104.248.94.148

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.94.159	attack	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-23 14:19:28
104.248.94.159	attack	May 22 17:22:45 xeon sshd[25949]: Failed password for invalid user wit from 104.248.94.159 port 46482 ssh2	2020-05-23 01:12:29
104.248.94.159	attackbots	5x Failed Password	2020-05-15 22:27:33
104.248.94.159	attackspam	" "	2020-05-06 14:04:24
104.248.94.159	attackspam	Apr 24 07:57:07 debian-2gb-nbg1-2 kernel: \[9966772.924980\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.248.94.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=37616 PROTO=TCP SPT=52994 DPT=23654 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-24 14:49:55
104.248.94.159	attack	Apr 15 15:14:57 srv206 sshd[12053]: Invalid user york from 104.248.94.159 Apr 15 15:14:57 srv206 sshd[12053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.94.159 Apr 15 15:14:57 srv206 sshd[12053]: Invalid user york from 104.248.94.159 Apr 15 15:14:58 srv206 sshd[12053]: Failed password for invalid user york from 104.248.94.159 port 43826 ssh2 ...	2020-04-15 21:55:15
104.248.94.159	attack	Invalid user bike from 104.248.94.159 port 54104	2020-04-15 07:05:11
104.248.94.159	attack	Invalid user bike from 104.248.94.159 port 54104	2020-04-14 16:16:46
104.248.94.159	attack	Apr 13 09:19:38 server sshd[17894]: Failed password for root from 104.248.94.159 port 53698 ssh2 Apr 13 10:00:18 server sshd[28994]: Failed password for invalid user st1lesha from 104.248.94.159 port 46312 ssh2 Apr 13 10:03:40 server sshd[30054]: Failed password for root from 104.248.94.159 port 54064 ssh2	2020-04-13 16:11:30
104.248.94.159	attackbots	Apr 9 22:45:29 cvbnet sshd[15739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.94.159 Apr 9 22:45:31 cvbnet sshd[15739]: Failed password for invalid user odoo from 104.248.94.159 port 38072 ssh2 ...	2020-04-10 05:43:50
104.248.94.159	attackbots	Apr 7 15:27:53 legacy sshd[30365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.94.159 Apr 7 15:27:55 legacy sshd[30365]: Failed password for invalid user confa from 104.248.94.159 port 38782 ssh2 Apr 7 15:31:38 legacy sshd[30490]: Failed password for root from 104.248.94.159 port 49110 ssh2 ...	2020-04-07 21:38:49
104.248.94.159	attackbots	k+ssh-bruteforce	2020-04-07 09:59:29
104.248.94.159	attackspambots	Mar 26 00:26:53 ks10 sshd[670657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.94.159 Mar 26 00:26:55 ks10 sshd[670657]: Failed password for invalid user sysbackup from 104.248.94.159 port 35330 ssh2 ...	2020-03-26 07:33:46
104.248.94.159	attack	Mar 22 17:14:50 plex sshd[25493]: Invalid user btf from 104.248.94.159 port 59384	2020-03-23 01:14:21
104.248.94.159	attack	Feb 13 14:50:11 v22018076622670303 sshd\[32333\]: Invalid user gustavo from 104.248.94.159 port 33806 Feb 13 14:50:11 v22018076622670303 sshd\[32333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.94.159 Feb 13 14:50:13 v22018076622670303 sshd\[32333\]: Failed password for invalid user gustavo from 104.248.94.159 port 33806 ssh2 ...	2020-02-13 22:18:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.94.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64476
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.94.148.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032801 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 29 12:38:02 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 148.94.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.94.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.111.156.1	attackbotsspam	Unauthorized connection attempt from IP address 79.111.156.1 on Port 445(SMB)	2020-05-20 22:51:17
51.75.208.177	attack	(sshd) Failed SSH login from 51.75.208.177 (FR/France/ip177.ip-51-75-208.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 20 14:47:45 amsweb01 sshd[9928]: Invalid user twu from 51.75.208.177 port 45250 May 20 14:47:47 amsweb01 sshd[9928]: Failed password for invalid user twu from 51.75.208.177 port 45250 ssh2 May 20 14:52:10 amsweb01 sshd[10226]: Invalid user jkl from 51.75.208.177 port 56028 May 20 14:52:12 amsweb01 sshd[10226]: Failed password for invalid user jkl from 51.75.208.177 port 56028 ssh2 May 20 14:55:40 amsweb01 sshd[10643]: Invalid user bzv from 51.75.208.177 port 43602	2020-05-20 22:33:39
220.249.21.130	attack	SSH Brute-Forcing (server1)	2020-05-20 22:43:14
218.92.0.172	attack	May 20 16:25:05 abendstille sshd\[726\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root May 20 16:25:06 abendstille sshd\[705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root May 20 16:25:07 abendstille sshd\[726\]: Failed password for root from 218.92.0.172 port 9485 ssh2 May 20 16:25:09 abendstille sshd\[705\]: Failed password for root from 218.92.0.172 port 39008 ssh2 May 20 16:25:10 abendstille sshd\[726\]: Failed password for root from 218.92.0.172 port 9485 ssh2 ...	2020-05-20 22:50:16
218.92.0.171	attackbotsspam	May 20 14:28:36 localhost sshd[29427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root May 20 14:28:38 localhost sshd[29427]: Failed password for root from 218.92.0.171 port 32846 ssh2 May 20 14:28:42 localhost sshd[29427]: Failed password for root from 218.92.0.171 port 32846 ssh2 May 20 14:28:36 localhost sshd[29427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root May 20 14:28:38 localhost sshd[29427]: Failed password for root from 218.92.0.171 port 32846 ssh2 May 20 14:28:42 localhost sshd[29427]: Failed password for root from 218.92.0.171 port 32846 ssh2 May 20 14:28:36 localhost sshd[29427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root May 20 14:28:38 localhost sshd[29427]: Failed password for root from 218.92.0.171 port 32846 ssh2 May 20 14:28:42 localhost sshd[29427]: Failed password fo ...	2020-05-20 22:50:52
222.186.175.217	attackbotsspam	May 20 14:10:54 ip-172-31-62-245 sshd\[18379\]: Failed password for root from 222.186.175.217 port 15252 ssh2\ May 20 14:11:12 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\ May 20 14:11:16 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\ May 20 14:11:19 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\ May 20 14:11:22 ip-172-31-62-245 sshd\[18383\]: Failed password for root from 222.186.175.217 port 29986 ssh2\	2020-05-20 22:12:32
42.118.19.164	attack	Unauthorized connection attempt from IP address 42.118.19.164 on Port 445(SMB)	2020-05-20 22:42:46
82.146.215.192	attackbotsspam	May 20 09:02:46 rudra sshd[912081]: reveeclipse mapping checking getaddrinfo for 192.215.146.82.reveeclipse.netplusfr.net [82.146.215.192] failed - POSSIBLE BREAK-IN ATTEMPT! May 20 09:02:46 rudra sshd[912081]: Invalid user www from 82.146.215.192 May 20 09:02:46 rudra sshd[912081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.146.215.192 May 20 09:02:48 rudra sshd[912081]: Failed password for invalid user www from 82.146.215.192 port 22197 ssh2 May 20 09:02:48 rudra sshd[912081]: Received disconnect from 82.146.215.192: 11: Bye Bye [preauth] May 20 09:16:21 rudra sshd[915076]: reveeclipse mapping checking getaddrinfo for 192.215.146.82.reveeclipse.netplusfr.net [82.146.215.192] failed - POSSIBLE BREAK-IN ATTEMPT! May 20 09:16:21 rudra sshd[915076]: Invalid user cdn from 82.146.215.192 May 20 09:16:21 rudra sshd[915076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.146.215.192 ........ -------------------------------	2020-05-20 22:24:26
78.160.175.71	attack	Automatic report - Port Scan Attack	2020-05-20 22:18:06
45.134.179.243	attack	TCP ports : 3389 / 12000	2020-05-20 22:21:00
206.189.204.63	attackbotsspam	May 20 13:56:27 srv-ubuntu-dev3 sshd[95348]: Invalid user wpx from 206.189.204.63 May 20 13:56:27 srv-ubuntu-dev3 sshd[95348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.204.63 May 20 13:56:27 srv-ubuntu-dev3 sshd[95348]: Invalid user wpx from 206.189.204.63 May 20 13:56:29 srv-ubuntu-dev3 sshd[95348]: Failed password for invalid user wpx from 206.189.204.63 port 45884 ssh2 May 20 13:59:22 srv-ubuntu-dev3 sshd[95777]: Invalid user wuw from 206.189.204.63 May 20 13:59:22 srv-ubuntu-dev3 sshd[95777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.204.63 May 20 13:59:22 srv-ubuntu-dev3 sshd[95777]: Invalid user wuw from 206.189.204.63 May 20 13:59:25 srv-ubuntu-dev3 sshd[95777]: Failed password for invalid user wuw from 206.189.204.63 port 40872 ssh2 May 20 14:02:21 srv-ubuntu-dev3 sshd[96322]: Invalid user hzd from 206.189.204.63 ...	2020-05-20 22:32:45
1.34.232.21	attackspambots	Attempted connection to port 85.	2020-05-20 22:15:28
117.2.64.46	attackbots	Unauthorized connection attempt from IP address 117.2.64.46 on Port 445(SMB)	2020-05-20 22:10:28
222.186.175.150	attack	2020-05-20T17:20:27.537685afi-git.jinr.ru sshd[16143]: Failed password for root from 222.186.175.150 port 31054 ssh2 2020-05-20T17:20:31.180779afi-git.jinr.ru sshd[16143]: Failed password for root from 222.186.175.150 port 31054 ssh2 2020-05-20T17:20:34.372678afi-git.jinr.ru sshd[16143]: Failed password for root from 222.186.175.150 port 31054 ssh2 2020-05-20T17:20:34.372855afi-git.jinr.ru sshd[16143]: error: maximum authentication attempts exceeded for root from 222.186.175.150 port 31054 ssh2 [preauth] 2020-05-20T17:20:34.372868afi-git.jinr.ru sshd[16143]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-20 22:25:57
222.186.175.148	attackspam	2020-05-20T16:24:42.598511sd-86998 sshd[18376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-05-20T16:24:44.864270sd-86998 sshd[18376]: Failed password for root from 222.186.175.148 port 11280 ssh2 2020-05-20T16:24:48.453465sd-86998 sshd[18376]: Failed password for root from 222.186.175.148 port 11280 ssh2 2020-05-20T16:24:42.598511sd-86998 sshd[18376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-05-20T16:24:44.864270sd-86998 sshd[18376]: Failed password for root from 222.186.175.148 port 11280 ssh2 2020-05-20T16:24:48.453465sd-86998 sshd[18376]: Failed password for root from 222.186.175.148 port 11280 ssh2 2020-05-20T16:24:42.598511sd-86998 sshd[18376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root 2020-05-20T16:24:44.864270sd-86998 sshd[18376]: Failed password for roo ...	2020-05-20 22:26:28

Recently Reported IPs

104.248.89.233	104.248.95.132	104.248.98.251	104.249.173.188
104.25.103.57	104.25.103.58	104.25.104.57	104.25.104.58
104.25.106.159	104.25.112.74	104.25.125.191	104.25.125.74
104.25.127.46	104.25.128.107	104.25.128.46	104.25.128.62
104.25.130.219	104.25.131.223	104.25.133.141	104.25.133.143