148.70.247.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.247.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.70.247.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 11:35:43 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 48.247.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.247.70.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.132.2.135	attack	Nov 7 10:32:47 nextcloud sshd\[11227\]: Invalid user zaq!!qaz from 120.132.2.135 Nov 7 10:32:47 nextcloud sshd\[11227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.2.135 Nov 7 10:32:49 nextcloud sshd\[11227\]: Failed password for invalid user zaq!!qaz from 120.132.2.135 port 50866 ssh2 ...	2019-11-07 18:56:55
37.59.224.39	attack	Nov 7 10:25:15 SilenceServices sshd[18189]: Failed password for root from 37.59.224.39 port 36203 ssh2 Nov 7 10:29:16 SilenceServices sshd[19289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.224.39 Nov 7 10:29:18 SilenceServices sshd[19289]: Failed password for invalid user zhuai from 37.59.224.39 port 55255 ssh2	2019-11-07 18:55:41
5.189.141.4	attackspam	5.189.141.4 was recorded 5 times by 3 hosts attempting to connect to the following ports: 80,6379. Incident counter (4h, 24h, all-time): 5, 17, 17	2019-11-07 18:57:15
27.33.24.14	attack	Telnetd brute force attack detected by fail2ban	2019-11-07 19:33:07
37.187.181.182	attack	Nov 7 05:29:15 firewall sshd[28825]: Invalid user 123456 from 37.187.181.182 Nov 7 05:29:18 firewall sshd[28825]: Failed password for invalid user 123456 from 37.187.181.182 port 55944 ssh2 Nov 7 05:33:08 firewall sshd[28918]: Invalid user mmcom from 37.187.181.182 ...	2019-11-07 19:21:29
46.105.123.189	attackspam	Web application attack detected by fail2ban	2019-11-07 19:14:39
14.161.36.215	attack	14.161.36.215 - - \[07/Nov/2019:08:54:20 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 14.161.36.215 - - \[07/Nov/2019:08:54:21 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-07 19:00:55
159.65.2.60	attackspam	83 tried to connect with "cannot find your hostname" in one day.	2019-11-07 19:14:24
172.104.166.245	attack	Nov 7 00:56:35 finn sshd[18339]: Invalid user btest from 172.104.166.245 port 10508 Nov 7 00:56:35 finn sshd[18339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.166.245 Nov 7 00:56:37 finn sshd[18339]: Failed password for invalid user btest from 172.104.166.245 port 10508 ssh2 Nov 7 00:56:38 finn sshd[18339]: Received disconnect from 172.104.166.245 port 10508:11: Bye Bye [preauth] Nov 7 00:56:38 finn sshd[18339]: Disconnected from 172.104.166.245 port 10508 [preauth] Nov 7 01:04:05 finn sshd[19279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.104.166.245 user=r.r Nov 7 01:04:07 finn sshd[19279]: Failed password for r.r from 172.104.166.245 port 11288 ssh2 Nov 7 01:04:07 finn sshd[19279]: Received disconnect from 172.104.166.245 port 11288:11: Bye Bye [preauth] Nov 7 01:04:07 finn sshd[19279]: Disconnected from 172.104.166.245 port 11288 [preauth] ........ -------------------------------------------	2019-11-07 19:31:49
54.39.98.253	attackspambots	Nov 7 11:35:12 localhost sshd\[24668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.98.253 user=root Nov 7 11:35:13 localhost sshd\[24668\]: Failed password for root from 54.39.98.253 port 47032 ssh2 Nov 7 11:42:38 localhost sshd\[25448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.98.253 user=root	2019-11-07 19:04:00
170.84.39.18	attack	postfix	2019-11-07 19:03:41
139.59.80.65	attack	Nov 7 12:20:32 MainVPS sshd[29337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 user=root Nov 7 12:20:34 MainVPS sshd[29337]: Failed password for root from 139.59.80.65 port 39978 ssh2 Nov 7 12:24:29 MainVPS sshd[29601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 user=root Nov 7 12:24:31 MainVPS sshd[29601]: Failed password for root from 139.59.80.65 port 51714 ssh2 Nov 7 12:28:14 MainVPS sshd[29873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 user=root Nov 7 12:28:17 MainVPS sshd[29873]: Failed password for root from 139.59.80.65 port 33540 ssh2 ...	2019-11-07 19:29:10
129.204.130.77	attackspambots	Nov 5 23:44:03 host2 sshd[11298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.130.77 user=r.r Nov 5 23:44:04 host2 sshd[11298]: Failed password for r.r from 129.204.130.77 port 36500 ssh2 Nov 5 23:44:05 host2 sshd[11298]: Received disconnect from 129.204.130.77: 11: Bye Bye [preauth] Nov 5 23:52:46 host2 sshd[9564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.130.77 user=r.r Nov 5 23:52:48 host2 sshd[9564]: Failed password for r.r from 129.204.130.77 port 37143 ssh2 Nov 5 23:52:48 host2 sshd[9564]: Received disconnect from 129.204.130.77: 11: Bye Bye [preauth] Nov 5 23:57:46 host2 sshd[26531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.130.77 user=r.r Nov 5 23:57:48 host2 sshd[26531]: Failed password for r.r from 129.204.130.77 port 56430 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=12	2019-11-07 18:53:47
178.33.233.54	attack	Nov 7 09:29:28 nextcloud sshd\[13900\]: Invalid user nagios1234 from 178.33.233.54 Nov 7 09:29:28 nextcloud sshd\[13900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.233.54 Nov 7 09:29:30 nextcloud sshd\[13900\]: Failed password for invalid user nagios1234 from 178.33.233.54 port 54650 ssh2 ...	2019-11-07 19:23:23
122.116.173.164	attackspambots	Telnetd brute force attack detected by fail2ban	2019-11-07 19:15:41

Recently Reported IPs

83.93.213.139	12.89.134.110	236.175.150.151	139.161.221.142
202.181.211.47	21.76.229.3	35.4.215.181	92.132.137.94
227.112.150.240	19.210.138.215	66.155.79.138	247.24.83.177
153.182.227.34	233.167.19.63	228.177.206.30	237.58.146.233
98.110.247.136	13.168.196.128	247.70.83.133	170.24.60.147