48.211.2.40 - IPInfo

Basic Info

City: Washington

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 48.211.2.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41038
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;48.211.2.40.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020800 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 19:02:17 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 40.2.211.48.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.2.211.48.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.234.54.58	attackbots	2020-04-09T22:24:13.291391shield sshd\[32743\]: Invalid user ts3sleep from 49.234.54.58 port 57718 2020-04-09T22:24:13.296071shield sshd\[32743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.54.58 2020-04-09T22:24:14.828238shield sshd\[32743\]: Failed password for invalid user ts3sleep from 49.234.54.58 port 57718 ssh2 2020-04-09T22:29:26.868962shield sshd\[1069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.54.58 user=root 2020-04-09T22:29:29.038250shield sshd\[1069\]: Failed password for root from 49.234.54.58 port 58580 ssh2	2020-04-10 09:42:58
45.6.72.17	attackspambots	(sshd) Failed SSH login from 45.6.72.17 (BR/Brazil/45.6.72.17.leonetprovedor.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 10 03:25:43 amsweb01 sshd[18973]: Invalid user earl from 45.6.72.17 port 55952 Apr 10 03:25:45 amsweb01 sshd[18973]: Failed password for invalid user earl from 45.6.72.17 port 55952 ssh2 Apr 10 03:40:25 amsweb01 sshd[20952]: Invalid user git from 45.6.72.17 port 38262 Apr 10 03:40:27 amsweb01 sshd[20952]: Failed password for invalid user git from 45.6.72.17 port 38262 ssh2 Apr 10 03:44:40 amsweb01 sshd[21539]: Invalid user losts from 45.6.72.17 port 46152	2020-04-10 09:50:42
191.32.218.21	attackspambots	SSH Brute-Force attacks	2020-04-10 09:45:17
86.245.25.253	attack	Apr 10 00:53:23 vps339862 kernel: \[5691719.481145\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=71 TOS=0x00 PREC=0x00 TTL=51 ID=13695 DF PROTO=UDP SPT=62858 DPT=53 LEN=51 Apr 10 00:53:25 vps339862 kernel: \[5691721.021041\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=66 TOS=0x00 PREC=0x00 TTL=51 ID=13665 DF PROTO=UDP SPT=37335 DPT=53 LEN=46 Apr 10 00:53:28 vps339862 kernel: \[5691723.611091\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=66 TOS=0x00 PREC=0x00 TTL=51 ID=9892 DF PROTO=UDP SPT=53063 DPT=53 LEN=46 Apr 10 00:53:33 vps339862 kernel: \[5691728.701103\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=86.245.25.253 DST=51.254.206.43 LEN=66 TOS=0x00 PREC=0x00 TTL=51 ID=17244 DF PROTO=UDP SPT=53004 ...	2020-04-10 09:57:42
93.39.104.224	attack	SSH brute force	2020-04-10 10:03:05
190.78.109.98	attack	Unauthorised access (Apr 10) SRC=190.78.109.98 LEN=40 TTL=53 ID=21017 TCP DPT=23 WINDOW=8300 SYN	2020-04-10 10:07:51
118.69.176.26	attackspam	SSH-BruteForce	2020-04-10 09:55:33
49.232.13.96	attackspambots	Apr 10 03:15:04 ArkNodeAT sshd\[20489\]: Invalid user scaner from 49.232.13.96 Apr 10 03:15:04 ArkNodeAT sshd\[20489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.13.96 Apr 10 03:15:06 ArkNodeAT sshd\[20489\]: Failed password for invalid user scaner from 49.232.13.96 port 52228 ssh2	2020-04-10 09:50:13
138.36.99.176	attackbotsspam	(sshd) Failed SSH login from 138.36.99.176 (AR/Argentina/138-36-99-176.reduno.com.ar): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 9 23:53:27 ubnt-55d23 sshd[24423]: Invalid user ubuntu from 138.36.99.176 port 56504 Apr 9 23:53:29 ubnt-55d23 sshd[24423]: Failed password for invalid user ubuntu from 138.36.99.176 port 56504 ssh2	2020-04-10 09:33:42
46.29.165.223	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-04-10 09:36:44
51.158.122.211	attack	Apr 10 03:38:00 pve sshd[7700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.122.211 Apr 10 03:38:02 pve sshd[7700]: Failed password for invalid user minecraft from 51.158.122.211 port 40520 ssh2 Apr 10 03:41:34 pve sshd[8271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.122.211	2020-04-10 09:56:03
88.156.122.72	attack	$f2bV_matches	2020-04-10 09:38:17
119.29.140.241	attackbotsspam	(sshd) Failed SSH login from 119.29.140.241 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 10 01:52:12 amsweb01 sshd[23928]: Invalid user test from 119.29.140.241 port 57572 Apr 10 01:52:14 amsweb01 sshd[23928]: Failed password for invalid user test from 119.29.140.241 port 57572 ssh2 Apr 10 02:01:10 amsweb01 sshd[29417]: User admin from 119.29.140.241 not allowed because not listed in AllowUsers Apr 10 02:01:10 amsweb01 sshd[29417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.140.241 user=admin Apr 10 02:01:12 amsweb01 sshd[29417]: Failed password for invalid user admin from 119.29.140.241 port 59224 ssh2	2020-04-10 10:05:11
182.48.230.18	attackspam	(sshd) Failed SSH login from 182.48.230.18 (IN/India/182.48.230.18.dvois.com): 5 in the last 3600 secs	2020-04-10 10:01:38
118.112.181.37	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-04-10 09:39:49

Recently Reported IPs

221.168.48.39	151.143.78.39	20.75.171.204	160.134.112.200
220.40.145.80	138.86.32.34	215.237.160.164	40.145.172.35
242.98.114.228	14.15.158.79	222.72.55.113	101.161.196.168
103.78.190.204	55.236.106.57	101.234.255.96	56.25.246.101
31.50.145.34	254.165.121.236	120.160.126.97	2.151.185.46