City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.248.45.204 | attackspambots | Invalid user nagios from 104.248.45.204 port 54714 |
2020-10-13 21:27:14 |
| 104.248.45.204 | attack | (sshd) Failed SSH login from 104.248.45.204 (DE/Germany/-): 5 in the last 3600 secs |
2020-10-13 12:54:21 |
| 104.248.45.204 | attackspam | Oct 12 23:05:52 haigwepa sshd[18422]: Failed password for root from 104.248.45.204 port 33614 ssh2 ... |
2020-10-13 05:41:29 |
| 104.248.45.204 | attackbotsspam | s2.hscode.pl - SSH Attack |
2020-10-12 06:58:06 |
| 104.248.45.204 | attack | s2.hscode.pl - SSH Attack |
2020-10-11 23:08:22 |
| 104.248.45.204 | attack | [f2b] sshd bruteforce, retries: 1 |
2020-10-11 15:06:18 |
| 104.248.45.204 | attackspambots | 2020-10-10T20:57:19.098360shield sshd\[22351\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 user=root 2020-10-10T20:57:21.444169shield sshd\[22351\]: Failed password for root from 104.248.45.204 port 35988 ssh2 2020-10-10T21:00:46.182636shield sshd\[22818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 user=root 2020-10-10T21:00:47.939900shield sshd\[22818\]: Failed password for root from 104.248.45.204 port 39988 ssh2 2020-10-10T21:04:18.365505shield sshd\[23277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 user=root |
2020-10-11 08:26:40 |
| 104.248.45.204 | attackbotsspam | Sep 24 20:27:09 nextcloud sshd\[5266\]: Invalid user redhat from 104.248.45.204 Sep 24 20:27:09 nextcloud sshd\[5266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 Sep 24 20:27:11 nextcloud sshd\[5266\]: Failed password for invalid user redhat from 104.248.45.204 port 34546 ssh2 |
2020-09-25 03:44:43 |
| 104.248.45.204 | attack | $f2bV_matches |
2020-09-24 19:30:58 |
| 104.248.45.204 | attack | Invalid user monitoring from 104.248.45.204 port 36954 |
2020-09-15 21:51:45 |
| 104.248.45.204 | attackspambots | $f2bV_matches |
2020-09-15 13:49:01 |
| 104.248.45.204 | attack | Invalid user monitoring from 104.248.45.204 port 36954 |
2020-09-15 06:00:30 |
| 104.248.45.204 | attack | Sep 1 02:48:03 server sshd[27888]: Invalid user zhangshuai from 104.248.45.204 port 56320 Sep 1 02:48:05 server sshd[27888]: Failed password for invalid user zhangshuai from 104.248.45.204 port 56320 ssh2 Sep 1 02:48:03 server sshd[27888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 Sep 1 02:48:03 server sshd[27888]: Invalid user zhangshuai from 104.248.45.204 port 56320 Sep 1 02:48:05 server sshd[27888]: Failed password for invalid user zhangshuai from 104.248.45.204 port 56320 ssh2 ... |
2020-09-01 08:37:50 |
| 104.248.45.204 | attack | SSH Brute Force |
2020-08-28 21:16:55 |
| 104.248.45.204 | attackspambots | web-1 [ssh_2] SSH Attack |
2020-08-20 02:09:36 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.45.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.248.45.47. IN A
;; AUTHORITY SECTION:
. 535 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400
;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:12:22 CST 2022
;; MSG SIZE rcvd: 10647.45.248.104.in-addr.arpa domain name pointer ola-cnc-mongodb-66537033.mongo.ondigitalocean.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
47.45.248.104.in-addr.arpa name = ola-cnc-mongodb-66537033.mongo.ondigitalocean.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.123.68.77 | attack | SSH/22 MH Probe, BF, Hack - |
2020-09-28 19:44:00 |
| 110.77.248.182 | attackbotsspam | Unauthorized IMAP connection attempt |
2020-09-28 19:21:55 |
| 68.183.80.42 | attackspam | Sep 28 11:30:51 game-panel sshd[23559]: Failed password for root from 68.183.80.42 port 37982 ssh2 Sep 28 11:35:14 game-panel sshd[23731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.80.42 Sep 28 11:35:16 game-panel sshd[23731]: Failed password for invalid user alain from 68.183.80.42 port 46774 ssh2 |
2020-09-28 19:39:12 |
| 113.53.238.195 | attackspam | 2020-09-27T21:11:16.451208linuxbox-skyline sshd[194049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.53.238.195 user=root 2020-09-27T21:11:18.202885linuxbox-skyline sshd[194049]: Failed password for root from 113.53.238.195 port 44394 ssh2 ... |
2020-09-28 19:37:53 |
| 193.239.147.179 | attackbots | (smtpauth) Failed SMTP AUTH login from 193.239.147.179 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-28 14:32:10 plain authenticator failed for (qghthdwqcc) [193.239.147.179]: 535 Incorrect authentication data (set_id=support@breadnarin.com) |
2020-09-28 19:21:08 |
| 139.59.150.201 | attackbotsspam | TCP ports : 12654 / 19770 |
2020-09-28 19:32:21 |
| 85.209.0.251 | attackspam | TCP port : 22 |
2020-09-28 19:52:33 |
| 165.227.181.9 | attack | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-09-28 19:21:36 |
| 59.127.152.203 | attack | Invalid user pippo from 59.127.152.203 port 46174 |
2020-09-28 19:22:48 |
| 190.143.137.114 | attackbots | SSH Brute Force |
2020-09-28 19:40:16 |
| 180.76.141.248 | attackbots | SSH bruteforce |
2020-09-28 19:40:53 |
| 148.66.132.190 | attackbotsspam | Sep 28 07:57:34 nextcloud sshd\[8903\]: Invalid user guest from 148.66.132.190 Sep 28 07:57:34 nextcloud sshd\[8903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Sep 28 07:57:36 nextcloud sshd\[8903\]: Failed password for invalid user guest from 148.66.132.190 port 55886 ssh2 |
2020-09-28 19:37:03 |
| 106.13.75.154 | attackbots | Sep 28 07:34:33 Tower sshd[4949]: Connection from 106.13.75.154 port 46886 on 192.168.10.220 port 22 rdomain "" Sep 28 07:34:35 Tower sshd[4949]: Invalid user miguel from 106.13.75.154 port 46886 Sep 28 07:34:35 Tower sshd[4949]: error: Could not get shadow information for NOUSER Sep 28 07:34:35 Tower sshd[4949]: Failed password for invalid user miguel from 106.13.75.154 port 46886 ssh2 Sep 28 07:34:36 Tower sshd[4949]: Received disconnect from 106.13.75.154 port 46886:11: Bye Bye [preauth] Sep 28 07:34:36 Tower sshd[4949]: Disconnected from invalid user miguel 106.13.75.154 port 46886 [preauth] |
2020-09-28 19:41:39 |
| 193.228.91.108 | attackbots | 2020-09-28T11:15:21.687928dmca.cloudsearch.cf sshd[28500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.228.91.108 user=root 2020-09-28T11:15:23.476366dmca.cloudsearch.cf sshd[28500]: Failed password for root from 193.228.91.108 port 40206 ssh2 2020-09-28T11:15:32.440428dmca.cloudsearch.cf sshd[28503]: Invalid user oracle from 193.228.91.108 port 41668 2020-09-28T11:15:32.445478dmca.cloudsearch.cf sshd[28503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.228.91.108 2020-09-28T11:15:32.440428dmca.cloudsearch.cf sshd[28503]: Invalid user oracle from 193.228.91.108 port 41668 2020-09-28T11:15:34.745484dmca.cloudsearch.cf sshd[28503]: Failed password for invalid user oracle from 193.228.91.108 port 41668 ssh2 2020-09-28T11:15:42.485109dmca.cloudsearch.cf sshd[28511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.228.91.108 user=root 2020-09-28T11:15: ... |
2020-09-28 19:18:59 |
| 154.124.250.242 | attack | Invalid user admin from 154.124.250.242 port 45733 |
2020-09-28 19:30:45 |