104.131.13.220

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.131.140	attack	Oct 9 00:27:54 electroncash sshd[3996]: Invalid user system from 104.131.131.140 port 51498 Oct 9 00:27:54 electroncash sshd[3996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 Oct 9 00:27:54 electroncash sshd[3996]: Invalid user system from 104.131.131.140 port 51498 Oct 9 00:27:56 electroncash sshd[3996]: Failed password for invalid user system from 104.131.131.140 port 51498 ssh2 Oct 9 00:32:04 electroncash sshd[5533]: Invalid user ftpguest from 104.131.131.140 port 54930 ...	2020-10-09 07:16:11
104.131.131.140	attackspambots	(sshd) Failed SSH login from 104.131.131.140 (US/United States/-): 5 in the last 3600 secs	2020-10-08 23:44:00
104.131.131.140	attack	Bruteforce detected by fail2ban	2020-10-08 15:39:58
104.131.13.199	attackbots	Sep 22 17:19:40 django-0 sshd[1542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root Sep 22 17:19:41 django-0 sshd[1542]: Failed password for root from 104.131.13.199 port 41494 ssh2 ...	2020-09-23 02:40:08
104.131.13.199	attackbotsspam	Sep 22 09:43:39 game-panel sshd[24480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 Sep 22 09:43:41 game-panel sshd[24480]: Failed password for invalid user manager from 104.131.13.199 port 41054 ssh2 Sep 22 09:47:19 game-panel sshd[24716]: Failed password for root from 104.131.13.199 port 50386 ssh2	2020-09-22 18:45:53
104.131.13.221	attackbots	C1,DEF GET /adminer-3.6.4.php	2020-09-17 02:06:26
104.131.13.221	attack	C1,DEF GET /adminer-3.6.4.php	2020-09-16 18:23:57
104.131.131.140	attack	Invalid user dreams from 104.131.131.140 port 34722	2020-09-14 21:03:14
104.131.131.140	attack	Sep 14 06:31:29 web-main sshd[2343823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 Sep 14 06:31:29 web-main sshd[2343823]: Invalid user hy from 104.131.131.140 port 52753 Sep 14 06:31:31 web-main sshd[2343823]: Failed password for invalid user hy from 104.131.131.140 port 52753 ssh2	2020-09-14 12:55:37
104.131.131.140	attackspam	Sep 13 21:02:17 ns308116 sshd[25452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root Sep 13 21:02:19 ns308116 sshd[25452]: Failed password for root from 104.131.131.140 port 40471 ssh2 Sep 13 21:05:54 ns308116 sshd[30485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root Sep 13 21:05:56 ns308116 sshd[30485]: Failed password for root from 104.131.131.140 port 35061 ssh2 Sep 13 21:09:19 ns308116 sshd[2631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.131.140 user=root ...	2020-09-14 04:57:28
104.131.13.199	attack	2020-09-12T10:15:17.864330centos sshd[7388]: Failed password for root from 104.131.13.199 port 38708 ssh2 2020-09-12T10:18:37.866639centos sshd[7557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root 2020-09-12T10:18:39.800652centos sshd[7557]: Failed password for root from 104.131.13.199 port 45062 ssh2 ...	2020-09-13 00:06:35
104.131.13.199	attackbots	(sshd) Failed SSH login from 104.131.13.199 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 12 01:06:09 server sshd[6733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root Sep 12 01:06:11 server sshd[6733]: Failed password for root from 104.131.13.199 port 56800 ssh2 Sep 12 01:12:45 server sshd[8448]: Invalid user server from 104.131.13.199 port 46752 Sep 12 01:12:47 server sshd[8448]: Failed password for invalid user server from 104.131.13.199 port 46752 ssh2 Sep 12 01:16:27 server sshd[9410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=ftp	2020-09-12 16:06:47
104.131.13.199	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-12 07:53:19
104.131.13.17	attackspam	Aug 29 20:49:29 ip-172-31-16-56 sshd\[25929\]: Invalid user fake from 104.131.13.17\ Aug 29 20:49:31 ip-172-31-16-56 sshd\[25929\]: Failed password for invalid user fake from 104.131.13.17 port 56692 ssh2\ Aug 29 20:49:31 ip-172-31-16-56 sshd\[25931\]: Invalid user admin from 104.131.13.17\ Aug 29 20:49:34 ip-172-31-16-56 sshd\[25931\]: Failed password for invalid user admin from 104.131.13.17 port 37640 ssh2\ Aug 29 20:49:36 ip-172-31-16-56 sshd\[25933\]: Failed password for root from 104.131.13.17 port 51646 ssh2\	2020-08-30 05:15:44
104.131.131.140	attack	Aug 28 23:44:19 pkdns2 sshd\[56504\]: Invalid user oracle from 104.131.131.140Aug 28 23:44:21 pkdns2 sshd\[56504\]: Failed password for invalid user oracle from 104.131.131.140 port 49585 ssh2Aug 28 23:47:32 pkdns2 sshd\[56697\]: Invalid user openerp from 104.131.131.140Aug 28 23:47:35 pkdns2 sshd\[56697\]: Failed password for invalid user openerp from 104.131.131.140 port 45128 ssh2Aug 28 23:50:58 pkdns2 sshd\[56889\]: Invalid user zzh from 104.131.131.140Aug 28 23:51:00 pkdns2 sshd\[56889\]: Failed password for invalid user zzh from 104.131.131.140 port 40672 ssh2 ...	2020-08-29 05:16:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.13.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.13.220.			IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:32:00 CST 2022
;; MSG SIZE  rcvd: 107

Host info

220.13.131.104.in-addr.arpa domain name pointer spinup3.wpsapiens.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
220.13.131.104.in-addr.arpa	name = spinup3.wpsapiens.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.56.110.203	attack	Aug 21 23:40:12 xtremcommunity sshd\[18959\]: Invalid user test from 218.56.110.203 port 12415 Aug 21 23:40:12 xtremcommunity sshd\[18959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.110.203 Aug 21 23:40:15 xtremcommunity sshd\[18959\]: Failed password for invalid user test from 218.56.110.203 port 12415 ssh2 Aug 21 23:48:50 xtremcommunity sshd\[19399\]: Invalid user administrator from 218.56.110.203 port 13186 Aug 21 23:48:50 xtremcommunity sshd\[19399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.110.203 ...	2019-08-22 11:49:45
51.254.37.192	attackspambots	Aug 22 05:28:52 SilenceServices sshd[21758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.192 Aug 22 05:28:54 SilenceServices sshd[21758]: Failed password for invalid user biz from 51.254.37.192 port 53232 ssh2 Aug 22 05:32:55 SilenceServices sshd[25399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.37.192	2019-08-22 11:35:44
119.29.245.158	attackbotsspam	Aug 22 02:51:54 debian sshd\[24742\]: Invalid user 000999888 from 119.29.245.158 port 59256 Aug 22 02:51:54 debian sshd\[24742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.245.158 ...	2019-08-22 11:47:30
191.6.174.189	attack	$f2bV_matches	2019-08-22 11:44:10
187.120.145.85	attack	Autoban 187.120.145.85 AUTH/CONNECT	2019-08-22 11:20:40
79.137.84.144	attackspam	Aug 22 03:27:45 hb sshd\[10422\]: Invalid user user from 79.137.84.144 Aug 22 03:27:45 hb sshd\[10422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.ip-79-137-84.eu Aug 22 03:27:47 hb sshd\[10422\]: Failed password for invalid user user from 79.137.84.144 port 33594 ssh2 Aug 22 03:31:42 hb sshd\[10755\]: Invalid user cybaek from 79.137.84.144 Aug 22 03:31:42 hb sshd\[10755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.ip-79-137-84.eu	2019-08-22 11:33:31
107.182.190.58	attack	Aug 21 23:54:41 icinga sshd[50841]: Failed password for root from 107.182.190.58 port 45296 ssh2 Aug 22 00:24:35 icinga sshd[5190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.182.190.58 Aug 22 00:24:37 icinga sshd[5190]: Failed password for invalid user testuser from 107.182.190.58 port 52164 ssh2 ...	2019-08-22 11:35:24
177.154.227.85	attackspambots	Aug 21 18:24:09 web1 postfix/smtpd[17696]: warning: unknown[177.154.227.85]: SASL PLAIN authentication failed: authentication failure ...	2019-08-22 12:01:54
106.12.106.78	attackbotsspam	Aug 22 06:00:14 www sshd\[29364\]: Invalid user data from 106.12.106.78Aug 22 06:00:16 www sshd\[29364\]: Failed password for invalid user data from 106.12.106.78 port 60930 ssh2Aug 22 06:05:16 www sshd\[29393\]: Invalid user ula from 106.12.106.78 ...	2019-08-22 11:18:59
52.80.44.96	attackspambots	Aug 21 18:14:42 econome sshd[31461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-80-44-96.cn-north-1.compute.amazonaws.com.cn Aug 21 18:14:44 econome sshd[31461]: Failed password for invalid user becker from 52.80.44.96 port 17763 ssh2 Aug 21 18:14:46 econome sshd[31461]: Received disconnect from 52.80.44.96: 11: Bye Bye [preauth] Aug 21 18:29:51 econome sshd[31948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-80-44-96.cn-north-1.compute.amazonaws.com.cn Aug 21 18:29:54 econome sshd[31948]: Failed password for invalid user adonis from 52.80.44.96 port 40432 ssh2 Aug 21 18:29:54 econome sshd[31948]: Received disconnect from 52.80.44.96: 11: Bye Bye [preauth] Aug 21 18:36:07 econome sshd[32217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-52-80-44-96.cn-north-1.compute.amazonaws.com.cn Aug 21 18:36:09 econome sshd[32217]: Fa........ -------------------------------	2019-08-22 11:32:12
94.60.116.71	attack	Aug 22 03:02:38 XXX sshd[47468]: Invalid user ofsaa from 94.60.116.71 port 51822	2019-08-22 11:54:41
107.128.103.162	attackspam	Aug 21 20:33:21 shared10 sshd[31176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.128.103.162 user=r.r Aug 21 20:33:23 shared10 sshd[31176]: Failed password for r.r from 107.128.103.162 port 46164 ssh2 Aug 21 20:33:23 shared10 sshd[31176]: Received disconnect from 107.128.103.162 port 46164:11: Bye Bye [preauth] Aug 21 20:33:23 shared10 sshd[31176]: Disconnected from 107.128.103.162 port 46164 [preauth] Aug 21 20:49:40 shared10 sshd[3979]: Invalid user emilia from 107.128.103.162 Aug 21 20:49:40 shared10 sshd[3979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.128.103.162 Aug 21 20:49:43 shared10 sshd[3979]: Failed password for invalid user emilia from 107.128.103.162 port 40358 ssh2 Aug 21 20:49:43 shared10 sshd[3979]: Received disconnect from 107.128.103.162 port 40358:11: Bye Bye [preauth] Aug 21 20:49:43 shared10 sshd[3979]: Disconnected from 107.128.103.162 port 40358 [p........ -------------------------------	2019-08-22 11:18:15
76.65.239.142	attackbotsspam	Aug 22 05:29:30 eventyay sshd[1779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.65.239.142 Aug 22 05:29:32 eventyay sshd[1779]: Failed password for invalid user admin1 from 76.65.239.142 port 35350 ssh2 Aug 22 05:33:38 eventyay sshd[2807]: Failed password for root from 76.65.239.142 port 53014 ssh2 ...	2019-08-22 11:42:55
141.98.80.74	attack	Aug 22 05:06:19 mail postfix/smtpd\[12813\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: \ Aug 22 05:06:33 mail postfix/smtpd\[12326\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: \ Aug 22 05:10:47 mail postfix/smtpd\[12638\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: \ Aug 22 05:46:50 mail postfix/smtpd\[13700\]: warning: unknown\[141.98.80.74\]: SASL PLAIN authentication failed: \	2019-08-22 11:57:54
152.250.252.179	attackbotsspam	Aug 22 05:19:43 itv-usvr-02 sshd[19897]: Invalid user tony from 152.250.252.179 port 55768 Aug 22 05:19:43 itv-usvr-02 sshd[19897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.250.252.179 Aug 22 05:19:43 itv-usvr-02 sshd[19897]: Invalid user tony from 152.250.252.179 port 55768 Aug 22 05:19:45 itv-usvr-02 sshd[19897]: Failed password for invalid user tony from 152.250.252.179 port 55768 ssh2 Aug 22 05:24:42 itv-usvr-02 sshd[19904]: Invalid user amandabackup from 152.250.252.179 port 43716	2019-08-22 11:28:57

Recently Reported IPs

104.131.151.164	104.131.159.111	104.131.156.119	104.131.134.86
104.131.16.159	104.131.17.183	104.131.187.95	104.131.160.233
104.131.200.238	104.21.63.146	104.131.188.107	104.131.25.249
104.131.242.70	104.131.19.149	104.131.21.84	104.131.176.229
104.131.33.191	104.131.28.36	104.131.32.88	104.21.63.147