104.131.148.142

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.148.158	attackbotsspam	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-02-03 13:23:03
104.131.148.158	attack	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-01-26 17:30:50
104.131.148.158	attackspam	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-01-13 19:56:10

Type

Details

Datetime

104.131.148.158

attackbotsspam

Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]

2020-02-03 13:23:03

104.131.148.158

attack

Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]

2020-01-26 17:30:50

104.131.148.158

attackspam

Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]

2020-01-13 19:56:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.148.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61322
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.148.142.		IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:17:47 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 142.148.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.148.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.149.47.42	attackbots	Jul 10 23:04:15 ArkNodeAT sshd\[8654\]: Invalid user ntadmin from 80.149.47.42 Jul 10 23:04:15 ArkNodeAT sshd\[8654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.149.47.42 Jul 10 23:04:16 ArkNodeAT sshd\[8654\]: Failed password for invalid user ntadmin from 80.149.47.42 port 42738 ssh2	2019-07-11 05:39:22
218.92.0.135	attackspambots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.135 user=root Failed password for root from 218.92.0.135 port 63006 ssh2 Failed password for root from 218.92.0.135 port 63006 ssh2 Failed password for root from 218.92.0.135 port 63006 ssh2 Failed password for root from 218.92.0.135 port 63006 ssh2	2019-07-11 05:42:00
192.99.12.35	attackspambots	blogonese.net 192.99.12.35 \[10/Jul/2019:21:06:15 +0200\] "POST /wp-login.php HTTP/1.1" 200 5771 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" blogonese.net 192.99.12.35 \[10/Jul/2019:21:06:16 +0200\] "POST /wp-login.php HTTP/1.1" 200 5731 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" blogonese.net 192.99.12.35 \[10/Jul/2019:21:06:17 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4086 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-11 05:38:15
91.211.228.14	attack	[portscan] Port scan	2019-07-11 06:10:00
37.187.78.170	attack	Jul 10 21:03:08 MainVPS sshd[23582]: Invalid user katrina from 37.187.78.170 port 44037 Jul 10 21:03:08 MainVPS sshd[23582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.78.170 Jul 10 21:03:08 MainVPS sshd[23582]: Invalid user katrina from 37.187.78.170 port 44037 Jul 10 21:03:10 MainVPS sshd[23582]: Failed password for invalid user katrina from 37.187.78.170 port 44037 ssh2 Jul 10 21:05:55 MainVPS sshd[23874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.78.170 user=root Jul 10 21:05:57 MainVPS sshd[23874]: Failed password for root from 37.187.78.170 port 61088 ssh2 ...	2019-07-11 05:49:13
190.147.159.34	attackspam	Jul 10 23:48:49 localhost sshd\[13091\]: Invalid user insserver from 190.147.159.34 Jul 10 23:48:49 localhost sshd\[13091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.147.159.34 Jul 10 23:48:51 localhost sshd\[13091\]: Failed password for invalid user insserver from 190.147.159.34 port 37011 ssh2 Jul 10 23:52:04 localhost sshd\[13314\]: Invalid user nq from 190.147.159.34 Jul 10 23:52:05 localhost sshd\[13314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.147.159.34 ...	2019-07-11 05:52:52
192.241.204.70	attackbotsspam	10.07.2019 19:05:58 IMAP access blocked by firewall	2019-07-11 05:47:54
104.244.73.126	attack	/posting.php?mode=post&f=3&sid=32f37e4a4431f833be5cab67ed9e5e6f	2019-07-11 06:20:09
185.233.117.156	attackbotsspam	Jul 10 20:48:24 XXXXXX sshd[52046]: Invalid user hadoop from 185.233.117.156 port 40150	2019-07-11 05:47:30
103.236.253.27	attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-07-11 06:01:10
52.67.16.113	attackspambots	xmlrpc attack	2019-07-11 05:40:53
219.233.49.39	attackspambots	Automatic report - Web App Attack	2019-07-11 06:20:54
115.236.9.58	attack	$f2bV_matches	2019-07-11 05:42:55
123.194.186.205	attackbots	port scan and connect, tcp 23 (telnet)	2019-07-11 06:05:29
117.223.153.237	attackspam	Jul 10 20:42:33 localhost sshd\[27444\]: Invalid user neide from 117.223.153.237 port 55906 Jul 10 20:42:33 localhost sshd\[27444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.223.153.237 ...	2019-07-11 05:43:39

Recently Reported IPs

101.109.150.201	101.109.150.212	101.109.150.216	101.109.150.236
101.109.150.238	101.109.150.242	35.222.39.1	101.109.150.36
101.109.150.52	61.182.242.26	104.136.188.17	104.136.196.12
104.136.182.189	104.136.197.157	104.136.131.88	104.136.20.76
104.136.167.214	104.136.131.100	104.136.197.159	104.136.102.221