104.131.21.149

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.21.222	attackbots	firewall-block, port(s): 8088/tcp	2020-10-09 08:00:34
104.131.21.222	attackspambots	" "	2020-10-09 00:35:21
104.131.21.222	attack	[portscan] tcp/22 [SSH] in blocklist.de:'listed [ssh]' *(RWIN=65535)(10080947)	2020-10-08 16:32:07
104.131.218.208	attackspam	Jun 7 17:40:07 *** sshd[29360]: User root from 104.131.218.208 not allowed because not listed in AllowUsers	2020-06-08 01:45:15
104.131.217.93	attackbots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-20 02:50:09
104.131.216.62	attackspam	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-20 01:53:27
104.131.217.56	attackbots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-19 22:32:17
104.131.217.66	attackspambots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-18 02:34:37
104.131.217.187	attackspambots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-18 02:18:07
104.131.216.136	attack	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-17 20:36:08
104.131.218.29	attackbotsspam	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-05 05:08:47
104.131.215.120	attackspambots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-05 04:42:26
104.131.219.124	attackbotsspam	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-05 03:09:17
104.131.217.43	attackbots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-03-30 03:04:08
104.131.216.33	attackbots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-03-30 01:38:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.21.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4795
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.21.149.			IN	A

;; AUTHORITY SECTION:
.			344	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 10:39:48 CST 2022
;; MSG SIZE  rcvd: 107

Host info

149.21.131.104.in-addr.arpa domain name pointer mountaire.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.21.131.104.in-addr.arpa	name = mountaire.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.177.172.142	attack	Jul 19 12:55:38 ajax sshd[29185]: Failed password for root from 61.177.172.142 port 20337 ssh2 Jul 19 12:55:42 ajax sshd[29185]: Failed password for root from 61.177.172.142 port 20337 ssh2	2020-07-19 20:02:14
92.126.231.246	attack	Jul 19 09:46:20 ns392434 sshd[22288]: Invalid user kuro from 92.126.231.246 port 46100 Jul 19 09:46:20 ns392434 sshd[22288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.126.231.246 Jul 19 09:46:20 ns392434 sshd[22288]: Invalid user kuro from 92.126.231.246 port 46100 Jul 19 09:46:22 ns392434 sshd[22288]: Failed password for invalid user kuro from 92.126.231.246 port 46100 ssh2 Jul 19 09:58:08 ns392434 sshd[22640]: Invalid user alin from 92.126.231.246 port 46846 Jul 19 09:58:08 ns392434 sshd[22640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.126.231.246 Jul 19 09:58:08 ns392434 sshd[22640]: Invalid user alin from 92.126.231.246 port 46846 Jul 19 09:58:11 ns392434 sshd[22640]: Failed password for invalid user alin from 92.126.231.246 port 46846 ssh2 Jul 19 10:02:34 ns392434 sshd[22714]: Invalid user srv from 92.126.231.246 port 35554	2020-07-19 19:55:00
15.188.80.226	attack	tried to log in in my microsoft account	2020-07-19 19:47:02
149.129.174.104	attackspambots	Jul 19 09:49:43 server sshd[21376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.174.104 Jul 19 09:49:45 server sshd[21376]: Failed password for invalid user john from 149.129.174.104 port 56870 ssh2 Jul 19 09:51:27 server sshd[21561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.174.104 ...	2020-07-19 19:56:44
152.136.131.171	attackbots	Tried to acess firewall on several ports.	2020-07-19 19:43:51
206.72.198.20	attackbotsspam	Invalid user joris from 206.72.198.20 port 41014	2020-07-19 19:53:55
113.141.166.197	attackbotsspam	Invalid user mzd from 113.141.166.197 port 49808	2020-07-19 20:05:20
189.125.102.208	attackbots	2020-07-19T08:32:10.201370shield sshd\[31314\]: Invalid user maximo from 189.125.102.208 port 41049 2020-07-19T08:32:10.206392shield sshd\[31314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.125.102.208 2020-07-19T08:32:12.250718shield sshd\[31314\]: Failed password for invalid user maximo from 189.125.102.208 port 41049 ssh2 2020-07-19T08:37:22.126959shield sshd\[656\]: Invalid user alex from 189.125.102.208 port 48137 2020-07-19T08:37:22.135339shield sshd\[656\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.125.102.208	2020-07-19 19:59:29
198.181.45.215	attackbots	Brute force attempt	2020-07-19 19:56:28
118.98.127.138	attackbotsspam	Jul 19 06:54:29 logopedia-1vcpu-1gb-nyc1-01 sshd[33024]: Invalid user rp from 118.98.127.138 port 56820 ...	2020-07-19 19:39:36
49.235.163.198	attack	Jul 19 13:34:33 vps639187 sshd\[21318\]: Invalid user piper from 49.235.163.198 port 36307 Jul 19 13:34:33 vps639187 sshd\[21318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.163.198 Jul 19 13:34:36 vps639187 sshd\[21318\]: Failed password for invalid user piper from 49.235.163.198 port 36307 ssh2 ...	2020-07-19 19:42:20
109.167.200.10	attack	Jul 19 14:51:23 webhost01 sshd[9851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.167.200.10 Jul 19 14:51:25 webhost01 sshd[9851]: Failed password for invalid user user0 from 109.167.200.10 port 37528 ssh2 ...	2020-07-19 19:58:39
109.255.185.65	attackbots	$f2bV_matches	2020-07-19 19:52:15
159.203.112.185	attackbotsspam	Jul 19 13:22:02 srv-ubuntu-dev3 sshd[50750]: Invalid user RONLY from 159.203.112.185 Jul 19 13:22:02 srv-ubuntu-dev3 sshd[50750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.112.185 Jul 19 13:22:02 srv-ubuntu-dev3 sshd[50750]: Invalid user RONLY from 159.203.112.185 Jul 19 13:22:04 srv-ubuntu-dev3 sshd[50750]: Failed password for invalid user RONLY from 159.203.112.185 port 38066 ssh2 Jul 19 13:26:11 srv-ubuntu-dev3 sshd[51198]: Invalid user tariq from 159.203.112.185 Jul 19 13:26:11 srv-ubuntu-dev3 sshd[51198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.112.185 Jul 19 13:26:11 srv-ubuntu-dev3 sshd[51198]: Invalid user tariq from 159.203.112.185 Jul 19 13:26:13 srv-ubuntu-dev3 sshd[51198]: Failed password for invalid user tariq from 159.203.112.185 port 55554 ssh2 Jul 19 13:30:27 srv-ubuntu-dev3 sshd[51728]: Invalid user sql from 159.203.112.185 ...	2020-07-19 19:31:16
59.152.98.163	attack	Jul 19 13:01:22 server sshd[38126]: Failed password for invalid user aru from 59.152.98.163 port 48724 ssh2 Jul 19 13:06:52 server sshd[42409]: Failed password for invalid user ute from 59.152.98.163 port 33060 ssh2 Jul 19 13:12:13 server sshd[46750]: Failed password for invalid user itg from 59.152.98.163 port 45632 ssh2	2020-07-19 19:40:16

Recently Reported IPs

104.131.191.244	104.131.23.55	104.131.56.94	104.131.57.147
104.131.69.123	104.131.85.191	104.140.122.253	104.143.44.203
104.131.95.197	104.144.145.187	104.144.157.26	104.143.45.27
104.144.161.159	104.144.147.28	104.148.18.152	104.145.233.208
104.144.209.15	104.144.83.158	104.148.39.154	15.34.7.5