104.248.192.145

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 9 05:08:37 hcbbdb sshd\[1034\]: Invalid user gq from 104.248.192.145 Jun 9 05:08:37 hcbbdb sshd\[1034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Jun 9 05:08:39 hcbbdb sshd\[1034\]: Failed password for invalid user gq from 104.248.192.145 port 35100 ssh2 Jun 9 05:11:55 hcbbdb sshd\[1417\]: Invalid user xl from 104.248.192.145 Jun 9 05:11:55 hcbbdb sshd\[1417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145	2020-06-09 13:27:56
attackbots	Jun 4 10:27:04 NPSTNNYC01T sshd[3175]: Failed password for root from 104.248.192.145 port 57642 ssh2 Jun 4 10:30:46 NPSTNNYC01T sshd[3401]: Failed password for root from 104.248.192.145 port 33188 ssh2 ...	2020-06-05 01:06:25
attackspambots	May 29 23:47:41 nextcloud sshd\[25270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 user=root May 29 23:47:43 nextcloud sshd\[25270\]: Failed password for root from 104.248.192.145 port 36218 ssh2 May 29 23:51:10 nextcloud sshd\[30493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 user=root	2020-05-30 06:04:04
attack	prod11 ...	2020-05-29 02:36:05
attack	Invalid user lwm from 104.248.192.145 port 34748	2020-05-23 06:46:44
attackbots	May 22 12:06:05 pve1 sshd[27046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 May 22 12:06:07 pve1 sshd[27046]: Failed password for invalid user qpt from 104.248.192.145 port 36764 ssh2 ...	2020-05-22 19:13:29
attackbots	...	2020-05-16 17:06:13
attackbots	May 13 14:38:37 vmd26974 sshd[9681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 May 13 14:38:40 vmd26974 sshd[9681]: Failed password for invalid user game from 104.248.192.145 port 40420 ssh2 ...	2020-05-13 21:34:14
attackspam	20 attempts against mh-ssh on install-test	2020-05-12 18:57:18
attack	Observed on multiple hosts.	2020-05-05 15:11:28
attackspambots	Apr 22 22:29:14 server sshd[24088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 22 22:29:16 server sshd[24088]: Failed password for invalid user yw from 104.248.192.145 port 55156 ssh2 Apr 22 22:33:31 server sshd[24543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 ...	2020-04-23 04:43:35
attack	Apr 22 06:37:21 XXX sshd[10248]: Invalid user admin from 104.248.192.145 port 48744	2020-04-22 15:21:59
attackspambots	Apr 19 22:16:51 vlre-nyc-1 sshd\[4162\]: Invalid user nm from 104.248.192.145 Apr 19 22:16:51 vlre-nyc-1 sshd\[4162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 19 22:16:53 vlre-nyc-1 sshd\[4162\]: Failed password for invalid user nm from 104.248.192.145 port 47724 ssh2 Apr 19 22:24:44 vlre-nyc-1 sshd\[4353\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 user=root Apr 19 22:24:46 vlre-nyc-1 sshd\[4353\]: Failed password for root from 104.248.192.145 port 36702 ssh2 ...	2020-04-20 06:26:12
attackspam	Apr 16 06:56:06 hosting sshd[2935]: Invalid user web1 from 104.248.192.145 port 60896 ...	2020-04-16 12:23:39
attackbotsspam	Apr 16 00:03:27 markkoudstaal sshd[19321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 16 00:03:30 markkoudstaal sshd[19321]: Failed password for invalid user florentina from 104.248.192.145 port 36626 ssh2 Apr 16 00:07:08 markkoudstaal sshd[19794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145	2020-04-16 06:27:21
attackbotsspam	Apr 14 18:16:24 NPSTNNYC01T sshd[27932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Apr 14 18:16:26 NPSTNNYC01T sshd[27932]: Failed password for invalid user nisec from 104.248.192.145 port 44452 ssh2 Apr 14 18:20:04 NPSTNNYC01T sshd[28332]: Failed password for root from 104.248.192.145 port 53108 ssh2 ...	2020-04-15 06:22:34
attackspam	Invalid user myb from 104.248.192.145 port 48722	2020-04-05 06:22:22
attack	SSH invalid-user multiple login try	2020-04-01 04:34:28
attackspambots	SSH Brute-Forcing (server2)	2020-03-31 17:13:17
attackspambots	Mar 23 19:47:48 php1 sshd\[7627\]: Invalid user sherma from 104.248.192.145 Mar 23 19:47:48 php1 sshd\[7627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Mar 23 19:47:50 php1 sshd\[7627\]: Failed password for invalid user sherma from 104.248.192.145 port 54346 ssh2 Mar 23 19:54:46 php1 sshd\[8170\]: Invalid user test from 104.248.192.145 Mar 23 19:54:46 php1 sshd\[8170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145	2020-03-24 14:04:51
attackspam	2020-03-20T22:57:09.840466suse-nuc sshd[12684]: Invalid user kalea from 104.248.192.145 port 45588 ...	2020-03-21 18:45:28
attackbots	Mar 20 04:14:29 server sshd\[14906\]: Failed password for root from 104.248.192.145 port 58646 ssh2 Mar 20 12:50:22 server sshd\[365\]: Invalid user jannine from 104.248.192.145 Mar 20 12:50:22 server sshd\[365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 Mar 20 12:50:24 server sshd\[365\]: Failed password for invalid user jannine from 104.248.192.145 port 49600 ssh2 Mar 20 13:07:16 server sshd\[3944\]: Invalid user lynn from 104.248.192.145 Mar 20 13:07:16 server sshd\[3944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.192.145 ...	2020-03-20 18:07:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.192.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18797
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.248.192.145.		IN	A

;; AUTHORITY SECTION:
.			374	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032000 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 20 18:07:30 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 145.192.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.192.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.28.42.97	attackbots	Port 1433 Scan	2019-10-26 22:51:40
45.164.55.2	attack	Unauthorized connection attempt from IP address 45.164.55.2 on Port 445(SMB)	2019-10-26 22:42:06
138.68.102.184	attackbots	Automatic report - XMLRPC Attack	2019-10-26 23:13:31
172.68.58.239	attack	Fake GoogleBot	2019-10-26 23:09:04
192.227.210.138	attackbots	2019-10-26T14:08:55.743194abusebot-7.cloudsearch.cf sshd\[24658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.210.138 user=root	2019-10-26 23:06:11
91.134.140.32	attackbotsspam	2019-10-26T14:44:34.258028abusebot-5.cloudsearch.cf sshd\[19394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-91-134-140.eu user=root	2019-10-26 23:07:26
162.158.75.214	attack	Fake GoogleBot	2019-10-26 23:20:20
148.70.192.84	attack	Oct 26 18:56:25 lcl-usvr-02 sshd[22295]: Invalid user samples from 148.70.192.84 port 56062 Oct 26 18:56:25 lcl-usvr-02 sshd[22295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.192.84 Oct 26 18:56:25 lcl-usvr-02 sshd[22295]: Invalid user samples from 148.70.192.84 port 56062 Oct 26 18:56:27 lcl-usvr-02 sshd[22295]: Failed password for invalid user samples from 148.70.192.84 port 56062 ssh2 Oct 26 19:01:52 lcl-usvr-02 sshd[23583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.192.84 user=root Oct 26 19:01:53 lcl-usvr-02 sshd[23583]: Failed password for root from 148.70.192.84 port 37620 ssh2 ...	2019-10-26 22:47:44
139.155.33.169	attackspambots	Oct 26 13:55:26 vps647732 sshd[15002]: Failed password for root from 139.155.33.169 port 60250 ssh2 ...	2019-10-26 23:20:42
14.228.15.120	attack	Unauthorized connection attempt from IP address 14.228.15.120 on Port 445(SMB)	2019-10-26 23:17:23
45.125.221.14	attackbots	Unauthorized connection attempt from IP address 45.125.221.14 on Port 445(SMB)	2019-10-26 23:24:36
151.80.217.219	attack	2019-10-26T19:01:39.018098enmeeting.mahidol.ac.th sshd\[22958\]: User root from 151.80.217.219 not allowed because not listed in AllowUsers 2019-10-26T19:01:39.139318enmeeting.mahidol.ac.th sshd\[22958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.217.219 user=root 2019-10-26T19:01:41.565675enmeeting.mahidol.ac.th sshd\[22958\]: Failed password for invalid user root from 151.80.217.219 port 49220 ssh2 ...	2019-10-26 22:58:37
183.83.138.196	attackspam	Unauthorized connection attempt from IP address 183.83.138.196 on Port 445(SMB)	2019-10-26 22:49:18
49.88.112.117	attack	Oct 26 16:36:48 localhost sshd\[30445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.117 user=root Oct 26 16:36:51 localhost sshd\[30445\]: Failed password for root from 49.88.112.117 port 22863 ssh2 Oct 26 16:36:53 localhost sshd\[30445\]: Failed password for root from 49.88.112.117 port 22863 ssh2	2019-10-26 22:47:05
112.133.243.11	attack	Unauthorized connection attempt from IP address 112.133.243.11 on Port 445(SMB)	2019-10-26 22:54:11

Recently Reported IPs

43.153.189.189	57.194.61.116	164.92.190.108	60.69.153.100
95.90.228.37	160.211.159.194	0.183.218.201	217.171.210.87
171.248.99.193	91.13.205.235	172.77.37.145	142.51.237.126
95.32.228.54	97.110.200.176	24.190.94.212	107.155.56.229
37.187.125.32	110.228.254.148	171.237.104.17	103.144.77.242