104.248.65.44 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.65.180	attackspam	2020-03-23T01:13:33.159071abusebot-6.cloudsearch.cf sshd[19882]: Invalid user daniel from 104.248.65.180 port 36374 2020-03-23T01:13:33.164374abusebot-6.cloudsearch.cf sshd[19882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.180 2020-03-23T01:13:33.159071abusebot-6.cloudsearch.cf sshd[19882]: Invalid user daniel from 104.248.65.180 port 36374 2020-03-23T01:13:35.282153abusebot-6.cloudsearch.cf sshd[19882]: Failed password for invalid user daniel from 104.248.65.180 port 36374 ssh2 2020-03-23T01:17:12.469320abusebot-6.cloudsearch.cf sshd[20121]: Invalid user anonymous from 104.248.65.180 port 52944 2020-03-23T01:17:12.476434abusebot-6.cloudsearch.cf sshd[20121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.180 2020-03-23T01:17:12.469320abusebot-6.cloudsearch.cf sshd[20121]: Invalid user anonymous from 104.248.65.180 port 52944 2020-03-23T01:17:14.659416abusebot-6.cloudsearch.cf s ...	2020-03-23 10:23:44
104.248.65.180	attack	Mar 21 13:09:53 XXX sshd[30293]: Invalid user pp from 104.248.65.180 port 38720	2020-03-21 21:03:08
104.248.65.180	attackspam	Invalid user temp from 104.248.65.180 port 55352	2020-03-17 10:38:19
104.248.65.180	attackbots	Mar 12 21:11:53 SilenceServices sshd[22563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.180 Mar 12 21:11:55 SilenceServices sshd[22563]: Failed password for invalid user dc from 104.248.65.180 port 34732 ssh2 Mar 12 21:14:54 SilenceServices sshd[26182]: Failed password for root from 104.248.65.180 port 33264 ssh2	2020-03-13 04:30:28
104.248.65.180	attackspam	frenzy	2020-03-07 08:12:49
104.248.65.180	attack	Feb 28 19:32:01 gw1 sshd[20624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.180 Feb 28 19:32:04 gw1 sshd[20624]: Failed password for invalid user ts3 from 104.248.65.180 port 50766 ssh2 ...	2020-02-29 01:43:06
104.248.65.180	attackbots	Feb 28 16:53:23 gw1 sshd[13782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.180 Feb 28 16:53:25 gw1 sshd[13782]: Failed password for invalid user svnuser from 104.248.65.180 port 44952 ssh2 ...	2020-02-28 19:59:07
104.248.65.180	attack	(sshd) Failed SSH login from 104.248.65.180 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 26 01:24:48 elude sshd[24443]: Invalid user raghu from 104.248.65.180 port 33106 Feb 26 01:24:50 elude sshd[24443]: Failed password for invalid user raghu from 104.248.65.180 port 33106 ssh2 Feb 26 01:37:07 elude sshd[25100]: Invalid user pai from 104.248.65.180 port 46092 Feb 26 01:37:09 elude sshd[25100]: Failed password for invalid user pai from 104.248.65.180 port 46092 ssh2 Feb 26 01:45:32 elude sshd[25637]: Invalid user hadoop from 104.248.65.180 port 35300	2020-02-26 10:17:05
104.248.65.180	attackspambots	Invalid user abe from 104.248.65.180 port 46558	2020-02-13 14:45:08
104.248.65.180	attackbotsspam	Invalid user gts from 104.248.65.180 port 55774	2020-02-12 07:03:10
104.248.65.180	attack	Unauthorized SSH login attempts	2020-02-12 01:54:45
104.248.65.180	attackbotsspam	Unauthorized connection attempt detected from IP address 104.248.65.180 to port 2220 [J]	2020-02-04 03:02:50
104.248.65.180	attack	Jan 24 01:17:58 MK-Soft-Root2 sshd[16431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.180 Jan 24 01:18:00 MK-Soft-Root2 sshd[16431]: Failed password for invalid user ts3user from 104.248.65.180 port 35628 ssh2 ...	2020-01-24 08:41:41
104.248.65.180	attackspam	Invalid user ww from 104.248.65.180 port 35966	2020-01-21 23:37:49
104.248.65.180	attack	Unauthorized connection attempt detected from IP address 104.248.65.180 to port 2220 [J]	2020-01-21 18:43:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.65.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4167
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.65.44.			IN	A

;; AUTHORITY SECTION:
.			581	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032000 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 16:40:09 CST 2022
;; MSG SIZE  rcvd: 106

Host info

44.65.248.104.in-addr.arpa domain name pointer tecnxs.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
44.65.248.104.in-addr.arpa	name = tecnxs.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.56.253.49	attackbots	Unauthorized connection attempt detected from IP address 195.56.253.49 to port 2220 [J]	2020-02-02 23:37:31
159.65.144.36	attackbots	2020-02-02T16:39:03.603500scmdmz1 sshd[23939]: Invalid user ftptest from 159.65.144.36 port 33438 2020-02-02T16:39:03.606382scmdmz1 sshd[23939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.144.36 2020-02-02T16:39:03.603500scmdmz1 sshd[23939]: Invalid user ftptest from 159.65.144.36 port 33438 2020-02-02T16:39:05.383828scmdmz1 sshd[23939]: Failed password for invalid user ftptest from 159.65.144.36 port 33438 ssh2 2020-02-02T16:42:41.914317scmdmz1 sshd[24240]: Invalid user mcserver from 159.65.144.36 port 60486 ...	2020-02-02 23:53:44
80.82.78.100	attackspambots	80.82.78.100 was recorded 15 times by 7 hosts attempting to connect to the following ports: 1027,1030,1045. Incident counter (4h, 24h, all-time): 15, 61, 17044	2020-02-02 23:54:14
61.185.131.172	attack	Feb 2 16:09:18 debian-2gb-nbg1-2 kernel: \[2915412.234928\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=61.185.131.172 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=6108 PROTO=TCP SPT=49677 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-03 00:06:57
103.131.89.244	attackspambots	Honeypot hit.	2020-02-03 00:10:24
195.228.22.54	attack	Oct 20 03:17:25 ms-srv sshd[55097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.228.22.54 user=root Oct 20 03:17:28 ms-srv sshd[55097]: Failed password for invalid user root from 195.228.22.54 port 4769 ssh2	2020-02-02 23:53:25
195.224.138.61	attackbots	Sep 9 20:06:42 ms-srv sshd[9965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.224.138.61 Sep 9 20:06:44 ms-srv sshd[9965]: Failed password for invalid user test from 195.224.138.61 port 56734 ssh2	2020-02-02 23:56:16
94.66.153.0	attackbotsspam	Unauthorized connection attempt detected from IP address 94.66.153.0 to port 22 [J]	2020-02-02 23:52:01
213.149.169.44	attackspambots	DATE:2020-02-02 16:09:35, IP:213.149.169.44, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-02-02 23:37:09
195.58.123.109	attack	Oct 21 23:08:57 ms-srv sshd[52620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.58.123.109 Oct 21 23:08:59 ms-srv sshd[52620]: Failed password for invalid user contador from 195.58.123.109 port 58714 ssh2	2020-02-02 23:35:20
195.211.142.87	attackbots	Jun 2 21:47:17 ms-srv sshd[49857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.211.142.87 Jun 2 21:47:18 ms-srv sshd[49857]: Failed password for invalid user fre from 195.211.142.87 port 48596 ssh2	2020-02-03 00:15:08
195.223.211.242	attackbots	Dec 24 05:25:04 ms-srv sshd[53048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.223.211.242 Dec 24 05:25:06 ms-srv sshd[53048]: Failed password for invalid user test from 195.223.211.242 port 59186 ssh2	2020-02-02 23:58:52
222.186.180.130	attackspam	Feb 2 16:58:43 debian64 sshd\[29421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Feb 2 16:58:45 debian64 sshd\[29421\]: Failed password for root from 222.186.180.130 port 10020 ssh2 Feb 2 16:58:48 debian64 sshd\[29421\]: Failed password for root from 222.186.180.130 port 10020 ssh2 ...	2020-02-03 00:07:41
138.68.82.194	attack	Feb 2 16:09:29 mout sshd[19314]: Invalid user uftp from 138.68.82.194 port 48092	2020-02-02 23:46:59
95.72.48.104	attack	[portscan] Port scan	2020-02-03 00:14:33

Recently Reported IPs

104.248.53.204	104.248.66.121	104.248.72.183	104.248.72.184
105.213.76.247	105.213.78.218	105.225.204.42	105.73.80.43
105.73.85.184	106.12.106.18	106.12.145.50	106.12.151.52
106.13.224.158	106.13.34.32	106.14.181.223	106.14.82.132
106.15.196.138	106.15.231.142	106.15.25.39	106.15.33.43