48.104.72.231 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.104.72.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5334
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;48.104.72.231.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 15:17:14 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 231.72.104.48.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 231.72.104.48.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.176.77.67	attackbotsspam	(Jul 7) LEN=40 TTL=244 ID=48395 DF TCP DPT=23 WINDOW=14600 SYN (Jul 7) LEN=40 TTL=244 ID=14627 DF TCP DPT=23 WINDOW=14600 SYN (Jul 7) LEN=40 TTL=244 ID=33554 DF TCP DPT=23 WINDOW=14600 SYN (Jul 7) LEN=40 TTL=244 ID=3974 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=18593 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=32133 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=28070 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=50149 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=16528 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=9102 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=62366 DF TCP DPT=23 WINDOW=14600 SYN (Jul 6) LEN=40 TTL=244 ID=28699 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=59772 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=1588 DF TCP DPT=23 WINDOW=14600 SYN (Jul 5) LEN=40 TTL=244 ID=3631 DF TCP DPT=23 WINDOW=14600 SYN ...	2019-07-07 17:28:28
144.217.191.147	attackspam	2019-07-07T07:34:24.469633mail01 postfix/smtpd[10564]: warning: smtp-primario.csebrunosantos.tk[144.217.191.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-07T07:38:22.090365mail01 postfix/smtpd[16976]: warning: smtp-primario.csebrunosantos.tk[144.217.191.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-07T07:38:22.090806mail01 postfix/smtpd[2975]: warning: smtp-primario.csebrunosantos.tk[144.217.191.147]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-07 17:14:08
177.44.17.196	attack	Jul 6 22:46:54 mailman postfix/smtpd[3601]: warning: unknown[177.44.17.196]: SASL PLAIN authentication failed: authentication failure	2019-07-07 17:16:45
103.119.138.254	attack	5555/tcp 445/tcp... [2019-05-07/07-07]6pkt,2pt.(tcp)	2019-07-07 17:50:09
60.191.52.254	attackbots	07.07.2019 08:04:40 HTTP access blocked by firewall	2019-07-07 18:04:47
186.250.114.93	attackspambots	Brute force attempt	2019-07-07 17:39:28
193.112.244.110	attackspam	SSH Bruteforce Attack	2019-07-07 17:34:14
80.91.176.139	attackbotsspam	Jul 7 10:47:24 s64-1 sshd[31450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.91.176.139 Jul 7 10:47:27 s64-1 sshd[31450]: Failed password for invalid user technical from 80.91.176.139 port 58127 ssh2 Jul 7 10:50:39 s64-1 sshd[31459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.91.176.139 ...	2019-07-07 17:17:57
42.118.46.96	attackspambots	Autoban 42.118.46.96 AUTH/CONNECT	2019-07-07 17:48:09
106.12.215.130	attackbots	Jul 7 07:02:35 s64-1 sshd[29435]: Failed password for root from 106.12.215.130 port 56722 ssh2 Jul 7 07:05:24 s64-1 sshd[29478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.215.130 Jul 7 07:05:26 s64-1 sshd[29478]: Failed password for invalid user guest from 106.12.215.130 port 52728 ssh2 ...	2019-07-07 17:35:45
128.199.196.155	attackspam	Jul 7 10:11:24 mail sshd\[3086\]: Invalid user joseph from 128.199.196.155 Jul 7 10:11:24 mail sshd\[3086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.196.155 Jul 7 10:11:26 mail sshd\[3086\]: Failed password for invalid user joseph from 128.199.196.155 port 34738 ssh2 ...	2019-07-07 17:22:46
167.86.106.102	attack	Jul 7 08:37:23 server2 sshd\[18735\]: User root from vmi261694.contaboserver.net not allowed because not listed in AllowUsers Jul 7 08:37:24 server2 sshd\[18737\]: Invalid user admin from 167.86.106.102 Jul 7 08:37:24 server2 sshd\[18739\]: User root from vmi261694.contaboserver.net not allowed because not listed in AllowUsers Jul 7 08:37:25 server2 sshd\[18741\]: Invalid user admin from 167.86.106.102 Jul 7 08:37:25 server2 sshd\[18743\]: Invalid user user from 167.86.106.102 Jul 7 08:37:26 server2 sshd\[18745\]: Invalid user user from 167.86.106.102	2019-07-07 18:02:48
139.162.77.6	attack	3389/tcp 3389/tcp 3389/tcp... [2019-05-07/07-07]87pkt,1pt.(tcp)	2019-07-07 17:20:39
190.129.64.102	attack	445/tcp 445/tcp 445/tcp [2019-07-03/07]3pkt	2019-07-07 17:13:24
5.135.120.247	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(07070954)	2019-07-07 17:28:53

Recently Reported IPs

234.232.48.241	205.252.138.34	16.193.10.246	13.140.105.28
230.202.58.96	129.145.40.121	211.225.229.243	119.55.90.144
246.10.234.110	240.130.230.136	175.87.93.34	208.188.65.157
207.58.38.18	68.252.68.130	21.47.144.207	76.191.29.205
177.247.130.109	64.190.181.163	187.197.226.91	136.124.152.9