170.48.10.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 170.48.10.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12897
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;170.48.10.90.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 15:06:52 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

90.10.48.170.in-addr.arpa domain name pointer winstonqed.com.
90.10.48.170.in-addr.arpa domain name pointer secure.cigna.com.
90.10.48.170.in-addr.arpa domain name pointer precigna.com.
90.10.48.170.in-addr.arpa domain name pointer secure-cigna-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa domain name pointer www-precigna-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa domain name pointer www-cigna-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa domain name pointer www.winstonqed.com.
90.10.48.170.in-addr.arpa domain name pointer cigna.co.za.
90.10.48.170.in-addr.arpa domain name pointer www-winstonqed-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa domain name pointer search-cignaglobal-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa domain name pointer cigna.com.
90.10.48.170.in-addr.arpa domain name pointer www.cigna.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.10.48.170.in-addr.arpa	name = www.cigna.com.
90.10.48.170.in-addr.arpa	name = winstonqed.com.
90.10.48.170.in-addr.arpa	name = secure.cigna.com.
90.10.48.170.in-addr.arpa	name = precigna.com.
90.10.48.170.in-addr.arpa	name = secure-cigna-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa	name = www-precigna-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa	name = www-cigna-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa	name = www.winstonqed.com.
90.10.48.170.in-addr.arpa	name = cigna.co.za.
90.10.48.170.in-addr.arpa	name = www-winstonqed-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa	name = search-cignaglobal-com.extwideip.cigna.com.
90.10.48.170.in-addr.arpa	name = cigna.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
189.26.221.82	attackspam	Unauthorized connection attempt from IP address 189.26.221.82 on Port 445(SMB)	2020-09-23 14:28:07
139.155.38.57	attackspambots	Brute-force attempt banned	2020-09-23 14:17:16
82.81.9.62	attackbotsspam	Listed on abuseat.org plus barracudaCentral and zen-spamhaus / proto=6 . srcport=14404 . dstport=23 . (3080)	2020-09-23 14:38:35
114.67.83.42	attackspam	2020-09-23T06:44:11+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-09-23 14:45:39
193.255.95.253	attackbots	Unauthorized connection attempt from IP address 193.255.95.253 on Port 445(SMB)	2020-09-23 14:08:31
14.29.237.87	attackspam	20 attempts against mh-ssh on pluto	2020-09-23 14:14:09
201.22.230.132	attack	Unauthorized connection attempt from IP address 201.22.230.132 on Port 445(SMB)	2020-09-23 14:30:36
5.188.62.11	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-23T03:05:16Z	2020-09-23 14:08:14
161.97.117.104	attackbotsspam	(From nick@send.sohbetlal.com) I wanted to ask a question about your business. 1) As a business owner, new laws are on your side - effective starting August 2019. Were you aware? Since that date you shouldn't be paying above 0.75% Credit Card Processing Fees. 2) You're legally able to demand this new option. Bottom Line: Your processor isn't telling you everything. Why are they hiding the lower fee options? We represent merchants challenging their credit card processors. 3) Merchants working with us demand to be switched to Unlimited Flat-Fee Processing. - Unlimited Flat-Fee Processing for $24.99 per month. The new terminals make it easy. And it's UNLIMITED. 4) Process any amount of cards for the same flat price each month. No contracts. No surprises. No hidden fees. We'll even start you off with a terminal at no cost. September 2020 Limited Time Promotion: Email back today to qualify: - Free Equipment (Maximum 2x Terminals). - No Contracts. - No Cancellation Fees. - Try Witho	2020-09-23 14:28:46
188.245.209.2	attack	20 attempts against mh-ssh on river	2020-09-23 14:13:06
68.183.94.180	attackbotsspam	Automatic report - XMLRPC Attack	2020-09-23 14:36:41
219.77.183.186	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-23 14:18:09
139.9.131.58	attackbotsspam	Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Failed password for r.r from 139.9.131.58 port 47748 ssh2 Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Received disconnect from 139.9.131.58: 11: Bye Bye [preauth] Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:48:11 nxxxxxxx0 sshd[20638]: Failed password for r.r from 139.9.131.58 port 33564 ssh2 Sep 22 18:48:11 nxxxxxxx0 sshd[20638........ -------------------------------	2020-09-23 14:29:53
123.18.71.137	attackbots	Port scan on 1 port(s): 445	2020-09-23 14:07:28
61.244.247.202	attackspambots	Sep 22 16:48:11 XXX sshd[30553]: Invalid user admin from 61.244.247.202 Sep 22 16:48:11 XXX sshd[30553]: Received disconnect from 61.244.247.202: 11: Bye Bye [preauth] Sep 22 16:48:12 XXX sshd[30555]: Invalid user admin from 61.244.247.202 Sep 22 16:48:13 XXX sshd[30555]: Received disconnect from 61.244.247.202: 11: Bye Bye [preauth] Sep 22 16:48:14 XXX sshd[30557]: Invalid user admin from 61.244.247.202 Sep 22 16:48:15 XXX sshd[30557]: Received disconnect from 61.244.247.202: 11: Bye Bye [preauth] Sep 22 16:48:16 XXX sshd[30559]: Invalid user admin from 61.244.247.202 Sep 22 16:48:16 XXX sshd[30559]: Received disconnect from 61.244.247.202: 11: Bye Bye [preauth] Sep 22 16:48:18 XXX sshd[30561]: Invalid user admin from 61.244.247.202 Sep 22 16:48:18 XXX sshd[30561]: Received disconnect from 61.244.247.202: 11: Bye Bye [preauth] Sep 22 16:48:20 XXX sshd[30564]: Invalid user admin from 61.244.247.202 Sep 22 16:48:20 XXX sshd[30564]: Received disconnect from 61.244.247.202........ -------------------------------	2020-09-23 14:40:48

最近上报的IP列表

170.39.76.201	170.48.132.92	170.48.68.27	170.48.10.158
170.49.49.66	170.48.29.90	170.52.58.205	170.61.116.15
170.51.202.158	170.51.200.196	170.48.29.158	170.51.76.121
170.55.67.46	170.51.203.97	170.51.76.178	170.55.62.196
170.61.196.15	170.57.5.20	170.61.42.150	170.61.223.37