2.48.148.71 - IPInfo

Basic Info

City: Sharjah

Region: Sharjah

Country: United Arab Emirates

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.48.148.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.48.148.71.			IN	A

;; AUTHORITY SECTION:
.			491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:06:34 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 71.148.48.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 71.148.48.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.68.99.46	attack	Apr 1 09:57:26 server sshd\[21739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 user=root Apr 1 09:57:27 server sshd\[21739\]: Failed password for root from 138.68.99.46 port 57198 ssh2 Apr 1 10:11:30 server sshd\[25326\]: Invalid user lifeixin from 138.68.99.46 Apr 1 10:11:30 server sshd\[25326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 Apr 1 10:11:32 server sshd\[25326\]: Failed password for invalid user lifeixin from 138.68.99.46 port 57762 ssh2 ...	2020-04-01 17:20:14
49.233.162.31	attackbots	fail2ban	2020-04-01 17:55:15
60.220.32.203	attackspambots	" "	2020-04-01 17:48:51
87.249.164.79	attackspambots	Invalid user kul from 87.249.164.79 port 58336	2020-04-01 17:58:36
31.51.116.185	attackbots	Experienced a breach from this IP resulting in unauthorised Amazon gift card purchase.	2020-04-01 17:46:19
178.128.243.225	attackspambots	$f2bV_matches	2020-04-01 17:24:33
222.129.132.53	attackbotsspam	Apr 1 03:47:02 powerpi2 sshd[16478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.129.132.53 user=root Apr 1 03:47:04 powerpi2 sshd[16478]: Failed password for root from 222.129.132.53 port 58752 ssh2 Apr 1 03:49:31 powerpi2 sshd[16617]: Invalid user yangweifei from 222.129.132.53 port 45487 ...	2020-04-01 17:28:46
14.29.220.142	attack	Apr 1 04:59:32 hcbbdb sshd\[3632\]: Invalid user qhx from 14.29.220.142 Apr 1 04:59:32 hcbbdb sshd\[3632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.220.142 Apr 1 04:59:34 hcbbdb sshd\[3632\]: Failed password for invalid user qhx from 14.29.220.142 port 50988 ssh2 Apr 1 05:02:41 hcbbdb sshd\[4006\]: Invalid user nf from 14.29.220.142 Apr 1 05:02:41 hcbbdb sshd\[4006\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.220.142	2020-04-01 17:42:59
58.214.255.41	attackspambots	Apr 1 09:58:44 debian-2gb-nbg1-2 kernel: \[7986973.609592\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=58.214.255.41 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=34860 PROTO=TCP SPT=30206 DPT=29144 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-01 17:31:36
104.248.54.135	attackbotsspam	04/01/2020-05:30:21.333035 104.248.54.135 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-01 17:53:06
185.53.88.36	attackbotsspam	[2020-04-01 05:15:41] NOTICE[1148][C-00019cfc] chan_sip.c: Call from '' (185.53.88.36:51146) to extension '011442037698349' rejected because extension not found in context 'public'. [2020-04-01 05:15:41] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-01T05:15:41.083-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037698349",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.36/51146",ACLName="no_extension_match" [2020-04-01 05:16:49] NOTICE[1148][C-00019cff] chan_sip.c: Call from '' (185.53.88.36:49932) to extension '9011442037698349' rejected because extension not found in context 'public'. [2020-04-01 05:16:49] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-01T05:16:49.314-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037698349",SessionID="0x7fd82cdb8718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/1 ...	2020-04-01 17:36:30
104.248.225.22	attackbots	[Wed Apr 01 05:41:27.079898 2020] [:error] [pid 76630] [client 104.248.225.22:51150] [client 104.248.225.22] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ws24vmsma01.ufn.edu.br"] [uri "/xmlrpc.php"] [unique_id "XoRTt4m6A6pVxKvoDdYN0wAAACQ"] ...	2020-04-01 17:34:11
200.252.68.34	attack	Automatic report - SSH Brute-Force Attack	2020-04-01 17:23:07
180.128.8.7	attackbotsspam	Apr 1 10:40:30 srv206 sshd[8523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.128.8.7 user=root Apr 1 10:40:31 srv206 sshd[8523]: Failed password for root from 180.128.8.7 port 34464 ssh2 ...	2020-04-01 17:31:54
134.175.59.225	attack	Invalid user jktest from 134.175.59.225 port 42652	2020-04-01 17:26:06

Recently Reported IPs

2.49.66.134	2.44.183.92	2.50.137.105	2.50.159.136
2.50.170.55	2.50.170.130	2.50.25.166	2.50.20.119
2.51.228.59	2.52.75.77	2.56.121.64	2.50.64.198
2.55.122.105	2.56.152.124	2.56.56.179	2.56.56.136
2.56.56.248	2.56.59.143	2.57.121.248	2.57.121.242