168.13.48.146 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.13.48.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15677
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;168.13.48.146.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 21:42:07 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 146.48.13.168.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.48.13.168.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.12.126.210	attackspam	[2020-03-28 12:37:26] NOTICE[1148][C-000183c7] chan_sip.c: Call from '' (198.12.126.210:58227) to extension '9011441736696309' rejected because extension not found in context 'public'. [2020-03-28 12:37:26] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-28T12:37:26.142-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441736696309",SessionID="0x7fd82cdb8718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.12.126.210/58227",ACLName="no_extension_match" [2020-03-28 12:41:16] NOTICE[1148][C-000183cb] chan_sip.c: Call from '' (198.12.126.210:58173) to extension '011441736696309' rejected because extension not found in context 'public'. [2020-03-28 12:41:16] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-28T12:41:16.124-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441736696309",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-03-29 00:41:44
50.70.229.239	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-03-29 01:02:18
112.197.2.114	attackbots	Mar 28 16:47:49 dev0-dcde-rnet sshd[3351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.2.114 Mar 28 16:47:51 dev0-dcde-rnet sshd[3351]: Failed password for invalid user ipx from 112.197.2.114 port 59706 ssh2 Mar 28 17:01:17 dev0-dcde-rnet sshd[3629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.2.114	2020-03-29 01:11:36
36.89.49.195	attackbotsspam	DATE:2020-03-28 13:38:08, IP:36.89.49.195, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 00:32:17
91.98.59.117	attackbotsspam	DATE:2020-03-28 13:37:32, IP:91.98.59.117, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 01:08:49
188.225.77.226	attackspam	Mar 28 13:25:23 myhostname sshd[14967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.225.77.226 user=www-data Mar 28 13:25:25 myhostname sshd[14967]: Failed password for www-data from 188.225.77.226 port 41235 ssh2 Mar 28 13:25:25 myhostname sshd[14967]: Received disconnect from 188.225.77.226 port 41235:11: Bye Bye [preauth] Mar 28 13:25:25 myhostname sshd[14967]: Disconnected from 188.225.77.226 port 41235 [preauth] Mar 28 13:30:30 myhostname sshd[18098]: Invalid user mxp from 188.225.77.226 Mar 28 13:30:30 myhostname sshd[18098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.225.77.226 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=188.225.77.226	2020-03-29 00:44:42
195.154.29.107	attackspam	xmlrpc attack	2020-03-29 01:00:27
106.13.39.127	attackspambots	2020-03-28T12:53:18.069424ionos.janbro.de sshd[5893]: Failed password for lp from 106.13.39.127 port 53908 ssh2 2020-03-28T12:56:11.556830ionos.janbro.de sshd[5922]: Invalid user wsi from 106.13.39.127 port 34820 2020-03-28T12:56:11.802574ionos.janbro.de sshd[5922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.127 2020-03-28T12:56:11.556830ionos.janbro.de sshd[5922]: Invalid user wsi from 106.13.39.127 port 34820 2020-03-28T12:56:13.910891ionos.janbro.de sshd[5922]: Failed password for invalid user wsi from 106.13.39.127 port 34820 ssh2 2020-03-28T12:59:11.752076ionos.janbro.de sshd[5940]: Invalid user bml from 106.13.39.127 port 43976 2020-03-28T12:59:11.962129ionos.janbro.de sshd[5940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.127 2020-03-28T12:59:11.752076ionos.janbro.de sshd[5940]: Invalid user bml from 106.13.39.127 port 43976 2020-03-28T12:59:13.447534ionos.janbro.de sshd ...	2020-03-29 01:15:26
45.55.128.109	attack	Mar 28 11:40:44 Tower sshd[15654]: Connection from 45.55.128.109 port 59312 on 192.168.10.220 port 22 rdomain "" Mar 28 11:40:50 Tower sshd[15654]: Invalid user ija from 45.55.128.109 port 59312 Mar 28 11:40:50 Tower sshd[15654]: error: Could not get shadow information for NOUSER Mar 28 11:40:50 Tower sshd[15654]: Failed password for invalid user ija from 45.55.128.109 port 59312 ssh2 Mar 28 11:40:50 Tower sshd[15654]: Received disconnect from 45.55.128.109 port 59312:11: Bye Bye [preauth] Mar 28 11:40:50 Tower sshd[15654]: Disconnected from invalid user ija 45.55.128.109 port 59312 [preauth]	2020-03-29 01:18:37
157.230.124.18	attackbots	Mar 28 13:29:04 mail1 sshd[19593]: Did not receive identification string from 157.230.124.18 port 40900 Mar 28 13:31:14 mail1 sshd[19721]: Invalid user ftpuser from 157.230.124.18 port 49346 Mar 28 13:31:14 mail1 sshd[19721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.124.18 Mar 28 13:31:16 mail1 sshd[19721]: Failed password for invalid user ftpuser from 157.230.124.18 port 49346 ssh2 Mar 28 13:31:16 mail1 sshd[19721]: Received disconnect from 157.230.124.18 port 49346:11: Normal Shutdown, Thank you for playing [preauth] Mar 28 13:31:16 mail1 sshd[19721]: Disconnected from 157.230.124.18 port 49346 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=157.230.124.18	2020-03-29 00:57:10
45.173.44.162	attackspambots	Mar 28 03:27:27 web9 sshd\[22276\]: Invalid user wcg from 45.173.44.162 Mar 28 03:27:27 web9 sshd\[22276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.173.44.162 Mar 28 03:27:29 web9 sshd\[22276\]: Failed password for invalid user wcg from 45.173.44.162 port 41140 ssh2 Mar 28 03:33:09 web9 sshd\[23077\]: Invalid user qeu from 45.173.44.162 Mar 28 03:33:09 web9 sshd\[23077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.173.44.162	2020-03-29 00:54:46
180.125.71.66	attack	Mar 28 13:29:04 izar postfix/smtpd[743]: connect from unknown[180.125.71.66] Mar 28 13:29:07 izar postfix/smtpd[743]: warning: unknown[180.125.71.66]: SASL CRAM-MD5 authentication failed: authentication failure Mar 28 13:29:08 izar postfix/smtpd[743]: warning: unknown[180.125.71.66]: SASL PLAIN authentication failed: authentication failure Mar 28 13:29:12 izar postfix/smtpd[743]: warning: unknown[180.125.71.66]: SASL LOGIN authentication failed: authentication failure Mar 28 13:29:13 izar postfix/smtpd[743]: disconnect from unknown[180.125.71.66] Mar 28 13:29:13 izar postfix/smtpd[745]: connect from unknown[180.125.71.66] Mar 28 13:29:17 izar postfix/smtpd[745]: warning: unknown[180.125.71.66]: SASL CRAM-MD5 authentication failed: authentication failure Mar 28 13:29:17 izar postfix/smtpd[745]: warning: unknown[180.125.71.66]: SASL PLAIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=180.125.71.66	2020-03-29 00:33:58
49.232.132.10	attack	$f2bV_matches	2020-03-29 00:46:23
95.85.60.251	attackspambots	Mar 28 08:50:45 server1 sshd\[29239\]: Invalid user siz from 95.85.60.251 Mar 28 08:50:45 server1 sshd\[29239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.60.251 Mar 28 08:50:47 server1 sshd\[29239\]: Failed password for invalid user siz from 95.85.60.251 port 47162 ssh2 Mar 28 08:58:42 server1 sshd\[31828\]: Invalid user moodle from 95.85.60.251 Mar 28 08:58:42 server1 sshd\[31828\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.60.251 ...	2020-03-29 01:15:58
162.243.131.42	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-29 00:38:48

最近上报的IP列表

191.200.196.189	21.192.96.136	49.48.70.112	77.237.81.190
135.26.54.66	85.124.21.224	121.153.46.108	187.69.66.122
13.121.233.84	15.81.243.183	119.171.134.78	190.74.65.133
35.185.189.150	208.220.241.9	198.70.6.44	81.4.189.221
76.52.244.99	230.100.196.193	194.2.77.123	233.107.244.166