104.248.242.138

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.242.175	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-04-26 17:53:31
104.248.242.175	attack	104.248.242.175 - - [19/Apr/2020:05:52:01 +0200] "POST /wp-login.php HTTP/1.1" 200 3405 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.242.175 - - [19/Apr/2020:05:52:03 +0200] "POST /wp-login.php HTTP/1.1" 200 3383 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-04-19 16:20:55
104.248.242.175	attackbotsspam	104.248.242.175 - - [07/Apr/2020:08:16:07 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.242.175 - - [07/Apr/2020:08:16:09 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.242.175 - - [07/Apr/2020:08:16:10 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-07 14:38:18
104.248.242.175	attack	Apr 2 18:23:48 wordpress wordpress(www.ruhnke.cloud)[96381]: Blocked authentication attempt for admin from ::ffff:104.248.242.175	2020-04-03 02:10:41
104.248.242.125	attack	2019-09-23T05:53:55.757147lon01.zurich-datacenter.net sshd\[9439\]: Invalid user arma2dm from 104.248.242.125 port 59644 2019-09-23T05:53:55.763996lon01.zurich-datacenter.net sshd\[9439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 2019-09-23T05:53:57.312523lon01.zurich-datacenter.net sshd\[9439\]: Failed password for invalid user arma2dm from 104.248.242.125 port 59644 ssh2 2019-09-23T05:58:21.658836lon01.zurich-datacenter.net sshd\[9567\]: Invalid user debian from 104.248.242.125 port 44732 2019-09-23T05:58:21.663684lon01.zurich-datacenter.net sshd\[9567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 ...	2019-09-23 12:27:55
104.248.242.125	attackspam	Invalid user wk from 104.248.242.125 port 45748	2019-09-20 17:11:02
104.248.242.125	attackbotsspam	$f2bV_matches	2019-09-16 08:44:12
104.248.242.125	attackspam	Sep 15 09:55:34 bouncer sshd\[3771\]: Invalid user yv from 104.248.242.125 port 51650 Sep 15 09:55:34 bouncer sshd\[3771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 Sep 15 09:55:36 bouncer sshd\[3771\]: Failed password for invalid user yv from 104.248.242.125 port 51650 ssh2 ...	2019-09-15 20:21:46
104.248.242.125	attack	2019-09-10T05:42:24.064037abusebot-4.cloudsearch.cf sshd\[9329\]: Invalid user guest from 104.248.242.125 port 46608	2019-09-10 14:03:05
104.248.242.125	attackbotsspam	Sep 8 22:04:21 markkoudstaal sshd[2572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 Sep 8 22:04:23 markkoudstaal sshd[2572]: Failed password for invalid user test from 104.248.242.125 port 38028 ssh2 Sep 8 22:08:43 markkoudstaal sshd[2950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125	2019-09-09 04:10:18
104.248.242.125	attackspambots	Aug 3 17:20:56 marvibiene sshd[27227]: Invalid user admin from 104.248.242.125 port 44804 Aug 3 17:20:56 marvibiene sshd[27227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 Aug 3 17:20:56 marvibiene sshd[27227]: Invalid user admin from 104.248.242.125 port 44804 Aug 3 17:20:58 marvibiene sshd[27227]: Failed password for invalid user admin from 104.248.242.125 port 44804 ssh2 ...	2019-08-04 08:47:39
104.248.242.125	attackspam	Apr 21 04:18:53 ubuntu sshd[12827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 Apr 21 04:18:55 ubuntu sshd[12827]: Failed password for invalid user ai from 104.248.242.125 port 43198 ssh2 Apr 21 04:21:18 ubuntu sshd[13181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 Apr 21 04:21:19 ubuntu sshd[13181]: Failed password for invalid user pavel from 104.248.242.125 port 39790 ssh2	2019-07-31 18:08:24
104.248.242.125	attack	Jul 21 07:13:22 localhost sshd\[28348\]: Invalid user op from 104.248.242.125 port 43188 Jul 21 07:13:22 localhost sshd\[28348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.242.125 ...	2019-07-21 14:30:34
104.248.242.11	attack	joshuajohannes.de 104.248.242.11 \[04/Jul/2019:16:52:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5606 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" joshuajohannes.de 104.248.242.11 \[04/Jul/2019:16:52:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5572 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-05 03:27:35
104.248.242.125	attackbots	Invalid user fleurs from 104.248.242.125 port 46798	2019-06-28 21:23:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.242.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.242.138.		IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031100 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 11 19:46:22 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 138.242.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.242.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.48.138.242	attackspambots	Aug 26 02:11:04 george sshd[19349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.138.242 Aug 26 02:11:06 george sshd[19349]: Failed password for invalid user matilda from 181.48.138.242 port 59310 ssh2 Aug 26 02:15:15 george sshd[19427]: Invalid user ifp from 181.48.138.242 port 38734 Aug 26 02:15:15 george sshd[19427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.138.242 Aug 26 02:15:18 george sshd[19427]: Failed password for invalid user ifp from 181.48.138.242 port 38734 ssh2 ...	2020-08-26 15:00:51
122.55.250.242	attackbotsspam	Aug 26 04:42:29 shivevps sshd[27231]: Bad protocol version identification '\024' from 122.55.250.242 port 56079 Aug 26 04:44:16 shivevps sshd[30859]: Bad protocol version identification '\024' from 122.55.250.242 port 57575 Aug 26 04:52:56 shivevps sshd[4174]: Bad protocol version identification '\024' from 122.55.250.242 port 39515 ...	2020-08-26 14:33:52
111.204.204.72	attackbots	Invalid user noc from 111.204.204.72 port 35769	2020-08-26 14:22:24
23.129.64.202	attackspam	Trolling for resource vulnerabilities	2020-08-26 14:45:00
125.165.105.145	attackspam	Aug 26 05:43:53 vps sshd[2993]: Failed password for root from 125.165.105.145 port 2364 ssh2 Aug 26 05:53:47 vps sshd[3480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.165.105.145 Aug 26 05:53:50 vps sshd[3480]: Failed password for invalid user godwin from 125.165.105.145 port 16558 ssh2 ...	2020-08-26 14:26:59
5.188.84.119	attack	0,31-01/02 [bc01/m16] PostRequest-Spammer scoring: Lusaka01	2020-08-26 14:48:36
74.116.59.8	attackbots	Aug 26 04:38:14 shivevps sshd[20330]: Bad protocol version identification '\024' from 74.116.59.8 port 36738 Aug 26 04:52:52 shivevps sshd[3812]: Bad protocol version identification '\024' from 74.116.59.8 port 41343 Aug 26 04:52:54 shivevps sshd[3927]: Bad protocol version identification '\024' from 74.116.59.8 port 41346 ...	2020-08-26 14:46:18
88.99.77.50	attackbots	Aug 26 04:52:52 shivevps sshd[3829]: Bad protocol version identification '\024' from 88.99.77.50 port 35809 Aug 26 04:52:55 shivevps sshd[4051]: Bad protocol version identification '\024' from 88.99.77.50 port 43258 Aug 26 04:52:57 shivevps sshd[4281]: Bad protocol version identification '\024' from 88.99.77.50 port 44916 ...	2020-08-26 14:28:36
202.5.48.135	attack	Aug 26 04:40:40 shivevps sshd[24405]: Bad protocol version identification '\024' from 202.5.48.135 port 33287 Aug 26 04:43:48 shivevps sshd[29936]: Bad protocol version identification '\024' from 202.5.48.135 port 38531 Aug 26 04:43:49 shivevps sshd[29969]: Bad protocol version identification '\024' from 202.5.48.135 port 38585 Aug 26 04:43:53 shivevps sshd[30119]: Bad protocol version identification '\024' from 202.5.48.135 port 38752 ...	2020-08-26 14:58:00
222.186.30.112	attack	Aug 26 06:57:39 localhost sshd[45860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root Aug 26 06:57:41 localhost sshd[45860]: Failed password for root from 222.186.30.112 port 64006 ssh2 Aug 26 06:57:44 localhost sshd[45860]: Failed password for root from 222.186.30.112 port 64006 ssh2 Aug 26 06:57:39 localhost sshd[45860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root Aug 26 06:57:41 localhost sshd[45860]: Failed password for root from 222.186.30.112 port 64006 ssh2 Aug 26 06:57:44 localhost sshd[45860]: Failed password for root from 222.186.30.112 port 64006 ssh2 Aug 26 06:57:39 localhost sshd[45860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root Aug 26 06:57:41 localhost sshd[45860]: Failed password for root from 222.186.30.112 port 64006 ssh2 Aug 26 06:57:44 localhost sshd[45860]: Fa ...	2020-08-26 15:00:18
51.15.83.78	attackspam	Aug 26 04:52:52 shivevps sshd[3818]: Bad protocol version identification '\024' from 51.15.83.78 port 49942 Aug 26 04:52:53 shivevps sshd[3919]: Bad protocol version identification '\024' from 51.15.83.78 port 50330 Aug 26 04:52:54 shivevps sshd[4031]: Bad protocol version identification '\024' from 51.15.83.78 port 50678 ...	2020-08-26 14:39:00
200.152.78.48	attackbots	Aug 26 04:41:22 shivevps sshd[25597]: Bad protocol version identification '\024' from 200.152.78.48 port 46120 Aug 26 04:43:57 shivevps sshd[30319]: Bad protocol version identification '\024' from 200.152.78.48 port 51877 Aug 26 04:44:20 shivevps sshd[31081]: Bad protocol version identification '\024' from 200.152.78.48 port 52854 ...	2020-08-26 14:52:05
195.154.46.252	attackspam	Aug 26 04:42:23 shivevps sshd[26797]: Bad protocol version identification '\024' from 195.154.46.252 port 38440 Aug 26 04:43:32 shivevps sshd[29313]: Bad protocol version identification '\024' from 195.154.46.252 port 56473 Aug 26 04:44:01 shivevps sshd[30493]: Bad protocol version identification '\024' from 195.154.46.252 port 37974 Aug 26 04:44:46 shivevps sshd[31792]: Bad protocol version identification '\024' from 195.154.46.252 port 36648 ...	2020-08-26 15:02:24
51.15.80.244	attack	Aug 26 04:52:52 shivevps sshd[3806]: Bad protocol version identification '\024' from 51.15.80.244 port 37402 Aug 26 04:52:53 shivevps sshd[3855]: Bad protocol version identification '\024' from 51.15.80.244 port 37778 Aug 26 04:52:54 shivevps sshd[4013]: Bad protocol version identification '\024' from 51.15.80.244 port 38446 ...	2020-08-26 14:40:10
37.59.87.204	attack	Aug 26 04:52:52 shivevps sshd[3773]: Bad protocol version identification '\024' from 37.59.87.204 port 42948 Aug 26 04:52:53 shivevps sshd[3870]: Bad protocol version identification '\024' from 37.59.87.204 port 42988 Aug 26 04:52:57 shivevps sshd[4319]: Bad protocol version identification '\024' from 37.59.87.204 port 43122 ...	2020-08-26 14:29:22

Recently Reported IPs

104.248.241.86	104.248.242.34	104.248.242.89	104.248.244.230
104.248.245.157	198.59.71.172	104.248.245.158	215.97.221.169
104.248.245.245	104.248.246.106	104.248.246.5	104.248.248.35
104.248.249.136	104.248.249.89	104.248.25.207	104.248.28.19
104.248.28.7	13.121.229.171	104.248.3.206	104.248.30.115