23.138.249.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Reserved

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 23.138.249.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;23.138.249.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020201 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 10:47:20 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 48.249.138.23.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.249.138.23.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.115.178.83	attack	May 27 12:04:40 Tower sshd[24735]: Connection from 123.206.174.21 port 50822 on 192.168.10.220 port 22 rdomain "" May 27 12:04:42 Tower sshd[24735]: Failed password for root from 123.206.174.21 port 50822 ssh2 May 27 12:04:43 Tower sshd[24735]: Received disconnect from 123.206.174.21 port 50822:11: Bye Bye [preauth] May 27 12:04:43 Tower sshd[24735]: Disconnected from authenticating user root 123.206.174.21 port 50822 [preauth] May 28 02:47:26 Tower sshd[24735]: Connection from 45.115.178.83 port 38390 on 192.168.10.220 port 22 rdomain "" May 28 02:47:30 Tower sshd[24735]: Failed password for root from 45.115.178.83 port 38390 ssh2 May 28 02:47:30 Tower sshd[24735]: Received disconnect from 45.115.178.83 port 38390:11: Bye Bye [preauth] May 28 02:47:30 Tower sshd[24735]: Disconnected from authenticating user root 45.115.178.83 port 38390 [preauth]	2020-05-28 15:02:12
108.12.225.85	attackbotsspam	May 28 06:30:37 xeon sshd[20971]: Failed password for invalid user enable from 108.12.225.85 port 55062 ssh2	2020-05-28 14:58:23
14.116.188.151	attackspam	(sshd) Failed SSH login from 14.116.188.151 (CN/China/-): 5 in the last 3600 secs	2020-05-28 14:57:35
66.249.75.200	attackbots	[Thu May 28 10:55:41.938777 2020] [:error] [pid 18006:tid 140236939364096] [client 66.249.75.200:35010] [client 66.249.75.200] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/system-v19.css"] [unique_id "Xs82PbN-stSTIdCZsULRvgAAAhw"], referer: https://103.27.207.197/ ...	2020-05-28 15:19:45
178.149.114.79	attack	2020-05-28T07:45:13.096148sd-86998 sshd[41690]: Invalid user openvpn from 178.149.114.79 port 37272 2020-05-28T07:45:13.101651sd-86998 sshd[41690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cable-178-149-114-79.dynamic.sbb.rs 2020-05-28T07:45:13.096148sd-86998 sshd[41690]: Invalid user openvpn from 178.149.114.79 port 37272 2020-05-28T07:45:15.462523sd-86998 sshd[41690]: Failed password for invalid user openvpn from 178.149.114.79 port 37272 ssh2 2020-05-28T07:51:07.965063sd-86998 sshd[42496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cable-178-149-114-79.dynamic.sbb.rs user=root 2020-05-28T07:51:10.255778sd-86998 sshd[42496]: Failed password for root from 178.149.114.79 port 60880 ssh2 ...	2020-05-28 15:14:16
164.52.24.170	attackspambots	IP 164.52.24.170 attacked honeypot on port: 8080 at 5/28/2020 4:56:09 AM	2020-05-28 14:43:10
188.108.91.30	attackbots	SSH login attempts.	2020-05-28 14:41:48
106.12.190.254	attackspam	May 28 07:49:07 vmd48417 sshd[24733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.190.254	2020-05-28 15:17:51
111.229.109.26	attackbots	firewall-block, port(s): 22/tcp	2020-05-28 15:12:04
195.181.168.184	attackspambots	Tuesday, May 26, 2020 1:37 PM Received From: 195.181.168.184 From: Edison Dittmer dittmer.edison@googlemail.com advertising form spam bot	2020-05-28 14:41:11
124.43.9.184	attackspam	May 28 08:49:12 163-172-32-151 sshd[23830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.43.9.184 user=root May 28 08:49:14 163-172-32-151 sshd[23830]: Failed password for root from 124.43.9.184 port 53832 ssh2 ...	2020-05-28 15:08:02
209.141.41.4	attackspam	TCP (SYN) 209.141.41.4:38319 -> port 22, len 40	2020-05-28 14:48:33
180.166.141.58	attackbotsspam	May 28 08:34:00 debian-2gb-nbg1-2 kernel: \[12906431.044624\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.166.141.58 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=237 ID=35175 PROTO=TCP SPT=50029 DPT=17566 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-28 14:39:20
178.3.235.175	attackspambots	SSH login attempts.	2020-05-28 15:16:51
36.111.182.48	attackbots	SSH login attempts.	2020-05-28 15:02:50

Recently Reported IPs

25.53.227.55	195.28.180.97	220.215.142.15	217.106.223.135
4.231.140.93	239.237.1.149	96.137.69.29	73.50.173.125
64.170.228.115	132.140.14.209	93.191.192.179	142.2.249.137
213.240.214.22	119.138.226.210	76.166.185.23	203.10.110.30
147.13.192.48	242.78.251.232	137.43.205.99	234.156.181.75