48.55.68.152 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.55.68.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;48.55.68.152.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022801 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 04:42:01 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 152.68.55.48.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.68.55.48.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.97.20.31	attack	TCP (SYN) 83.97.20.31:34195 -> port 4567, len 44	2020-09-04 02:59:43
185.147.215.8	attack	[2020-09-03 14:38:00] NOTICE[1194] chan_sip.c: Registration from '' failed for '185.147.215.8:50733' - Wrong password [2020-09-03 14:38:00] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-03T14:38:00.486-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9606",SessionID="0x7f2ddc020b88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8/50733",Challenge="7ce92ddf",ReceivedChallenge="7ce92ddf",ReceivedHash="183a154608b84a3eea81ab22c44092ca" [2020-09-03 14:38:40] NOTICE[1194] chan_sip.c: Registration from '' failed for '185.147.215.8:63266' - Wrong password [2020-09-03 14:38:40] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-03T14:38:40.876-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6082",SessionID="0x7f2ddc020b88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8 ...	2020-09-04 02:47:46
81.192.87.130	attack	2020-09-03T14:08:04.960554mail.thespaminator.com sshd[18174]: Invalid user ftptest from 81.192.87.130 port 56302 2020-09-03T14:08:07.066184mail.thespaminator.com sshd[18174]: Failed password for invalid user ftptest from 81.192.87.130 port 56302 ssh2 ...	2020-09-04 03:13:36
212.72.214.149	attack	Automatic report - Banned IP Access	2020-09-04 02:53:14
170.246.204.23	attack	Attempted Brute Force (dovecot)	2020-09-04 02:45:50
189.6.36.205	attackbots	189.6.36.205 - - [03/Sep/2020:15:10:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 189.6.36.205 - - [03/Sep/2020:15:10:24 +0100] "POST /wp-login.php HTTP/1.1" 200 7800 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 189.6.36.205 - - [03/Sep/2020:15:11:24 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-09-04 02:49:49
167.172.200.70	attack	Automatic report - Banned IP Access	2020-09-04 03:00:42
103.61.37.88	attackbots	Invalid user newuser from 103.61.37.88 port 43572	2020-09-04 02:58:28
167.114.3.105	attack	Sep 3 14:41:39 l02a sshd[26780]: Invalid user vnc from 167.114.3.105 Sep 3 14:41:39 l02a sshd[26780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.ip-167-114-3.net Sep 3 14:41:39 l02a sshd[26780]: Invalid user vnc from 167.114.3.105 Sep 3 14:41:41 l02a sshd[26780]: Failed password for invalid user vnc from 167.114.3.105 port 51356 ssh2	2020-09-04 02:55:01
200.73.130.178	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-04 02:53:33
103.131.71.172	attackbots	(mod_security) mod_security (id:210730) triggered by 103.131.71.172 (VN/Vietnam/bot-103-131-71-172.coccoc.com): 5 in the last 3600 secs	2020-09-04 02:46:24
49.233.197.193	attackspambots	2020-09-03T09:13:44.389081linuxbox-skyline sshd[50327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.197.193 user=root 2020-09-03T09:13:46.020695linuxbox-skyline sshd[50327]: Failed password for root from 49.233.197.193 port 57058 ssh2 ...	2020-09-04 03:19:28
222.112.206.120	attackspambots	SSH break in attempt ...	2020-09-04 03:16:42
167.114.3.158	attackbotsspam	Sep 3 14:59:10 Tower sshd[43166]: Connection from 167.114.3.158 port 48558 on 192.168.10.220 port 22 rdomain "" Sep 3 14:59:11 Tower sshd[43166]: Invalid user f from 167.114.3.158 port 48558 Sep 3 14:59:11 Tower sshd[43166]: error: Could not get shadow information for NOUSER Sep 3 14:59:11 Tower sshd[43166]: Failed password for invalid user f from 167.114.3.158 port 48558 ssh2 Sep 3 14:59:11 Tower sshd[43166]: Received disconnect from 167.114.3.158 port 48558:11: Bye Bye [preauth] Sep 3 14:59:11 Tower sshd[43166]: Disconnected from invalid user f 167.114.3.158 port 48558 [preauth]	2020-09-04 03:06:26
218.92.0.165	attackspambots	Sep 3 14:44:27 NPSTNNYC01T sshd[8867]: Failed password for root from 218.92.0.165 port 63925 ssh2 Sep 3 14:44:40 NPSTNNYC01T sshd[8867]: Failed password for root from 218.92.0.165 port 63925 ssh2 Sep 3 14:44:43 NPSTNNYC01T sshd[8867]: Failed password for root from 218.92.0.165 port 63925 ssh2 Sep 3 14:44:43 NPSTNNYC01T sshd[8867]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 63925 ssh2 [preauth] ...	2020-09-04 02:49:33

Recently Reported IPs

25.157.55.63	127.95.34.114	229.112.5.243	81.35.34.44
98.226.68.230	137.92.27.231	20.214.100.118	145.168.149.16
67.54.41.44	126.217.112.198	35.38.221.163	251.21.236.230
59.18.11.241	48.239.99.131	231.154.189.192	162.106.37.15
164.142.223.71	139.145.67.53	177.150.134.78	198.71.130.250