104.248.239.64

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.239.9	attackspam	invalid login attempt (test)	2020-06-11 07:28:50
104.248.239.206	attack	Hacking	2020-04-04 15:45:10
104.248.239.22	attackspam	2019-08-27T12:19:21.422240abusebot-6.cloudsearch.cf sshd\[27048\]: Invalid user cx from 104.248.239.22 port 59440	2019-08-27 20:49:39
104.248.239.22	attackspam	2019-08-24T22:11:00.423902stark.klein-stark.info sshd\[17365\]: Invalid user tang from 104.248.239.22 port 55650 2019-08-24T22:11:00.427965stark.klein-stark.info sshd\[17365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 2019-08-24T22:11:02.379052stark.klein-stark.info sshd\[17365\]: Failed password for invalid user tang from 104.248.239.22 port 55650 ssh2 ...	2019-08-25 05:03:53
104.248.239.22	attackbotsspam	Aug 22 05:53:29 plusreed sshd[22907]: Invalid user saturday from 104.248.239.22 ...	2019-08-22 19:11:22
104.248.239.22	attackbotsspam	2019-08-17T02:51:13.134511stark.klein-stark.info sshd\[27119\]: Invalid user yara from 104.248.239.22 port 60930 2019-08-17T02:51:13.141463stark.klein-stark.info sshd\[27119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 2019-08-17T02:51:14.838687stark.klein-stark.info sshd\[27119\]: Failed password for invalid user yara from 104.248.239.22 port 60930 ssh2 ...	2019-08-17 10:06:21
104.248.239.22	attackspam	Aug 14 22:13:23 aat-srv002 sshd[1153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Aug 14 22:13:24 aat-srv002 sshd[1153]: Failed password for invalid user matt from 104.248.239.22 port 43220 ssh2 Aug 14 22:17:40 aat-srv002 sshd[1271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Aug 14 22:17:41 aat-srv002 sshd[1271]: Failed password for invalid user ctrls from 104.248.239.22 port 35004 ssh2 ...	2019-08-15 11:26:55
104.248.239.22	attackspambots	Aug 8 00:42:17 spiceship sshd\[23983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 user=root ...	2019-08-08 13:58:58
104.248.239.188	attackspambots	WordPress wp-login brute force :: 104.248.239.188 0.128 BYPASS [02/Aug/2019:02:12:36 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 4039 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-02 01:04:35
104.248.239.22	attackspambots	Invalid user admin from 104.248.239.22 port 53176	2019-08-01 20:42:53
104.248.239.22	attackspam	Apr 19 10:08:36 ubuntu sshd[16564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Apr 19 10:08:39 ubuntu sshd[16564]: Failed password for invalid user cloud from 104.248.239.22 port 33768 ssh2 Apr 19 10:10:55 ubuntu sshd[17144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Apr 19 10:10:57 ubuntu sshd[17144]: Failed password for invalid user zt from 104.248.239.22 port 59436 ssh2	2019-07-31 18:23:03
104.248.239.22	attack	Invalid user hua from 104.248.239.22 port 39880	2019-07-28 08:26:11
104.248.239.22	attack	Jul 24 11:59:10 eventyay sshd[28714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Jul 24 11:59:12 eventyay sshd[28714]: Failed password for invalid user dev2 from 104.248.239.22 port 60944 ssh2 Jul 24 12:03:41 eventyay sshd[30007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 ...	2019-07-24 18:16:48
104.248.239.22	attack	Jul 23 23:40:19 eventyay sshd[4121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Jul 23 23:40:21 eventyay sshd[4121]: Failed password for invalid user luis from 104.248.239.22 port 34378 ssh2 Jul 23 23:44:42 eventyay sshd[5436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 ...	2019-07-24 05:51:47
104.248.239.22	attackbots	Jun 30 15:59:08 ns37 sshd[5388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22 Jun 30 15:59:08 ns37 sshd[5388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.239.22	2019-06-30 22:50:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.239.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45322
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.239.64.			IN	A

;; AUTHORITY SECTION:
.			374	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 22:08:46 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 64.239.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 64.239.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.124.18.3	attackbots	Unauthorized connection attempt from IP address 179.124.18.3 on port 587	2020-09-19 02:11:11
177.87.221.253	attackbotsspam	Sep 18 06:52:01 mail.srvfarm.net postfix/smtps/smtpd[591813]: warning: unknown[177.87.221.253]: SASL PLAIN authentication failed: Sep 18 06:52:01 mail.srvfarm.net postfix/smtps/smtpd[591813]: lost connection after AUTH from unknown[177.87.221.253] Sep 18 06:55:30 mail.srvfarm.net postfix/smtpd[593531]: warning: unknown[177.87.221.253]: SASL PLAIN authentication failed: Sep 18 06:55:31 mail.srvfarm.net postfix/smtpd[593531]: lost connection after AUTH from unknown[177.87.221.253] Sep 18 07:00:21 mail.srvfarm.net postfix/smtps/smtpd[591277]: warning: unknown[177.87.221.253]: SASL PLAIN authentication failed:	2020-09-19 02:02:18
172.82.239.21	attackspam	Sep 18 19:22:26 mail.srvfarm.net postfix/smtpd[882425]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Sep 18 19:24:10 mail.srvfarm.net postfix/smtpd[869294]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Sep 18 19:24:48 mail.srvfarm.net postfix/smtpd[869297]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Sep 18 19:28:17 mail.srvfarm.net postfix/smtpd[882424]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21] Sep 18 19:30:09 mail.srvfarm.net postfix/smtpd[869290]: lost connection after STARTTLS from r21.news.eu.rvca.com[172.82.239.21]	2020-09-19 02:12:38
118.24.163.126	attackspambots	Sep 17 19:47:34 web03.srvfarm.net pure-ftpd: (?@118.24.163.126) [WARNING] Authentication failed for user [www-data] Sep 17 19:47:40 web03.srvfarm.net pure-ftpd: (?@118.24.163.126) [WARNING] Authentication failed for user [www-data] Sep 17 19:47:46 web03.srvfarm.net pure-ftpd: (?@118.24.163.126) [WARNING] Authentication failed for user [www-data] Sep 17 19:47:56 web03.srvfarm.net pure-ftpd: (?@118.24.163.126) [WARNING] Authentication failed for user [www-data] Sep 17 19:48:02 web03.srvfarm.net pure-ftpd: (?@118.24.163.126) [WARNING] Authentication failed for user [www-data]	2020-09-19 01:52:28
62.173.139.193	attackspam	[2020-09-18 03:59:10] NOTICE[1239][C-00004dda] chan_sip.c: Call from '' (62.173.139.193:58290) to extension '124914234051349' rejected because extension not found in context 'public'. [2020-09-18 03:59:10] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-18T03:59:10.848-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="124914234051349",SessionID="0x7f4d4843fec8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.139.193/58290",ACLName="no_extension_match" [2020-09-18 04:00:11] NOTICE[1239][C-00004ddc] chan_sip.c: Call from '' (62.173.139.193:54079) to extension '125014234051349' rejected because extension not found in context 'public'. [2020-09-18 04:00:11] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-18T04:00:11.360-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="125014234051349",SessionID="0x7f4d48488fa8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-09-19 02:22:00
45.186.145.50	attack	Sep 17 23:58:13 mail sshd\[41211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.186.145.50 user=root ...	2020-09-19 02:20:39
103.19.201.125	attackspam	Sep 17 18:32:50 mail.srvfarm.net postfix/smtpd[156674]: warning: unknown[103.19.201.125]: SASL PLAIN authentication failed: Sep 17 18:32:50 mail.srvfarm.net postfix/smtpd[156674]: lost connection after AUTH from unknown[103.19.201.125] Sep 17 18:36:25 mail.srvfarm.net postfix/smtpd[161687]: warning: unknown[103.19.201.125]: SASL PLAIN authentication failed: Sep 17 18:36:25 mail.srvfarm.net postfix/smtpd[161687]: lost connection after AUTH from unknown[103.19.201.125] Sep 17 18:39:51 mail.srvfarm.net postfix/smtpd[157369]: warning: unknown[103.19.201.125]: SASL PLAIN authentication failed:	2020-09-19 02:05:15
186.216.154.248	attack	Sep 17 18:35:49 mail.srvfarm.net postfix/smtpd[143208]: warning: unknown[186.216.154.248]: SASL PLAIN authentication failed: Sep 17 18:35:50 mail.srvfarm.net postfix/smtpd[143208]: lost connection after AUTH from unknown[186.216.154.248] Sep 17 18:36:09 mail.srvfarm.net postfix/smtps/smtpd[157126]: warning: unknown[186.216.154.248]: SASL PLAIN authentication failed: Sep 17 18:36:10 mail.srvfarm.net postfix/smtps/smtpd[157126]: lost connection after AUTH from unknown[186.216.154.248] Sep 17 18:36:42 mail.srvfarm.net postfix/smtps/smtpd[157125]: warning: unknown[186.216.154.248]: SASL PLAIN authentication failed:	2020-09-19 02:00:03
168.195.47.100	attackspam	Sep 18 05:09:48 mail.srvfarm.net postfix/smtpd[548386]: warning: unknown[168.195.47.100]: SASL PLAIN authentication failed: Sep 18 05:09:49 mail.srvfarm.net postfix/smtpd[548386]: lost connection after AUTH from unknown[168.195.47.100] Sep 18 05:10:53 mail.srvfarm.net postfix/smtpd[548114]: warning: unknown[168.195.47.100]: SASL PLAIN authentication failed: Sep 18 05:10:54 mail.srvfarm.net postfix/smtpd[548114]: lost connection after AUTH from unknown[168.195.47.100] Sep 18 05:19:11 mail.srvfarm.net postfix/smtps/smtpd[561625]: warning: unknown[168.195.47.100]: SASL PLAIN authentication failed:	2020-09-19 01:51:22
195.8.192.212	attackspam	2020-09-18 00:33:29 server sshd[48341]: Failed password for invalid user wangqi from 195.8.192.212 port 57816 ssh2	2020-09-19 01:47:02
103.207.6.16	attackbotsspam	Sep 17 23:50:46 mail.srvfarm.net postfix/smtpd[274691]: warning: unknown[103.207.6.16]: SASL PLAIN authentication failed: Sep 17 23:50:46 mail.srvfarm.net postfix/smtpd[274691]: lost connection after AUTH from unknown[103.207.6.16] Sep 17 23:55:28 mail.srvfarm.net postfix/smtps/smtpd[277889]: warning: unknown[103.207.6.16]: SASL PLAIN authentication failed: Sep 17 23:55:28 mail.srvfarm.net postfix/smtps/smtpd[277889]: lost connection after AUTH from unknown[103.207.6.16] Sep 17 23:59:46 mail.srvfarm.net postfix/smtps/smtpd[275780]: warning: unknown[103.207.6.16]: SASL PLAIN authentication failed:	2020-09-19 02:13:56
191.53.105.99	attackbotsspam	Attempted Brute Force (dovecot)	2020-09-19 01:58:08
41.139.0.64	attack	Sep 17 18:06:09 mail.srvfarm.net postfix/smtps/smtpd[137568]: warning: unknown[41.139.0.64]: SASL PLAIN authentication failed: Sep 17 18:06:09 mail.srvfarm.net postfix/smtps/smtpd[137568]: lost connection after AUTH from unknown[41.139.0.64] Sep 17 18:10:27 mail.srvfarm.net postfix/smtps/smtpd[155678]: warning: unknown[41.139.0.64]: SASL PLAIN authentication failed: Sep 17 18:10:27 mail.srvfarm.net postfix/smtps/smtpd[155678]: lost connection after AUTH from unknown[41.139.0.64] Sep 17 18:14:06 mail.srvfarm.net postfix/smtpd[143203]: warning: unknown[41.139.0.64]: SASL PLAIN authentication failed:	2020-09-19 02:18:37
93.99.134.28	attackbots	failed_logins	2020-09-19 01:54:05
177.85.142.179	attackbots	Sep 17 18:19:24 mail.srvfarm.net postfix/smtpd[143201]: warning: unknown[177.85.142.179]: SASL PLAIN authentication failed: Sep 17 18:19:25 mail.srvfarm.net postfix/smtpd[143201]: lost connection after AUTH from unknown[177.85.142.179] Sep 17 18:25:13 mail.srvfarm.net postfix/smtps/smtpd[159171]: lost connection after CONNECT from unknown[177.85.142.179] Sep 17 18:29:05 mail.srvfarm.net postfix/smtpd[157369]: warning: unknown[177.85.142.179]: SASL PLAIN authentication failed: Sep 17 18:29:06 mail.srvfarm.net postfix/smtpd[157369]: lost connection after AUTH from unknown[177.85.142.179]	2020-09-19 02:02:45

Recently Reported IPs

104.248.239.149	104.248.239.84	104.248.241.250	104.248.241.92
104.248.242.91	18.228.19.244	104.25.196.7	104.25.197.10
104.25.197.38	104.25.197.49	9.204.89.181	104.25.197.7
104.25.198.38	104.25.198.49	104.25.199.43	104.25.20.112
239.89.48.243	104.25.200.4	104.25.200.43	84.239.198.22