104.131.214.7 - IPInfo

Basic Info

City: New York

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.214.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44504
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.214.7.			IN	A

;; AUTHORITY SECTION:
.			292	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052300 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 24 01:25:08 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 7.214.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.214.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.162.6.199	attack	Jul 25 14:28:45 mail sshd\[18559\]: Invalid user roy from 139.162.6.199 port 46272 Jul 25 14:28:45 mail sshd\[18559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.162.6.199 ...	2019-07-25 21:33:22
118.24.68.65	attack	118.24.68.65 - - [25/Jul/2019:14:40:44 +0200] "GET /webdav/ HTTP/1.1" 301 185 "-" "Mozilla/5.0" 118.24.68.65 - - [25/Jul/2019:14:40:46 +0200] "GET /help.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:28.0) Gecko/20100101 Firefox/28.0" 118.24.68.65 - - [25/Jul/2019:14:40:46 +0200] "GET /java.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:28.0) Gecko/20100101 Firefox/28.0" ...	2019-07-25 21:26:25
185.72.45.53	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-25 21:31:17
121.182.166.81	attackbots	Jul 25 15:08:30 OPSO sshd\[2573\]: Invalid user kp from 121.182.166.81 port 27143 Jul 25 15:08:30 OPSO sshd\[2573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81 Jul 25 15:08:32 OPSO sshd\[2573\]: Failed password for invalid user kp from 121.182.166.81 port 27143 ssh2 Jul 25 15:13:57 OPSO sshd\[3542\]: Invalid user willy from 121.182.166.81 port 22286 Jul 25 15:13:57 OPSO sshd\[3542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.81	2019-07-25 21:18:09
46.105.31.249	attackspambots	Jul 25 08:35:59 vps200512 sshd\[31360\]: Invalid user tmp from 46.105.31.249 Jul 25 08:35:59 vps200512 sshd\[31360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.31.249 Jul 25 08:36:01 vps200512 sshd\[31360\]: Failed password for invalid user tmp from 46.105.31.249 port 56404 ssh2 Jul 25 08:41:36 vps200512 sshd\[31585\]: Invalid user xm from 46.105.31.249 Jul 25 08:41:36 vps200512 sshd\[31585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.31.249	2019-07-25 20:56:13
94.191.28.110	attack	Jul 25 14:39:06 bouncer sshd\[8913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.28.110 user=root Jul 25 14:39:08 bouncer sshd\[8913\]: Failed password for root from 94.191.28.110 port 56662 ssh2 Jul 25 14:41:19 bouncer sshd\[8938\]: Invalid user ft from 94.191.28.110 port 47738 ...	2019-07-25 21:10:13
185.220.101.69	attack	2019-07-25T09:40:36.718552mizuno.rwx.ovh sshd[15419]: Connection from 185.220.101.69 port 34955 on 78.46.61.178 port 22 2019-07-25T09:40:40.044456mizuno.rwx.ovh sshd[15419]: Invalid user admin from 185.220.101.69 port 34955 2019-07-25T09:40:40.051834mizuno.rwx.ovh sshd[15419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.69 2019-07-25T09:40:36.718552mizuno.rwx.ovh sshd[15419]: Connection from 185.220.101.69 port 34955 on 78.46.61.178 port 22 2019-07-25T09:40:40.044456mizuno.rwx.ovh sshd[15419]: Invalid user admin from 185.220.101.69 port 34955 2019-07-25T09:40:41.504406mizuno.rwx.ovh sshd[15419]: Failed password for invalid user admin from 185.220.101.69 port 34955 ssh2 ...	2019-07-25 21:28:44
153.36.236.234	attack	Jul 25 14:47:00 legacy sshd[16200]: Failed password for root from 153.36.236.234 port 27927 ssh2 Jul 25 14:47:05 legacy sshd[16200]: Failed password for root from 153.36.236.234 port 27927 ssh2 Jul 25 14:47:07 legacy sshd[16200]: Failed password for root from 153.36.236.234 port 27927 ssh2 ...	2019-07-25 21:20:49
122.195.200.148	attack	Jul 25 14:41:29 legacy sshd[15982]: Failed password for root from 122.195.200.148 port 18910 ssh2 Jul 25 14:41:39 legacy sshd[15991]: Failed password for root from 122.195.200.148 port 59045 ssh2 Jul 25 14:41:42 legacy sshd[15991]: Failed password for root from 122.195.200.148 port 59045 ssh2 ...	2019-07-25 20:52:39
157.230.227.48	attackspam	157.230.227.48 - - [25/Jul/2019:14:41:15 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.48 - - [25/Jul/2019:14:41:18 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.48 - - [25/Jul/2019:14:41:25 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.48 - - [25/Jul/2019:14:41:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.48 - - [25/Jul/2019:14:41:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.227.48 - - [25/Jul/2019:14:41:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-25 20:57:29
62.11.168.112	attack	20 attempts against mh-ssh on ice.magehost.pro	2019-07-25 21:03:37
63.143.35.146	attackspam	\[2019-07-25 09:24:36\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '63.143.35.146:63116' - Wrong password \[2019-07-25 09:24:36\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-25T09:24:36.476-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8004",SessionID="0x7ff4d05977b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.146/63116",Challenge="4aef8f01",ReceivedChallenge="4aef8f01",ReceivedHash="cec5af7a5bd31609a59c7cb7415c500d" \[2019-07-25 09:25:36\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '63.143.35.146:50810' - Wrong password \[2019-07-25 09:25:36\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-25T09:25:36.340-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="885",SessionID="0x7ff4d01617e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.1	2019-07-25 21:27:43
182.99.56.71	attackbots	Code execution attempt: 182.99.56.71 - - [23/Jul/2019:04:08:50 +0100] "GET /index.php?s=index/%5Cthink%5Ccontainer/invokefunction&function=call_user_func_array&vars%5B0%5D=phpinfo&vars%5B1%5D%5B%5D=1 HTTP/1.1" 404 388 "-" "python-requests/2.22.0"	2019-07-25 21:08:29
94.23.208.211	attackbots	Jul 25 18:04:31 vibhu-HP-Z238-Microtower-Workstation sshd\[16403\]: Invalid user blog from 94.23.208.211 Jul 25 18:04:31 vibhu-HP-Z238-Microtower-Workstation sshd\[16403\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.208.211 Jul 25 18:04:33 vibhu-HP-Z238-Microtower-Workstation sshd\[16403\]: Failed password for invalid user blog from 94.23.208.211 port 34172 ssh2 Jul 25 18:08:54 vibhu-HP-Z238-Microtower-Workstation sshd\[17431\]: Invalid user aaron from 94.23.208.211 Jul 25 18:08:54 vibhu-HP-Z238-Microtower-Workstation sshd\[17431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.208.211 ...	2019-07-25 20:41:25
37.120.150.133	attack	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-07-25 21:13:33

Recently Reported IPs

104.131.21.11	104.131.25.176	104.131.27.158	104.131.36.247
104.131.55.39	104.131.56.122	104.131.56.147	104.131.6.187
104.131.73.239	104.131.8.148	104.131.84.147	104.131.86.223
104.131.87.232	104.131.88.155	104.131.88.73	104.131.91.135
104.131.92.171	104.131.92.222	104.131.92.86	104.131.93.150