104.148.67.162

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: RaptorNode

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-12 05:38:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.148.67.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43514
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.148.67.162.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011100 1800 900 604800 86400

;; Query time: 100 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 12 05:38:52 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 162.67.148.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 162.67.148.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.203.203	attackbots	port 23	2020-06-26 17:55:58
93.174.93.195	attackbots	Jun 26 10:46:28 debian-2gb-nbg1-2 kernel: \[15419846.219300\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=93.174.93.195 DST=195.201.40.59 LEN=57 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=UDP SPT=52807 DPT=4352 LEN=37	2020-06-26 17:28:57
202.77.105.100	attackspam	Jun 26 10:06:47 sshgateway sshd\[26218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.77.105.100 user=root Jun 26 10:06:49 sshgateway sshd\[26218\]: Failed password for root from 202.77.105.100 port 42068 ssh2 Jun 26 10:08:21 sshgateway sshd\[26238\]: Invalid user 3 from 202.77.105.100	2020-06-26 17:27:37
185.108.106.251	attack	[2020-06-26 05:38:20] NOTICE[1273] chan_sip.c: Registration from '' failed for '185.108.106.251:64249' - Wrong password [2020-06-26 05:38:20] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-26T05:38:20.010-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5394",SessionID="0x7f31c018ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.108.106.251/64249",Challenge="7fe5a6f5",ReceivedChallenge="7fe5a6f5",ReceivedHash="4d1cced4588976d0967be7b80feba331" [2020-06-26 05:38:49] NOTICE[1273] chan_sip.c: Registration from '' failed for '185.108.106.251:57885' - Wrong password [2020-06-26 05:38:49] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-26T05:38:49.348-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4184",SessionID="0x7f31c05e9da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.108 ...	2020-06-26 17:52:47
1.170.100.117	attack	Unauthorised access (Jun 26) SRC=1.170.100.117 LEN=40 TTL=46 ID=16877 TCP DPT=23 WINDOW=37037 SYN	2020-06-26 17:52:16
177.86.145.215	attackbotsspam	" "	2020-06-26 17:54:05
211.251.246.185	attack	Jun 26 06:24:20 localhost sshd\[27641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.251.246.185 user=root Jun 26 06:24:22 localhost sshd\[27641\]: Failed password for root from 211.251.246.185 port 47855 ssh2 Jun 26 06:31:02 localhost sshd\[27745\]: Invalid user brenda from 211.251.246.185 port 54363 Jun 26 06:31:02 localhost sshd\[27745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.251.246.185 ...	2020-06-26 17:55:06
60.167.176.250	attack	Repeated brute force against a port	2020-06-26 17:47:48
42.236.10.72	attackbotsspam	Automated report (2020-06-26T11:50:56+08:00). Scraper detected at this address.	2020-06-26 17:39:54
201.249.169.210	attackbots	21 attempts against mh-ssh on cloud	2020-06-26 17:39:13
113.193.243.35	attackbotsspam	2020-06-26T11:12:29.061326vps773228.ovh.net sshd[25675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 user=root 2020-06-26T11:12:30.576143vps773228.ovh.net sshd[25675]: Failed password for root from 113.193.243.35 port 11876 ssh2 2020-06-26T11:16:08.064113vps773228.ovh.net sshd[25727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 user=root 2020-06-26T11:16:09.975706vps773228.ovh.net sshd[25727]: Failed password for root from 113.193.243.35 port 2950 ssh2 2020-06-26T11:19:55.690510vps773228.ovh.net sshd[25793]: Invalid user kmk from 113.193.243.35 port 58560 ...	2020-06-26 17:51:36
66.70.160.187	attackspambots	66.70.160.187 - - [26/Jun/2020:10:16:35 +0100] "POST /wp-login.php HTTP/1.1" 200 2013 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.70.160.187 - - [26/Jun/2020:10:16:36 +0100] "POST /wp-login.php HTTP/1.1" 200 1951 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.70.160.187 - - [26/Jun/2020:10:16:38 +0100] "POST /wp-login.php HTTP/1.1" 200 1993 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-26 17:46:33
179.106.159.6	attackbotsspam	port 23	2020-06-26 18:00:06
68.183.110.49	attackspambots	2020-06-26T08:00:25.324215sd-86998 sshd[15070]: Invalid user testftp from 68.183.110.49 port 42272 2020-06-26T08:00:25.326412sd-86998 sshd[15070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.110.49 2020-06-26T08:00:25.324215sd-86998 sshd[15070]: Invalid user testftp from 68.183.110.49 port 42272 2020-06-26T08:00:27.460086sd-86998 sshd[15070]: Failed password for invalid user testftp from 68.183.110.49 port 42272 ssh2 2020-06-26T08:03:32.724127sd-86998 sshd[15480]: Invalid user jyk from 68.183.110.49 port 41280 ...	2020-06-26 17:22:34
200.87.178.137	attackspambots	20 attempts against mh-ssh on cloud	2020-06-26 17:55:30

Recently Reported IPs

45.161.206.4	2.80.118.175	64.176.110.119	78.148.86.213
126.152.178.34	144.217.34.148	8.222.221.75	121.178.107.202
201.76.88.78	65.55.129.7	107.201.250.11	49.125.141.213
187.121.166.195	123.129.9.203	110.145.104.147	46.121.200.90
103.38.215.219	76.170.60.81	101.158.167.227	113.66.97.248