104.248.216.220

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.216.243	attackbots	SSH Brute-Force. Ports scanning.	2020-09-06 20:37:30
104.248.216.243	attackspam	SSH Brute-Force. Ports scanning.	2020-09-06 12:16:13
104.248.216.243	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-06 04:39:10
104.248.216.243	attack	SSH login attempts.	2020-03-19 15:53:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.216.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.216.220.		IN	A

;; AUTHORITY SECTION:
.			198	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031701 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 18 07:37:25 CST 2022
;; MSG SIZE  rcvd: 108

Host info

220.216.248.104.in-addr.arpa domain name pointer srvr1.lnxinc.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
220.216.248.104.in-addr.arpa	name = srvr1.lnxinc.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.169.192	attackspambots	SSHScan	2019-11-14 13:31:18
222.186.180.147	attackspam	Nov 14 02:44:18 firewall sshd[15161]: Failed password for root from 222.186.180.147 port 46140 ssh2 Nov 14 02:44:18 firewall sshd[15161]: error: maximum authentication attempts exceeded for root from 222.186.180.147 port 46140 ssh2 [preauth] Nov 14 02:44:18 firewall sshd[15161]: Disconnecting: Too many authentication failures [preauth] ...	2019-11-14 13:54:21
92.222.84.34	attack	Nov 14 05:56:11 tuxlinux sshd[9454]: Invalid user tiffany from 92.222.84.34 port 58602 Nov 14 05:56:11 tuxlinux sshd[9454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 Nov 14 05:56:11 tuxlinux sshd[9454]: Invalid user tiffany from 92.222.84.34 port 58602 Nov 14 05:56:11 tuxlinux sshd[9454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 ...	2019-11-14 13:44:56
132.145.153.124	attackspambots	Nov 14 05:56:46 cp sshd[9272]: Failed password for root from 132.145.153.124 port 38980 ssh2 Nov 14 05:56:46 cp sshd[9272]: Failed password for root from 132.145.153.124 port 38980 ssh2	2019-11-14 13:23:21
118.71.153.199	attack	445/tcp 445/tcp [2019-11-12]2pkt	2019-11-14 13:44:32
96.127.40.104	attack	RDP Bruteforce	2019-11-14 13:46:51
49.5.1.18	attackbots	6379/tcp 7001/tcp 9200/tcp... [2019-09-13/11-14]14pkt,6pt.(tcp)	2019-11-14 13:30:02
222.186.175.212	attackbots	Nov 14 06:31:48 host sshd[33340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Nov 14 06:31:50 host sshd[33340]: Failed password for root from 222.186.175.212 port 48972 ssh2 ...	2019-11-14 13:33:17
94.13.180.208	attackspambots	5500/tcp 5500/tcp 23/tcp [2019-11-03/14]3pkt	2019-11-14 13:19:42
104.131.178.223	attack	Nov 14 07:13:07 pkdns2 sshd\[35140\]: Address 104.131.178.223 maps to mail.mconnectmedia.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 14 07:13:09 pkdns2 sshd\[35140\]: Failed password for root from 104.131.178.223 port 51207 ssh2Nov 14 07:16:49 pkdns2 sshd\[35300\]: Address 104.131.178.223 maps to mail.mconnectmedia.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 14 07:16:49 pkdns2 sshd\[35300\]: Invalid user eward from 104.131.178.223Nov 14 07:16:51 pkdns2 sshd\[35300\]: Failed password for invalid user eward from 104.131.178.223 port 41419 ssh2Nov 14 07:20:19 pkdns2 sshd\[35467\]: Address 104.131.178.223 maps to mail.mconnectmedia.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 14 07:20:19 pkdns2 sshd\[35467\]: Invalid user philips from 104.131.178.223 ...	2019-11-14 13:26:12
198.8.93.14	attackbotsspam	2019-11-14T06:25:30.188107mail01 postfix/smtpd[29892]: warning: unknown[198.8.93.14]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-14T06:29:58.111475mail01 postfix/smtpd[25351]: warning: unknown[198.8.93.14]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-14T06:32:07.435071mail01 postfix/smtpd[8403]: warning: unknown[198.8.93.14]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-14 13:36:21
157.245.241.90	attackbots	1900/udp 1900/udp [2019-11-12/13]2pkt	2019-11-14 13:38:16
185.153.199.133	attack	Port scan	2019-11-14 13:41:26
118.24.23.196	attack	Nov 14 06:09:11 vps691689 sshd[12038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.23.196 Nov 14 06:09:14 vps691689 sshd[12038]: Failed password for invalid user toyohiko from 118.24.23.196 port 53026 ssh2 ...	2019-11-14 13:16:36
128.65.178.52	attackbotsspam	Automatic report - Port Scan Attack	2019-11-14 13:14:19

Recently Reported IPs

104.248.216.102	104.248.218.75	104.248.22.236	104.248.226.144
104.248.226.76	104.248.230.128	104.248.230.84	104.248.237.229
40.44.109.86	104.248.240.36	104.248.244.140	104.248.247.234
104.248.247.41	104.248.249.138	104.248.250.142	104.248.250.72
104.248.26.245	104.248.27.67	104.248.3.213	104.248.33.174