104.131.14.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.149.33	attack	$f2bV_matches	2020-08-31 07:02:25
104.131.14.14	attack	SSH Brute Force	2020-04-29 13:39:20
104.131.14.14	attackbots	(sshd) Failed SSH login from 104.131.14.14 (US/United States/nyxstudios.moe): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 23 15:16:23 srv sshd[11650]: Invalid user work from 104.131.14.14 port 48203 Feb 23 15:16:24 srv sshd[11650]: Failed password for invalid user work from 104.131.14.14 port 48203 ssh2 Feb 23 15:22:06 srv sshd[11768]: Invalid user bitrix from 104.131.14.14 port 38228 Feb 23 15:22:09 srv sshd[11768]: Failed password for invalid user bitrix from 104.131.14.14 port 38228 ssh2 Feb 23 15:27:27 srv sshd[11843]: Invalid user redmine from 104.131.14.14 port 52984	2020-02-24 00:05:44
104.131.148.158	attackbotsspam	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-02-03 13:23:03
104.131.148.158	attack	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-01-26 17:30:50
104.131.14.14	attackspam	Unauthorized connection attempt detected from IP address 104.131.14.14 to port 2220 [J]	2020-01-25 14:02:46
104.131.148.158	attackspam	Unauthorized connection attempt detected from IP address 104.131.148.158 to port 2220 [J]	2020-01-13 19:56:10
104.131.14.14	attackbots	Automatic report - SSH Brute-Force Attack	2019-12-24 15:39:27
104.131.14.14	attackbots	Dec 16 18:15:01 vpn01 sshd[15710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.14.14 Dec 16 18:15:04 vpn01 sshd[15710]: Failed password for invalid user yank from 104.131.14.14 port 37409 ssh2 ...	2019-12-17 01:44:09
104.131.14.14	attack	Dec 14 07:16:43 xeon sshd[56111]: Failed password for invalid user squid from 104.131.14.14 port 45780 ssh2	2019-12-14 14:43:11
104.131.14.14	attackbotsspam	2019-12-09T15:43:25.807341abusebot-6.cloudsearch.cf sshd\[9681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=nyxstudios.moe user=root	2019-12-10 00:05:30
104.131.149.33	attack	Automatic report - XMLRPC Attack	2019-11-28 16:08:43
104.131.14.14	attack	Nov 28 05:56:43 * sshd[2356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.14.14 Nov 28 05:56:45 * sshd[2356]: Failed password for invalid user diego from 104.131.14.14 port 33840 ssh2	2019-11-28 14:13:59
104.131.14.14	attackbots	Nov 13 07:29:11 vmanager6029 sshd\[7398\]: Invalid user schmelmeier from 104.131.14.14 port 51611 Nov 13 07:29:11 vmanager6029 sshd\[7398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.14.14 Nov 13 07:29:13 vmanager6029 sshd\[7398\]: Failed password for invalid user schmelmeier from 104.131.14.14 port 51611 ssh2	2019-11-13 15:22:48
104.131.14.14	attack	2019-11-08T06:31:31.056327abusebot-5.cloudsearch.cf sshd\[28638\]: Invalid user wang from 104.131.14.14 port 52938	2019-11-08 14:45:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.14.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54898
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.14.72.			IN	A

;; AUTHORITY SECTION:
.			523	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032101 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 22 06:05:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

72.14.131.104.in-addr.arpa domain name pointer 127863.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.14.131.104.in-addr.arpa	name = 127863.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.9.97.200	attackbots	20 attempts against mh-misbehave-ban on lake	2020-09-14 00:16:40
193.7.200.114	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-13 23:56:58
165.232.106.24	attackbots	firewall-block, port(s): 27017/tcp	2020-09-14 00:08:11
107.182.177.38	attackspam	Sep 13 16:14:31 ip106 sshd[29079]: Failed password for root from 107.182.177.38 port 39882 ssh2 ...	2020-09-14 00:15:10
51.75.249.224	attackspam	2020-09-13T13:50:21.547839abusebot.cloudsearch.cf sshd[14592]: Invalid user admin from 51.75.249.224 port 48594 2020-09-13T13:50:21.554364abusebot.cloudsearch.cf sshd[14592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=224.ip-51-75-249.eu 2020-09-13T13:50:21.547839abusebot.cloudsearch.cf sshd[14592]: Invalid user admin from 51.75.249.224 port 48594 2020-09-13T13:50:23.512828abusebot.cloudsearch.cf sshd[14592]: Failed password for invalid user admin from 51.75.249.224 port 48594 ssh2 2020-09-13T13:54:02.986149abusebot.cloudsearch.cf sshd[14639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=224.ip-51-75-249.eu user=root 2020-09-13T13:54:05.285600abusebot.cloudsearch.cf sshd[14639]: Failed password for root from 51.75.249.224 port 59882 ssh2 2020-09-13T13:57:50.887578abusebot.cloudsearch.cf sshd[14683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=224.ip-51-75 ...	2020-09-14 00:34:55
36.57.64.128	attack	Sep 12 20:36:13 srv01 postfix/smtpd\[19464\]: warning: unknown\[36.57.64.128\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:43:10 srv01 postfix/smtpd\[15793\]: warning: unknown\[36.57.64.128\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:43:22 srv01 postfix/smtpd\[15793\]: warning: unknown\[36.57.64.128\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:43:38 srv01 postfix/smtpd\[15793\]: warning: unknown\[36.57.64.128\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 12 20:43:56 srv01 postfix/smtpd\[15793\]: warning: unknown\[36.57.64.128\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-14 00:33:33
186.124.218.62	attackspambots	Sep 13 03:37:54 mail.srvfarm.net postfix/smtps/smtpd[892607]: warning: host62.186-124-218.telecom.net.ar[186.124.218.62]: SASL PLAIN authentication failed: Sep 13 03:37:55 mail.srvfarm.net postfix/smtps/smtpd[892607]: lost connection after AUTH from host62.186-124-218.telecom.net.ar[186.124.218.62] Sep 13 03:39:30 mail.srvfarm.net postfix/smtpd[891610]: warning: host62.186-124-218.telecom.net.ar[186.124.218.62]: SASL PLAIN authentication failed: Sep 13 03:39:31 mail.srvfarm.net postfix/smtpd[891610]: lost connection after AUTH from host62.186-124-218.telecom.net.ar[186.124.218.62] Sep 13 03:42:53 mail.srvfarm.net postfix/smtps/smtpd[897400]: warning: host62.186-124-218.telecom.net.ar[186.124.218.62]: SASL PLAIN authentication failed:	2020-09-14 00:02:29
177.207.251.18	attack	Sep 13 15:59:31 ift sshd\[29825\]: Failed password for root from 177.207.251.18 port 23027 ssh2Sep 13 16:01:17 ift sshd\[30230\]: Invalid user emp from 177.207.251.18Sep 13 16:01:18 ift sshd\[30230\]: Failed password for invalid user emp from 177.207.251.18 port 37776 ssh2Sep 13 16:03:01 ift sshd\[32014\]: Failed password for root from 177.207.251.18 port 14626 ssh2Sep 13 16:04:48 ift sshd\[32968\]: Failed password for root from 177.207.251.18 port 61005 ssh2 ...	2020-09-13 23:54:02
23.129.64.189	attackspam	2020-09-13T16:35[Censored Hostname] sshd[451]: Failed password for root from 23.129.64.189 port 60735 ssh2 2020-09-13T16:35[Censored Hostname] sshd[451]: Failed password for root from 23.129.64.189 port 60735 ssh2 2020-09-13T16:35[Censored Hostname] sshd[451]: Failed password for root from 23.129.64.189 port 60735 ssh2[...]	2020-09-14 00:24:09
203.114.227.121	attackspambots	Port scan on 1 port(s): 445	2020-09-14 00:20:26
80.82.70.118	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 389 proto: tcp cat: Misc Attackbytes: 60	2020-09-14 00:31:21
62.77.233.66	attackbots	Brute forcing email accounts	2020-09-14 00:07:25
51.77.151.175	attackspambots	$f2bV_matches	2020-09-14 00:01:25
156.96.150.32	attackspam	Port scan denied	2020-09-14 00:12:44
190.2.113.228	attack	2020-09-13T11:28[Censored Hostname] sshd[16602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.2.113.228 2020-09-13T11:28[Censored Hostname] sshd[16602]: Invalid user pi from 190.2.113.228 port 53994 2020-09-13T11:28[Censored Hostname] sshd[16602]: Failed password for invalid user pi from 190.2.113.228 port 53994 ssh2[...]	2020-09-13 23:49:51

Recently Reported IPs

104.131.109.216	104.131.152.66	104.131.160.180	104.131.46.53
104.143.152.195	104.144.219.2	104.145.231.8	104.149.35.233
104.152.208.12	104.154.106.177	104.154.70.188	104.16.12.9
104.16.120.89	104.16.124.90	104.16.125.90	104.16.127.100
104.16.128.131	104.16.13.102	104.16.135.11	104.16.143.87