104.248.149.205

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.149.43	attack	104.248.149.43 - - [30/Sep/2020:00:20:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2224 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.149.43 - - [30/Sep/2020:00:20:23 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.149.43 - - [30/Sep/2020:00:33:45 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 2480 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 09:40:37
104.248.149.43	attack	can 104.248.149.43 [29/Sep/2020:03:54:45 "-" "POST /wp-login.php 200 2021 104.248.149.43 [29/Sep/2020:20:52:24 "-" "GET /wp-login.php 200 4676 104.248.149.43 [29/Sep/2020:20:52:25 "-" "POST /wp-login.php 200 4676	2020-09-30 02:31:05
104.248.149.43	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-09-29 18:33:58
104.248.149.130	attack	Invalid user student from 104.248.149.130 port 58998	2020-09-25 19:47:35
104.248.149.130	attack	$f2bV_matches	2020-09-19 01:01:39
104.248.149.130	attackbots	SSH Brute-Forcing (server2)	2020-09-18 17:03:26
104.248.149.130	attackspambots	SSH bruteforce	2020-09-18 07:18:38
104.248.149.130	attackbotsspam	SSH Login Bruteforce	2020-09-12 19:43:39
104.248.149.130	attackbotsspam	Sep 1 14:25:13 mail sshd\[21877\]: Invalid user hqy from 104.248.149.130 ...	2020-09-02 03:52:53
104.248.149.130	attackbots	Aug 21 09:20:58 pkdns2 sshd\[1477\]: Invalid user wup from 104.248.149.130Aug 21 09:21:00 pkdns2 sshd\[1477\]: Failed password for invalid user wup from 104.248.149.130 port 38152 ssh2Aug 21 09:25:09 pkdns2 sshd\[1683\]: Invalid user history from 104.248.149.130Aug 21 09:25:10 pkdns2 sshd\[1683\]: Failed password for invalid user history from 104.248.149.130 port 46970 ssh2Aug 21 09:29:33 pkdns2 sshd\[1836\]: Invalid user vladimir from 104.248.149.130Aug 21 09:29:35 pkdns2 sshd\[1836\]: Failed password for invalid user vladimir from 104.248.149.130 port 55920 ssh2 ...	2020-08-21 14:53:47
104.248.149.206	attackbotsspam	Aug 18 10:52:24 hidden sshd[10329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.206 Aug 18 10:52:27 hidden sshd[10329]: Failed password for invalid user mc3 from 104.248.149.206 port 43999 ssh2 Aug 18 11:04:39 hidden sshd[12496]: Invalid user nodejs from 104.248.149.206 port 64195	2020-08-19 21:36:24
104.248.149.130	attackbotsspam	Aug 15 14:35:55 abendstille sshd\[3088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 user=root Aug 15 14:35:56 abendstille sshd\[3088\]: Failed password for root from 104.248.149.130 port 35778 ssh2 Aug 15 14:38:32 abendstille sshd\[5588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 user=root Aug 15 14:38:34 abendstille sshd\[5588\]: Failed password for root from 104.248.149.130 port 46666 ssh2 Aug 15 14:41:16 abendstille sshd\[8294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.149.130 user=root ...	2020-08-15 20:46:41
104.248.149.130	attackspam	Aug 14 09:11:31 ws24vmsma01 sshd[75930]: Failed password for root from 104.248.149.130 port 57374 ssh2 ...	2020-08-14 23:44:00
104.248.149.130	attackspambots	Port Scan detected from 104.248.149.130 (SG/Singapore/-/Singapore (Pioneer)/-). 4 hits in the last 85 seconds	2020-08-13 13:42:08
104.248.149.130	attackbotsspam	$f2bV_matches	2020-08-09 16:37:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.149.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52327
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.149.205.		IN	A

;; AUTHORITY SECTION:
.			369	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:11:31 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 205.149.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 205.149.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.67.82	attackspam	$f2bV_matches	2020-03-04 06:28:42
193.112.74.137	attackspam	Mar 3 23:20:37 localhost sshd\[15262\]: Invalid user arkserver from 193.112.74.137 Mar 3 23:20:37 localhost sshd\[15262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.74.137 Mar 3 23:20:38 localhost sshd\[15262\]: Failed password for invalid user arkserver from 193.112.74.137 port 43014 ssh2 Mar 3 23:26:18 localhost sshd\[15508\]: Invalid user upload from 193.112.74.137 Mar 3 23:26:18 localhost sshd\[15508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.74.137 ...	2020-03-04 06:32:45
222.186.30.167	attackbotsspam	Mar 3 23:38:37 localhost sshd\[8928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Mar 3 23:38:40 localhost sshd\[8928\]: Failed password for root from 222.186.30.167 port 10177 ssh2 Mar 3 23:38:41 localhost sshd\[8928\]: Failed password for root from 222.186.30.167 port 10177 ssh2	2020-03-04 06:41:09
222.186.52.86	attackspambots	2020-03-03T23:01:22.030161scmdmz1 sshd[23969]: Failed password for root from 222.186.52.86 port 28128 ssh2 2020-03-03T23:01:23.930455scmdmz1 sshd[23969]: Failed password for root from 222.186.52.86 port 28128 ssh2 2020-03-03T23:01:26.106111scmdmz1 sshd[23969]: Failed password for root from 222.186.52.86 port 28128 ssh2 ...	2020-03-04 06:10:18
222.186.30.209	attackbots	2020-03-03T22:33:35.717199abusebot-2.cloudsearch.cf sshd[14782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root 2020-03-03T22:33:37.108924abusebot-2.cloudsearch.cf sshd[14782]: Failed password for root from 222.186.30.209 port 11671 ssh2 2020-03-03T22:33:39.351478abusebot-2.cloudsearch.cf sshd[14782]: Failed password for root from 222.186.30.209 port 11671 ssh2 2020-03-03T22:33:35.717199abusebot-2.cloudsearch.cf sshd[14782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209 user=root 2020-03-03T22:33:37.108924abusebot-2.cloudsearch.cf sshd[14782]: Failed password for root from 222.186.30.209 port 11671 ssh2 2020-03-03T22:33:39.351478abusebot-2.cloudsearch.cf sshd[14782]: Failed password for root from 222.186.30.209 port 11671 ssh2 2020-03-03T22:33:35.717199abusebot-2.cloudsearch.cf sshd[14782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ss ...	2020-03-04 06:44:29
49.235.104.204	attackspambots	(sshd) Failed SSH login from 49.235.104.204 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 3 22:52:31 amsweb01 sshd[30020]: Invalid user ela from 49.235.104.204 port 53996 Mar 3 22:52:33 amsweb01 sshd[30020]: Failed password for invalid user ela from 49.235.104.204 port 53996 ssh2 Mar 3 23:00:30 amsweb01 sshd[31763]: Invalid user user from 49.235.104.204 port 38144 Mar 3 23:00:32 amsweb01 sshd[31763]: Failed password for invalid user user from 49.235.104.204 port 38144 ssh2 Mar 3 23:10:19 amsweb01 sshd[1746]: Invalid user chang from 49.235.104.204 port 50646	2020-03-04 06:31:56
192.241.211.149	attackbotsspam	firewall-block, port(s): 2638/tcp	2020-03-04 06:39:14
129.211.65.70	attack	2020-03-03T23:10:39.197659centos sshd\[22328\]: Invalid user couchdb from 129.211.65.70 port 43904 2020-03-03T23:10:39.203299centos sshd\[22328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.65.70 2020-03-03T23:10:41.357960centos sshd\[22328\]: Failed password for invalid user couchdb from 129.211.65.70 port 43904 ssh2	2020-03-04 06:19:02
1.179.137.10	attackspambots	Mar 4 01:01:00 server sshd\[1570\]: Invalid user n from 1.179.137.10 Mar 4 01:01:00 server sshd\[1570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 Mar 4 01:01:03 server sshd\[1570\]: Failed password for invalid user n from 1.179.137.10 port 47173 ssh2 Mar 4 01:10:47 server sshd\[3333\]: Invalid user n from 1.179.137.10 Mar 4 01:10:47 server sshd\[3333\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 ...	2020-03-04 06:14:39
101.71.3.53	attackbotsspam	Mar 3 23:10:20 lnxweb61 sshd[4589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.3.53 Mar 3 23:10:20 lnxweb61 sshd[4589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.3.53	2020-03-04 06:34:03
103.15.226.14	attackspambots	B: /wp-login.php attack	2020-03-04 06:33:43
175.24.135.91	attackbots	Mar 3 22:08:59 raspberrypi sshd\[18971\]: Invalid user furuiliu from 175.24.135.91Mar 3 22:09:01 raspberrypi sshd\[18971\]: Failed password for invalid user furuiliu from 175.24.135.91 port 34512 ssh2Mar 3 22:24:11 raspberrypi sshd\[19804\]: Invalid user zhangzihan from 175.24.135.91 ...	2020-03-04 06:41:36
202.138.234.18	attack	Fake Pharmacy Spam Return-Path: Received: from tnttampa.com (unknown [202.138.234.18]) Message-ID: <_____@tnttampa.com> Date: Tue, 03 Mar 2020 03:29:45 -0800 From: "Samantha" User-Agent: Mozilla/5.0 (Macintosh; U; PPC; en-US; rv:1.0.1) Gecko/20020823 Netscape/7.0 To: "Samantha" Subject: Get extended possibilities with Viagra. Buy at our store! Don't be afraid of your fantasies! Buy Viagra Professional. COOOOOL Sale 90% off Check out our store and find your favorite! http://myfavoriteplaces.info	2020-03-04 06:10:30
109.40.2.14	attackspambots	03.03.2020 23:10:39 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2020-03-04 06:25:25
140.143.139.14	attackbots	5x Failed Password	2020-03-04 06:31:16

Recently Reported IPs

104.248.131.32	104.248.149.34	104.248.149.173	104.248.149.37
104.248.15.107	104.248.150.110	104.248.149.68	104.248.130.32
104.248.150.16	104.248.150.254	104.248.150.190	104.248.151.125
104.248.151.11	104.248.151.159	104.248.150.204	104.248.150.43
104.248.151.180	104.248.151.165	104.248.151.168	104.248.151.248