48.1.214.254 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.1.214.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19810
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;48.1.214.254.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 22:22:27 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 254.214.1.48.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 254.214.1.48.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.156.198.128	attack	Sep 3 18:13:45 kunden sshd[19183]: Address 141.156.198.128 maps to pool-141-156-198-128.washdc.fios.verizon.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 3 18:13:45 kunden sshd[19183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.156.198.128 user=r.r Sep 3 18:13:47 kunden sshd[19183]: Failed password for r.r from 141.156.198.128 port 33418 ssh2 Sep 3 18:13:49 kunden sshd[19183]: Failed password for r.r from 141.156.198.128 port 33418 ssh2 Sep 3 18:13:52 kunden sshd[19183]: Failed password for r.r from 141.156.198.128 port 33418 ssh2 Sep 3 18:13:54 kunden sshd[19183]: Failed password for r.r from 141.156.198.128 port 33418 ssh2 Sep 3 18:13:57 kunden sshd[19183]: Failed password for r.r from 141.156.198.128 port 33418 ssh2 Sep 3 18:13:59 kunden sshd[19183]: Failed password for r.r from 141.156.198.128 port 33418 ssh2 Sep 3 18:13:59 kunden sshd[19183]: PAM 5 more authentication failu........ -------------------------------	2020-09-05 04:15:30
175.197.233.197	attack	Sep 4 20:32:35 vps-51d81928 sshd[215119]: Invalid user shawnding from 175.197.233.197 port 53546 Sep 4 20:32:35 vps-51d81928 sshd[215119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.197.233.197 Sep 4 20:32:35 vps-51d81928 sshd[215119]: Invalid user shawnding from 175.197.233.197 port 53546 Sep 4 20:32:37 vps-51d81928 sshd[215119]: Failed password for invalid user shawnding from 175.197.233.197 port 53546 ssh2 Sep 4 20:34:04 vps-51d81928 sshd[215130]: Invalid user svn from 175.197.233.197 port 46726 ...	2020-09-05 04:46:40
45.142.120.93	attackspambots	2020-09-04 23:14:25 dovecot_login authenticator failed for $User$ \[45.142.120.93\]: 535 Incorrect authentication data $set_id=pacific@org.ua$2020-09-04 23:15:04 dovecot_login authenticator failed for $User$ \[45.142.120.93\]: 535 Incorrect authentication data $set_id=aris@org.ua$2020-09-04 23:15:39 dovecot_login authenticator failed for $User$ \[45.142.120.93\]: 535 Incorrect authentication data $set_id=grants@org.ua$ ...	2020-09-05 04:25:14
179.6.198.209	attack	Sep 3 18:41:53 mellenthin postfix/smtpd[20177]: NOQUEUE: reject: RCPT from unknown[179.6.198.209]: 554 5.7.1 Service unavailable; Client host [179.6.198.209] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/179.6.198.209; from= to= proto=ESMTP helo=<[179.6.198.209]>	2020-09-05 04:39:32
118.70.239.146	attackspam	118.70.239.146 - - [04/Sep/2020:17:53:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2208 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 118.70.239.146 - - [04/Sep/2020:17:53:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2205 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 118.70.239.146 - - [04/Sep/2020:17:53:55 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-05 04:44:58
120.237.118.139	attackbots	$f2bV_matches	2020-09-05 04:13:39
51.210.166.13	attackspam	Sep 3 18:23:27 mxgate1 postfix/postscreen[14653]: CONNECT from [51.210.166.13]:40689 to [176.31.12.44]:25 Sep 3 18:23:27 mxgate1 postfix/dnsblog[14763]: addr 51.210.166.13 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 3 18:23:33 mxgate1 postfix/postscreen[14653]: DNSBL rank 2 for [51.210.166.13]:40689 Sep 3 18:23:33 mxgate1 postfix/tlsproxy[14915]: CONNECT from [51.210.166.13]:40689 Sep x@x Sep 3 18:23:33 mxgate1 postfix/postscreen[14653]: DISCONNECT [51.210.166.13]:40689 Sep 3 18:23:33 mxgate1 postfix/tlsproxy[14915]: DISCONNECT [51.210.166.13]:40689 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.210.166.13	2020-09-05 04:39:58
118.76.188.43	attack	Portscan detected	2020-09-05 04:28:09
118.25.114.245	attackspambots	Time: Fri Sep 4 01:37:49 2020 +0000 IP: 118.25.114.245 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 01:26:57 pv-14-ams2 sshd[9541]: Invalid user dmh from 118.25.114.245 port 49940 Sep 4 01:26:59 pv-14-ams2 sshd[9541]: Failed password for invalid user dmh from 118.25.114.245 port 49940 ssh2 Sep 4 01:32:25 pv-14-ams2 sshd[27637]: Invalid user sjj from 118.25.114.245 port 49612 Sep 4 01:32:26 pv-14-ams2 sshd[27637]: Failed password for invalid user sjj from 118.25.114.245 port 49612 ssh2 Sep 4 01:37:43 pv-14-ams2 sshd[12590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.114.245 user=root	2020-09-05 04:18:39
51.77.200.139	attackbotsspam	Sep 4 22:12:29 lnxweb62 sshd[25879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.139 Sep 4 22:12:29 lnxweb62 sshd[25879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.139	2020-09-05 04:48:34
207.180.196.207	attackbots	[portscan] tcp/22 [SSH] in blocklist.de:'listed [ssh]' *(RWIN=65535)(09040932)	2020-09-05 04:36:05
208.65.181.179	attackbotsspam	$f2bV_matches	2020-09-05 04:40:51
91.121.30.96	attack	2020-09-04T18:17:23.329456dmca.cloudsearch.cf sshd[21970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3032341.ip-91-121-30.eu user=root 2020-09-04T18:17:24.891692dmca.cloudsearch.cf sshd[21970]: Failed password for root from 91.121.30.96 port 60088 ssh2 2020-09-04T18:22:50.796142dmca.cloudsearch.cf sshd[22106]: Invalid user oracle from 91.121.30.96 port 59042 2020-09-04T18:22:50.802086dmca.cloudsearch.cf sshd[22106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3032341.ip-91-121-30.eu 2020-09-04T18:22:50.796142dmca.cloudsearch.cf sshd[22106]: Invalid user oracle from 91.121.30.96 port 59042 2020-09-04T18:22:52.264535dmca.cloudsearch.cf sshd[22106]: Failed password for invalid user oracle from 91.121.30.96 port 59042 ssh2 2020-09-04T18:26:03.038475dmca.cloudsearch.cf sshd[22309]: Invalid user hqy from 91.121.30.96 port 36140 ...	2020-09-05 04:28:28
101.32.45.10	attack	Invalid user mc from 101.32.45.10 port 55400	2020-09-05 04:17:31
93.87.143.242	attackspambots	Honeypot attack, port: 445, PTR: 93-87-143-242.dynamic.isp.telekom.rs.	2020-09-05 04:27:33

Recently Reported IPs

225.113.79.13	227.187.87.214	207.57.174.61	210.204.179.229
48.115.133.177	193.97.64.11	186.255.233.36	48.248.220.157
235.225.101.3	253.156.121.109	128.104.140.43	214.240.38.126
173.217.106.30	250.170.114.67	62.118.168.15	234.129.156.5
88.110.233.26	88.148.165.108	226.133.244.155	233.202.95.188