104.248.45.47 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.45.204	attackspambots	Invalid user nagios from 104.248.45.204 port 54714	2020-10-13 21:27:14
104.248.45.204	attack	(sshd) Failed SSH login from 104.248.45.204 (DE/Germany/-): 5 in the last 3600 secs	2020-10-13 12:54:21
104.248.45.204	attackspam	Oct 12 23:05:52 haigwepa sshd[18422]: Failed password for root from 104.248.45.204 port 33614 ssh2 ...	2020-10-13 05:41:29
104.248.45.204	attackbotsspam	s2.hscode.pl - SSH Attack	2020-10-12 06:58:06
104.248.45.204	attack	s2.hscode.pl - SSH Attack	2020-10-11 23:08:22
104.248.45.204	attack	[f2b] sshd bruteforce, retries: 1	2020-10-11 15:06:18
104.248.45.204	attackspambots	2020-10-10T20:57:19.098360shield sshd\[22351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 user=root 2020-10-10T20:57:21.444169shield sshd\[22351\]: Failed password for root from 104.248.45.204 port 35988 ssh2 2020-10-10T21:00:46.182636shield sshd\[22818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 user=root 2020-10-10T21:00:47.939900shield sshd\[22818\]: Failed password for root from 104.248.45.204 port 39988 ssh2 2020-10-10T21:04:18.365505shield sshd\[23277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 user=root	2020-10-11 08:26:40
104.248.45.204	attackbotsspam	Sep 24 20:27:09 nextcloud sshd\[5266\]: Invalid user redhat from 104.248.45.204 Sep 24 20:27:09 nextcloud sshd\[5266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 Sep 24 20:27:11 nextcloud sshd\[5266\]: Failed password for invalid user redhat from 104.248.45.204 port 34546 ssh2	2020-09-25 03:44:43
104.248.45.204	attack	$f2bV_matches	2020-09-24 19:30:58
104.248.45.204	attack	Invalid user monitoring from 104.248.45.204 port 36954	2020-09-15 21:51:45
104.248.45.204	attackspambots	$f2bV_matches	2020-09-15 13:49:01
104.248.45.204	attack	Invalid user monitoring from 104.248.45.204 port 36954	2020-09-15 06:00:30
104.248.45.204	attack	Sep 1 02:48:03 server sshd[27888]: Invalid user zhangshuai from 104.248.45.204 port 56320 Sep 1 02:48:05 server sshd[27888]: Failed password for invalid user zhangshuai from 104.248.45.204 port 56320 ssh2 Sep 1 02:48:03 server sshd[27888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.45.204 Sep 1 02:48:03 server sshd[27888]: Invalid user zhangshuai from 104.248.45.204 port 56320 Sep 1 02:48:05 server sshd[27888]: Failed password for invalid user zhangshuai from 104.248.45.204 port 56320 ssh2 ...	2020-09-01 08:37:50
104.248.45.204	attack	SSH Brute Force	2020-08-28 21:16:55
104.248.45.204	attackspambots	web-1 [ssh_2] SSH Attack	2020-08-20 02:09:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.45.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.45.47.			IN	A

;; AUTHORITY SECTION:
.			535	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:12:22 CST 2022
;; MSG SIZE  rcvd: 106

Host info

47.45.248.104.in-addr.arpa domain name pointer ola-cnc-mongodb-66537033.mongo.ondigitalocean.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
47.45.248.104.in-addr.arpa	name = ola-cnc-mongodb-66537033.mongo.ondigitalocean.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.186.122.216	attackbots	Jun 13 14:40:55 localhost sshd\[26823\]: Invalid user temp from 121.186.122.216 Jun 13 14:40:55 localhost sshd\[26823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.186.122.216 Jun 13 14:40:57 localhost sshd\[26823\]: Failed password for invalid user temp from 121.186.122.216 port 40372 ssh2 Jun 13 14:45:06 localhost sshd\[27020\]: Invalid user laboratory from 121.186.122.216 Jun 13 14:45:06 localhost sshd\[27020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.186.122.216 ...	2020-06-13 20:53:37
212.64.14.185	attack	Jun 13 14:28:55 pornomens sshd\[24874\]: Invalid user files from 212.64.14.185 port 54762 Jun 13 14:28:55 pornomens sshd\[24874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.14.185 Jun 13 14:28:58 pornomens sshd\[24874\]: Failed password for invalid user files from 212.64.14.185 port 54762 ssh2 ...	2020-06-13 20:30:16
162.243.144.60	attack	06/13/2020-08:28:28.708498 162.243.144.60 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-13 20:59:08
124.160.42.66	attackspambots	2020-06-13T12:23:00.475547randservbullet-proofcloud-66.localdomain sshd[9670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.160.42.66 user=root 2020-06-13T12:23:02.467997randservbullet-proofcloud-66.localdomain sshd[9670]: Failed password for root from 124.160.42.66 port 19335 ssh2 2020-06-13T12:33:08.763751randservbullet-proofcloud-66.localdomain sshd[9689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.160.42.66 user=root 2020-06-13T12:33:10.891502randservbullet-proofcloud-66.localdomain sshd[9689]: Failed password for root from 124.160.42.66 port 25977 ssh2 ...	2020-06-13 21:05:24
181.129.173.12	attackspambots	Jun 13 12:39:19 game-panel sshd[22843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.173.12 Jun 13 12:39:22 game-panel sshd[22843]: Failed password for invalid user gzd from 181.129.173.12 port 56782 ssh2 Jun 13 12:43:06 game-panel sshd[23021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.173.12	2020-06-13 20:54:22
46.38.150.188	attackbots	Jun 13 14:27:48 mail postfix/smtpd\[9944\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 13 14:29:22 mail postfix/smtpd\[9720\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 13 14:30:49 mail postfix/smtpd\[9944\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 13 15:01:25 mail postfix/smtpd\[11381\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-13 21:02:53
106.58.220.87	attackbotsspam	Attempts against Pop3/IMAP	2020-06-13 21:10:45
54.37.138.225	attackspam	2020-06-13T14:25:12.627895sd-86998 sshd[48949]: Invalid user guest from 54.37.138.225 port 38932 2020-06-13T14:25:12.632971sd-86998 sshd[48949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=225.ip-54-37-138.eu 2020-06-13T14:25:12.627895sd-86998 sshd[48949]: Invalid user guest from 54.37.138.225 port 38932 2020-06-13T14:25:14.414890sd-86998 sshd[48949]: Failed password for invalid user guest from 54.37.138.225 port 38932 ssh2 2020-06-13T14:28:45.194452sd-86998 sshd[488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=225.ip-54-37-138.eu user=root 2020-06-13T14:28:47.889788sd-86998 sshd[488]: Failed password for root from 54.37.138.225 port 40634 ssh2 ...	2020-06-13 20:39:35
185.243.180.169	attackspam	From infobounce@aquivoceconsegue.live Sat Jun 13 09:28:11 2020 Received: from [185.243.180.169] (port=35258 helo=seguemx2.aquivoceconsegue.live)	2020-06-13 21:08:22
103.1.100.110	attackbots	Automatic report - Banned IP Access	2020-06-13 21:01:54
139.162.75.112	attackbotsspam	Unauthorized connection attempt detected from IP address 139.162.75.112 to port 22 [T]	2020-06-13 20:39:53
159.203.30.208	attackspambots	2020-06-13T12:40:50.454426shield sshd\[24969\]: Invalid user goldmine from 159.203.30.208 port 49063 2020-06-13T12:40:50.458397shield sshd\[24969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.30.208 2020-06-13T12:40:52.676539shield sshd\[24969\]: Failed password for invalid user goldmine from 159.203.30.208 port 49063 ssh2 2020-06-13T12:44:55.296953shield sshd\[27655\]: Invalid user takazawa from 159.203.30.208 port 47449 2020-06-13T12:44:55.300496shield sshd\[27655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.30.208	2020-06-13 20:50:28
195.54.161.40	attackbotsspam	scans 11 times in preceeding hours on the ports (in chronological order) 7105 7108 7118 7110 7105 7114 7107 7100 7106 7115 7103	2020-06-13 21:13:40
212.70.149.2	attack	2020-06-13T06:34:21.699150linuxbox-skyline auth[353744]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=brigitte rhost=212.70.149.2 ...	2020-06-13 20:36:30
49.88.112.88	attackbots	Unauthorized connection attempt detected from IP address 49.88.112.88 to port 22 [T]	2020-06-13 20:42:05

Recently Reported IPs

104.248.48.172	104.248.46.46	104.248.48.169	104.248.48.161
104.248.48.204	104.248.48.211	104.248.48.186	104.248.48.212
104.248.48.8	104.248.49.66	104.248.49.136	104.248.48.252
104.248.48.251	104.248.48.239	104.248.48.84	104.248.48.233
104.248.49.76	104.248.5.78	104.248.50.109	104.248.5.205