116.22.48.215 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.22.48.48	attackspam	Email rejected due to spam filtering	2020-04-16 16:39:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.22.48.215
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.22.48.215.			IN	A

;; AUTHORITY SECTION:
.			538	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 19:09:52 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 215.48.22.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 215.48.22.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.37.14.3	attackspam	"fail2ban match"	2020-04-21 07:12:10
191.32.190.59	attackspam	Automatic report - Port Scan Attack	2020-04-21 07:12:28
49.235.83.156	attack	Invalid user test from 49.235.83.156 port 41952	2020-04-21 07:26:07
183.56.213.81	attackbotsspam	Invalid user vd from 183.56.213.81 port 47288	2020-04-21 07:40:45
145.239.92.175	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-04-21 07:33:12
45.14.224.100	attackbotsspam	51.158.173.243 45.14.224.100 - - [20/Apr/2020:20:39:44 +0000] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 301 64 "-" "-" 51.158.173.243 45.14.224.100 - - [20/Apr/2020:20:39:44 +0000] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 301 64 "-" "-" ...	2020-04-21 07:11:41
193.70.90.168	attack	$f2bV_matches	2020-04-21 07:22:46
109.224.12.170	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2020-04-21 07:22:28
10.79.48.10	attackspam	Port scanning	2020-04-21 07:28:05
176.98.76.210	attack	Casino spam	2020-04-21 07:32:41
185.175.93.11	attack	04/20/2020-19:31:02.676332 185.175.93.11 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-04-21 07:40:30
101.78.3.29	attackspam	Apr 21 00:03:35 prod4 sshd\[28426\]: Failed password for root from 101.78.3.29 port 47794 ssh2 Apr 21 00:08:11 prod4 sshd\[29891\]: Invalid user postgres from 101.78.3.29 Apr 21 00:08:14 prod4 sshd\[29891\]: Failed password for invalid user postgres from 101.78.3.29 port 49256 ssh2 ...	2020-04-21 07:41:13
31.167.133.137	attackbotsspam	Invalid user admin from 31.167.133.137 port 38622	2020-04-21 07:38:08
66.249.73.70	attackspam	[Tue Apr 21 06:21:37.078341 2020] [:error] [pid 7451:tid 140338691090176] [client 66.249.73.70:63230] [client 66.249.73.70] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/bmkg-malang.json"] [unique_id "Xp4ugRl@CjvK30y@iWjCmgAAALU"], referer: https://103.27.207.197/ ...	2020-04-21 07:31:33
46.56.66.27	attackspam	fake user registration/login attempts	2020-04-21 07:29:21

Recently Reported IPs

116.22.48.205	116.22.48.213	116.22.48.216	114.106.131.110
116.22.48.219	116.22.48.22	116.22.48.210	116.22.48.223
116.22.48.220	116.22.48.225	116.22.48.226	116.22.48.229
116.22.48.234	116.22.48.233	116.22.48.238	114.106.131.138
116.22.48.236	116.22.48.244	116.22.48.251	116.22.48.243