104.248.80.239

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.80.221	attackbots	Port scan: Attack repeated for 24 hours	2020-09-20 23:59:38
104.248.80.221	attackbotsspam	" "	2020-09-20 15:52:56
104.248.80.221	attack	" "	2020-09-20 07:43:05
104.248.80.221	attackbotsspam	firewall-block, port(s): 24699/tcp	2020-08-27 14:51:34
104.248.80.221	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-27 02:34:38
104.248.80.221	attackspam	Port scan: Attack repeated for 24 hours	2020-08-25 16:10:02
104.248.80.221	attackspam	" "	2020-08-02 13:43:40
104.248.80.221	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-07-29 12:35:49
104.248.80.221	attack	firewall-block, port(s): 20915/tcp	2020-07-11 22:50:45
104.248.80.221	attackbotsspam	firewall-block, port(s): 25955/tcp	2020-05-20 15:07:42
104.248.80.221	attackspam	Port scan(s) denied	2020-05-10 17:17:12
104.248.80.221	attackspam	firewall-block, port(s): 20473/tcp	2020-05-09 05:43:20
104.248.80.221	attack	" "	2020-05-07 02:53:31
104.248.80.221	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 1572 resulting in total of 13 scans from 104.248.0.0/16 block.	2020-04-25 23:47:06
104.248.80.78	attackspambots	2019-09-23T04:30:02.967889abusebot-8.cloudsearch.cf sshd\[12401\]: Invalid user membership from 104.248.80.78 port 48970	2019-09-23 12:53:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.80.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18700
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.80.239.			IN	A

;; AUTHORITY SECTION:
.			410	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 00:24:20 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 239.80.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.80.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
170.130.143.16	attackbotsspam	Mail Rejected for No PTR on port 25, EHLO: 0590298c.coldwar.buzz	2020-07-15 01:00:43
104.40.216.246	attack	Jul 14 12:41:50 sip sshd[28597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.216.246 Jul 14 12:41:50 sip sshd[28586]: ........ ------------------------------	2020-07-15 01:02:58
192.42.116.25	attack	prod11 ...	2020-07-15 00:55:31
23.102.232.247	attack	Jul 14 15:47:51 minden010 sshd[17234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.102.232.247 Jul 14 15:47:51 minden010 sshd[17235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.102.232.247 Jul 14 15:47:51 minden010 sshd[17237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.102.232.247 ...	2020-07-15 01:01:49
192.35.169.35	attackspambots	TCP (SYN) 192.35.169.35:34890 -> port 3072, len 44	2020-07-15 00:29:20
172.107.95.30	attackbots	GPL DNS named version attempt - port: 53 proto: dns cat: Attempted Information Leakbytes: 72	2020-07-15 00:57:07
27.216.155.210	attackspambots	TCP (SYN) 27.216.155.210:34211 -> port 8080, len 40	2020-07-15 00:48:39
193.112.109.108	attackspambots	Jul 14 17:54:31 home sshd[13047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.109.108 Jul 14 17:54:32 home sshd[13047]: Failed password for invalid user nexus from 193.112.109.108 port 37138 ssh2 Jul 14 17:56:22 home sshd[13196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.109.108 ...	2020-07-15 00:35:52
40.114.240.168	attackspam	Jul 14 13:20:32 online-web-1 sshd[169027]: Invalid user srv1 from 40.114.240.168 port 57664 Jul 14 13:20:32 online-web-1 sshd[169026]: Invalid user srv1 from 40.114.240.168 port 57663 Jul 14 13:20:32 online-web-1 sshd[169027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.240.168 Jul 14 13:20:32 online-web-1 sshd[169026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.240.168 Jul 14 13:20:32 online-web-1 sshd[169025]: Invalid user srv1 from 40.114.240.168 port 57662 Jul 14 13:20:32 online-web-1 sshd[169024]: Invalid user srv1 from 40.114.240.168 port 57661 Jul 14 13:20:32 online-web-1 sshd[169023]: Invalid user srv1 from 40.114.240.168 port 57660 Jul 14 13:20:32 online-web-1 sshd[169025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.240.168 Jul 14 13:20:32 online-web-1 sshd[169024]: pam_unix(sshd:auth): authentication failure........ -------------------------------	2020-07-15 00:59:03
223.100.167.105	attack	Jul 14 18:25:38 ns381471 sshd[16708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.100.167.105 Jul 14 18:25:40 ns381471 sshd[16708]: Failed password for invalid user lorelei from 223.100.167.105 port 47844 ssh2	2020-07-15 00:35:17
218.92.0.223	attackbots	Jul 14 16:40:51 game-panel sshd[22558]: Failed password for root from 218.92.0.223 port 37024 ssh2 Jul 14 16:41:01 game-panel sshd[22558]: Failed password for root from 218.92.0.223 port 37024 ssh2 Jul 14 16:41:04 game-panel sshd[22558]: Failed password for root from 218.92.0.223 port 37024 ssh2 Jul 14 16:41:04 game-panel sshd[22558]: error: maximum authentication attempts exceeded for root from 218.92.0.223 port 37024 ssh2 [preauth]	2020-07-15 00:48:57
106.13.29.92	attack	Jul 14 16:12:29 server sshd[16317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.92 user=web1 Jul 14 16:12:31 server sshd[16317]: Failed password for invalid user web1 from 106.13.29.92 port 58270 ssh2 Jul 14 16:25:31 server sshd[16894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.92 Jul 14 16:25:32 server sshd[16894]: Failed password for invalid user eunho from 106.13.29.92 port 38866 ssh2	2020-07-15 00:46:57
98.100.250.202	attack	Jul 14 18:43:23 pve1 sshd[25165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.100.250.202 Jul 14 18:43:26 pve1 sshd[25165]: Failed password for invalid user dmi from 98.100.250.202 port 58478 ssh2 ...	2020-07-15 00:47:42
134.175.2.7	attackspam	Jul 14 18:25:22 buvik sshd[25665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.2.7 Jul 14 18:25:24 buvik sshd[25665]: Failed password for invalid user ahm from 134.175.2.7 port 35174 ssh2 Jul 14 18:27:58 buvik sshd[25957]: Invalid user bnk from 134.175.2.7 ...	2020-07-15 00:46:33
170.254.226.100	attackbotsspam	Jul 14 16:04:26 jumpserver sshd[57392]: Invalid user bot from 170.254.226.100 port 47276 Jul 14 16:04:28 jumpserver sshd[57392]: Failed password for invalid user bot from 170.254.226.100 port 47276 ssh2 Jul 14 16:08:31 jumpserver sshd[57419]: Invalid user kwai from 170.254.226.100 port 44480 ...	2020-07-15 00:51:18

Recently Reported IPs

58.52.218.80	221.145.153.100	104.165.169.82	52.91.43.68
208.196.136.14	54.210.232.45	152.246.100.239	114.228.140.2
178.250.159.50	115.49.82.28	179.36.10.228	42.117.108.27
36.56.190.34	45.131.212.165	149.18.56.184	38.15.148.183
118.163.220.14	79.225.73.247	210.222.204.11	13.80.244.199