104.131.148.142

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.148.158	attackbotsspam	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-02-03 13:23:03
104.131.148.158	attack	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-01-26 17:30:50
104.131.148.158	attackspam	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-01-13 19:56:10

Type

Details

Datetime

104.131.148.158

attackbotsspam

Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]

2020-02-03 13:23:03

104.131.148.158

attack

Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]

2020-01-26 17:30:50

104.131.148.158

attackspam

Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]

2020-01-13 19:56:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.148.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61322
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.148.142.		IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 19:17:47 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 142.148.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.148.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.238.209.222	attackbotsspam	Mar 31 05:48:24 debian-2gb-nbg1-2 kernel: \[7885559.336154\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=54.238.209.222 DST=195.201.40.59 LEN=44 TOS=0x08 PREC=0x00 TTL=228 ID=0 DF PROTO=TCP SPT=22 DPT=36858 WINDOW=26883 RES=0x00 ACK SYN URGP=0	2020-03-31 20:08:58
40.77.190.72	attack	/nojmensajxv.php	2020-03-31 20:05:51
51.79.27.238	attack	Sucuri report: EXPVP16 - Exploit blocked by virtual patching	2020-03-31 19:43:22
115.77.161.61	attackbotsspam	Honeypot attack, port: 445, PTR: adsl.viettel.vn.	2020-03-31 20:03:42
79.137.33.20	attackbotsspam	2020-03-31T13:21:20.643061centos sshd[20373]: Failed password for invalid user rx from 79.137.33.20 port 35231 ssh2 2020-03-31T13:31:13.878945centos sshd[21053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.33.20 user=root 2020-03-31T13:31:15.411011centos sshd[21053]: Failed password for root from 79.137.33.20 port 50017 ssh2 ...	2020-03-31 20:03:04
165.22.210.121	attack	WordPress login Brute force / Web App Attack on client site.	2020-03-31 19:44:34
91.210.8.7	attack	Mar 30 17:44:30 zimbra sshd[20963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.210.8.7 user=r.r Mar 30 17:44:32 zimbra sshd[20963]: Failed password for r.r from 91.210.8.7 port 46569 ssh2 Mar 30 17:44:32 zimbra sshd[20963]: Received disconnect from 91.210.8.7 port 46569:11: Bye Bye [preauth] Mar 30 17:44:32 zimbra sshd[20963]: Disconnected from 91.210.8.7 port 46569 [preauth] Mar 30 17:51:48 zimbra sshd[26139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.210.8.7 user=r.r Mar 30 17:51:51 zimbra sshd[26139]: Failed password for r.r from 91.210.8.7 port 58792 ssh2 Mar 30 17:51:51 zimbra sshd[26139]: Received disconnect from 91.210.8.7 port 58792:11: Bye Bye [preauth] Mar 30 17:51:51 zimbra sshd[26139]: Disconnected from 91.210.8.7 port 58792 [preauth] Mar 30 17:53:34 zimbra sshd[27773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.2........ -------------------------------	2020-03-31 20:16:52
68.183.19.84	attackspam	Mar 31 09:33:34 mail sshd[25154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.19.84 user=root Mar 31 09:33:36 mail sshd[25154]: Failed password for root from 68.183.19.84 port 51908 ssh2 ...	2020-03-31 20:16:28
103.3.46.92	attackbotsspam	Automatic report - XMLRPC Attack	2020-03-31 19:52:18
185.220.102.4	attackbots	Brute force attempt	2020-03-31 19:46:50
111.231.54.28	attackspam	$f2bV_matches	2020-03-31 19:44:57
106.13.38.246	attackspambots	$f2bV_matches	2020-03-31 19:54:53
182.61.104.246	attack	5x Failed Password	2020-03-31 19:33:04
162.243.128.129	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-31 20:05:19
78.132.34.13	attack	RDP Brute-Force	2020-03-31 19:57:09

Recently Reported IPs

101.109.150.201	101.109.150.212	101.109.150.216	101.109.150.236
101.109.150.238	101.109.150.242	35.222.39.1	101.109.150.36
101.109.150.52	61.182.242.26	104.136.188.17	104.136.196.12
104.136.182.189	104.136.197.157	104.136.131.88	104.136.20.76
104.136.167.214	104.136.131.100	104.136.197.159	104.136.102.221