104.248.42.232

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.42.94	attack	Dec 11 07:28:44 herz-der-gamer sshd[26689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 user=vmail Dec 11 07:28:46 herz-der-gamer sshd[26689]: Failed password for vmail from 104.248.42.94 port 56192 ssh2 ...	2019-12-11 16:53:11
104.248.42.94	attackspambots	Dec 9 05:56:06 v22018076622670303 sshd\[22485\]: Invalid user mobile from 104.248.42.94 port 52208 Dec 9 05:56:06 v22018076622670303 sshd\[22485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 Dec 9 05:56:09 v22018076622670303 sshd\[22485\]: Failed password for invalid user mobile from 104.248.42.94 port 52208 ssh2 ...	2019-12-09 13:56:28
104.248.42.94	attackspam	2019-11-22T22:55:50.489874abusebot-4.cloudsearch.cf sshd\[5583\]: Invalid user admin from 104.248.42.94 port 39292	2019-11-23 07:32:31
104.248.42.94	attack	Nov 17 23:21:47 icinga sshd[4842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 Nov 17 23:21:49 icinga sshd[4842]: Failed password for invalid user xbmc from 104.248.42.94 port 49854 ssh2 Nov 17 23:42:58 icinga sshd[24675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 ...	2019-11-18 07:49:25
104.248.42.231	attackbotsspam	Wed 17 01:29:19 60001/tcp	2019-07-17 20:31:05
104.248.42.231	attackspambots	NAME : DO-13 CIDR : 104.248.0.0/16 SYN Flood DDoS Attack USA - New York - block certain countries :) IP: 104.248.42.231 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-12 01:08:45
104.248.42.231	attackspambots	5500/tcp 5500/tcp [2019-07-08/10]2pkt	2019-07-10 21:10:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.42.232
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.42.232.			IN	A

;; AUTHORITY SECTION:
.			90	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031701 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 18 07:38:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 232.42.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 232.42.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.136.89	attackspambots	Mar 18 06:37:31 server sshd\[18266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.136.89 user=root Mar 18 06:37:33 server sshd\[18266\]: Failed password for root from 140.143.136.89 port 35642 ssh2 Mar 18 06:53:27 server sshd\[21859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.136.89 user=root Mar 18 06:53:29 server sshd\[21859\]: Failed password for root from 140.143.136.89 port 56448 ssh2 Mar 18 07:03:53 server sshd\[24264\]: Invalid user seongmin from 140.143.136.89 Mar 18 07:03:53 server sshd\[24264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.136.89 ...	2020-03-18 13:05:27
93.70.72.32	attackbotsspam	firewall-block, port(s): 23/tcp	2020-03-18 13:28:47
159.89.3.172	attack	SSH auth scanning - multiple failed logins	2020-03-18 13:10:21
61.253.138.10	attackspam	Unauthorised access (Mar 18) SRC=61.253.138.10 LEN=40 TTL=52 ID=53557 TCP DPT=8080 WINDOW=9102 SYN Unauthorised access (Mar 18) SRC=61.253.138.10 LEN=40 TTL=52 ID=29387 TCP DPT=8080 WINDOW=9102 SYN Unauthorised access (Mar 16) SRC=61.253.138.10 LEN=40 PREC=0x20 TTL=52 ID=41603 TCP DPT=8080 WINDOW=9102 SYN	2020-03-18 13:58:31
112.216.30.98	attack	Mar 18 06:06:17 ns41 sshd[7755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.30.98 Mar 18 06:06:19 ns41 sshd[7755]: Failed password for invalid user renxiaoguang from 112.216.30.98 port 33854 ssh2 Mar 18 06:11:10 ns41 sshd[8024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.30.98	2020-03-18 13:21:19
195.231.3.188	attackspam	Mar 18 04:31:46 mail postfix/smtpd\[23401\]: warning: unknown\[195.231.3.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 18 04:56:17 mail postfix/smtpd\[23996\]: warning: unknown\[195.231.3.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 18 05:42:29 mail postfix/smtpd\[24748\]: warning: unknown\[195.231.3.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 18 06:04:19 mail postfix/smtpd\[25099\]: warning: unknown\[195.231.3.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-03-18 13:26:08
222.186.30.218	attackbots	Mar 18 06:03:04 dcd-gentoo sshd[25132]: User root from 222.186.30.218 not allowed because none of user's groups are listed in AllowGroups Mar 18 06:03:07 dcd-gentoo sshd[25132]: error: PAM: Authentication failure for illegal user root from 222.186.30.218 Mar 18 06:03:04 dcd-gentoo sshd[25132]: User root from 222.186.30.218 not allowed because none of user's groups are listed in AllowGroups Mar 18 06:03:07 dcd-gentoo sshd[25132]: error: PAM: Authentication failure for illegal user root from 222.186.30.218 Mar 18 06:03:04 dcd-gentoo sshd[25132]: User root from 222.186.30.218 not allowed because none of user's groups are listed in AllowGroups Mar 18 06:03:07 dcd-gentoo sshd[25132]: error: PAM: Authentication failure for illegal user root from 222.186.30.218 Mar 18 06:03:07 dcd-gentoo sshd[25132]: Failed keyboard-interactive/pam for invalid user root from 222.186.30.218 port 50223 ssh2 ...	2020-03-18 13:04:54
62.83.173.207	attackspam	DATE:2020-03-18 04:53:20, IP:62.83.173.207, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-03-18 14:05:54
45.125.65.42	attackbotsspam	Mar 18 04:05:53 heicom postfix/smtpd\[12414\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: authentication failure Mar 18 04:22:18 heicom postfix/smtpd\[14114\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: authentication failure Mar 18 04:38:42 heicom postfix/smtpd\[14291\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: authentication failure Mar 18 04:55:08 heicom postfix/smtpd\[14685\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: authentication failure Mar 18 05:11:36 heicom postfix/smtpd\[14759\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: authentication failure ...	2020-03-18 13:22:21
139.99.84.85	attack	Mar 18 03:49:13 124388 sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.84.85 Mar 18 03:49:13 124388 sshd[25452]: Invalid user uftp from 139.99.84.85 port 47526 Mar 18 03:49:15 124388 sshd[25452]: Failed password for invalid user uftp from 139.99.84.85 port 47526 ssh2 Mar 18 03:53:43 124388 sshd[25499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.84.85 user=root Mar 18 03:53:45 124388 sshd[25499]: Failed password for root from 139.99.84.85 port 39240 ssh2	2020-03-18 13:43:02
78.128.113.93	attack	Mar 18 06:26:13 mail postfix/postscreen[24427]: DNSBL rank 6 for [78.128.113.93]:62845 ...	2020-03-18 13:29:25
150.223.13.40	attackbots	Mar 17 19:40:36 tdfoods sshd\[26152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.13.40 user=root Mar 17 19:40:38 tdfoods sshd\[26152\]: Failed password for root from 150.223.13.40 port 60398 ssh2 Mar 17 19:42:34 tdfoods sshd\[26334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.13.40 user=root Mar 17 19:42:36 tdfoods sshd\[26334\]: Failed password for root from 150.223.13.40 port 43991 ssh2 Mar 17 19:44:34 tdfoods sshd\[26495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.13.40 user=root	2020-03-18 13:52:58
84.217.82.227	attackspambots	proto=tcp . spt=55305 . dpt=25 . Found on Blocklist de (99)	2020-03-18 13:29:09
177.7.27.114	attackspambots	20/3/17@23:54:18: FAIL: Alarm-Network address from=177.7.27.114 20/3/17@23:54:19: FAIL: Alarm-Network address from=177.7.27.114 ...	2020-03-18 13:09:55
120.92.133.32	attack	Mar 17 20:48:55 mockhub sshd[31728]: Failed password for root from 120.92.133.32 port 24636 ssh2 ...	2020-03-18 13:47:10

Recently Reported IPs

104.248.42.100	104.248.42.81	104.248.44.148	104.248.45.105
104.248.45.116	104.248.45.135	104.248.55.102	104.248.57.12
104.248.57.194	104.248.61.64	104.248.62.144	104.248.62.37
104.248.63.102	104.248.63.129	104.248.67.68	104.248.7.93
104.248.71.31	104.248.72.75	104.248.77.192	104.248.78.6