104.248.42.27 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.42.94	attack	Dec 11 07:28:44 herz-der-gamer sshd[26689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 user=vmail Dec 11 07:28:46 herz-der-gamer sshd[26689]: Failed password for vmail from 104.248.42.94 port 56192 ssh2 ...	2019-12-11 16:53:11
104.248.42.94	attackspambots	Dec 9 05:56:06 v22018076622670303 sshd\[22485\]: Invalid user mobile from 104.248.42.94 port 52208 Dec 9 05:56:06 v22018076622670303 sshd\[22485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 Dec 9 05:56:09 v22018076622670303 sshd\[22485\]: Failed password for invalid user mobile from 104.248.42.94 port 52208 ssh2 ...	2019-12-09 13:56:28
104.248.42.94	attackspam	2019-11-22T22:55:50.489874abusebot-4.cloudsearch.cf sshd\[5583\]: Invalid user admin from 104.248.42.94 port 39292	2019-11-23 07:32:31
104.248.42.94	attack	Nov 17 23:21:47 icinga sshd[4842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 Nov 17 23:21:49 icinga sshd[4842]: Failed password for invalid user xbmc from 104.248.42.94 port 49854 ssh2 Nov 17 23:42:58 icinga sshd[24675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.42.94 ...	2019-11-18 07:49:25
104.248.42.231	attackbotsspam	Wed 17 01:29:19 60001/tcp	2019-07-17 20:31:05
104.248.42.231	attackspambots	NAME : DO-13 CIDR : 104.248.0.0/16 SYN Flood DDoS Attack USA - New York - block certain countries :) IP: 104.248.42.231 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-12 01:08:45
104.248.42.231	attackspambots	5500/tcp 5500/tcp [2019-07-08/10]2pkt	2019-07-10 21:10:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.42.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1180
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.42.27.			IN	A

;; AUTHORITY SECTION:
.			500	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031801 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 19 09:46:45 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 27.42.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 27.42.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.66.135.152	attackspambots	Automatic report - XMLRPC Attack	2019-10-15 23:49:59
198.108.66.84	attackbots	3389BruteforceFW21	2019-10-16 00:29:57
85.234.12.222	attack	445/tcp 1433/tcp 445/tcp [2019-10-02/15]3pkt	2019-10-16 00:24:23
92.118.160.61	attackspam	ICMP MP Probe, Scan -	2019-10-16 00:19:48
89.208.30.249	attackbots	[portscan] tcp/1433 [MsSQL] *(RWIN=8192)(10151156)	2019-10-16 00:05:43
222.186.175.202	attackbots	Oct 15 17:31:21 meumeu sshd[23811]: Failed password for root from 222.186.175.202 port 36286 ssh2 Oct 15 17:31:41 meumeu sshd[23811]: Failed password for root from 222.186.175.202 port 36286 ssh2 Oct 15 17:31:42 meumeu sshd[23811]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 36286 ssh2 [preauth] ...	2019-10-15 23:51:06
123.122.89.97	attackspam	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=25975)(10151156)	2019-10-16 00:02:33
198.143.155.142	attackbotsspam	[MySQL inject/portscan] tcp/3306 in spfbl.net:'listed' *(RWIN=1024)(10151156)	2019-10-16 00:29:06
221.216.212.35	attack	Oct 15 14:44:56 * sshd[5332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.216.212.35 Oct 15 14:44:58 * sshd[5332]: Failed password for invalid user yishang001 from 221.216.212.35 port 5395 ssh2	2019-10-16 00:13:20
123.247.34.10	attack	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=24866)(10151156)	2019-10-16 00:23:04
46.38.144.146	attackspambots	Oct 15 17:52:02 relay postfix/smtpd\[26394\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 15 17:52:43 relay postfix/smtpd\[14504\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 15 17:53:20 relay postfix/smtpd\[23492\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 15 17:54:01 relay postfix/smtpd\[15152\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 15 17:54:36 relay postfix/smtpd\[26394\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-15 23:56:02
117.3.4.213	attackbotsspam	[portscan] tcp/22 [SSH] in sorbs:'listed [web], [spam]' in spfbl.net:'listed' *(RWIN=8192)(10151156)	2019-10-16 00:23:43
112.45.122.9	attackspambots	Oct 15 12:12:23 web1 postfix/smtpd[14676]: warning: unknown[112.45.122.9]: SASL LOGIN authentication failed: authentication failure ...	2019-10-16 00:19:33
223.99.192.116	attackspambots	[portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=8192)(10151156)	2019-10-16 00:26:19
211.141.200.175	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-16 00:28:15

Recently Reported IPs

89.248.167.119	61.122.15.50	100.22.78.56	2.61.136.243
169.225.68.76	107.77.234.36	104.28.104.29	104.28.104.62
104.28.30.74	194.49.89.65	104.28.30.75	104.28.42.19
104.28.42.20	104.31.66.247	104.31.67.247	233.65.8.68
104.32.173.195	104.32.178.229	104.35.167.171	104.36.148.19