104.248.148.34

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 25 19:16:03 h2177944 sshd\[29503\]: Invalid user jasmin from 104.248.148.34 port 36974 Nov 25 19:16:03 h2177944 sshd\[29503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.34 Nov 25 19:16:05 h2177944 sshd\[29503\]: Failed password for invalid user jasmin from 104.248.148.34 port 36974 ssh2 Nov 25 19:23:18 h2177944 sshd\[29702\]: Invalid user dyrlie from 104.248.148.34 port 46472 Nov 25 19:23:18 h2177944 sshd\[29702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.34 ...	2019-11-26 04:28:58
attackspam	Sep 8 18:39:32 vpxxxxxxx22308 sshd[14182]: Invalid user rtest from 104.248.148.34 Sep 8 18:39:32 vpxxxxxxx22308 sshd[14182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.34 Sep 8 18:39:34 vpxxxxxxx22308 sshd[14182]: Failed password for invalid user rtest from 104.248.148.34 port 54336 ssh2 Sep 8 18:49:04 vpxxxxxxx22308 sshd[15625]: Invalid user ts3server from 104.248.148.34 Sep 8 18:49:04 vpxxxxxxx22308 sshd[15625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.34 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.248.148.34	2019-09-16 17:22:56
attack	2019-09-10T08:55:33.402275abusebot-8.cloudsearch.cf sshd\[23044\]: Invalid user developer from 104.248.148.34 port 37844	2019-09-10 17:18:16
attack	2019-09-04T17:02:38.486164abusebot-8.cloudsearch.cf sshd\[20946\]: Invalid user pawel from 104.248.148.34 port 42314	2019-09-05 01:41:10

Comments on same subnet:

IP	Type	Details	Datetime
104.248.148.98	attackbots	2019-09-22T07:35:38.446967enmeeting.mahidol.ac.th sshd\[11482\]: Invalid user ftpuser from 104.248.148.98 port 49728 2019-09-22T07:35:38.462169enmeeting.mahidol.ac.th sshd\[11482\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 2019-09-22T07:35:40.546752enmeeting.mahidol.ac.th sshd\[11482\]: Failed password for invalid user ftpuser from 104.248.148.98 port 49728 ssh2 ...	2019-09-22 09:47:15
104.248.148.98	attackbots	$f2bV_matches	2019-09-02 14:11:39
104.248.148.98	attackbotsspam	Aug 27 11:16:46 pkdns2 sshd\[57154\]: Invalid user mono from 104.248.148.98Aug 27 11:16:47 pkdns2 sshd\[57154\]: Failed password for invalid user mono from 104.248.148.98 port 51520 ssh2Aug 27 11:21:39 pkdns2 sshd\[57387\]: Invalid user vtcbikes from 104.248.148.98Aug 27 11:21:41 pkdns2 sshd\[57387\]: Failed password for invalid user vtcbikes from 104.248.148.98 port 40366 ssh2Aug 27 11:26:30 pkdns2 sshd\[57616\]: Invalid user archuser from 104.248.148.98Aug 27 11:26:32 pkdns2 sshd\[57616\]: Failed password for invalid user archuser from 104.248.148.98 port 57660 ssh2 ...	2019-08-27 16:36:34
104.248.148.98	attack	Aug 26 22:46:06 SilenceServices sshd[13571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 Aug 26 22:46:08 SilenceServices sshd[13571]: Failed password for invalid user gpu from 104.248.148.98 port 56196 ssh2 Aug 26 22:50:37 SilenceServices sshd[15320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98	2019-08-27 05:04:36
104.248.148.98	attack	Invalid user jana from 104.248.148.98 port 49152	2019-08-25 00:20:33
104.248.148.98	attackspam	$f2bV_matches	2019-08-13 05:59:54
104.248.148.98	attackbotsspam	Aug 10 22:25:15 unicornsoft sshd\[14958\]: Invalid user ultra from 104.248.148.98 Aug 10 22:25:15 unicornsoft sshd\[14958\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 Aug 10 22:25:16 unicornsoft sshd\[14958\]: Failed password for invalid user ultra from 104.248.148.98 port 38864 ssh2	2019-08-11 12:11:57
104.248.148.98	attack	Aug 6 12:00:40 MK-Soft-VM4 sshd\[21025\]: Invalid user ts2 from 104.248.148.98 port 47282 Aug 6 12:00:40 MK-Soft-VM4 sshd\[21025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 Aug 6 12:00:41 MK-Soft-VM4 sshd\[21025\]: Failed password for invalid user ts2 from 104.248.148.98 port 47282 ssh2 ...	2019-08-07 03:08:17
104.248.148.52	attackbots	Apr 13 17:05:07 ubuntu sshd[20205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.52 Apr 13 17:05:09 ubuntu sshd[20205]: Failed password for invalid user bsd from 104.248.148.52 port 33326 ssh2 Apr 13 17:07:50 ubuntu sshd[20266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.52 Apr 13 17:07:52 ubuntu sshd[20266]: Failed password for invalid user weixin from 104.248.148.52 port 34762 ssh2	2019-07-31 21:11:59
104.248.148.98	attackspambots	Apr 20 08:20:34 ubuntu sshd[9755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 Apr 20 08:20:35 ubuntu sshd[9755]: Failed password for invalid user delete from 104.248.148.98 port 38690 ssh2 Apr 20 08:23:14 ubuntu sshd[9836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 Apr 20 08:23:17 ubuntu sshd[9836]: Failed password for invalid user correo from 104.248.148.98 port 36342 ssh2	2019-07-31 21:07:40
104.248.148.98	attackspambots	SSH invalid-user multiple login try	2019-07-11 11:37:11
104.248.148.98	attack	2019-06-25T15:21:45.3150881240 sshd\[2477\]: Invalid user public from 104.248.148.98 port 49730 2019-06-25T15:21:45.3219141240 sshd\[2477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 2019-06-25T15:21:47.7251551240 sshd\[2477\]: Failed password for invalid user public from 104.248.148.98 port 49730 ssh2 ...	2019-06-25 23:52:44
104.248.148.98	attackbots	Jun 21 06:43:09 srv206 sshd[7671]: Invalid user admin from 104.248.148.98 Jun 21 06:43:09 srv206 sshd[7671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.148.98 Jun 21 06:43:09 srv206 sshd[7671]: Invalid user admin from 104.248.148.98 Jun 21 06:43:11 srv206 sshd[7671]: Failed password for invalid user admin from 104.248.148.98 port 44694 ssh2 ...	2019-06-21 14:22:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.148.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56472
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.148.34.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 05 01:41:01 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 34.148.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 34.148.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.23.192.74	attack	[2020-04-25 14:40:43] NOTICE[1170][C-00005478] chan_sip.c: Call from '' (198.23.192.74:58252) to extension '00046406820514' rejected because extension not found in context 'public'. [2020-04-25 14:40:43] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-25T14:40:43.264-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00046406820514",SessionID="0x7f6c083c7058",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.23.192.74/58252",ACLName="no_extension_match" [2020-04-25 14:42:21] NOTICE[1170][C-00005479] chan_sip.c: Call from '' (198.23.192.74:59462) to extension '90046406820514' rejected because extension not found in context 'public'. [2020-04-25 14:42:21] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-25T14:42:21.416-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90046406820514",SessionID="0x7f6c0804a508",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198. ...	2020-04-26 02:53:11
111.229.50.131	attack	Apr 25 11:21:49 firewall sshd[6423]: Invalid user mongodb2 from 111.229.50.131 Apr 25 11:21:51 firewall sshd[6423]: Failed password for invalid user mongodb2 from 111.229.50.131 port 36128 ssh2 Apr 25 11:26:44 firewall sshd[6606]: Invalid user axente from 111.229.50.131 ...	2020-04-26 03:09:45
27.254.130.67	attackbots	Apr 25 20:10:39 sip sshd[10153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.130.67 Apr 25 20:10:40 sip sshd[10153]: Failed password for invalid user morgengold from 27.254.130.67 port 51124 ssh2 Apr 25 20:14:02 sip sshd[11456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.130.67	2020-04-26 02:56:31
119.29.247.187	attackspam	(sshd) Failed SSH login from 119.29.247.187 (SG/Singapore/-): 5 in the last 3600 secs	2020-04-26 03:19:42
198.46.81.43	attack	xmlrpc attack	2020-04-26 03:11:03
175.24.101.141	attackbotsspam	SSH brutforce	2020-04-26 03:23:56
35.232.69.154	attackbots	Unauthorized connection attempt detected from IP address 35.232.69.154 to port 22	2020-04-26 03:09:24
185.202.1.252	attack	RDP Bruteforce	2020-04-26 03:17:28
80.123.143.202	attackbotsspam	TCP src-port=60017 dst-port=25 Listed on dnsbl-sorbs abuseat-org barracuda (Project Honey Pot rated Suspicious) (250)	2020-04-26 03:03:45
222.186.175.151	attackbots	Apr 25 20:43:08 vps sshd[402178]: Failed password for root from 222.186.175.151 port 54952 ssh2 Apr 25 20:43:11 vps sshd[402178]: Failed password for root from 222.186.175.151 port 54952 ssh2 Apr 25 20:43:14 vps sshd[402178]: Failed password for root from 222.186.175.151 port 54952 ssh2 Apr 25 20:43:17 vps sshd[402178]: Failed password for root from 222.186.175.151 port 54952 ssh2 Apr 25 20:43:21 vps sshd[402178]: Failed password for root from 222.186.175.151 port 54952 ssh2 ...	2020-04-26 02:59:46
45.143.223.98	attackbots	Brute forcing email accounts	2020-04-26 03:18:56
51.132.21.180	attack	Apr 25 17:17:28 ns381471 sshd[15918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.132.21.180 Apr 25 17:17:30 ns381471 sshd[15918]: Failed password for invalid user therapie from 51.132.21.180 port 59450 ssh2	2020-04-26 03:04:54
111.93.200.50	attackbotsspam	2020-04-25T15:31:37.957123shield sshd\[26873\]: Invalid user djmax from 111.93.200.50 port 56296 2020-04-25T15:31:37.961829shield sshd\[26873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50 2020-04-25T15:31:40.371890shield sshd\[26873\]: Failed password for invalid user djmax from 111.93.200.50 port 56296 ssh2 2020-04-25T15:41:02.010814shield sshd\[28531\]: Invalid user postfixpostfix from 111.93.200.50 port 39799 2020-04-25T15:41:02.015670shield sshd\[28531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50	2020-04-26 02:47:52
123.206.111.27	attackspambots	Apr 25 10:14:32 firewall sshd[4856]: Invalid user cimeq from 123.206.111.27 Apr 25 10:14:34 firewall sshd[4856]: Failed password for invalid user cimeq from 123.206.111.27 port 41496 ssh2 Apr 25 10:20:17 firewall sshd[4992]: Invalid user git from 123.206.111.27 ...	2020-04-26 03:22:54
188.81.78.211	attackbots	Email rejected due to spam filtering	2020-04-26 03:13:10

Recently Reported IPs

110.2.126.244	76.104.74.4	218.83.210.16	73.12.60.145
223.221.13.136	157.230.179.247	158.79.241.29	146.154.250.47
62.196.10.249	5.130.102.116	92.213.85.41	42.245.77.12
124.254.197.246	47.66.6.79	160.129.48.4	117.142.130.251
24.201.186.136	37.95.38.104	52.238.36.33	1.169.234.39