104.131.11.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.110.155	attackbotsspam	Detected by Fail2Ban	2020-10-05 06:27:55
104.131.110.155	attackspam	Oct 4 14:08:14 choloepus sshd[27653]: Did not receive identification string from 104.131.110.155 port 43642 Oct 4 14:08:24 choloepus sshd[27776]: Disconnected from invalid user root 104.131.110.155 port 59624 [preauth] Oct 4 14:08:36 choloepus sshd[27850]: Invalid user oracle from 104.131.110.155 port 44478 ...	2020-10-04 22:29:30
104.131.110.155	attackbotsspam	$f2bV_matches	2020-10-04 14:15:27
104.131.110.155	attack	web-1 [ssh] SSH Attack	2020-10-04 04:44:08
104.131.110.155	attackbots	Invalid user oracle from 104.131.110.155 port 45714	2020-10-03 20:51:43
104.131.110.155	attackspambots	Oct 3 06:39:36 doubuntu sshd[12773]: Did not receive identification string from 104.131.110.155 port 45172 ...	2020-10-03 06:58:24
104.131.11.149	attack	Sep 30 04:18:13 ip-172-31-16-56 sshd\[7755\]: Failed password for root from 104.131.11.149 port 35938 ssh2\ Sep 30 04:18:22 ip-172-31-16-56 sshd\[7757\]: Failed password for root from 104.131.11.149 port 54842 ssh2\ Sep 30 04:18:32 ip-172-31-16-56 sshd\[7760\]: Failed password for root from 104.131.11.149 port 45614 ssh2\ Sep 30 04:18:40 ip-172-31-16-56 sshd\[7762\]: Invalid user admin from 104.131.11.149\ Sep 30 04:18:43 ip-172-31-16-56 sshd\[7762\]: Failed password for invalid user admin from 104.131.11.149 port 36208 ssh2\	2020-09-30 12:21:32
104.131.115.14	attackspambots	SSH bruteforce attack	2020-09-25 04:48:13
104.131.117.137	attackspambots	Several unsuccessful attempts to access my WordPress server with wrong passwords	2020-09-24 01:30:06
104.131.117.137	attackbotsspam	Automatic report - XMLRPC Attack	2020-09-23 17:35:43
104.131.113.106	attackbotsspam	Port scan followed by SSH.	2020-09-21 23:01:06
104.131.113.106	attack	Port scan followed by SSH.	2020-09-21 14:45:36
104.131.118.160	attackbots	Sep 2 01:42:33 bbl sshd[30823]: Did not receive identification string from 104.131.118.160 port 51928 Sep 2 01:43:20 bbl sshd[3577]: Received disconnect from 104.131.118.160 port 49256:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:43:20 bbl sshd[3577]: Disconnected from 104.131.118.160 port 49256 [preauth] Sep 2 01:43:43 bbl sshd[6163]: Invalid user ftpuser from 104.131.118.160 port 44062 Sep 2 01:43:43 bbl sshd[6163]: Received disconnect from 104.131.118.160 port 44062:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:43:43 bbl sshd[6163]: Disconnected from 104.131.118.160 port 44062 [preauth] Sep 2 01:44:07 bbl sshd[8872]: Invalid user ghostname from 104.131.118.160 port 38862 Sep 2 01:44:07 bbl sshd[8872]: Received disconnect from 104.131.118.160 port 38862:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:44:07 bbl sshd[8872]: Disconnected from 104.131.118.160 port 38862 [preauth] Sep 2 01:44:31 bbl sshd[12270]: Inva........ -------------------------------	2020-09-08 00:31:22
104.131.118.160	attackbots	Sep 2 01:42:33 bbl sshd[30823]: Did not receive identification string from 104.131.118.160 port 51928 Sep 2 01:43:20 bbl sshd[3577]: Received disconnect from 104.131.118.160 port 49256:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:43:20 bbl sshd[3577]: Disconnected from 104.131.118.160 port 49256 [preauth] Sep 2 01:43:43 bbl sshd[6163]: Invalid user ftpuser from 104.131.118.160 port 44062 Sep 2 01:43:43 bbl sshd[6163]: Received disconnect from 104.131.118.160 port 44062:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:43:43 bbl sshd[6163]: Disconnected from 104.131.118.160 port 44062 [preauth] Sep 2 01:44:07 bbl sshd[8872]: Invalid user ghostname from 104.131.118.160 port 38862 Sep 2 01:44:07 bbl sshd[8872]: Received disconnect from 104.131.118.160 port 38862:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:44:07 bbl sshd[8872]: Disconnected from 104.131.118.160 port 38862 [preauth] Sep 2 01:44:31 bbl sshd[12270]: Inva........ -------------------------------	2020-09-07 16:00:31
104.131.118.160	attackspambots	Sep 2 01:42:33 bbl sshd[30823]: Did not receive identification string from 104.131.118.160 port 51928 Sep 2 01:43:20 bbl sshd[3577]: Received disconnect from 104.131.118.160 port 49256:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:43:20 bbl sshd[3577]: Disconnected from 104.131.118.160 port 49256 [preauth] Sep 2 01:43:43 bbl sshd[6163]: Invalid user ftpuser from 104.131.118.160 port 44062 Sep 2 01:43:43 bbl sshd[6163]: Received disconnect from 104.131.118.160 port 44062:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:43:43 bbl sshd[6163]: Disconnected from 104.131.118.160 port 44062 [preauth] Sep 2 01:44:07 bbl sshd[8872]: Invalid user ghostname from 104.131.118.160 port 38862 Sep 2 01:44:07 bbl sshd[8872]: Received disconnect from 104.131.118.160 port 38862:11: Normal Shutdown, Thank you for playing [preauth] Sep 2 01:44:07 bbl sshd[8872]: Disconnected from 104.131.118.160 port 38862 [preauth] Sep 2 01:44:31 bbl sshd[12270]: Inva........ -------------------------------	2020-09-07 08:22:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.11.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41537
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.11.2.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 08:19:12 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 2.11.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.11.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.113.90.75	attackbotsspam	Failed password for invalid user takashi from 190.113.90.75 port 42492 ssh2 Invalid user chris from 190.113.90.75 port 39100 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.113.90.75 Failed password for invalid user chris from 190.113.90.75 port 39100 ssh2 Invalid user test from 190.113.90.75 port 35958	2019-07-31 03:01:52
124.95.178.6	attackbotsspam	Jul 30 16:22:15 lnxded64 sshd[27955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.95.178.6	2019-07-31 02:20:22
140.240.143.193	attack	Brute force attempt	2019-07-31 02:24:52
178.62.237.38	attackspambots	Jul 30 19:13:14 [munged] sshd[31943]: Invalid user gast from 178.62.237.38 port 56966 Jul 30 19:13:14 [munged] sshd[31943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.237.38	2019-07-31 02:46:25
218.92.0.186	attackbots	2019-07-30T17:46:40.880685abusebot.cloudsearch.cf sshd\[22355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.186 user=root	2019-07-31 03:10:38
1.1.229.243	attackbotsspam	445/tcp [2019-07-30]1pkt	2019-07-31 03:10:17
123.16.234.189	attackbots	445/tcp [2019-07-30]1pkt	2019-07-31 03:07:32
190.57.232.234	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-30 14:47:27,898 INFO [amun_request_handler] PortScan Detected on Port: 445 (190.57.232.234)	2019-07-31 02:55:08
106.52.25.204	attackbots	DATE:2019-07-30 17:56:23, IP:106.52.25.204, PORT:ssh SSH brute force auth (thor)	2019-07-31 03:09:39
115.74.215.168	attackspambots	445/tcp [2019-07-30]1pkt	2019-07-31 02:33:42
118.70.128.93	attack	445/tcp [2019-07-30]1pkt	2019-07-31 02:56:03
117.121.214.50	attack	Jul 30 20:52:10 pkdns2 sshd\[42032\]: Invalid user prueba from 117.121.214.50Jul 30 20:52:13 pkdns2 sshd\[42032\]: Failed password for invalid user prueba from 117.121.214.50 port 39854 ssh2Jul 30 20:56:58 pkdns2 sshd\[42209\]: Invalid user victor from 117.121.214.50Jul 30 20:57:00 pkdns2 sshd\[42209\]: Failed password for invalid user victor from 117.121.214.50 port 33828 ssh2Jul 30 21:01:53 pkdns2 sshd\[42407\]: Invalid user webuser from 117.121.214.50Jul 30 21:01:56 pkdns2 sshd\[42407\]: Failed password for invalid user webuser from 117.121.214.50 port 55802 ssh2 ...	2019-07-31 02:34:53
110.77.132.215	attackbots	445/tcp 445/tcp 445/tcp [2019-07-30]3pkt	2019-07-31 02:22:16
149.202.23.213	attackbotsspam	ENG,WP GET /wp-login.php	2019-07-31 02:22:34
119.182.190.21	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-31 03:14:16

Recently Reported IPs

104.131.1.113	104.131.106.80	104.131.120.50	104.131.125.221
104.131.121.157	104.131.110.168	104.131.102.238	125.1.55.169
104.131.16.222	104.131.102.173	104.131.189.108	104.131.21.50
104.131.20.216	104.131.23.66	104.131.211.232	104.131.169.15
104.131.43.215	104.131.29.136	104.131.45.112	104.131.249.90