104.248.192.139

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.192.145	attack	Jun 9 05:08:37 hcbbdb sshd\[1034\]: Invalid user gq from 104.248.192.145 Jun 9 05:08:37 hcbbdb sshd\[1034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Jun 9 05:08:39 hcbbdb sshd\[1034\]: Failed password for invalid user gq from 104.248.192.145 port 35100 ssh2 Jun 9 05:11:55 hcbbdb sshd\[1417\]: Invalid user xl from 104.248.192.145 Jun 9 05:11:55 hcbbdb sshd\[1417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145	2020-06-09 13:27:56
104.248.192.145	attackbots	Jun 4 10:27:04 NPSTNNYC01T sshd[3175]: Failed password for root from 104.248.192.145 port 57642 ssh2 Jun 4 10:30:46 NPSTNNYC01T sshd[3401]: Failed password for root from 104.248.192.145 port 33188 ssh2 ...	2020-06-05 01:06:25
104.248.192.145	attackspambots	May 29 23:47:41 nextcloud sshd\[25270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 user=root May 29 23:47:43 nextcloud sshd\[25270\]: Failed password for root from 104.248.192.145 port 36218 ssh2 May 29 23:51:10 nextcloud sshd\[30493\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 user=root	2020-05-30 06:04:04
104.248.192.145	attack	prod11 ...	2020-05-29 02:36:05
104.248.192.145	attack	Invalid user lwm from 104.248.192.145 port 34748	2020-05-23 06:46:44
104.248.192.145	attackbots	May 22 12:06:05 pve1 sshd[27046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 May 22 12:06:07 pve1 sshd[27046]: Failed password for invalid user qpt from 104.248.192.145 port 36764 ssh2 ...	2020-05-22 19:13:29
104.248.192.145	attackbots	...	2020-05-16 17:06:13
104.248.192.145	attackbots	May 13 14:38:37 vmd26974 sshd[9681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 May 13 14:38:40 vmd26974 sshd[9681]: Failed password for invalid user game from 104.248.192.145 port 40420 ssh2 ...	2020-05-13 21:34:14
104.248.192.145	attackspam	20 attempts against mh-ssh on install-test	2020-05-12 18:57:18
104.248.192.145	attack	Observed on multiple hosts.	2020-05-05 15:11:28
104.248.192.145	attackspambots	Apr 22 22:29:14 server sshd[24088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 22 22:29:16 server sshd[24088]: Failed password for invalid user yw from 104.248.192.145 port 55156 ssh2 Apr 22 22:33:31 server sshd[24543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 ...	2020-04-23 04:43:35
104.248.192.145	attack	Apr 22 06:37:21 XXX sshd[10248]: Invalid user admin from 104.248.192.145 port 48744	2020-04-22 15:21:59
104.248.192.145	attackspambots	Apr 19 22:16:51 vlre-nyc-1 sshd\[4162\]: Invalid user nm from 104.248.192.145 Apr 19 22:16:51 vlre-nyc-1 sshd\[4162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 19 22:16:53 vlre-nyc-1 sshd\[4162\]: Failed password for invalid user nm from 104.248.192.145 port 47724 ssh2 Apr 19 22:24:44 vlre-nyc-1 sshd\[4353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 user=root Apr 19 22:24:46 vlre-nyc-1 sshd\[4353\]: Failed password for root from 104.248.192.145 port 36702 ssh2 ...	2020-04-20 06:26:12
104.248.192.145	attackspam	Apr 16 06:56:06 hosting sshd[2935]: Invalid user web1 from 104.248.192.145 port 60896 ...	2020-04-16 12:23:39
104.248.192.145	attackbotsspam	Apr 16 00:03:27 markkoudstaal sshd[19321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 16 00:03:30 markkoudstaal sshd[19321]: Failed password for invalid user florentina from 104.248.192.145 port 36626 ssh2 Apr 16 00:07:08 markkoudstaal sshd[19794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145	2020-04-16 06:27:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.192.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37844
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.192.139.		IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 04:00:49 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 139.192.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.192.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.101.26.63	attack	Aug 13 00:39:37 dedicated sshd[17989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.63 user=root Aug 13 00:39:39 dedicated sshd[17989]: Failed password for root from 46.101.26.63 port 55273 ssh2	2019-08-13 06:48:32
142.11.211.240	attackspambots	Aug 12 23:23:44 xxxxxxx0 sshd[27221]: Invalid user ubnt from 142.11.211.240 port 41424 Aug 12 23:23:46 xxxxxxx0 sshd[27221]: Failed password for invalid user ubnt from 142.11.211.240 port 41424 ssh2 Aug 12 23:23:52 xxxxxxx0 sshd[27235]: Invalid user admin from 142.11.211.240 port 46906 Aug 12 23:23:55 xxxxxxx0 sshd[27235]: Failed password for invalid user admin from 142.11.211.240 port 46906 ssh2 Aug 12 23:47:55 xxxxxxx0 sshd[31636]: Invalid user ubnt from 142.11.211.240 port 38588 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=142.11.211.240	2019-08-13 06:35:25
138.36.200.173	attack	Aug 12 23:48:46 rigel postfix/smtpd[1818]: warning: hostname 138-36-200-173.7sul.com.br does not resolve to address 138.36.200.173: Name or service not known Aug 12 23:48:46 rigel postfix/smtpd[1818]: connect from unknown[138.36.200.173] Aug 12 23:48:49 rigel postfix/smtpd[1818]: warning: unknown[138.36.200.173]: SASL CRAM-MD5 authentication failed: authentication failure Aug 12 23:48:50 rigel postfix/smtpd[1818]: warning: unknown[138.36.200.173]: SASL PLAIN authentication failed: authentication failure Aug 12 23:48:51 rigel postfix/smtpd[1818]: warning: unknown[138.36.200.173]: SASL LOGIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.36.200.173	2019-08-13 06:51:37
101.72.149.174	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-13 06:15:08
101.89.91.176	attack	Aug 13 01:07:27 www sshd\[4836\]: Invalid user test from 101.89.91.176Aug 13 01:07:29 www sshd\[4836\]: Failed password for invalid user test from 101.89.91.176 port 57248 ssh2Aug 13 01:11:54 www sshd\[4877\]: Invalid user camera from 101.89.91.176 ...	2019-08-13 06:24:21
117.93.211.166	attackbots	Aug 12 23:48:44 nexus sshd[15037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.93.211.166 user=r.r Aug 12 23:48:45 nexus sshd[15037]: Failed password for r.r from 117.93.211.166 port 48008 ssh2 Aug 12 23:48:48 nexus sshd[15037]: Failed password for r.r from 117.93.211.166 port 48008 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.93.211.166	2019-08-13 06:46:14
216.218.206.71	attackbots	30005/tcp 7547/tcp 9200/tcp... [2019-06-12/08-12]58pkt,13pt.(tcp),2pt.(udp)	2019-08-13 06:38:33
68.117.203.50	attackbotsspam	Automatic report - Banned IP Access	2019-08-13 06:51:10
93.92.138.3	attackspambots	Aug 12 23:11:43 mail sshd\[18468\]: Failed password for invalid user admin from 93.92.138.3 port 41030 ssh2 Aug 12 23:27:53 mail sshd\[18885\]: Invalid user dujoey from 93.92.138.3 port 49432 ...	2019-08-13 06:34:33
209.17.96.218	attackbots	8443/tcp 137/udp 4567/tcp... [2019-06-12/08-12]69pkt,13pt.(tcp),1pt.(udp)	2019-08-13 06:44:50
61.250.138.125	attackbotsspam	2019-08-12T22:11:58.291714abusebot.cloudsearch.cf sshd\[21687\]: Invalid user usuario from 61.250.138.125 port 61186	2019-08-13 06:16:34
109.116.203.139	attackspambots	Automatic report - Port Scan Attack	2019-08-13 06:38:04
165.22.143.139	attack	Aug 13 00:34:37 localhost sshd\[31751\]: Invalid user php5 from 165.22.143.139 port 56384 Aug 13 00:34:37 localhost sshd\[31751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.143.139 Aug 13 00:34:39 localhost sshd\[31751\]: Failed password for invalid user php5 from 165.22.143.139 port 56384 ssh2	2019-08-13 06:40:59
148.70.35.109	attack	Aug 12 22:11:53 www_kotimaassa_fi sshd[2288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.35.109 Aug 12 22:11:55 www_kotimaassa_fi sshd[2288]: Failed password for invalid user zq from 148.70.35.109 port 38940 ssh2 ...	2019-08-13 06:23:23
112.168.237.171	attack	$f2bV_matches_ltvn	2019-08-13 06:55:13

Recently Reported IPs

104.248.19.6	104.248.193.109	104.248.193.114	104.248.196.214
104.248.198.38	104.248.199.108	104.248.2.244	104.248.203.193
104.248.203.61	104.248.205.32	104.248.211.251	104.248.216.195
104.248.226.73	104.248.233.136	104.248.236.87	104.248.244.18
104.248.246.73	104.248.248.21	104.248.250.18	104.248.253.68