104.131.42.68 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.42.61	attack	Invalid user kfk from 104.131.42.61 port 39612	2020-09-29 06:03:56
104.131.42.61	attack	Sep 28 11:05:12 fhem-rasp sshd[1994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.42.61 Sep 28 11:05:15 fhem-rasp sshd[1994]: Failed password for invalid user alessandro from 104.131.42.61 port 48486 ssh2 ...	2020-09-28 22:29:55
104.131.42.61	attack	Sep 28 08:03:50 vmd26974 sshd[13173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.42.61 Sep 28 08:03:52 vmd26974 sshd[13173]: Failed password for invalid user ubuntu from 104.131.42.61 port 48854 ssh2 ...	2020-09-28 14:34:42

Type

Details

Datetime

104.131.42.61

attack

Invalid user kfk from 104.131.42.61 port 39612

2020-09-29 06:03:56

104.131.42.61

attack

Sep 28 11:05:12 fhem-rasp sshd[1994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.42.61
Sep 28 11:05:15 fhem-rasp sshd[1994]: Failed password for invalid user alessandro from 104.131.42.61 port 48486 ssh2
...

2020-09-28 22:29:55

104.131.42.61

attack

Sep 28 08:03:50 vmd26974 sshd[13173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.42.61
Sep 28 08:03:52 vmd26974 sshd[13173]: Failed password for invalid user ubuntu from 104.131.42.61 port 48854 ssh2
...

2020-09-28 14:34:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.42.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.42.68.			IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032602 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 27 08:44:05 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 68.42.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.42.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.8.212.215	attack	Nov 11 06:19:59 game-panel sshd[7389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.212.215 Nov 11 06:20:01 game-panel sshd[7389]: Failed password for invalid user pdl from 154.8.212.215 port 50866 ssh2 Nov 11 06:24:21 game-panel sshd[7626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.212.215	2019-11-11 18:50:34
140.143.72.21	attackbots	<6 unauthorized SSH connections	2019-11-11 18:26:15
119.28.222.88	attackbots	Nov 11 11:34:25 dedicated sshd[27681]: Invalid user jojo from 119.28.222.88 port 35290	2019-11-11 18:46:45
112.33.12.100	attack	Nov 11 08:29:37 SilenceServices sshd[5805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.12.100 Nov 11 08:29:39 SilenceServices sshd[5805]: Failed password for invalid user 1233567 from 112.33.12.100 port 54826 ssh2 Nov 11 08:34:53 SilenceServices sshd[7365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.12.100	2019-11-11 18:27:31
49.232.51.237	attackbotsspam	Nov 10 22:00:52 web1 sshd\[28025\]: Invalid user dicitionar from 49.232.51.237 Nov 10 22:00:52 web1 sshd\[28025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.51.237 Nov 10 22:00:55 web1 sshd\[28025\]: Failed password for invalid user dicitionar from 49.232.51.237 port 52514 ssh2 Nov 10 22:05:12 web1 sshd\[28427\]: Invalid user mjunhyg from 49.232.51.237 Nov 10 22:05:12 web1 sshd\[28427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.51.237	2019-11-11 18:28:24
134.209.24.143	attackspam	Nov 11 07:02:27 ws24vmsma01 sshd[61925]: Failed password for root from 134.209.24.143 port 53266 ssh2 Nov 11 07:13:01 ws24vmsma01 sshd[70912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.24.143 ...	2019-11-11 18:33:34
167.99.159.35	attack	Nov 11 11:01:06 lnxded63 sshd[23180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.159.35	2019-11-11 18:57:42
185.156.177.88	attack	scan r	2019-11-11 19:04:29
175.207.13.200	attack	Nov 11 02:20:36 ny01 sshd[3305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.13.200 Nov 11 02:20:38 ny01 sshd[3305]: Failed password for invalid user sieloff from 175.207.13.200 port 57222 ssh2 Nov 11 02:25:40 ny01 sshd[4237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.13.200	2019-11-11 18:39:50
106.52.179.100	attackspambots	Nov 11 06:22:47 nbi-636 sshd[19773]: Invalid user kluksdahl from 106.52.179.100 port 58508 Nov 11 06:22:48 nbi-636 sshd[19773]: Failed password for invalid user kluksdahl from 106.52.179.100 port 58508 ssh2 Nov 11 06:22:49 nbi-636 sshd[19773]: Received disconnect from 106.52.179.100 port 58508:11: Bye Bye [preauth] Nov 11 06:22:49 nbi-636 sshd[19773]: Disconnected from 106.52.179.100 port 58508 [preauth] Nov 11 06:43:26 nbi-636 sshd[24105]: Invalid user apache from 106.52.179.100 port 47408 Nov 11 06:43:27 nbi-636 sshd[24105]: Failed password for invalid user apache from 106.52.179.100 port 47408 ssh2 Nov 11 06:43:28 nbi-636 sshd[24105]: Received disconnect from 106.52.179.100 port 47408:11: Bye Bye [preauth] Nov 11 06:43:28 nbi-636 sshd[24105]: Disconnected from 106.52.179.100 port 47408 [preauth] Nov 11 06:47:25 nbi-636 sshd[24812]: Invalid user ballou from 106.52.179.100 port 48830 Nov 11 06:47:27 nbi-636 sshd[24812]: Failed password for invalid user ballou from 106......... -------------------------------	2019-11-11 18:43:54
203.129.226.99	attackbotsspam	Nov 11 11:05:45 tux-35-217 sshd\[4432\]: Invalid user named from 203.129.226.99 port 62269 Nov 11 11:05:45 tux-35-217 sshd\[4432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99 Nov 11 11:05:46 tux-35-217 sshd\[4432\]: Failed password for invalid user named from 203.129.226.99 port 62269 ssh2 Nov 11 11:09:50 tux-35-217 sshd\[4447\]: Invalid user gp from 203.129.226.99 port 25807 Nov 11 11:09:50 tux-35-217 sshd\[4447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99 ...	2019-11-11 18:39:19
123.206.13.46	attackspam	Nov 11 09:23:23 mout sshd[484]: Invalid user john from 123.206.13.46 port 47228	2019-11-11 18:27:12
138.68.245.137	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-11 18:31:26
163.172.251.80	attack	2019-11-11T08:33:29.567459hub.schaetter.us sshd\[30552\]: Invalid user windows from 163.172.251.80 port 33884 2019-11-11T08:33:29.584218hub.schaetter.us sshd\[30552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.251.80 2019-11-11T08:33:31.455798hub.schaetter.us sshd\[30552\]: Failed password for invalid user windows from 163.172.251.80 port 33884 ssh2 2019-11-11T08:37:10.328039hub.schaetter.us sshd\[30612\]: Invalid user admin from 163.172.251.80 port 42598 2019-11-11T08:37:10.337869hub.schaetter.us sshd\[30612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.251.80 ...	2019-11-11 18:52:17
94.50.26.251	attackbots	Chat Spam	2019-11-11 18:26:40

Recently Reported IPs

104.131.34.167	104.131.46.32	104.131.49.175	104.131.5.212
104.131.53.141	104.131.55.224	104.131.63.24	104.131.66.12
104.131.71.91	104.131.75.154	104.131.77.113	104.131.79.59
104.131.81.202	104.131.86.61	104.131.87.95	104.131.90.200
104.131.95.195	104.131.95.198	104.131.96.116	9.216.26.22