11.48.11.47 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 11.48.11.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46940
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;11.48.11.47.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023052400 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 15:00:00 CST 2023
;; MSG SIZE  rcvd: 104

HOST信息:

Host 47.11.48.11.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 47.11.48.11.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.92.0.133	attackspambots	Icarus honeypot on github	2020-09-07 20:22:27
176.210.160.189	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-07 20:18:59
104.248.160.58	attack	(sshd) Failed SSH login from 104.248.160.58 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 7 06:18:41 server sshd[21475]: Invalid user speech-dispatcher from 104.248.160.58 port 49110 Sep 7 06:18:43 server sshd[21475]: Failed password for invalid user speech-dispatcher from 104.248.160.58 port 49110 ssh2 Sep 7 06:29:12 server sshd[24370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.160.58 user=root Sep 7 06:29:15 server sshd[24370]: Failed password for root from 104.248.160.58 port 46902 ssh2 Sep 7 06:32:28 server sshd[25146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.160.58 user=root	2020-09-07 20:07:09
23.129.64.180	attack	SSH bruteforce	2020-09-07 20:13:20
73.176.242.136	attack	Threat Management Alert 1: Attempted Administrator Privilege Gain. Signature ET EXPLOIT MVPower DVR Shell UCE. From: 73.176.242.136:33454, to: 192.168.4.99:80, protocol: TCP	2020-09-07 20:30:44
88.135.39.26	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-09-07 20:20:55
161.35.200.233	attackspam	Sep 7 17:46:52 dhoomketu sshd[2938619]: Failed password for invalid user ftp from 161.35.200.233 port 37312 ssh2 Sep 7 17:50:13 dhoomketu sshd[2938693]: Invalid user configure from 161.35.200.233 port 41462 Sep 7 17:50:13 dhoomketu sshd[2938693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.200.233 Sep 7 17:50:13 dhoomketu sshd[2938693]: Invalid user configure from 161.35.200.233 port 41462 Sep 7 17:50:14 dhoomketu sshd[2938693]: Failed password for invalid user configure from 161.35.200.233 port 41462 ssh2 ...	2020-09-07 20:30:24
112.85.42.194	attack	$f2bV_matches	2020-09-07 20:41:22
1.9.21.100	attackbotsspam	Unauthorized connection attempt from IP address 1.9.21.100 on Port 445(SMB)	2020-09-07 20:02:04
118.70.117.156	attackspam	Sep 7 10:33:50 root sshd[10559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.117.156 ...	2020-09-07 20:32:41
112.119.33.54	attackbotsspam	Honeypot attack, port: 5555, PTR: n11211933054.netvigator.com.	2020-09-07 20:31:16
194.180.224.130	attackbotsspam	TCP (SYN) 194.180.224.130:41015 -> port 22, len 44	2020-09-07 20:39:35
36.99.180.242	attackspambots	(sshd) Failed SSH login from 36.99.180.242 (CN/China/-): 5 in the last 3600 secs	2020-09-07 20:33:53
139.162.116.133	attackspam	srvr2: (mod_security) mod_security (id:920350) triggered by 139.162.116.133 (JP/-/scan-66.security.ipip.net): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/06 18:45:21 [error] 75202#0: 153186 [client 139.162.116.133] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159941072171.478932"] [ref "o0,14v21,14"], client: 139.162.116.133, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-07 20:06:17
192.241.169.150	attack	192.241.169.150 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 7 11:27:44 server sshd[19452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.169.150 user=root Sep 7 11:27:46 server sshd[19452]: Failed password for root from 192.241.169.150 port 46114 ssh2 Sep 7 11:27:25 server sshd[19396]: Failed password for root from 91.134.143.172 port 36736 ssh2 Sep 7 11:02:02 server sshd[15588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.12.227.131 user=root Sep 7 11:02:05 server sshd[15588]: Failed password for root from 177.12.227.131 port 7245 ssh2 Sep 7 11:28:26 server sshd[19566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=4.17.231.194 user=root IP Addresses Blocked:	2020-09-07 20:05:49

最近上报的IP列表

43.208.192.67	3.215.43.167	54.185.222.184	12.247.97.151
111.95.204.108	79.173.187.63	15.23.2.172	137.69.85.55
176.223.162.200	70.27.175.12	148.40.11.57	63.158.219.250
171.229.102.237	247.166.25.115	124.192.1.206	31.148.245.34
199.94.43.96	142.168.94.30	134.80.11.185	67.36.50.37