104.248.229.53

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.229.8	attackspambots	" "	2019-09-17 10:01:23
104.248.229.8	attackspambots	Sep 4 21:23:02 yabzik sshd[13307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Sep 4 21:23:04 yabzik sshd[13307]: Failed password for invalid user lab from 104.248.229.8 port 35876 ssh2 Sep 4 21:27:09 yabzik sshd[14675]: Failed password for root from 104.248.229.8 port 51666 ssh2	2019-09-05 02:29:32
104.248.229.8	attack	Invalid user jcoffey from 104.248.229.8 port 39316	2019-08-30 13:19:11
104.248.229.8	attack	Aug 21 04:35:01 MK-Soft-VM6 sshd\[31364\]: Invalid user newtest from 104.248.229.8 port 59318 Aug 21 04:35:01 MK-Soft-VM6 sshd\[31364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 21 04:35:03 MK-Soft-VM6 sshd\[31364\]: Failed password for invalid user newtest from 104.248.229.8 port 59318 ssh2 ...	2019-08-21 12:56:26
104.248.229.8	attack	Aug 19 00:14:33 MK-Soft-VM6 sshd\[3384\]: Invalid user maximilian from 104.248.229.8 port 50500 Aug 19 00:14:33 MK-Soft-VM6 sshd\[3384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 19 00:14:35 MK-Soft-VM6 sshd\[3384\]: Failed password for invalid user maximilian from 104.248.229.8 port 50500 ssh2 ...	2019-08-19 08:26:53
104.248.229.8	attackspambots	Aug 5 23:18:11 xtremcommunity sshd\[2598\]: Invalid user markb from 104.248.229.8 port 40072 Aug 5 23:18:11 xtremcommunity sshd\[2598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 5 23:18:13 xtremcommunity sshd\[2598\]: Failed password for invalid user markb from 104.248.229.8 port 40072 ssh2 Aug 5 23:22:40 xtremcommunity sshd\[2722\]: Invalid user hara from 104.248.229.8 port 37216 Aug 5 23:22:40 xtremcommunity sshd\[2722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 ...	2019-08-06 16:09:36
104.248.229.8	attackspambots	Aug 3 11:49:13 TORMINT sshd\[32413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 user=root Aug 3 11:49:16 TORMINT sshd\[32413\]: Failed password for root from 104.248.229.8 port 50004 ssh2 Aug 3 11:53:43 TORMINT sshd\[32571\]: Invalid user clue from 104.248.229.8 Aug 3 11:53:43 TORMINT sshd\[32571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 ...	2019-08-04 00:11:54
104.248.229.8	attackspam	Aug 1 14:27:04 srv1 sshd[32597]: Invalid user frida from 104.248.229.8 Aug 1 14:27:04 srv1 sshd[32597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 1 14:27:06 srv1 sshd[32597]: Failed password for invalid user frida from 104.248.229.8 port 43890 ssh2 Aug 1 14:27:06 srv1 sshd[32597]: Received disconnect from 104.248.229.8: 11: Bye Bye [preauth] Aug 1 14:36:52 srv1 sshd[1184]: Invalid user joseph from 104.248.229.8 Aug 1 14:36:52 srv1 sshd[1184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 1 14:36:54 srv1 sshd[1184]: Failed password for invalid user joseph from 104.248.229.8 port 55354 ssh2 Aug 1 14:36:54 srv1 sshd[1184]: Received disconnect from 104.248.229.8: 11: Bye Bye [preauth] Aug 1 14:41:01 srv1 sshd[1637]: Invalid user akbar from 104.248.229.8 Aug 1 14:41:01 srv1 sshd[1637]: pam_unix(sshd:auth): authentication failure; logname= ui........ -------------------------------	2019-08-02 22:36:39
104.248.229.8	attack	Aug 2 03:10:41 vps200512 sshd\[5540\]: Invalid user cosmo from 104.248.229.8 Aug 2 03:10:41 vps200512 sshd\[5540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 2 03:10:44 vps200512 sshd\[5540\]: Failed password for invalid user cosmo from 104.248.229.8 port 53474 ssh2 Aug 2 03:14:56 vps200512 sshd\[5605\]: Invalid user testuser5 from 104.248.229.8 Aug 2 03:14:56 vps200512 sshd\[5605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8	2019-08-02 15:20:32
104.248.229.8	attack	Aug 1 14:27:04 srv1 sshd[32597]: Invalid user frida from 104.248.229.8 Aug 1 14:27:04 srv1 sshd[32597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 1 14:27:06 srv1 sshd[32597]: Failed password for invalid user frida from 104.248.229.8 port 43890 ssh2 Aug 1 14:27:06 srv1 sshd[32597]: Received disconnect from 104.248.229.8: 11: Bye Bye [preauth] Aug 1 14:36:52 srv1 sshd[1184]: Invalid user joseph from 104.248.229.8 Aug 1 14:36:52 srv1 sshd[1184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 1 14:36:54 srv1 sshd[1184]: Failed password for invalid user joseph from 104.248.229.8 port 55354 ssh2 Aug 1 14:36:54 srv1 sshd[1184]: Received disconnect from 104.248.229.8: 11: Bye Bye [preauth] Aug 1 14:41:01 srv1 sshd[1637]: Invalid user akbar from 104.248.229.8 Aug 1 14:41:01 srv1 sshd[1637]: pam_unix(sshd:auth): authentication failure; logname= ui........ -------------------------------	2019-08-02 07:27:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.229.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50540
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.229.53.			IN	A

;; AUTHORITY SECTION:
.			403	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 14:56:57 CST 2022
;; MSG SIZE  rcvd: 107

Host info

53.229.248.104.in-addr.arpa domain name pointer lessor.7880002222.fum.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.229.248.104.in-addr.arpa	name = lessor.7880002222.fum.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.214.87.162	attackspam	85.214.87.162 - - [02/Aug/2020:05:56:20 +0200] "POST /wp-login.php HTTP/1.1" 200 9648 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 85.214.87.162 - - [02/Aug/2020:05:56:22 +0200] "POST /wp-login.php HTTP/1.1" 200 9648 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 85.214.87.162 - - [02/Aug/2020:05:56:23 +0200] "POST /wp-login.php HTTP/1.1" 200 9655 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 85.214.87.162 - - [02/Aug/2020:05:56:24 +0200] "POST /wp-login.php HTTP/1.1" 200 9661 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 85.214.87.162 - - [02/Aug/2020:05:56:25 +0200] "POST /wp-login.php HTTP/1.1" 200 9659 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-02 12:02:14
142.93.35.169	attackbots	142.93.35.169 - - [02/Aug/2020:05:26:52 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.35.169 - - [02/Aug/2020:05:56:03 +0200] "POST /xmlrpc.php HTTP/1.1" 403 17841 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-02 12:12:49
103.14.33.229	attack	Aug 2 04:11:20 onepixel sshd[3316873]: Failed password for root from 103.14.33.229 port 34220 ssh2 Aug 2 04:13:30 onepixel sshd[3318244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.14.33.229 user=root Aug 2 04:13:32 onepixel sshd[3318244]: Failed password for root from 103.14.33.229 port 35208 ssh2 Aug 2 04:15:43 onepixel sshd[3319629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.14.33.229 user=root Aug 2 04:15:45 onepixel sshd[3319629]: Failed password for root from 103.14.33.229 port 36186 ssh2	2020-08-02 12:16:51
122.117.99.54	attack	Aug 2 05:56:15 debian-2gb-nbg1-2 kernel: \[18599052.752605\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=122.117.99.54 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=13010 PROTO=TCP SPT=14821 DPT=23 WINDOW=21893 RES=0x00 SYN URGP=0	2020-08-02 12:07:31
111.229.246.61	attackbots	$f2bV_matches	2020-08-02 12:30:41
139.59.169.103	attack	Aug 2 05:55:58 minden010 sshd[9799]: Failed password for root from 139.59.169.103 port 57130 ssh2 Aug 2 05:58:48 minden010 sshd[10733]: Failed password for root from 139.59.169.103 port 50092 ssh2 ...	2020-08-02 12:28:48
121.241.244.92	attack	detected by Fail2Ban	2020-08-02 12:27:10
120.236.189.206	attackspam	Unauthorized connection attempt detected from IP address 120.236.189.206 to port 1433	2020-08-02 12:39:35
92.241.214.47	attackproxy	Impersonate of person told me they need help ask me to go to California and told me I should leave my town and I said I was going to report text and then all the subjects text had been erased.	2020-08-02 12:24:14
212.129.152.148	attack	Aug 2 05:33:23 ns382633 sshd\[9091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.152.148 user=root Aug 2 05:33:25 ns382633 sshd\[9091\]: Failed password for root from 212.129.152.148 port 39634 ssh2 Aug 2 05:50:23 ns382633 sshd\[12535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.152.148 user=root Aug 2 05:50:25 ns382633 sshd\[12535\]: Failed password for root from 212.129.152.148 port 33826 ssh2 Aug 2 05:56:07 ns382633 sshd\[13927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.152.148 user=root	2020-08-02 12:10:21
212.70.149.35	attack	2020-08-02 07:29:43 auth_plain authenticator failed for (User) [212.70.149.35]: 535 Incorrect authentication data (set_id=pbx1@lavrinenko.info) 2020-08-02 07:29:58 auth_plain authenticator failed for (User) [212.70.149.35]: 535 Incorrect authentication data (set_id=chemistry@lavrinenko.info) ...	2020-08-02 12:38:05
198.38.84.254	attackspambots	Automatic report - XMLRPC Attack	2020-08-02 12:12:17
2.64.184.177	attackspambots		2020-08-02 12:32:34
184.105.139.113	attackspam	08/01/2020-23:55:44.103503 184.105.139.113 Protocol: 17 GPL RPC xdmcp info query	2020-08-02 12:24:36
45.40.201.5	attackbots	(sshd) Failed SSH login from 45.40.201.5 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 2 06:41:39 srv sshd[21596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.201.5 user=root Aug 2 06:41:41 srv sshd[21596]: Failed password for root from 45.40.201.5 port 47020 ssh2 Aug 2 06:49:42 srv sshd[21895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.201.5 user=root Aug 2 06:49:44 srv sshd[21895]: Failed password for root from 45.40.201.5 port 39344 ssh2 Aug 2 06:56:17 srv sshd[22139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.201.5 user=root	2020-08-02 12:03:15

Recently Reported IPs

104.244.73.85	104.248.229.24	104.248.230.165	104.248.227.238
104.248.236.25	104.248.233.109	104.248.232.133	104.248.236.113
104.248.230.201	104.248.86.48	104.252.179.13	104.252.179.145
104.248.86.214	104.248.255.195	104.252.179.187	104.252.179.133
104.252.179.199	104.252.179.205	104.252.179.91	104.252.179.7