104.131.50.85 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.50.20	attack	Nov 30 05:58:45 sshd[16692]: Connection from 104.131.50.20 port 50820 on server Nov 30 05:58:45 sshd[16692]: Did not receive identification string from 104.131.50.20 Nov 30 06:21:35 sshd[16873]: Connection from 104.131.50.20 port 42310 on server Nov 30 06:21:41 sshd[16873]: Invalid user bad from 104.131.50.20 Nov 30 06:21:43 sshd[16873]: Failed password for invalid user bad from 104.131.50.20 port 42310 ssh2 Nov 30 06:21:43 sshd[16873]: Received disconnect from 104.131.50.20: 11: Normal Shutdown, Thank you for playing [preauth] Nov 30 06:21:43 sshd[16875]: Connection from 104.131.50.20 port 42570 on server Nov 30 06:21:49 sshd[16875]: Failed password for daemon from 104.131.50.20 port 42570 ssh2 Nov 30 06:21:49 sshd[16875]: Received disconnect from 104.131.50.20: 11: Normal Shutdown, Thank you for playing [preauth]	2019-12-01 02:20:24
104.131.50.20	attack	$f2bV_matches	2019-11-30 19:37:19

Type

Details

Datetime

104.131.50.20

attack

Nov 30 05:58:45 sshd[16692]: Connection from 104.131.50.20 port 50820 on server
Nov 30 05:58:45 sshd[16692]: Did not receive identification string from 104.131.50.20
Nov 30 06:21:35 sshd[16873]: Connection from 104.131.50.20 port 42310 on server
Nov 30 06:21:41 sshd[16873]: Invalid user bad from 104.131.50.20
Nov 30 06:21:43 sshd[16873]: Failed password for invalid user bad from 104.131.50.20 port 42310 ssh2
Nov 30 06:21:43 sshd[16873]: Received disconnect from 104.131.50.20: 11: Normal Shutdown, Thank you for playing [preauth]
Nov 30 06:21:43 sshd[16875]: Connection from 104.131.50.20 port 42570 on server
Nov 30 06:21:49 sshd[16875]: Failed password for daemon from 104.131.50.20 port 42570 ssh2
Nov 30 06:21:49 sshd[16875]: Received disconnect from 104.131.50.20: 11: Normal Shutdown, Thank you for playing [preauth]

2019-12-01 02:20:24

104.131.50.20

attack

$f2bV_matches

2019-11-30 19:37:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.50.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.50.85.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022033100 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 31 16:29:06 CST 2022
;; MSG SIZE  rcvd: 106

Host info

85.50.131.104.in-addr.arpa domain name pointer rockstarrhub.wpmudev.host.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.50.131.104.in-addr.arpa	name = rockstarrhub.wpmudev.host.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.54.182.161	attackbots	SSH login attempts.	2020-10-09 14:00:23
112.85.42.174	attack	2020-10-09T05:27:22.994266shield sshd\[656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root 2020-10-09T05:27:24.493376shield sshd\[656\]: Failed password for root from 112.85.42.174 port 22796 ssh2 2020-10-09T05:27:27.751141shield sshd\[656\]: Failed password for root from 112.85.42.174 port 22796 ssh2 2020-10-09T05:27:30.898886shield sshd\[656\]: Failed password for root from 112.85.42.174 port 22796 ssh2 2020-10-09T05:27:33.785208shield sshd\[656\]: Failed password for root from 112.85.42.174 port 22796 ssh2	2020-10-09 13:36:21
222.186.30.35	attackbotsspam	Oct 9 02:04:47 plusreed sshd[3617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Oct 9 02:04:49 plusreed sshd[3617]: Failed password for root from 222.186.30.35 port 18221 ssh2 ...	2020-10-09 14:10:12
171.238.20.120	attackbotsspam	Brute force attempt	2020-10-09 13:31:17
168.227.16.20	attackbots	Icarus honeypot on github	2020-10-09 13:36:00
111.229.211.66	attackspambots	Oct 8 19:08:20 php1 sshd\[23226\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.211.66 user=root Oct 8 19:08:22 php1 sshd\[23226\]: Failed password for root from 111.229.211.66 port 59956 ssh2 Oct 8 19:13:13 php1 sshd\[23783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.211.66 user=root Oct 8 19:13:15 php1 sshd\[23783\]: Failed password for root from 111.229.211.66 port 60534 ssh2 Oct 8 19:18:03 php1 sshd\[24180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.211.66 user=root	2020-10-09 13:33:20
222.87.147.62	attackspam	2020-10-09T07:27:51.805153billing sshd[5534]: Invalid user cooper from 222.87.147.62 port 38968 2020-10-09T07:27:53.211121billing sshd[5534]: Failed password for invalid user cooper from 222.87.147.62 port 38968 ssh2 2020-10-09T07:28:31.887027billing sshd[7026]: Invalid user amavis from 222.87.147.62 port 42974 ...	2020-10-09 13:44:37
72.143.15.82	attackbotsspam	SSH brutforce	2020-10-09 13:48:37
154.221.28.224	attackspambots	SSH login attempts.	2020-10-09 13:51:57
119.18.194.168	attackspambots	Fail2Ban Ban Triggered	2020-10-09 13:42:44
157.245.237.33	attackspambots	Oct 9 03:36:28 pornomens sshd\[18253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.237.33 user=root Oct 9 03:36:30 pornomens sshd\[18253\]: Failed password for root from 157.245.237.33 port 46500 ssh2 Oct 9 03:44:35 pornomens sshd\[18334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.237.33 user=root ...	2020-10-09 13:50:21
112.85.42.231	attack	Oct 9 08:02:39 server sshd[23764]: Failed none for root from 112.85.42.231 port 60990 ssh2 Oct 9 08:02:41 server sshd[23764]: Failed password for root from 112.85.42.231 port 60990 ssh2 Oct 9 08:02:45 server sshd[23764]: Failed password for root from 112.85.42.231 port 60990 ssh2	2020-10-09 14:05:25
180.76.53.42	attackbots	Oct 9 07:18:06 ns381471 sshd[30881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.53.42 Oct 9 07:18:08 ns381471 sshd[30881]: Failed password for invalid user apache1 from 180.76.53.42 port 49676 ssh2	2020-10-09 13:38:02
43.226.40.250	attackspam	Oct 8 23:23:04 ip-172-31-42-142 sshd\[3209\]: Failed password for root from 43.226.40.250 port 59156 ssh2\ Oct 8 23:27:00 ip-172-31-42-142 sshd\[3247\]: Invalid user tuerk from 43.226.40.250\ Oct 8 23:27:02 ip-172-31-42-142 sshd\[3247\]: Failed password for invalid user tuerk from 43.226.40.250 port 34714 ssh2\ Oct 8 23:30:53 ip-172-31-42-142 sshd\[3302\]: Invalid user design1 from 43.226.40.250\ Oct 8 23:30:55 ip-172-31-42-142 sshd\[3302\]: Failed password for invalid user design1 from 43.226.40.250 port 38506 ssh2\	2020-10-09 13:51:23
81.141.129.184	attackspam	(sshd) Failed SSH login from 81.141.129.184 (GB/United Kingdom/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 9 00:11:16 jbs1 sshd[4841]: Invalid user pi from 81.141.129.184 Oct 9 00:11:16 jbs1 sshd[4842]: Invalid user pi from 81.141.129.184 Oct 9 00:11:16 jbs1 sshd[4841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.141.129.184 Oct 9 00:11:16 jbs1 sshd[4842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.141.129.184 Oct 9 00:11:18 jbs1 sshd[4841]: Failed password for invalid user pi from 81.141.129.184 port 33494 ssh2	2020-10-09 13:57:49

Recently Reported IPs

104.131.50.155	104.131.51.35	104.131.67.65	104.131.67.66
104.131.7.165	104.131.7.53	104.131.70.232	104.131.75.142
104.131.85.123	104.131.89.69	104.131.95.161	104.131.96.68
104.140.169.59	104.140.192.192	104.140.207.153	104.140.99.227
104.143.94.130	104.144.109.78	104.144.233.153	104.144.56.8