104.148.64.198

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Global Frag Networks

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.148.64.185	attackbotsspam	Jan 7 20:47:46 mxgate1 postfix/postscreen[8982]: CONNECT from [104.148.64.185]:51528 to [176.31.12.44]:25 Jan 7 20:47:46 mxgate1 postfix/dnsblog[9025]: addr 104.148.64.185 listed by domain zen.spamhaus.org as 127.0.0.3 Jan 7 20:47:47 mxgate1 postfix/dnsblog[9026]: addr 104.148.64.185 listed by domain b.barracudacentral.org as 127.0.0.2 Jan 7 20:47:52 mxgate1 postfix/postscreen[8982]: DNSBL rank 3 for [104.148.64.185]:51528 Jan x@x Jan 7 20:47:53 mxgate1 postfix/postscreen[8982]: DISCONNECT [104.148.64.185]:51528 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.148.64.185	2020-01-08 17:53:27
104.148.64.136	attackspam	Nov 25 07:13:40 mxgate1 postfix/postscreen[31676]: CONNECT from [104.148.64.136]:60602 to [176.31.12.44]:25 Nov 25 07:13:40 mxgate1 postfix/dnsblog[31678]: addr 104.148.64.136 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 25 07:13:40 mxgate1 postfix/dnsblog[31680]: addr 104.148.64.136 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 25 07:13:46 mxgate1 postfix/postscreen[31676]: DNSBL rank 3 for [104.148.64.136]:60602 Nov x@x Nov 25 07:13:47 mxgate1 postfix/postscreen[31676]: DISCONNECT [104.148.64.136]:60602 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.148.64.136	2019-11-25 19:58:48
104.148.64.174	attackspam	10.10.2019 13:58:30 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2019-10-10 21:30:17
104.148.64.135	attackspam	Jul 30 04:21:07 mxgate1 postfix/postscreen[8687]: CONNECT from [104.148.64.135]:60088 to [176.31.12.44]:25 Jul 30 04:21:07 mxgate1 postfix/dnsblog[8958]: addr 104.148.64.135 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 30 04:21:13 mxgate1 postfix/postscreen[8687]: DNSBL rank 2 for [104.148.64.135]:60088 Jul x@x Jul 30 04:21:14 mxgate1 postfix/postscreen[8687]: DISCONNECT [104.148.64.135]:60088 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.148.64.135	2019-07-30 13:41:40

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.148.64.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20240
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.148.64.198.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 12 12:25:15 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 198.64.148.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 198.64.148.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.202.32.70	attackspambots	$f2bV_matches	2020-04-10 00:05:31
104.206.252.71	attackbots	Apr 9 18:42:06 server2 sshd\[20818\]: User root from 104.206.252.71 not allowed because not listed in AllowUsers Apr 9 18:42:06 server2 sshd\[20820\]: Invalid user admin from 104.206.252.71 Apr 9 18:42:07 server2 sshd\[20822\]: Invalid user admin from 104.206.252.71 Apr 9 18:42:08 server2 sshd\[20824\]: Invalid user user from 104.206.252.71 Apr 9 18:42:08 server2 sshd\[20828\]: Invalid user ubnt from 104.206.252.71 Apr 9 18:42:09 server2 sshd\[20830\]: Invalid user admin from 104.206.252.71	2020-04-10 00:03:46
185.147.36.167	attack	Unauthorized connection attempt from IP address 185.147.36.167 on Port 445(SMB)	2020-04-09 23:50:46
202.137.20.58	attackspambots	web-1 [ssh] SSH Attack	2020-04-09 23:48:07
185.56.153.229	attack	Apr 9 16:19:59 vps sshd[366022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.229 user=root Apr 9 16:20:02 vps sshd[366022]: Failed password for root from 185.56.153.229 port 38232 ssh2 Apr 9 16:25:26 vps sshd[394879]: Invalid user deploy from 185.56.153.229 port 43144 Apr 9 16:25:26 vps sshd[394879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.229 Apr 9 16:25:28 vps sshd[394879]: Failed password for invalid user deploy from 185.56.153.229 port 43144 ssh2 ...	2020-04-09 23:21:02
200.89.178.12	attackbotsspam	Apr 9 17:48:33 legacy sshd[26441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.12 Apr 9 17:48:35 legacy sshd[26441]: Failed password for invalid user cssserver from 200.89.178.12 port 50106 ssh2 Apr 9 17:51:43 legacy sshd[26485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.89.178.12 ...	2020-04-10 00:03:00
180.89.58.27	attack	Apr 9 13:00:57 game-panel sshd[6512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.89.58.27 Apr 9 13:00:58 game-panel sshd[6512]: Failed password for invalid user felix from 180.89.58.27 port 36392 ssh2 Apr 9 13:02:11 game-panel sshd[6576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.89.58.27	2020-04-09 23:33:31
58.33.49.194	attack	Apr 9 14:44:12 minden010 sshd[4918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.49.194 Apr 9 14:44:14 minden010 sshd[4918]: Failed password for invalid user finn from 58.33.49.194 port 47110 ssh2 Apr 9 14:46:32 minden010 sshd[6717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.49.194 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=58.33.49.194	2020-04-09 23:20:12
213.231.4.193	attackbotsspam	Automatic report - Port Scan Attack	2020-04-09 23:29:58
222.186.175.148	attackbotsspam	04/09/2020-11:56:46.868543 222.186.175.148 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-09 23:58:41
217.160.214.48	attackspam	DATE:2020-04-09 17:36:34,IP:217.160.214.48,MATCHES:11,PORT:ssh	2020-04-09 23:52:16
194.26.29.124	attackspambots	Apr 9 17:41:39 debian-2gb-nbg1-2 kernel: \[8705910.867371\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.124 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=183 ID=19731 PROTO=TCP SPT=56051 DPT=36789 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-09 23:50:03
64.227.67.106	attackbotsspam	Apr 9 15:01:50 host5 sshd[6204]: Invalid user adi from 64.227.67.106 port 52114 ...	2020-04-10 00:08:54
100.65.80.129	spambotsattackproxynormal	Sent attack	2020-04-09 23:39:46
162.155.147.10	attackspam	tcp 445	2020-04-09 23:32:18

Recently Reported IPs

23.233.9.144	221.229.173.231	41.39.73.218	104.148.64.195
192.241.198.60	118.69.195.170	192.54.56.208	186.210.91.171
122.155.0.239	202.141.250.148	117.82.50.31	111.37.165.121
103.115.65.21	61.19.64.9	213.151.46.71	197.50.81.91
125.65.113.111	84.224.24.154	137.59.162.169	110.139.179.120