104.131.48.94 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.48.26	attack	Sep 25 23:00:01 journals sshd\[39491\]: Invalid user phion from 104.131.48.26 Sep 25 23:00:01 journals sshd\[39491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 Sep 25 23:00:03 journals sshd\[39491\]: Failed password for invalid user phion from 104.131.48.26 port 39942 ssh2 Sep 25 23:05:51 journals sshd\[40106\]: Invalid user freeswitch from 104.131.48.26 Sep 25 23:05:51 journals sshd\[40106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 ...	2020-09-26 05:02:13
104.131.48.26	attack	Sep 25 13:48:46 IngegnereFirenze sshd[22567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.48.26 user=root ...	2020-09-25 21:55:56
104.131.48.26	attackbotsspam	Ssh brute force	2020-09-25 13:33:58
104.131.48.67	attack	SSH brute force	2020-09-20 22:22:25
104.131.48.67	attack	SSH brute force	2020-09-20 14:13:58
104.131.48.67	attackbots	Sep 19 22:47:20 xeon sshd[43792]: Failed password for root from 104.131.48.67 port 33574 ssh2	2020-09-20 06:13:58

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.48.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42953
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.131.48.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 19:09:34 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 94.48.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 94.48.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.151.133.7	attack	unauthorized connection attempt	2020-01-09 19:59:10
90.150.198.206	attackspam	Telnet/23 Probe, Scan, BF, Hack -	2020-01-09 19:20:31
103.129.223.149	attackbotsspam	$f2bV_matches	2020-01-09 19:40:34
189.213.37.99	attack	unauthorized connection attempt	2020-01-09 19:54:08
91.244.253.103	attackspambots	unauthorized connection attempt	2020-01-09 19:20:06
36.71.239.18	attackspambots	unauthorized connection attempt	2020-01-09 19:51:41
104.248.131.60	attackbots	" "	2020-01-09 19:49:09
37.1.212.24	attackbotsspam	unauthorized connection attempt	2020-01-09 19:28:54
49.88.112.63	attack	Jan 9 12:33:41 SilenceServices sshd[17018]: Failed password for root from 49.88.112.63 port 16362 ssh2 Jan 9 12:33:44 SilenceServices sshd[17018]: Failed password for root from 49.88.112.63 port 16362 ssh2 Jan 9 12:33:47 SilenceServices sshd[17018]: Failed password for root from 49.88.112.63 port 16362 ssh2 Jan 9 12:33:53 SilenceServices sshd[17018]: error: maximum authentication attempts exceeded for root from 49.88.112.63 port 16362 ssh2 [preauth]	2020-01-09 19:37:39
46.221.46.7	attackspam	unauthorized connection attempt	2020-01-09 20:00:04
45.228.254.186	attackspam	Unauthorized connection attempt detected from IP address 45.228.254.186 to port 2223	2020-01-09 19:38:08
88.204.166.50	attack	unauthorized connection attempt	2020-01-09 19:21:59
148.3.201.222	attackspambots	unauthorized connection attempt	2020-01-09 19:48:23
54.39.245.130	attackspam	Unauthorised access (Jan 9) SRC=54.39.245.130 LEN=40 TTL=49 ID=44248 TCP DPT=8080 WINDOW=19948 SYN Unauthorised access (Jan 9) SRC=54.39.245.130 LEN=40 TTL=49 ID=26886 TCP DPT=8080 WINDOW=19948 SYN Unauthorised access (Jan 9) SRC=54.39.245.130 LEN=40 TTL=49 ID=44061 TCP DPT=8080 WINDOW=19948 SYN Unauthorised access (Jan 8) SRC=54.39.245.130 LEN=40 TTL=48 ID=41648 TCP DPT=8080 WINDOW=5886 SYN Unauthorised access (Jan 6) SRC=54.39.245.130 LEN=40 TTL=48 ID=32862 TCP DPT=8080 WINDOW=5886 SYN Unauthorised access (Jan 6) SRC=54.39.245.130 LEN=40 TTL=48 ID=3960 TCP DPT=8080 WINDOW=5886 SYN Unauthorised access (Jan 5) SRC=54.39.245.130 LEN=40 TTL=49 ID=61072 TCP DPT=8080 WINDOW=19948 SYN Unauthorised access (Jan 5) SRC=54.39.245.130 LEN=40 TTL=48 ID=61346 TCP DPT=8080 WINDOW=5886 SYN	2020-01-09 19:36:59
52.73.169.169	attackspam	123/udp 1900/udp 161/udp... [2019-11-11/2020-01-09]99pkt,5pt.(udp)	2020-01-09 19:27:03

Recently Reported IPs

30.72.33.78	190.25.219.250	99.8.113.206	79.140.153.19
78.24.182.42	202.222.216.67	1.52.121.202	75.253.1.3
85.154.106.31	206.146.0.230	78.188.139.181	53.227.140.22
181.143.56.178	132.162.87.124	173.212.193.104	179.56.220.253
117.134.211.56	77.40.9.251	200.116.191.185	3.222.135.157