104.180.93.49 - IPInfo

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.180.93.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27303
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.180.93.49.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061301 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 14 08:00:41 CST 2020
;; MSG SIZE  rcvd: 117

Host info

49.93.180.104.in-addr.arpa domain name pointer 104-180-93-49.lightspeed.irvnca.sbcglobal.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.93.180.104.in-addr.arpa	name = 104-180-93-49.lightspeed.irvnca.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.79.155.43	attackbotsspam	Unauthorized connection attempt detected from IP address 114.79.155.43 to port 445	2019-12-21 22:41:57
94.73.203.169	attack	Honeypot attack, port: 81, PTR: 169.203.73.94.ip.orionnet.ru.	2019-12-21 22:40:59
63.80.184.113	attackspam	Dec 21 07:22:14 grey postfix/smtpd\[17072\]: NOQUEUE: reject: RCPT from road.sapuxfiori.com\[63.80.184.113\]: 554 5.7.1 Service unavailable\; Client host \[63.80.184.113\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.80.184.113\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-21 22:12:42
80.211.158.23	attackbots	$f2bV_matches	2019-12-21 22:18:26
122.228.89.95	attackbots	Dec 21 14:42:43 meumeu sshd[1302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.228.89.95 Dec 21 14:42:45 meumeu sshd[1302]: Failed password for invalid user Mimapassword from 122.228.89.95 port 10584 ssh2 Dec 21 14:49:42 meumeu sshd[2364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.228.89.95 ...	2019-12-21 22:31:17
110.4.189.228	attackspam	Dec 21 14:36:45 nextcloud sshd\[27553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.4.189.228 user=root Dec 21 14:36:47 nextcloud sshd\[27553\]: Failed password for root from 110.4.189.228 port 37386 ssh2 Dec 21 14:47:31 nextcloud sshd\[12104\]: Invalid user guest from 110.4.189.228 Dec 21 14:47:31 nextcloud sshd\[12104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.4.189.228 ...	2019-12-21 22:32:01
162.243.137.171	attackspam	2019-12-21T11:43:44.196186centos sshd\[19558\]: Invalid user hemendu from 162.243.137.171 port 38466 2019-12-21T11:43:44.200606centos sshd\[19558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.137.171 2019-12-21T11:43:45.878996centos sshd\[19558\]: Failed password for invalid user hemendu from 162.243.137.171 port 38466 ssh2	2019-12-21 21:59:44
31.14.142.109	attackspam	Dec 21 05:34:10 Tower sshd[40865]: Connection from 31.14.142.109 port 51762 on 192.168.10.220 port 22 Dec 21 05:34:11 Tower sshd[40865]: Invalid user tmp from 31.14.142.109 port 51762 Dec 21 05:34:11 Tower sshd[40865]: error: Could not get shadow information for NOUSER Dec 21 05:34:11 Tower sshd[40865]: Failed password for invalid user tmp from 31.14.142.109 port 51762 ssh2 Dec 21 05:34:11 Tower sshd[40865]: Received disconnect from 31.14.142.109 port 51762:11: Bye Bye [preauth] Dec 21 05:34:11 Tower sshd[40865]: Disconnected from invalid user tmp 31.14.142.109 port 51762 [preauth]	2019-12-21 22:01:07
222.186.175.216	attack	Dec 21 15:18:53 localhost sshd[27849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Dec 21 15:18:56 localhost sshd[27849]: Failed password for root from 222.186.175.216 port 25264 ssh2 ...	2019-12-21 22:28:48
218.59.48.195	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-21 21:59:29
14.161.10.47	attackbots	Unauthorized connection attempt from IP address 14.161.10.47 on Port 445(SMB)	2019-12-21 22:16:46
206.189.142.10	attackspambots	Dec 21 04:04:12 auw2 sshd\[12813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10 user=backup Dec 21 04:04:14 auw2 sshd\[12813\]: Failed password for backup from 206.189.142.10 port 47740 ssh2 Dec 21 04:04:42 auw2 sshd\[12847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10 user=backup Dec 21 04:04:44 auw2 sshd\[12847\]: Failed password for backup from 206.189.142.10 port 55952 ssh2 Dec 21 04:10:07 auw2 sshd\[13574\]: Invalid user client from 206.189.142.10 Dec 21 04:10:07 auw2 sshd\[13574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.142.10	2019-12-21 22:22:54
182.96.52.137	attackbots	Scanning	2019-12-21 22:08:25
159.65.255.153	attackbots	[Aegis] @ 2019-12-21 15:02:18 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-21 22:29:36
180.66.207.67	attackspam	Triggered by Fail2Ban at Vostok web server	2019-12-21 22:41:41

Recently Reported IPs

97.83.10.249	81.141.251.89	80.133.76.77	64.170.106.111
189.100.77.118	195.158.6.187	161.45.210.75	112.145.209.154
113.172.179.235	110.123.145.36	75.249.100.47	114.180.88.105
54.88.6.206	198.27.64.212	79.23.155.222	77.129.120.163
152.200.199.5	70.30.235.49	81.132.44.7	175.167.95.137