104.48.22.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.48.220.157	attack	Unauthorized connection attempt detected from IP address 104.48.220.157 to port 8000 [J]	2020-01-18 20:25:45
104.48.220.157	attack	Unauthorized connection attempt detected from IP address 104.48.220.157 to port 80 [J]	2020-01-14 18:05:30
104.48.220.157	attackspam	Unauthorized connection attempt detected from IP address 104.48.220.157 to port 88	2019-12-30 03:33:43
104.48.220.157	attack	Unauthorized connection attempt detected from IP address 104.48.220.157 to port 8000	2019-12-29 01:06:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.48.22.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45903
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.48.22.55.			IN	A

;; AUTHORITY SECTION:
.			430	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023053102 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 01 08:03:22 CST 2023
;; MSG SIZE  rcvd: 105

Host info

Host 55.22.48.104.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 104.48.22.55.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.85.69.70	attackbots	firewall-block, port(s): 23/tcp	2019-08-02 18:24:29
217.160.29.69	attackspambots	Jul 29 17:03:59 cumulus sshd[31028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.29.69 user=r.r Jul 29 17:04:01 cumulus sshd[31028]: Failed password for r.r from 217.160.29.69 port 36798 ssh2 Jul 29 17:04:01 cumulus sshd[31028]: Received disconnect from 217.160.29.69 port 36798:11: Bye Bye [preauth] Jul 29 17:04:01 cumulus sshd[31028]: Disconnected from 217.160.29.69 port 36798 [preauth] Jul 29 17:37:19 cumulus sshd[32097]: Invalid user user2 from 217.160.29.69 port 40708 Jul 29 17:37:19 cumulus sshd[32097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.29.69 Jul 29 17:37:21 cumulus sshd[32097]: Failed password for invalid user user2 from 217.160.29.69 port 40708 ssh2 Jul 29 17:37:21 cumulus sshd[32097]: Received disconnect from 217.160.29.69 port 40708:11: Bye Bye [preauth] Jul 29 17:37:21 cumulus sshd[32097]: Disconnected from 217.160.29.69 port 40708 [preauth] Jul 2........ -------------------------------	2019-08-02 17:49:24
165.227.88.141	attackspam	NAME : DIGITALOCEAN-19 CIDR : 165.227.0.0/16 SYN Flood DDoS Attack USA - New York - block certain countries :) IP: 165.227.88.141 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-02 18:26:53
106.2.12.222	attackbots	Aug 2 05:46:47 vps200512 sshd\[8771\]: Invalid user test from 106.2.12.222 Aug 2 05:46:47 vps200512 sshd\[8771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.2.12.222 Aug 2 05:46:50 vps200512 sshd\[8771\]: Failed password for invalid user test from 106.2.12.222 port 54179 ssh2 Aug 2 05:50:26 vps200512 sshd\[8855\]: Invalid user redis from 106.2.12.222 Aug 2 05:50:26 vps200512 sshd\[8855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.2.12.222	2019-08-02 18:53:43
216.243.31.2	attackspambots	firewall-block, port(s): 80/tcp	2019-08-02 18:20:13
72.137.253.122	attackbots	Jul 30 22:52:13 indra sshd[104121]: Address 72.137.253.122 maps to cpe00fc8d4c7d73-cm00fc8d4c7d70.cpe.net.cable.rogers.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 30 22:52:13 indra sshd[104121]: Invalid user crap from 72.137.253.122 Jul 30 22:52:13 indra sshd[104121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.137.253.122 Jul 30 22:52:16 indra sshd[104121]: Failed password for invalid user crap from 72.137.253.122 port 46634 ssh2 Jul 30 22:52:16 indra sshd[104121]: Received disconnect from 72.137.253.122: 11: Bye Bye [preauth] Jul 30 23:00:09 indra sshd[105775]: Address 72.137.253.122 maps to cpe00fc8d4c7d73-cm00fc8d4c7d70.cpe.net.cable.rogers.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 30 23:00:09 indra sshd[105775]: Invalid user www from 72.137.253.122 Jul 30 23:00:09 indra sshd[105775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu........ -------------------------------	2019-08-02 18:05:07
81.155.96.76	attack	$f2bV_matches	2019-08-02 17:47:38
138.68.222.239	attackspambots	10s of requests to none existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined node-superagent/4.1.0	2019-08-02 17:50:32
185.220.70.145	attackspam	Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour	2019-08-02 18:52:58
176.31.172.40	attackspambots	Aug 2 09:51:08 debian sshd\[23820\]: Invalid user dom from 176.31.172.40 port 52314 Aug 2 09:51:08 debian sshd\[23820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.172.40 ...	2019-08-02 18:10:20
182.61.164.210	attackbots	Aug 2 11:54:23 microserver sshd[29849]: Invalid user airadmin from 182.61.164.210 port 59514 Aug 2 11:54:23 microserver sshd[29849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.164.210 Aug 2 11:54:25 microserver sshd[29849]: Failed password for invalid user airadmin from 182.61.164.210 port 59514 ssh2 Aug 2 11:59:25 microserver sshd[30617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.164.210 user=root Aug 2 11:59:27 microserver sshd[30617]: Failed password for root from 182.61.164.210 port 54546 ssh2 Aug 2 12:09:39 microserver sshd[32068]: Invalid user karolina from 182.61.164.210 port 44880 Aug 2 12:09:39 microserver sshd[32068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.164.210 Aug 2 12:09:41 microserver sshd[32068]: Failed password for invalid user karolina from 182.61.164.210 port 44880 ssh2 Aug 2 12:14:41 microserver sshd[32751]: Invalid user	2019-08-02 19:05:43
211.151.95.139	attackbotsspam	Aug 2 10:51:31 icinga sshd[13286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.151.95.139 Aug 2 10:51:33 icinga sshd[13286]: Failed password for invalid user banjob from 211.151.95.139 port 39854 ssh2 ...	2019-08-02 17:52:25
5.55.53.141	attackspam	Telnet Server BruteForce Attack	2019-08-02 17:43:51
117.50.59.144	attackspambots	Aug 2 09:13:11 MK-Soft-VM6 sshd\[15913\]: Invalid user yui from 117.50.59.144 port 34722 Aug 2 09:13:11 MK-Soft-VM6 sshd\[15913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.59.144 Aug 2 09:13:13 MK-Soft-VM6 sshd\[15913\]: Failed password for invalid user yui from 117.50.59.144 port 34722 ssh2 ...	2019-08-02 17:54:02
107.170.247.224	attackspam	/wsrsss.php?name=htp://example.com&file=test.txt	2019-08-02 18:23:17

Recently Reported IPs

244.234.177.118	190.51.134.138	138.71.212.130	59.65.139.253
172.186.167.8	178.17.106.76	96.6.143.255	211.238.96.254
209.225.139.84	76.61.35.200	182.120.1.172	119.73.95.78
185.222.209.76	130.54.99.150	12.67.141.183	170.156.72.32
125.81.205.85	41.81.204.178	114.179.12.223	145.130.132.223