48.154.252.123

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.154.252.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;48.154.252.123.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 08:15:24 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 123.252.154.48.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.252.154.48.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.111	attackspam	SSH Bruteforce attempt	2019-08-22 02:14:20
112.85.42.89	attackbots	Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89 Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89 Aug 21 14:24:21 dcd-gentoo sshd[17552]: User root from 112.85.42.89 not allowed because none of user's groups are listed in AllowGroups Aug 21 14:24:23 dcd-gentoo sshd[17552]: error: PAM: Authentication failure for illegal user root from 112.85.42.89 Aug 21 14:24:23 dcd-gentoo sshd[17552]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.89 port 53289 ssh2 ...	2019-08-22 02:45:30
106.52.217.229	attackbots	Aug 21 12:46:14 raspberrypi sshd\[26186\]: Failed password for root from 106.52.217.229 port 35646 ssh2Aug 21 12:55:51 raspberrypi sshd\[26616\]: Invalid user tomcat from 106.52.217.229Aug 21 12:55:54 raspberrypi sshd\[26616\]: Failed password for invalid user tomcat from 106.52.217.229 port 51760 ssh2 ...	2019-08-22 02:50:10
103.27.237.67	attackspam	Aug 21 19:43:58 mout sshd[12441]: Invalid user admin from 103.27.237.67 port 62431 Aug 21 19:44:01 mout sshd[12441]: Failed password for invalid user admin from 103.27.237.67 port 62431 ssh2 Aug 21 19:55:17 mout sshd[13377]: Invalid user tomcat from 103.27.237.67 port 45819	2019-08-22 02:12:34
178.156.202.101	attackbotsspam	Lines containing failures of 178.156.202.101 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.156.202.101	2019-08-22 02:14:47
139.199.21.245	attackbotsspam	Aug 21 03:58:18 web1 sshd\[12545\]: Invalid user ftptest from 139.199.21.245 Aug 21 03:58:18 web1 sshd\[12545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245 Aug 21 03:58:20 web1 sshd\[12545\]: Failed password for invalid user ftptest from 139.199.21.245 port 52472 ssh2 Aug 21 04:03:11 web1 sshd\[13017\]: Invalid user yu from 139.199.21.245 Aug 21 04:03:11 web1 sshd\[13017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.21.245	2019-08-22 02:07:20
49.85.243.249	attackspam	2019-08-21 13:52:09 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:1108: 535 Incorrect authentication data (set_id=info) 2019-08-21 13:52:16 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:1528: 535 Incorrect authentication data (set_id=info) 2019-08-21 13:52:27 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:2068: 535 Incorrect authentication data (set_id=info) 2019-08-21 13:52:45 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:2808: 535 Incorrect authentication data 2019-08-21 13:52:56 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:3506: 535 Incorrect authentication data 2019-08-21 13:53:08 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:4091: 535 Incorrect authentication data 2019-08-21 13:53:19 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:4640: 535 Incorrect authentication data 2019-08-21 13:53:30 dovecot_login authenticator failed for (ylmf-pc)........ ------------------------------	2019-08-22 02:46:15
165.227.140.123	attackspam	Fail2Ban - SSH Bruteforce Attempt	2019-08-22 02:20:11
138.197.195.52	attackspam	Aug 21 02:24:13 hanapaa sshd\[17930\]: Invalid user sdtdserver from 138.197.195.52 Aug 21 02:24:13 hanapaa sshd\[17930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52 Aug 21 02:24:15 hanapaa sshd\[17930\]: Failed password for invalid user sdtdserver from 138.197.195.52 port 39262 ssh2 Aug 21 02:28:26 hanapaa sshd\[18295\]: Invalid user aplusbiz from 138.197.195.52 Aug 21 02:28:26 hanapaa sshd\[18295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.195.52	2019-08-22 02:09:07
101.177.139.44	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-08-22 02:42:05
77.30.249.247	attack	Aug 21 12:25:21 mail sshd[8626]: Invalid user myftp from 77.30.249.247 Aug 21 12:25:21 mail sshd[8626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.30.249.247 Aug 21 12:25:23 mail sshd[8626]: Failed password for invalid user myftp from 77.30.249.247 port 23371 ssh2 Aug 21 12:47:54 mail sshd[8995]: Invalid user blake from 77.30.249.247 Aug 21 12:47:54 mail sshd[8995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.30.249.247 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=77.30.249.247	2019-08-22 02:13:53
74.195.8.197	attack	Aug 21 12:46:00 venus sshd[5545]: Invalid user osboxes from 74.195.8.197 port 60178 Aug 21 12:46:02 venus sshd[5545]: Failed password for invalid user osboxes from 74.195.8.197 port 60178 ssh2 Aug 21 12:46:07 venus sshd[5608]: Invalid user nexthink from 74.195.8.197 port 60743 Aug 21 12:46:08 venus sshd[5608]: Failed password for invalid user nexthink from 74.195.8.197 port 60743 ssh2 Aug 21 12:46:17 venus sshd[5630]: Invalid user pi from 74.195.8.197 port 33174 Aug 21 12:46:19 venus sshd[5630]: Failed password for invalid user pi from 74.195.8.197 port 33174 ssh2 Aug 21 12:46:30 venus sshd[5675]: Invalid user pi from 74.195.8.197 port 35471 Aug 21 12:46:32 venus sshd[5675]: Failed password for invalid user pi from 74.195.8.197 port 35471 ssh2 Aug 21 12:46:37 venus sshd[5684]: Invalid user ubnt from 74.195.8.197 port 35836 Aug 21 12:46:39 venus sshd[5684]: Failed password for invalid user ubnt from 74.195.8.197 port 35836 ssh2 Aug 21 12:47:12 venus sshd[5856]: Invalid us........ ------------------------------	2019-08-22 02:37:28
117.88.176.166	attack	[munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:31 +0200] "POST /[munged]: HTTP/1.1" 200 9039 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:33 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:34 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:35 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:39:37 +0200] "POST /[munged]: HTTP/1.1" 200 4378 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.88.176.166 - - [21/Aug/2019:13:	2019-08-22 01:48:46
159.65.159.1	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-08-22 02:48:52
104.0.143.234	attackbotsspam	Aug 21 18:21:01 mail sshd\[14386\]: Failed password for invalid user drschwan from 104.0.143.234 port 56194 ssh2 Aug 21 18:44:22 mail sshd\[15128\]: Invalid user jaquilante from 104.0.143.234 port 52177 ...	2019-08-22 01:56:11

Recently Reported IPs

36.62.170.14	236.246.78.123	114.91.94.34	151.188.158.45
61.65.63.236	164.206.254.173	236.122.77.235	141.50.27.228
55.29.200.79	51.228.62.70	156.240.205.14	245.162.76.190
179.87.127.233	53.165.115.26	17.29.43.230	232.168.209.153
56.219.52.6	69.186.43.116	55.126.2.134	20.135.126.62