254.152.70.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: IANA Special-Purpose Address

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 254.152.70.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;254.152.70.11.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022700 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 15:24:17 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 11.70.152.254.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.70.152.254.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.51.13.40	attackbotsspam	Honeypot attack, port: 2000, PTR: PTR record not found	2020-03-04 21:52:25
198.108.67.98	attack	" "	2020-03-04 21:34:40
104.131.13.199	attackbotsspam	Mar 4 13:10:16 srv-ubuntu-dev3 sshd[26501]: Invalid user updater from 104.131.13.199 Mar 4 13:10:16 srv-ubuntu-dev3 sshd[26501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 Mar 4 13:10:16 srv-ubuntu-dev3 sshd[26501]: Invalid user updater from 104.131.13.199 Mar 4 13:10:18 srv-ubuntu-dev3 sshd[26501]: Failed password for invalid user updater from 104.131.13.199 port 51356 ssh2 Mar 4 13:10:47 srv-ubuntu-dev3 sshd[26574]: Invalid user seongmin from 104.131.13.199 Mar 4 13:10:47 srv-ubuntu-dev3 sshd[26574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 Mar 4 13:10:47 srv-ubuntu-dev3 sshd[26574]: Invalid user seongmin from 104.131.13.199 Mar 4 13:10:49 srv-ubuntu-dev3 sshd[26574]: Failed password for invalid user seongmin from 104.131.13.199 port 58060 ssh2 Mar 4 13:11:15 srv-ubuntu-dev3 sshd[26650]: Invalid user test from 104.131.13.199 ...	2020-03-04 21:17:37
51.83.42.185	attackbotsspam	Mar 4 12:14:12 xeon sshd[50077]: Failed password for invalid user william from 51.83.42.185 port 35124 ssh2	2020-03-04 21:21:26
106.12.208.118	attackspambots	$f2bV_matches	2020-03-04 21:49:00
217.61.125.156	attackspam	3389BruteforceStormFW21	2020-03-04 21:54:37
114.220.76.79	attackbots	DATE:2020-03-04 07:59:02, IP:114.220.76.79, PORT:ssh SSH brute force auth (docker-dc)	2020-03-04 21:18:41
23.231.34.157	attack	[Wed Mar 04 11:50:33.185176 2020] [:error] [pid 28433:tid 140579581196032] [client 23.231.34.157:38799] [client 23.231.34.157] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "Xl8zmcj-GGk7OsxK2OUXxQAAAl0"] ...	2020-03-04 21:24:44
62.192.41.82	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 21:29:35
92.47.92.43	attackbotsspam	2020-03-03 22:35:12 H=([92.47.92.43]) [92.47.92.43]:31930 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3, 127.0.0.11) (https://www.spamhaus.org/query/ip/92.47.92.43) 2020-03-03 22:41:16 H=([92.47.92.43]) [92.47.92.43]:25975 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.11, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2020-03-03 22:50:45 H=([92.47.92.43]) [92.47.92.43]:14339 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3, 127.0.0.11) (https://www.spamhaus.org/query/ip/92.47.92.43) ...	2020-03-04 21:11:39
145.239.73.103	attackspam	Mar 4 02:41:17 hpm sshd\[31010\]: Invalid user dspace from 145.239.73.103 Mar 4 02:41:17 hpm sshd\[31010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.ip-145-239-73.eu Mar 4 02:41:19 hpm sshd\[31010\]: Failed password for invalid user dspace from 145.239.73.103 port 60660 ssh2 Mar 4 02:49:52 hpm sshd\[31805\]: Invalid user media from 145.239.73.103 Mar 4 02:49:52 hpm sshd\[31805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.ip-145-239-73.eu	2020-03-04 21:12:30
178.137.163.215	attackbots	GET /admin/fckeditor/editor/filemanager/upload/php/upload.php 404	2020-03-04 21:29:53
181.188.191.226	attackbots	Honeypot attack, port: 445, PTR: LPZ-181-188-191-00226.tigo.bo.	2020-03-04 21:45:36
61.144.244.32	attackspam	DATE:2020-03-04 12:05:29, IP:61.144.244.32, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-03-04 21:28:41
65.151.140.148	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 21:08:52

Recently Reported IPs

118.252.124.88	152.170.206.80	50.218.175.56	101.64.132.234
76.70.86.75	7.229.145.117	97.238.96.206	26.98.108.29
139.88.81.126	68.100.197.48	168.40.52.59	238.246.57.7
179.124.186.227	228.140.207.86	130.221.4.171	139.25.5.49
8.225.183.59	255.19.153.100	131.146.83.54	207.221.230.94