132.148.104.164

Basic Info

City: Scottsdale

Region: Arizona

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: GoDaddy.com, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
132.148.104.36	attackspam	[N10.H1.VM1] Port Scanner Detected Blocked by UFW	2020-08-15 19:53:30
132.148.104.132	attackspambots	C1,WP GET /manga/web/wp-includes/wlwmanifest.xml	2020-07-24 12:37:32
132.148.104.142	attackspam	Automatic report - XMLRPC Attack	2020-07-13 03:30:43
132.148.104.135	attack	Automatic report - XMLRPC Attack	2020-07-08 17:30:47
132.148.104.129	attack	Automatic report - XMLRPC Attack	2020-07-01 07:58:05
132.148.104.29	attack	Automatic report - XMLRPC Attack	2020-06-29 14:08:25
132.148.104.7	attackspam	Automatic report - XMLRPC Attack	2020-06-22 17:21:12
132.148.104.135	attack	132.148.104.135 - - [12/Jun/2020:12:18:33 -0600] "GET /newsite/wp-includes/wlwmanifest.xml HTTP/1.1" 404 10057 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" ...	2020-06-13 05:30:53
132.148.104.4	attackspambots	Wordpress_xmlrpc_attack	2020-05-25 22:40:46
132.148.104.144	attackspam	2020-05-16T12:07:59.000Z "GET /store/wp-includes/wlwmanifest.xml HTTP/1.1" "-" "-" 2020-05-16T12:07:59.000Z "GET /store/wp-includes/wlwmanifest.xml HTTP/1.1" "-" "-"	2020-05-17 04:01:16
132.148.104.150	attackspam	Automatic report - XMLRPC Attack	2020-04-28 20:23:37
132.148.104.160	attackspam	Automatic report - XMLRPC Attack	2020-02-23 01:20:24
132.148.104.16	attackbots	xmlrpc attack	2020-01-23 15:50:49
132.148.104.152	attackbotsspam	Automatic report - XMLRPC Attack	2020-01-16 20:41:38
132.148.104.32	attack	Automatic report - XMLRPC Attack	2020-01-14 13:02:30

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.104.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3831
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.148.104.164.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 00:51:04 CST 2019
;; MSG SIZE  rcvd: 119

Host info

164.104.148.132.in-addr.arpa domain name pointer p3nlhg2115.shr.prod.phx3.secureserver.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
164.104.148.132.in-addr.arpa	name = p3nlhg2115.shr.prod.phx3.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.218.98.254	attackbotsspam	2020-01-27T09:53:50.088752fastter.easycode.club sshd[31587]: Connection from 91.218.98.254 port 49236 on 172.105.56.80 port 2222 2020-01-27T09:55:27.132830fastter.easycode.club sshd[31594]: Connection from 91.218.98.254 port 59424 on 172.105.56.80 port 2222 ...	2020-01-27 20:12:43
93.144.81.166	attack	Unauthorized connection attempt detected from IP address 93.144.81.166 to port 80 [J]	2020-01-27 20:07:19
58.142.181.181	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-01-27 19:47:28
96.64.7.59	attackbots	Unauthorized connection attempt detected from IP address 96.64.7.59 to port 2220 [J]	2020-01-27 19:55:54
120.70.103.239	attackbotsspam	Unauthorized connection attempt detected from IP address 120.70.103.239 to port 2220 [J]	2020-01-27 20:05:46
93.84.127.81	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-27 19:43:38
49.232.158.34	attack	Jan 27 12:45:41 OPSO sshd\[25928\]: Invalid user milani from 49.232.158.34 port 60464 Jan 27 12:45:41 OPSO sshd\[25928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.158.34 Jan 27 12:45:43 OPSO sshd\[25928\]: Failed password for invalid user milani from 49.232.158.34 port 60464 ssh2 Jan 27 12:48:34 OPSO sshd\[26391\]: Invalid user gitlab from 49.232.158.34 port 54146 Jan 27 12:48:34 OPSO sshd\[26391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.158.34	2020-01-27 20:03:48
188.39.160.106	attackbotsspam	Jan 27 10:56:02 odroid64 sshd\[23908\]: Invalid user web from 188.39.160.106 Jan 27 10:56:02 odroid64 sshd\[23908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.39.160.106 ...	2020-01-27 19:42:30
200.236.118.13	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-27 19:54:20
49.232.145.201	attack	Unauthorized connection attempt detected from IP address 49.232.145.201 to port 2220 [J]	2020-01-27 20:06:37
198.108.66.46	attackbotsspam	3306/tcp 1911/tcp 5903/tcp... [2019-12-01/2020-01-27]5pkt,5pt.(tcp)	2020-01-27 19:44:47
122.176.37.141	attack	Honeypot attack, port: 445, PTR: abts-north-static-141.37.176.122.airtelbroadband.in.	2020-01-27 20:05:17
200.216.31.148	attackbots	Unauthorized connection attempt detected from IP address 200.216.31.148 to port 5900 [J]	2020-01-27 19:44:19
36.68.239.13	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-01-2020 09:55:36.	2020-01-27 20:06:04
139.59.187.31	attack	Unauthorized connection attempt detected from IP address 139.59.187.31 to port 2220 [J]	2020-01-27 19:51:52

Recently Reported IPs

155.218.29.23	182.65.250.116	58.125.38.230	52.130.87.171
97.50.125.146	79.122.43.252	182.117.48.254	180.222.130.56
218.7.206.234	219.133.12.253	138.117.121.17	1.134.172.239
154.51.222.44	192.227.120.170	123.4.119.128	134.212.142.138
218.80.83.183	208.254.121.38	102.114.39.165	58.211.196.226