172.104.139.30

Basic Info

City: Frankfurt am Main

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.104.139.66	attackspam	172.104.139.66 - - [10/Oct/2020:17:25:15 +0100] "GET /api/v1/pods HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.61 Safari/537.36" ...	2020-10-11 03:34:48
172.104.139.66	attackbotsspam	speculative search for an API folder	2020-10-10 19:26:54
172.104.139.67	attack	Unauthorized connection attempt detected from IP address 172.104.139.67 to port 443 [J]	2020-01-18 14:17:52
172.104.139.67	attackspam	Unauthorized connection attempt detected from IP address 172.104.139.67 to port 443	2020-01-05 23:09:58
172.104.139.67	attackbots	09.11.2019 07:24:17 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-11-09 18:34:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.104.139.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15225
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.104.139.30.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024042202 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 23 07:01:37 CST 2024
;; MSG SIZE  rcvd: 107

Host info

30.139.104.172.in-addr.arpa domain name pointer relay09.pop.fra.plex.bz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
30.139.104.172.in-addr.arpa	name = relay09.pop.fra.plex.bz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
64.227.69.43	attack	Mar 29 16:02:31 silence02 sshd[31022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.69.43 Mar 29 16:02:32 silence02 sshd[31022]: Failed password for invalid user cvc from 64.227.69.43 port 40160 ssh2 Mar 29 16:06:50 silence02 sshd[31305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.69.43	2020-03-30 02:30:01
139.59.94.24	attackbots	Fail2Ban Ban Triggered (2)	2020-03-30 02:14:09
140.143.140.242	attackbots	Mar 29 20:17:15 rotator sshd\[23263\]: Invalid user jwy from 140.143.140.242Mar 29 20:17:18 rotator sshd\[23263\]: Failed password for invalid user jwy from 140.143.140.242 port 50596 ssh2Mar 29 20:22:06 rotator sshd\[24052\]: Invalid user gny from 140.143.140.242Mar 29 20:22:08 rotator sshd\[24052\]: Failed password for invalid user gny from 140.143.140.242 port 50204 ssh2Mar 29 20:27:00 rotator sshd\[24831\]: Invalid user iqh from 140.143.140.242Mar 29 20:27:03 rotator sshd\[24831\]: Failed password for invalid user iqh from 140.143.140.242 port 49822 ssh2 ...	2020-03-30 02:29:32
62.234.137.128	attackbotsspam	Mar 29 07:25:20 server1 sshd\[11639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.137.128 Mar 29 07:25:22 server1 sshd\[11639\]: Failed password for invalid user gih from 62.234.137.128 port 49752 ssh2 Mar 29 07:28:48 server1 sshd\[13783\]: Invalid user warlocks from 62.234.137.128 Mar 29 07:28:48 server1 sshd\[13783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.137.128 Mar 29 07:28:50 server1 sshd\[13783\]: Failed password for invalid user warlocks from 62.234.137.128 port 33662 ssh2 ...	2020-03-30 02:05:21
134.209.160.91	attackbots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-03-30 02:07:17
2a02:598:bbbb:2::8017	attackbotsspam	20 attempts against mh-misbehave-ban on cedar	2020-03-30 02:09:17
222.186.30.76	attack	Mar 29 18:13:59 localhost sshd[78734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Mar 29 18:14:02 localhost sshd[78734]: Failed password for root from 222.186.30.76 port 45188 ssh2 Mar 29 18:14:04 localhost sshd[78734]: Failed password for root from 222.186.30.76 port 45188 ssh2 Mar 29 18:13:59 localhost sshd[78734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Mar 29 18:14:02 localhost sshd[78734]: Failed password for root from 222.186.30.76 port 45188 ssh2 Mar 29 18:14:04 localhost sshd[78734]: Failed password for root from 222.186.30.76 port 45188 ssh2 Mar 29 18:13:59 localhost sshd[78734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Mar 29 18:14:02 localhost sshd[78734]: Failed password for root from 222.186.30.76 port 45188 ssh2 Mar 29 18:14:04 localhost sshd[78734]: Failed pas ...	2020-03-30 02:16:00
186.215.132.150	attack	Repeated brute force against a port	2020-03-30 02:16:53
180.76.100.33	attack	fail2ban	2020-03-30 02:17:35
218.29.126.78	attackbotsspam	CVE-2017-5638 Hack attempt	2020-03-30 02:20:26
177.124.88.1	attackbots	Mar 29 12:34:08 ip-172-31-62-245 sshd\[535\]: Invalid user roxanne from 177.124.88.1\ Mar 29 12:34:10 ip-172-31-62-245 sshd\[535\]: Failed password for invalid user roxanne from 177.124.88.1 port 48525 ssh2\ Mar 29 12:39:03 ip-172-31-62-245 sshd\[689\]: Invalid user pqe from 177.124.88.1\ Mar 29 12:39:05 ip-172-31-62-245 sshd\[689\]: Failed password for invalid user pqe from 177.124.88.1 port 54602 ssh2\ Mar 29 12:44:08 ip-172-31-62-245 sshd\[758\]: Invalid user nph from 177.124.88.1\	2020-03-30 02:34:36
5.196.110.170	attackbotsspam	Mar 29 19:30:18 nginx sshd[91541]: Invalid user oracle from 5.196.110.170 Mar 29 19:30:18 nginx sshd[91541]: Received disconnect from 5.196.110.170 port 57010:11: Normal Shutdown [preauth]	2020-03-30 02:16:29
218.17.175.228	attack	" "	2020-03-30 02:34:12
138.68.99.46	attack	Mar 29 20:08:08 nextcloud sshd\[19182\]: Invalid user fbu from 138.68.99.46 Mar 29 20:08:08 nextcloud sshd\[19182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 Mar 29 20:08:10 nextcloud sshd\[19182\]: Failed password for invalid user fbu from 138.68.99.46 port 41524 ssh2	2020-03-30 02:08:51
198.50.177.42	attack	Mar 29 15:29:14 meumeu sshd[20189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 Mar 29 15:29:16 meumeu sshd[20189]: Failed password for invalid user hmr from 198.50.177.42 port 55460 ssh2 Mar 29 15:38:18 meumeu sshd[21471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.177.42 ...	2020-03-30 02:32:38

Recently Reported IPs

185.161.244.83	139.162.143.82	198.54.133.166	23.26.228.16
37.19.210.12	50.114.107.146	166.1.14.34	179.43.183.154
74.115.0.147	14.51.52.5	20.41.97.19	16.16.19.121
67.168.65.138	40.44.139.85	117.239.216.153	62.216.86.69
178.62.8.31	23.225.199.116	71.6.233.2	23.225.221.187