134.209.48.248

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Invalid user ftpuser from 134.209.48.248 port 46140	2019-09-15 07:15:49
attack	Invalid user ftpuser from 134.209.48.248 port 46140	2019-09-13 10:20:53
attack	Sep 4 06:59:18 www2 sshd\[27582\]: Invalid user razvan from 134.209.48.248Sep 4 06:59:20 www2 sshd\[27582\]: Failed password for invalid user razvan from 134.209.48.248 port 60586 ssh2Sep 4 07:03:21 www2 sshd\[28159\]: Invalid user fpt from 134.209.48.248 ...	2019-09-04 18:56:34
attackbotsspam	$f2bV_matches	2019-09-01 19:42:04
attackbotsspam	Aug 27 04:43:40 hcbbdb sshd\[32443\]: Invalid user duncan from 134.209.48.248 Aug 27 04:43:40 hcbbdb sshd\[32443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.48.248 Aug 27 04:43:42 hcbbdb sshd\[32443\]: Failed password for invalid user duncan from 134.209.48.248 port 42836 ssh2 Aug 27 04:47:54 hcbbdb sshd\[398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.48.248 user=root Aug 27 04:47:56 hcbbdb sshd\[398\]: Failed password for root from 134.209.48.248 port 59592 ssh2	2019-08-27 12:49:55
attackbots	Aug 22 15:21:39 localhost sshd\[28579\]: Invalid user anonymous from 134.209.48.248 port 52436 Aug 22 15:21:39 localhost sshd\[28579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.48.248 Aug 22 15:21:41 localhost sshd\[28579\]: Failed password for invalid user anonymous from 134.209.48.248 port 52436 ssh2 ...	2019-08-23 02:27:49
attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:19:38

Comments on same subnet:

IP	Type	Details	Datetime
134.209.48.222	attackspam	134.209.48.222 - - [09/Nov/2019:11:26:59 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2019-11-09 17:16:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.48.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63082
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.48.248.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 05:19:25 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 248.48.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 248.48.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.17.5.148	attackbots	Aug 15 08:09:30 intra sshd\[50449\]: Invalid user ron from 134.17.5.148Aug 15 08:09:32 intra sshd\[50449\]: Failed password for invalid user ron from 134.17.5.148 port 59464 ssh2Aug 15 08:14:31 intra sshd\[50486\]: Invalid user less from 134.17.5.148Aug 15 08:14:34 intra sshd\[50486\]: Failed password for invalid user less from 134.17.5.148 port 53964 ssh2Aug 15 08:19:26 intra sshd\[50546\]: Invalid user adam from 134.17.5.148Aug 15 08:19:29 intra sshd\[50546\]: Failed password for invalid user adam from 134.17.5.148 port 48486 ssh2 ...	2019-08-15 16:21:15
198.143.137.61	attackbots	WordPress wp-login brute force :: 198.143.137.61 0.056 BYPASS [15/Aug/2019:09:23:43 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-15 16:22:31
192.3.177.213	attackspambots	Invalid user wn from 192.3.177.213 port 38368	2019-08-15 17:15:00
40.90.173.130	attack	3389BruteforceIDS	2019-08-15 16:29:46
51.75.52.134	attackbots	Aug 15 05:26:38 v22018076622670303 sshd\[20118\]: Invalid user shiny from 51.75.52.134 port 41960 Aug 15 05:26:38 v22018076622670303 sshd\[20118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.52.134 Aug 15 05:26:40 v22018076622670303 sshd\[20118\]: Failed password for invalid user shiny from 51.75.52.134 port 41960 ssh2 ...	2019-08-15 16:28:48
200.89.159.112	attack	Port Scan detected from 200.89.159.112 (AR/Argentina/112-159-89-200.fibertel.com.ar). 4 hits in the last 105 seconds	2019-08-15 17:08:41
118.25.68.118	attack	Aug 15 10:29:50 root sshd[21445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.68.118 Aug 15 10:29:53 root sshd[21445]: Failed password for invalid user cezar from 118.25.68.118 port 46188 ssh2 Aug 15 10:32:55 root sshd[21470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.68.118 ...	2019-08-15 17:12:56
37.59.98.64	attackbotsspam	Invalid user upload1 from 37.59.98.64 port 36810	2019-08-15 17:11:54
47.254.135.232	attackbotsspam	Automatic report - Banned IP Access	2019-08-15 17:08:00
121.236.128.134	attackspambots	$f2bV_matches	2019-08-15 16:48:37
165.22.182.168	attackbots	Aug 15 06:42:42 dedicated sshd[2141]: Invalid user user from 165.22.182.168 port 49864	2019-08-15 16:23:08
49.88.112.78	attackspambots	Aug 14 22:43:53 lcdev sshd\[15045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root Aug 14 22:43:55 lcdev sshd\[15045\]: Failed password for root from 49.88.112.78 port 26692 ssh2 Aug 14 22:43:57 lcdev sshd\[15045\]: Failed password for root from 49.88.112.78 port 26692 ssh2 Aug 14 22:43:59 lcdev sshd\[15045\]: Failed password for root from 49.88.112.78 port 26692 ssh2 Aug 14 22:44:01 lcdev sshd\[15060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root	2019-08-15 16:53:40
58.84.56.122	attackspam	Aug 15 09:28:22 yabzik sshd[15945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.84.56.122 Aug 15 09:28:24 yabzik sshd[15945]: Failed password for invalid user ubuntu from 58.84.56.122 port 38973 ssh2 Aug 15 09:33:48 yabzik sshd[17604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.84.56.122	2019-08-15 16:39:49
94.7.237.213	attackspambots	Automatic report - Port Scan Attack	2019-08-15 16:33:20
106.12.218.193	attackspam	Aug 15 05:16:53 MK-Soft-VM7 sshd\[17651\]: Invalid user admin1 from 106.12.218.193 port 58494 Aug 15 05:16:53 MK-Soft-VM7 sshd\[17651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.218.193 Aug 15 05:16:55 MK-Soft-VM7 sshd\[17651\]: Failed password for invalid user admin1 from 106.12.218.193 port 58494 ssh2 ...	2019-08-15 16:44:26

Recently Reported IPs

134.209.186.29	185.115.100.142	223.242.229.79	134.209.165.98
202.67.46.232	134.209.161.209	103.31.55.237	177.74.182.94
66.18.122.107	171.229.247.195	124.184.124.180	134.209.147.133
66.249.66.214	134.209.116.148	193.12.196.227	92.86.176.182
134.209.107.95	137.27.26.208	169.154.63.232	134.209.107.193