75.148.53.67 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 75.148.53.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;75.148.53.67.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025031200 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 13 00:12:38 CST 2025
;; MSG SIZE  rcvd: 105

Host info

67.53.148.75.in-addr.arpa domain name pointer 75-148-53-67-Oregon.hfc.comcastbusiness.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
67.53.148.75.in-addr.arpa	name = 75-148-53-67-Oregon.hfc.comcastbusiness.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
65.49.223.231	attackspam	(sshd) Failed SSH login from 65.49.223.231 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 14:00:38 server2 sshd[5164]: Invalid user oxidized from 65.49.223.231 port 39148 Sep 13 14:00:40 server2 sshd[5164]: Failed password for invalid user oxidized from 65.49.223.231 port 39148 ssh2 Sep 13 14:07:34 server2 sshd[6334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.49.223.231 user=root Sep 13 14:07:36 server2 sshd[6334]: Failed password for root from 65.49.223.231 port 49484 ssh2 Sep 13 14:12:26 server2 sshd[7277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.49.223.231 user=root	2020-09-14 02:51:57
20.36.194.79	attackbots	srvr2: (mod_security) mod_security (id:934100) triggered by 20.36.194.79 (US/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/13 07:52:22 [error] 70302#0: 112258 [client 20.36.194.79] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf"] [line "48"] [id "934100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-javascript"] [tag "platform-multi"] [tag "attack-rce"] [tag "attack-injection-nodejs"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/242"] [redacted] [uri "/p/i/"] [unique_id "159997634234.076801"] [ref ""], client: 20.36.194.79, [redacted] request: "GET /p/i/?a=">alert(String.fromCharCode(88,83,83))&get=f_26&order=ASC&token=f1c6dd4b95196516b8a5cafed373733de1dafb9d HTTP/1.1" [redacted]	2020-09-14 03:06:18
193.247.213.196	attackbotsspam	(sshd) Failed SSH login from 193.247.213.196 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 14:32:41 server2 sshd[14023]: Invalid user alice from 193.247.213.196 Sep 13 14:32:41 server2 sshd[14023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.247.213.196 Sep 13 14:32:43 server2 sshd[14023]: Failed password for invalid user alice from 193.247.213.196 port 53998 ssh2 Sep 13 14:37:15 server2 sshd[19228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.247.213.196 user=root Sep 13 14:37:16 server2 sshd[19228]: Failed password for root from 193.247.213.196 port 33164 ssh2	2020-09-14 03:14:41
197.45.22.130	attackspam	firewall-block, port(s): 445/tcp	2020-09-14 02:51:01
222.186.175.154	attack	Sep 13 21:59:17 ift sshd\[48494\]: Failed password for root from 222.186.175.154 port 4938 ssh2Sep 13 21:59:27 ift sshd\[48494\]: Failed password for root from 222.186.175.154 port 4938 ssh2Sep 13 21:59:30 ift sshd\[48494\]: Failed password for root from 222.186.175.154 port 4938 ssh2Sep 13 21:59:36 ift sshd\[48508\]: Failed password for root from 222.186.175.154 port 14848 ssh2Sep 13 21:59:59 ift sshd\[48547\]: Failed password for root from 222.186.175.154 port 39986 ssh2 ...	2020-09-14 03:01:25
89.248.160.139	attackspam	TCP ports : 1976 / 2000 / 8089 / 8090 / 8327 / 8785 / 9001 / 35300; UDP port : 5060	2020-09-14 03:04:40
58.18.113.10	attackspam	Sep 13 18:08:01 ip-172-31-16-56 sshd\[11669\]: Invalid user mint from 58.18.113.10\ Sep 13 18:08:03 ip-172-31-16-56 sshd\[11669\]: Failed password for invalid user mint from 58.18.113.10 port 44430 ssh2\ Sep 13 18:11:39 ip-172-31-16-56 sshd\[11792\]: Invalid user tech1234 from 58.18.113.10\ Sep 13 18:11:42 ip-172-31-16-56 sshd\[11792\]: Failed password for invalid user tech1234 from 58.18.113.10 port 42504 ssh2\ Sep 13 18:15:12 ip-172-31-16-56 sshd\[11831\]: Invalid user hblee123 from 58.18.113.10\	2020-09-14 02:49:52
152.136.106.94	attackspam	Sep 13 06:22:09 ip106 sshd[7245]: Failed password for root from 152.136.106.94 port 55796 ssh2 ...	2020-09-14 03:14:14
117.69.159.249	attack	Sep 12 20:01:57 srv01 postfix/smtpd\[8226\]: warning: unknown\[117.69.159.249\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:05:22 srv01 postfix/smtpd\[7909\]: warning: unknown\[117.69.159.249\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:12:16 srv01 postfix/smtpd\[14595\]: warning: unknown\[117.69.159.249\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:15:42 srv01 postfix/smtpd\[16249\]: warning: unknown\[117.69.159.249\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:19:09 srv01 postfix/smtpd\[8226\]: warning: unknown\[117.69.159.249\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-14 03:03:02
138.68.99.46	attackspambots	(sshd) Failed SSH login from 138.68.99.46 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 12:49:04 optimus sshd[3841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 user=root Sep 13 12:49:06 optimus sshd[3841]: Failed password for root from 138.68.99.46 port 41436 ssh2 Sep 13 12:58:53 optimus sshd[7459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 user=root Sep 13 12:58:55 optimus sshd[7459]: Failed password for root from 138.68.99.46 port 53490 ssh2 Sep 13 13:04:06 optimus sshd[9215]: Invalid user android from 138.68.99.46	2020-09-14 03:07:27
151.80.77.132	attackspambots	Sep 13 20:19:34 nextcloud sshd\[22740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.77.132 user=root Sep 13 20:19:36 nextcloud sshd\[22740\]: Failed password for root from 151.80.77.132 port 53832 ssh2 Sep 13 20:25:26 nextcloud sshd\[28907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.77.132 user=root	2020-09-14 02:56:28
185.153.196.126	attackbots	scans 2 times in preceeding hours on the ports (in chronological order) 3393 3389 resulting in total of 2 scans from 185.153.196.0/22 block.	2020-09-14 02:52:42
192.35.169.39	attackspam	TCP (SYN) 192.35.169.39:1550 -> port 7547, len 44	2020-09-14 02:53:12
106.75.2.68	attackspam	SSH BruteForce Attack	2020-09-14 02:39:58
94.102.51.29	attackbotsspam	TCP (SYN) 94.102.51.29:57788 -> port 3396, len 44	2020-09-14 02:44:11

Recently Reported IPs

26.130.7.219	3.130.198.152	223.67.76.92	249.191.32.88
66.150.175.228	128.144.59.35	49.161.230.105	88.64.88.55
28.167.102.51	151.84.249.128	167.132.238.115	201.37.221.113
222.93.251.136	109.62.4.80	42.248.195.18	189.181.213.116
113.51.226.64	255.203.252.31	56.86.146.151	19.43.171.146