104.131.219.204

Basic Info

City: New York

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.219.124	attackbotsspam	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-05 03:09:17
104.131.219.209	attackspambots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-03-30 00:51:43
104.131.219.163	attackspam	Unauthorized connection attempt detected from IP address 104.131.219.163 to port 3389 [J]	2020-01-26 02:15:24
104.131.219.163	attackbots	Unauthorized connection attempt detected from IP address 104.131.219.163 to port 3388 [J]	2020-01-18 15:46:44
104.131.219.163	attackbotsspam	Unauthorized connection attempt detected from IP address 104.131.219.163 to port 465	2020-01-15 08:39:04
104.131.219.163	attack	Fail2Ban Ban Triggered	2019-12-15 23:25:51
104.131.219.65	attackspam	port scan and connect, tcp 6000 (X11)	2019-09-05 04:51:02
104.131.219.121	attackspambots	10s of requests to none existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined node-superagent/4.1.0	2019-08-07 04:34:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.219.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.219.204.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041201 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 13 10:30:38 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 204.219.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.219.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.232.13	attackspam	Tried our host z.	2020-07-09 23:42:26
222.186.190.17	attack	Jul 9 20:35:37 gw1 sshd[13622]: Failed password for root from 222.186.190.17 port 12383 ssh2 Jul 9 20:35:40 gw1 sshd[13622]: Failed password for root from 222.186.190.17 port 12383 ssh2 ...	2020-07-09 23:36:13
155.230.28.207	attackbots	Jul 9 17:14:14 DAAP sshd[25164]: Invalid user life from 155.230.28.207 port 60974 Jul 9 17:14:14 DAAP sshd[25164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.230.28.207 Jul 9 17:14:14 DAAP sshd[25164]: Invalid user life from 155.230.28.207 port 60974 Jul 9 17:14:16 DAAP sshd[25164]: Failed password for invalid user life from 155.230.28.207 port 60974 ssh2 Jul 9 17:23:47 DAAP sshd[25246]: Invalid user kamilla from 155.230.28.207 port 50044 ...	2020-07-09 23:57:03
79.143.178.163	attack	Port probing on unauthorized port 9999	2020-07-09 23:41:49
61.177.172.177	attackspambots	Jul 9 18:11:50 db sshd[6558]: Failed none for invalid user root from 61.177.172.177 port 30413 ssh2 Jul 9 18:11:50 db sshd[6558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Jul 9 18:11:52 db sshd[6558]: Failed password for invalid user root from 61.177.172.177 port 30413 ssh2 ...	2020-07-10 00:12:46
51.195.151.244	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-07-09T15:45:33Z and 2020-07-09T15:56:22Z	2020-07-10 00:00:21
182.61.43.196	attack	Jul 9 06:03:30 server1 sshd\[7800\]: Invalid user xianwd from 182.61.43.196 Jul 9 06:03:30 server1 sshd\[7800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.43.196 Jul 9 06:03:32 server1 sshd\[7800\]: Failed password for invalid user xianwd from 182.61.43.196 port 35328 ssh2 Jul 9 06:06:42 server1 sshd\[8799\]: Invalid user Biborka from 182.61.43.196 Jul 9 06:06:42 server1 sshd\[8799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.43.196 ...	2020-07-09 23:56:33
91.241.19.173	attack	attempted to connect via remote desktop connection via brute force	2020-07-10 00:04:58
185.39.11.38	attack	TCP (SYN) 185.39.11.38:49218 -> port 2029, len 44	2020-07-10 00:02:57
191.235.96.76	attackbotsspam	Jul 9 17:37:30 h2427292 sshd\[547\]: Invalid user rstudio-server from 191.235.96.76 Jul 9 17:37:30 h2427292 sshd\[547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.96.76 Jul 9 17:37:32 h2427292 sshd\[547\]: Failed password for invalid user rstudio-server from 191.235.96.76 port 60988 ssh2 ...	2020-07-09 23:56:06
31.171.152.102	attack	(From no-replyCreafe@gmail.com) Hеllо! murphychiropractic.net Did yоu knоw thаt it is pоssiblе tо sеnd mеssаgе соmplеtеly lеgit? Wе оffеring а nеw mеthоd оf sеnding businеss оffеr thrоugh соntасt fоrms. Suсh fоrms аrе lосаtеd оn mаny sitеs. Whеn suсh соmmеrсiаl оffеrs аrе sеnt, nо pеrsоnаl dаtа is usеd, аnd mеssаgеs аrе sеnt tо fоrms spесifiсаlly dеsignеd tо rесеivе mеssаgеs аnd аppеаls. аlsо, mеssаgеs sеnt thrоugh соmmuniсаtiоn Fоrms dо nоt gеt intо spаm bесаusе suсh mеssаgеs аrе соnsidеrеd impоrtаnt. Wе оffеr yоu tо tеst оur sеrviсе fоr frее. Wе will sеnd up tо 50,000 mеssаgеs fоr yоu. Thе соst оf sеnding оnе milliоn mеssаgеs is 49 USD. This mеssаgе is сrеаtеd аutоmаtiсаlly. Plеаsе usе thе соntасt dеtаils bеlоw tо соntасt us. Contact us. Telegram - @FeedbackFormEU Skype FeedbackForm2019 WhatsApp - +375259112693	2020-07-10 00:02:12
106.53.20.166	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-09T12:45:10Z and 2020-07-09T12:58:08Z	2020-07-09 23:46:21
222.186.31.166	attackspambots	Unauthorized connection attempt detected from IP address 222.186.31.166 to port 22	2020-07-09 23:45:18
189.202.59.52	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2020-07-10 00:05:05
182.16.103.34	attack	Jul 9 15:32:18 rancher-0 sshd[212039]: Invalid user sunyongliang from 182.16.103.34 port 37532 ...	2020-07-09 23:42:52

Recently Reported IPs

104.131.21.198	104.131.229.250	104.131.24.58	104.131.28.103
104.131.30.159	104.131.33.90	104.131.35.40	104.131.35.82
104.131.37.195	104.131.37.40	104.131.37.99	104.131.4.98
104.131.50.92	104.131.53.26	104.131.54.187	104.131.55.104
104.131.79.57	104.131.82.71	104.131.84.135	104.131.88.42