152.148.108.65

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.148.108.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59427
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.148.108.65.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012401 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 25 04:40:02 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 65.108.148.152.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 65.108.148.152.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.151.175.177	attackbots	2019-10-29T12:32:38.469951 sshd[13835]: Invalid user tom from 182.151.175.177 port 54674 2019-10-29T12:32:38.483683 sshd[13835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.151.175.177 2019-10-29T12:32:38.469951 sshd[13835]: Invalid user tom from 182.151.175.177 port 54674 2019-10-29T12:32:40.542624 sshd[13835]: Failed password for invalid user tom from 182.151.175.177 port 54674 ssh2 2019-10-29T12:37:03.132571 sshd[13878]: Invalid user support from 182.151.175.177 port 34276 ...	2019-10-29 23:34:30
74.208.81.84	attack	RDP Bruteforce	2019-10-29 23:50:28
46.188.98.10	attack	fell into ViewStateTrap:wien2018	2019-10-29 23:18:32
190.186.89.150	attackspam	Automatic report - XMLRPC Attack	2019-10-29 23:31:43
79.119.130.157	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.119.130.157/ RO - 1H : (30) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RO NAME ASN : ASN8708 IP : 79.119.130.157 CIDR : 79.112.0.0/13 PREFIX COUNT : 236 UNIQUE IP COUNT : 2129408 ATTACKS DETECTED ASN8708 : 1H - 1 3H - 2 6H - 7 12H - 13 24H - 25 DateTime : 2019-10-29 12:37:11 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-29 23:23:39
190.145.55.89	attackbots	Oct 29 17:29:15 server sshd\[11381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 user=root Oct 29 17:29:17 server sshd\[11381\]: Failed password for root from 190.145.55.89 port 60544 ssh2 Oct 29 17:41:47 server sshd\[14328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 user=root Oct 29 17:41:49 server sshd\[14328\]: Failed password for root from 190.145.55.89 port 53936 ssh2 Oct 29 17:45:51 server sshd\[15318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 user=root ...	2019-10-29 23:05:24
213.152.162.181	attackspam	[TueOct2915:39:52.8374532019][:error][pid10489:tid47755546339072][client213.152.162.181:54760][client213.152.162.181]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"safeoncloud.ch"][uri"/backup_2019.sql"][unique_id"XbhPOO5hYquHXhP23lyvswAAAE8"]\,referer:http://safeoncloud.ch/backup_2019.sql[TueOct2915:39:53.0567702019][:error][pid10499:tid47755466909440][client213.152.162.181:60124][client213.152.162.181]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles\(disablethisrulei	2019-10-29 23:09:11
94.142.51.92	attackbots	Port Scan	2019-10-29 23:49:34
31.210.65.150	attackspam	Oct 29 16:20:36 ns381471 sshd[21846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.210.65.150 Oct 29 16:20:38 ns381471 sshd[21846]: Failed password for invalid user alan@@lee from 31.210.65.150 port 49015 ssh2	2019-10-29 23:25:19
198.71.227.145	attackbots	Automatic report - XMLRPC Attack	2019-10-29 23:48:59
180.25.135.54	attack	port scan and connect, tcp 8080 (http-proxy)	2019-10-29 23:35:06
107.170.113.190	attackspam	ssh brute force	2019-10-29 23:04:59
80.82.77.86	attackspam	Honeypot hit.	2019-10-29 23:45:17
175.19.30.46	attack	Oct 29 03:39:54 sachi sshd\[17418\]: Invalid user perl from 175.19.30.46 Oct 29 03:39:54 sachi sshd\[17418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.19.30.46 Oct 29 03:39:57 sachi sshd\[17418\]: Failed password for invalid user perl from 175.19.30.46 port 39346 ssh2 Oct 29 03:45:58 sachi sshd\[17848\]: Invalid user student8 from 175.19.30.46 Oct 29 03:45:58 sachi sshd\[17848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.19.30.46	2019-10-29 23:24:13
51.38.113.45	attack	2019-10-29T13:46:19.507508abusebot-2.cloudsearch.cf sshd\[3740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-38-113.eu user=root	2019-10-29 23:27:40

Recently Reported IPs

254.162.53.246	226.164.102.97	109.130.103.193	82.172.76.1
114.212.184.103	142.70.92.105	33.78.57.114	172.112.203.22
255.247.196.235	203.180.99.47	164.187.115.138	194.23.56.116
72.174.214.46	129.192.66.8	129.254.79.6	36.160.219.120
14.127.103.124	192.171.8.139	157.192.141.107	114.254.16.42