16 [host] sshd[28479]: Failed password for invalid user police from 222.120.192.102 port 46396 ssh2	2019-09-07 10:15:43
154.73.75.99	attackspam	Sep 6 15:35:10 eddieflores sshd\[13203\]: Invalid user csgoserver from 154.73.75.99 Sep 6 15:35:10 eddieflores sshd\[13203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.75.99 Sep 6 15:35:12 eddieflores sshd\[13203\]: Failed password for invalid user csgoserver from 154.73.75.99 port 28267 ssh2 Sep 6 15:41:26 eddieflores sshd\[13853\]: Invalid user www from 154.73.75.99 Sep 6 15:41:26 eddieflores sshd\[13853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.75.99	2019-09-07 09:53:47
41.138.88.3	attackspambots	Sep 7 04:39:00 yabzik sshd[32314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3 Sep 7 04:39:03 yabzik sshd[32314]: Failed password for invalid user radio from 41.138.88.3 port 36942 ssh2 Sep 7 04:44:01 yabzik sshd[1830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3	2019-09-07 09:47:53
188.226.226.82	attack	Sep 7 03:01:37 microserver sshd[4848]: Invalid user test from 188.226.226.82 port 49928 Sep 7 03:01:37 microserver sshd[4848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82 Sep 7 03:01:39 microserver sshd[4848]: Failed password for invalid user test from 188.226.226.82 port 49928 ssh2 Sep 7 03:05:48 microserver sshd[5532]: Invalid user oracle from 188.226.226.82 port 43238 Sep 7 03:05:48 microserver sshd[5532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82 Sep 7 03:18:02 microserver sshd[7802]: Invalid user test2 from 188.226.226.82 port 51397 Sep 7 03:18:02 microserver sshd[7802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.226.226.82 Sep 7 03:18:04 microserver sshd[7802]: Failed password for invalid user test2 from 188.226.226.82 port 51397 ssh2 Sep 7 03:22:12 microserver sshd[8496]: Invalid user guest from 188.226.226.82 port 44705 Sep 7	2019-09-07 09:46:28
188.93.234.85	attackspambots	Sep 6 15:17:45 tdfoods sshd\[11132\]: Invalid user teamspeak3 from 188.93.234.85 Sep 6 15:17:45 tdfoods sshd\[11132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85 Sep 6 15:17:46 tdfoods sshd\[11132\]: Failed password for invalid user teamspeak3 from 188.93.234.85 port 38306 ssh2 Sep 6 15:22:23 tdfoods sshd\[11547\]: Invalid user uftp from 188.93.234.85 Sep 6 15:22:23 tdfoods sshd\[11547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85	2019-09-07 09:35:05
153.36.242.143	attack	Sep 7 04:04:48 eventyay sshd[18355]: Failed password for root from 153.36.242.143 port 16769 ssh2 Sep 7 04:05:00 eventyay sshd[18364]: Failed password for root from 153.36.242.143 port 53952 ssh2 Sep 7 04:05:02 eventyay sshd[18364]: Failed password for root from 153.36.242.143 port 53952 ssh2 ...	2019-09-07 10:06:05
117.200.213.113	attackspambots	Automatic report - Port Scan Attack	2019-09-07 10:09:51
104.182.39.91	attackspambots	Sep 6 15:18:51 hiderm sshd\[21132\]: Invalid user guest from 104.182.39.91 Sep 6 15:18:51 hiderm sshd\[21132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104-182-39-91.lightspeed.sntcca.sbcglobal.net Sep 6 15:18:53 hiderm sshd\[21132\]: Failed password for invalid user guest from 104.182.39.91 port 51352 ssh2 Sep 6 15:23:30 hiderm sshd\[21493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104-182-39-91.lightspeed.sntcca.sbcglobal.net user=root Sep 6 15:23:32 hiderm sshd\[21493\]: Failed password for root from 104.182.39.91 port 37752 ssh2	2019-09-07 09:41:36
132.232.2.184	attack	Sep 6 15:26:58 web1 sshd\[13516\]: Invalid user owncloud from 132.232.2.184 Sep 6 15:26:58 web1 sshd\[13516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.2.184 Sep 6 15:27:01 web1 sshd\[13516\]: Failed password for invalid user owncloud from 132.232.2.184 port 13528 ssh2 Sep 6 15:32:19 web1 sshd\[13994\]: Invalid user p@ssw0rd from 132.232.2.184 Sep 6 15:32:19 web1 sshd\[13994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.2.184	2019-09-07 09:34:40
194.63.143.189	attack	Automatic report - Port Scan Attack	2019-09-07 10:07:40
51.38.231.36	attackbotsspam	Sep 7 03:27:26 mail sshd\[2077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.231.36 Sep 7 03:27:28 mail sshd\[2077\]: Failed password for invalid user postgres from 51.38.231.36 port 59732 ssh2 Sep 7 03:31:08 mail sshd\[2439\]: Invalid user student2 from 51.38.231.36 port 46800 Sep 7 03:31:08 mail sshd\[2439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.231.36 Sep 7 03:31:10 mail sshd\[2439\]: Failed password for invalid user student2 from 51.38.231.36 port 46800 ssh2	2019-09-07 09:44:48
220.134.177.103	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-07 09:51:03
184.105.247.242	attack	scan r	2019-09-07 10:14:10
121.226.110.236	attack	Telnet Server BruteForce Attack	2019-09-07 10:05:13

Recently Reported IPs

4.202.128.255	104.248.145.242	104.248.145.60	104.248.145.6
104.248.146.100	104.248.145.240	101.109.59.152	104.248.146.104
104.248.146.12	104.248.146.137	104.248.146.145	104.248.146.157
104.248.146.159	104.248.146.29	104.248.146.253	104.248.146.235
101.109.59.158	104.248.146.174	104.248.146.46	104.248.147.104