104.131.66.243

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.66.225	attack	104.131.66.225 - - [22/Apr/2020:22:57:21 +0200] "GET /wp-login.php HTTP/1.1" 200 5686 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.66.225 - - [22/Apr/2020:22:57:22 +0200] "POST /wp-login.php HTTP/1.1" 200 5997 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.131.66.225 - - [22/Apr/2020:22:57:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-23 06:10:25
104.131.66.225	attack	WordPress XMLRPC scan :: 104.131.66.225 0.272 - [30/Mar/2020:08:50:13 0000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-03-30 19:36:26
104.131.66.225	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-03-10 17:01:34
104.131.66.8	attackbots	Chat Spam	2019-08-19 02:29:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.66.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13993
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.66.243.			IN	A

;; AUTHORITY SECTION:
.			507	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:11:14 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 243.66.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 243.66.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.80.94.228	attackbots	2020-06-03T13:12:49.721493shield sshd\[12464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root 2020-06-03T13:12:51.899720shield sshd\[12464\]: Failed password for root from 114.80.94.228 port 46353 ssh2 2020-06-03T13:17:20.045404shield sshd\[13121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root 2020-06-03T13:17:21.761725shield sshd\[13121\]: Failed password for root from 114.80.94.228 port 17306 ssh2 2020-06-03T13:21:57.596221shield sshd\[13722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.80.94.228 user=root	2020-06-03 21:28:05
113.193.243.35	attack	2020-06-03T08:49:17.6304771495-001 sshd[64992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 user=root 2020-06-03T08:49:19.6336631495-001 sshd[64992]: Failed password for root from 113.193.243.35 port 55762 ssh2 2020-06-03T08:53:22.6783841495-001 sshd[65143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 user=root 2020-06-03T08:53:24.3151371495-001 sshd[65143]: Failed password for root from 113.193.243.35 port 59674 ssh2 2020-06-03T08:57:21.1061441495-001 sshd[65295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 user=root 2020-06-03T08:57:23.5551351495-001 sshd[65295]: Failed password for root from 113.193.243.35 port 35330 ssh2 ...	2020-06-03 22:06:00
92.222.82.160	attackbotsspam	Jun 3 14:57:00 nextcloud sshd\[26740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.82.160 user=root Jun 3 14:57:03 nextcloud sshd\[26740\]: Failed password for root from 92.222.82.160 port 36136 ssh2 Jun 3 15:00:30 nextcloud sshd\[32429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.82.160 user=root	2020-06-03 22:04:28
187.114.212.143	attackspam	Automatic report - Port Scan Attack	2020-06-03 22:04:07
49.234.5.62	attack	SSH Brute-Forcing (server1)	2020-06-03 21:40:03
138.197.165.188	attackspambots	SSH Brute-Forcing (server1)	2020-06-03 21:58:13
195.54.160.210	attackbots	TCP (SYN) 195.54.160.210:52353 -> port 3356, len 44	2020-06-03 21:51:36
211.219.18.186	attackbotsspam	Jun 3 15:10:22 PorscheCustomer sshd[7658]: Failed password for root from 211.219.18.186 port 53368 ssh2 Jun 3 15:14:35 PorscheCustomer sshd[7791]: Failed password for root from 211.219.18.186 port 56032 ssh2 ...	2020-06-03 21:35:23
203.2.64.146	attackbotsspam	Jun 3 13:46:30 abendstille sshd\[18179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.2.64.146 user=root Jun 3 13:46:33 abendstille sshd\[18179\]: Failed password for root from 203.2.64.146 port 59190 ssh2 Jun 3 13:51:01 abendstille sshd\[22264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.2.64.146 user=root Jun 3 13:51:03 abendstille sshd\[22264\]: Failed password for root from 203.2.64.146 port 51542 ssh2 Jun 3 13:55:32 abendstille sshd\[26719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.2.64.146 user=root ...	2020-06-03 21:53:40
176.31.255.63	attack	Jun 3 08:06:18 ny01 sshd[31332]: Failed password for root from 176.31.255.63 port 50064 ssh2 Jun 3 08:09:50 ny01 sshd[31770]: Failed password for root from 176.31.255.63 port 52395 ssh2	2020-06-03 21:37:46
103.108.228.111	attackbots	Jun 3 13:53:55 vps687878 sshd\[26339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.228.111 user=root Jun 3 13:53:57 vps687878 sshd\[26339\]: Failed password for root from 103.108.228.111 port 55892 ssh2 Jun 3 13:54:37 vps687878 sshd\[26402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.228.111 user=root Jun 3 13:54:40 vps687878 sshd\[26402\]: Failed password for root from 103.108.228.111 port 35876 ssh2 Jun 3 13:55:19 vps687878 sshd\[26459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.228.111 user=root ...	2020-06-03 21:30:15
206.81.8.155	attackbotsspam	Jun 3 13:48:50 pornomens sshd\[18660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.8.155 user=root Jun 3 13:48:52 pornomens sshd\[18660\]: Failed password for root from 206.81.8.155 port 39823 ssh2 Jun 3 13:55:39 pornomens sshd\[18747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.8.155 user=root ...	2020-06-03 21:46:48
162.243.144.26	attackspambots	trying to access non-authorized port	2020-06-03 21:27:39
115.230.71.97	attack	SSH invalid-user multiple login try	2020-06-03 21:48:20
167.114.96.156	attack	2020-06-03T13:39:28.368039shield sshd\[15871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.ip-167-114-96.net user=root 2020-06-03T13:39:30.396880shield sshd\[15871\]: Failed password for root from 167.114.96.156 port 58298 ssh2 2020-06-03T13:43:10.659427shield sshd\[16378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.ip-167-114-96.net user=root 2020-06-03T13:43:13.165340shield sshd\[16378\]: Failed password for root from 167.114.96.156 port 34118 ssh2 2020-06-03T13:46:49.722393shield sshd\[16887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.ip-167-114-96.net user=root	2020-06-03 21:57:58

Recently Reported IPs

103.99.202.223	104.131.98.51	104.131.41.45	104.131.89.180
104.129.31.230	104.129.3.208	104.137.220.155	104.131.76.72
104.144.104.178	104.144.129.151	104.140.83.14	104.144.147.145
104.144.226.80	104.144.182.195	104.144.7.5	104.144.18.254
104.144.99.127	104.149.145.27	104.149.142.233	104.149.145.28