104.248.20.158

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.205.67	spamattack	Phishing	2022-01-28 16:41:36
104.248.205.67	attackspambots	Oct 11 20:16:41 cho sshd[449424]: Failed password for invalid user mugihiko from 104.248.205.67 port 47586 ssh2 Oct 11 20:19:53 cho sshd[449593]: Invalid user chick from 104.248.205.67 port 51910 Oct 11 20:19:53 cho sshd[449593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.205.67 Oct 11 20:19:53 cho sshd[449593]: Invalid user chick from 104.248.205.67 port 51910 Oct 11 20:19:55 cho sshd[449593]: Failed password for invalid user chick from 104.248.205.67 port 51910 ssh2 ...	2020-10-12 02:35:14
104.248.205.67	attackbots	TCP port : 3918	2020-10-11 18:26:20
104.248.205.67	attackspambots	srv02 Mass scanning activity detected Target: 24911 ..	2020-09-29 05:58:03
104.248.205.67	attack	Time: Mon Sep 28 03:11:10 2020 +0000 IP: 104.248.205.67 (NL/Netherlands/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 28 02:52:35 14-2 sshd[20445]: Invalid user github from 104.248.205.67 port 55244 Sep 28 02:52:37 14-2 sshd[20445]: Failed password for invalid user github from 104.248.205.67 port 55244 ssh2 Sep 28 03:07:18 14-2 sshd[3025]: Invalid user mike from 104.248.205.67 port 40436 Sep 28 03:07:20 14-2 sshd[3025]: Failed password for invalid user mike from 104.248.205.67 port 40436 ssh2 Sep 28 03:11:08 14-2 sshd[15270]: Invalid user vnc from 104.248.205.67 port 47886	2020-09-28 22:22:42
104.248.205.67	attack	Port scan denied	2020-09-28 14:28:33
104.248.205.67	attackspam	Automatic report - Banned IP Access	2020-09-14 00:57:40
104.248.205.67	attackspam	Port scan denied	2020-09-13 16:47:38
104.248.205.24	attackspambots	web-1 [ssh] SSH Attack	2020-09-12 02:46:13
104.248.205.24	attackbotsspam	Sep 11 02:08:45 raspberrypi sshd[28751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.205.24 user=root Sep 11 02:08:47 raspberrypi sshd[28751]: Failed password for invalid user root from 104.248.205.24 port 60612 ssh2 ...	2020-09-11 18:42:28
104.248.205.67	attackspam	SSH brute-force attempt	2020-09-08 03:00:10
104.248.205.67	attackbotsspam	TCP ports : 122 / 1347 / 11584 / 12561 / 20742 / 27793	2020-09-07 18:27:39
104.248.205.67	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 96 - port: 122 proto: tcp cat: Misc Attackbytes: 60	2020-09-02 01:59:59
104.248.205.24	attackbots	Sep 1 14:32:17 vm0 sshd[11485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.205.24 Sep 1 14:32:19 vm0 sshd[11485]: Failed password for invalid user jupyter from 104.248.205.24 port 54598 ssh2 ...	2020-09-01 23:24:29
104.248.205.24	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-09-01 08:09:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.20.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.20.158.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:12:06 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 158.20.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.20.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.195.178.83	attack	Dec 1 14:16:13 mail sshd[12103]: Invalid user rowlandson from 203.195.178.83 Dec 1 14:16:13 mail sshd[12103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.178.83 Dec 1 14:16:13 mail sshd[12103]: Invalid user rowlandson from 203.195.178.83 Dec 1 14:16:15 mail sshd[12103]: Failed password for invalid user rowlandson from 203.195.178.83 port 40436 ssh2 Dec 1 14:21:08 mail sshd[19775]: Invalid user study from 203.195.178.83 ...	2019-12-01 21:50:57
196.52.43.131	attackbots	UTC: 2019-11-30 port: 502/tcp	2019-12-01 21:43:11
178.33.67.12	attackspam	$f2bV_matches	2019-12-01 21:54:29
106.75.148.95	attackbotsspam	Dec 1 14:37:04 ns3042688 sshd\[3953\]: Invalid user otashiro from 106.75.148.95 Dec 1 14:37:04 ns3042688 sshd\[3953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 Dec 1 14:37:06 ns3042688 sshd\[3953\]: Failed password for invalid user otashiro from 106.75.148.95 port 60132 ssh2 Dec 1 14:41:01 ns3042688 sshd\[5600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.148.95 user=root Dec 1 14:41:03 ns3042688 sshd\[5600\]: Failed password for root from 106.75.148.95 port 35012 ssh2 ...	2019-12-01 21:58:32
123.116.109.61	attack	Fail2Ban Ban Triggered	2019-12-01 21:51:36
148.72.213.52	attackspambots	Dec 1 07:51:54 [host] sshd[13073]: Invalid user ersatz from 148.72.213.52 Dec 1 07:51:54 [host] sshd[13073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.213.52 Dec 1 07:51:56 [host] sshd[13073]: Failed password for invalid user ersatz from 148.72.213.52 port 44532 ssh2	2019-12-01 21:25:19
92.18.34.235	attack	Fail2Ban Ban Triggered	2019-12-01 21:50:06
196.218.37.194	attackbots	UTC: 2019-11-30 port: 23/tcp	2019-12-01 21:39:40
165.16.37.160	attackbots	UTC: 2019-11-30 port: 80/tcp	2019-12-01 21:54:54
179.219.142.154	attackspambots	Dec 1 09:36:23 localhost sshd\[130565\]: Invalid user jacobo from 179.219.142.154 port 55358 Dec 1 09:36:23 localhost sshd\[130565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.219.142.154 Dec 1 09:36:25 localhost sshd\[130565\]: Failed password for invalid user jacobo from 179.219.142.154 port 55358 ssh2 Dec 1 09:44:48 localhost sshd\[130753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.219.142.154 user=root Dec 1 09:44:50 localhost sshd\[130753\]: Failed password for root from 179.219.142.154 port 44697 ssh2 ...	2019-12-01 21:53:58
202.131.231.210	attack	SSH Brute Force, server-1 sshd[26326]: Failed password for invalid user Winter from 202.131.231.210 port 39486 ssh2	2019-12-01 21:19:16
153.3.232.177	attackspambots	Dec 1 14:35:56 areeb-Workstation sshd[705]: Failed password for root from 153.3.232.177 port 45540 ssh2 ...	2019-12-01 21:28:11
58.87.117.128	attack	Dec 1 14:06:24 www sshd\[25336\]: Invalid user lgordon from 58.87.117.128 port 41730 ...	2019-12-01 21:45:22
152.32.161.246	attack	k+ssh-bruteforce	2019-12-01 21:34:49
110.179.6.243	attackbots	UTC: 2019-11-30 pkts: 3 port: 23/tcp	2019-12-01 22:00:47

Recently Reported IPs

104.248.2.111	104.248.200.148	104.248.200.131	104.248.200.136
104.248.200.157	104.248.200.176	104.248.200.1	104.248.200.189
104.248.200.183	104.248.200.184	104.248.200.186	109.81.181.136
104.248.200.201	104.248.200.202	104.248.200.219	104.248.200.223
104.248.200.245	104.248.200.242	104.248.200.232	104.248.201.155