104.131.48.94 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.48.26	attack	Sep 25 23:00:01 journals sshd\[39491\]: Invalid user phion from 104.131.48.26 Sep 25 23:00:01 journals sshd\[39491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 Sep 25 23:00:03 journals sshd\[39491\]: Failed password for invalid user phion from 104.131.48.26 port 39942 ssh2 Sep 25 23:05:51 journals sshd\[40106\]: Invalid user freeswitch from 104.131.48.26 Sep 25 23:05:51 journals sshd\[40106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 ...	2020-09-26 05:02:13
104.131.48.26	attack	Sep 25 13:48:46 IngegnereFirenze sshd[22567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 user=root ...	2020-09-25 21:55:56
104.131.48.26	attackbotsspam	Ssh brute force	2020-09-25 13:33:58
104.131.48.67	attack	SSH brute force	2020-09-20 22:22:25
104.131.48.67	attack	SSH brute force	2020-09-20 14:13:58
104.131.48.67	attackbots	Sep 19 22:47:20 xeon sshd[43792]: Failed password for root from 104.131.48.67 port 33574 ssh2	2020-09-20 06:13:58

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.48.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42953
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.131.48.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 19:09:34 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 94.48.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 94.48.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.181.225	attackbots	Mar 31 14:24:24 meumeu sshd[28005]: Failed password for root from 159.65.181.225 port 44990 ssh2 Mar 31 14:28:27 meumeu sshd[28574]: Failed password for root from 159.65.181.225 port 58394 ssh2 ...	2020-03-31 22:13:57
74.82.47.17	attack	Mar 31 14:33:26 debian-2gb-nbg1-2 kernel: \[7917059.641725\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=74.82.47.17 DST=195.201.40.59 LEN=29 TOS=0x00 PREC=0x00 TTL=52 ID=26771 DF PROTO=UDP SPT=43177 DPT=17 LEN=9	2020-03-31 22:58:56
202.39.27.89	attack	Honeypot attack, port: 81, PTR: 202-39-27-89.HINET-IP.hinet.net.	2020-03-31 22:33:06
212.220.211.86	attack	445/tcp [2020-03-31]1pkt	2020-03-31 22:08:14
187.188.36.40	attack	1433/tcp [2020-03-31]1pkt	2020-03-31 22:09:34
77.254.40.157	attack	Port probing on unauthorized port 81	2020-03-31 22:21:05
122.51.240.151	attackbotsspam	Mar 31 15:18:18 haigwepa sshd[4990]: Failed password for root from 122.51.240.151 port 40964 ssh2 ...	2020-03-31 22:28:13
95.85.9.94	attack	5x Failed Password	2020-03-31 23:03:54
51.144.82.235	attack	Mar 31 03:18:24 web1 sshd\[15506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.144.82.235 user=root Mar 31 03:18:27 web1 sshd\[15506\]: Failed password for root from 51.144.82.235 port 35546 ssh2 Mar 31 03:22:06 web1 sshd\[15951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.144.82.235 user=root Mar 31 03:22:08 web1 sshd\[15951\]: Failed password for root from 51.144.82.235 port 47280 ssh2 Mar 31 03:26:09 web1 sshd\[16422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.144.82.235 user=root	2020-03-31 22:09:00
69.158.207.141	attackspam	Mar 31 14:15:29 raspberrypi sshd\[25140\]: Invalid user spark from 69.158.207.141 port 34200 Mar 31 14:15:50 raspberrypi sshd\[25210\]: Invalid user spark from 69.158.207.141 port 48490 Mar 31 14:16:11 raspberrypi sshd\[25275\]: Invalid user spark from 69.158.207.141 port 34547 ...	2020-03-31 22:25:14
200.56.44.192	attack	Invalid user pmq from 200.56.44.192 port 46948	2020-03-31 23:05:51
79.105.87.210	attackspam	1433/tcp 1433/tcp 1433/tcp [2020-03-31]3pkt	2020-03-31 22:14:23
180.76.168.168	attack	Mar 31 03:15:58 web9 sshd\[6649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.168.168 user=root Mar 31 03:16:00 web9 sshd\[6649\]: Failed password for root from 180.76.168.168 port 40974 ssh2 Mar 31 03:18:24 web9 sshd\[6975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.168.168 user=root Mar 31 03:18:27 web9 sshd\[6975\]: Failed password for root from 180.76.168.168 port 36018 ssh2 Mar 31 03:20:53 web9 sshd\[7327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.168.168 user=root	2020-03-31 23:10:15
222.186.30.167	attackspam	Mar 31 16:54:58 MainVPS sshd[16933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Mar 31 16:55:00 MainVPS sshd[16933]: Failed password for root from 222.186.30.167 port 46400 ssh2 Mar 31 16:55:02 MainVPS sshd[16933]: Failed password for root from 222.186.30.167 port 46400 ssh2 Mar 31 16:54:58 MainVPS sshd[16933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Mar 31 16:55:00 MainVPS sshd[16933]: Failed password for root from 222.186.30.167 port 46400 ssh2 Mar 31 16:55:02 MainVPS sshd[16933]: Failed password for root from 222.186.30.167 port 46400 ssh2 Mar 31 16:54:58 MainVPS sshd[16933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.167 user=root Mar 31 16:55:00 MainVPS sshd[16933]: Failed password for root from 222.186.30.167 port 46400 ssh2 Mar 31 16:55:02 MainVPS sshd[16933]: Failed password for root from 222.186.30.167	2020-03-31 22:59:57
112.93.101.228	attackspam	Unauthorised access (Mar 31) SRC=112.93.101.228 LEN=40 TTL=50 ID=20979 TCP DPT=8080 WINDOW=62648 SYN Unauthorised access (Mar 31) SRC=112.93.101.228 LEN=40 TTL=50 ID=18406 TCP DPT=8080 WINDOW=48624 SYN Unauthorised access (Mar 31) SRC=112.93.101.228 LEN=40 TTL=50 ID=39876 TCP DPT=23 WINDOW=7248 SYN Unauthorised access (Mar 31) SRC=112.93.101.228 LEN=40 TTL=50 ID=24193 TCP DPT=8080 WINDOW=62648 SYN	2020-03-31 23:06:20

Recently Reported IPs

30.72.33.78	190.25.219.250	99.8.113.206	79.140.153.19
78.24.182.42	202.222.216.67	1.52.121.202	75.253.1.3
85.154.106.31	206.146.0.230	78.188.139.181	53.227.140.22
181.143.56.178	132.162.87.124	173.212.193.104	179.56.220.253
117.134.211.56	77.40.9.251	200.116.191.185	3.222.135.157