104.158.55.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.158.55.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.158.55.80.			IN	A

;; AUTHORITY SECTION:
.			204	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040102 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 01 22:53:58 CST 2022
;; MSG SIZE  rcvd: 106

Host info

80.55.158.104.in-addr.arpa domain name pointer 80.55.158.104.in-addr.arpa.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
80.55.158.104.in-addr.arpa	name = 80.55.158.104.in-addr.arpa.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.44.158	attack	SSH invalid-user multiple login try	2019-10-05 00:30:57
31.184.249.178	attackbotsspam	Brute RDP attack	2019-10-05 00:37:43
185.203.186.150	attackbotsspam	Oct 4 07:24:34 mailman postfix/smtpd[27217]: NOQUEUE: reject: RCPT from s1686.hubucoapp.com[185.203.186.150]: 554 5.7.1 Service unavailable; Client host [185.203.186.150] blocked using rbl.rbldns.ru; RBLDNS Server v1.1.0. Author VDV [ Site: WWW.RBLDNS.RU ]; from=<[munged][at]s1686.hubucoapp.com> to= proto=SMTP helo= Oct 4 07:24:35 mailman postfix/smtpd[27217]: NOQUEUE: reject: RCPT from s1686.hubucoapp.com[185.203.186.150]: 554 5.7.1 Service unavailable; Client host [185.203.186.150] blocked using rbl.rbldns.ru; RBLDNS Server v1.1.0. Author VDV [ Site: WWW.RBLDNS.RU ]; from=<[munged][at]s1686.hubucoapp.com> to=<[munged][at][munged]> proto=SMTP helo=	2019-10-05 00:56:13
69.85.70.98	attackspam	2019-10-04T09:18:45.000990ns525875 sshd\[23765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 user=root 2019-10-04T09:18:46.955648ns525875 sshd\[23765\]: Failed password for root from 69.85.70.98 port 56010 ssh2 2019-10-04T09:22:32.699524ns525875 sshd\[28445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 user=root 2019-10-04T09:22:35.287798ns525875 sshd\[28445\]: Failed password for root from 69.85.70.98 port 39730 ssh2 ...	2019-10-05 00:51:47
222.186.31.136	attackspambots	Oct 4 17:51:45 [HOSTNAME] sshd[2619]: User removed from 222.186.31.136 not allowed because not listed in AllowUsers Oct 4 18:18:09 [HOSTNAME] sshd[2954]: User removed from 222.186.31.136 not allowed because not listed in AllowUsers Oct 4 18:53:04 [HOSTNAME] sshd[3234]: User removed from 222.186.31.136 not allowed because not listed in AllowUsers ...	2019-10-05 00:55:46
188.235.138.182	attackbotsspam	proto=tcp . spt=54367 . dpt=25 . (Found on Dark List de Oct 04) (511)	2019-10-05 00:49:47
183.110.242.242	attackbots	Oct 4 05:47:55 localhost kernel: [3920294.141234] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.110.242.242 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=57 ID=47176 DF PROTO=TCP SPT=58125 DPT=22 SEQ=27846186 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 08:24:30 localhost kernel: [3929689.730233] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.110.242.242 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=65 ID=21223 DF PROTO=TCP SPT=56682 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 08:24:30 localhost kernel: [3929689.730272] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=183.110.242.242 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=65 ID=21223 DF PROTO=TCP SPT=56682 DPT=22 SEQ=2205368474 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0	2019-10-05 00:59:53
202.124.179.66	attack	Looking for resource vulnerabilities	2019-10-05 00:36:31
79.1.212.37	attackspambots	Oct 4 14:20:55 vmd17057 sshd\[19347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.1.212.37 user=root Oct 4 14:20:57 vmd17057 sshd\[19347\]: Failed password for root from 79.1.212.37 port 59623 ssh2 Oct 4 14:24:45 vmd17057 sshd\[19845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.1.212.37 user=root ...	2019-10-05 00:45:59
211.44.226.176	attack	Oct 4 18:28:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=82 ID=43195 DF PROTO=TCP SPT=56720 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=60 ID=40494 DF PROTO=TCP SPT=52883 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:38 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=73 ID=19070 DF PROTO=TCP SPT=55081 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:37 mail kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3c:4d:20:28:99:3a:4d:23:91:08:00 SRC=211.44.226.176 DST=213.136.73.128 LEN=40 TOS=0x08 PREC=0x20 TTL=60 ID=40494 DF PROTO=TCP SPT=52883 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 18:28:38 mail kernel: [UFW BLOCK] IN=eth	2019-10-05 00:43:48
114.100.101.33	attack	Spam-Mail via Contact-Form 2019-09-27 10:27	2019-10-05 00:27:47
222.186.180.20	attackspam	Oct 4 21:33:21 gw1 sshd[25511]: Failed password for root from 222.186.180.20 port 33430 ssh2 Oct 4 21:33:39 gw1 sshd[25511]: error: maximum authentication attempts exceeded for root from 222.186.180.20 port 33430 ssh2 [preauth] ...	2019-10-05 00:35:09
37.44.253.158	attackspam	5.245.844,85-03/02 [bc18/m88] concatform PostRequest-Spammer scoring: Durban02	2019-10-05 00:54:36
200.11.219.206	attackspam	Oct 4 14:34:26 hcbbdb sshd\[7231\]: Invalid user Losenord12345 from 200.11.219.206 Oct 4 14:34:26 hcbbdb sshd\[7231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.219.206 Oct 4 14:34:28 hcbbdb sshd\[7231\]: Failed password for invalid user Losenord12345 from 200.11.219.206 port 28439 ssh2 Oct 4 14:39:14 hcbbdb sshd\[7730\]: Invalid user Henrique123 from 200.11.219.206 Oct 4 14:39:14 hcbbdb sshd\[7730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.219.206	2019-10-05 00:57:53
198.20.87.98	attackspambots	port scan and connect, tcp 111 (rpcbind)	2019-10-05 00:28:27

Recently Reported IPs

104.158.51.16	104.159.4.179	104.159.4.220	164.130.252.175
104.16.1.49	104.16.1.50	104.16.1.51	104.16.1.52
104.16.1.53	104.16.1.54	104.16.1.55	104.16.1.56
104.16.1.57	104.16.1.59	104.16.1.6	104.16.1.60
104.16.1.63	104.16.1.65	104.16.1.66	104.16.1.67