104.131.72.58 - IPInfo

Basic Info

City: Clifton

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.72.150	attackbotsspam	104.131.72.150 - - \[04/Aug/2020:11:21:30 +0200\] "GET / HTTP/1.0" 301 178 "-" "Mozilla/5.0 \(compatible\; NetcraftSurveyAgent/1.0\; +info@netcraft.com\)" ...	2020-08-04 23:43:35
104.131.72.149	attackbots	TCP src-port=50134 dst-port=25 dnsbl-sorbs abuseat-org barracuda (Project Honey Pot rated Suspicious) (117)	2019-08-24 19:00:46

Type

Details

Datetime

104.131.72.150

attackbotsspam

104.131.72.150 - - \[04/Aug/2020:11:21:30 +0200\] "GET / HTTP/1.0" 301 178 "-" "Mozilla/5.0 \(compatible\; NetcraftSurveyAgent/1.0\; +info@netcraft.com\)"
...

2020-08-04 23:43:35

104.131.72.149

attackbots

TCP src-port=50134   dst-port=25    dnsbl-sorbs abuseat-org barracuda       (Project Honey Pot rated Suspicious)   (117)

2019-08-24 19:00:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.72.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.72.58.			IN	A

;; AUTHORITY SECTION:
.			221	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023022800 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 28 19:37:40 CST 2023
;; MSG SIZE  rcvd: 106

Host info

Host 58.72.131.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.72.131.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.117.126.249	attackspambots	Jul 27 14:52:38 * sshd[31609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.117.126.249 Jul 27 14:52:39 * sshd[31609]: Failed password for invalid user younes from 154.117.126.249 port 7058 ssh2	2020-07-27 23:38:07
42.236.10.90	attack	Bad Web Bot (360Spider).	2020-07-27 23:41:05
202.88.237.15	attack	Bruteforce detected by fail2ban	2020-07-27 23:45:08
5.58.74.33	attackspambots	Honeypot attack, port: 445, PTR: host-5-58-74-33.bitternet.ua.	2020-07-28 00:09:10
2.36.136.146	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-27 23:48:21
52.247.7.222	attackbots	(mod_security) mod_security (id:211190) triggered by 52.247.7.222 (US/United States/-): 5 in the last 3600 secs	2020-07-27 23:33:18
157.33.149.220	attackbots	Attempts against non-existent wp-login	2020-07-28 00:14:07
89.215.168.133	attackspam	Invalid user idb from 89.215.168.133 port 37906	2020-07-27 23:59:53
104.248.5.69	attackspam	Jul 27 15:28:29 124388 sshd[21579]: Invalid user daniel from 104.248.5.69 port 43874 Jul 27 15:28:29 124388 sshd[21579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.5.69 Jul 27 15:28:29 124388 sshd[21579]: Invalid user daniel from 104.248.5.69 port 43874 Jul 27 15:28:32 124388 sshd[21579]: Failed password for invalid user daniel from 104.248.5.69 port 43874 ssh2 Jul 27 15:32:19 124388 sshd[21924]: Invalid user tkissftp from 104.248.5.69 port 55236	2020-07-27 23:44:00
200.178.159.194	attackspam	1595850771 - 07/27/2020 13:52:51 Host: 200.178.159.194/200.178.159.194 Port: 445 TCP Blocked	2020-07-27 23:58:05
118.244.195.141	attackbots	Jul 27 15:05:14 buvik sshd[22057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.244.195.141 Jul 27 15:05:17 buvik sshd[22057]: Failed password for invalid user bookings from 118.244.195.141 port 48360 ssh2 Jul 27 15:11:28 buvik sshd[22952]: Invalid user co from 118.244.195.141 ...	2020-07-28 00:10:50
61.181.128.242	attack	Jul 27 17:49:53 rancher-0 sshd[608715]: Invalid user lxyhs from 61.181.128.242 port 61069 Jul 27 17:49:55 rancher-0 sshd[608715]: Failed password for invalid user lxyhs from 61.181.128.242 port 61069 ssh2 ...	2020-07-27 23:51:51
218.92.0.192	attack	Jul 27 17:00:44 sip sshd[1098032]: Failed password for root from 218.92.0.192 port 24192 ssh2 Jul 27 17:01:51 sip sshd[1098034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.192 user=root Jul 27 17:01:53 sip sshd[1098034]: Failed password for root from 218.92.0.192 port 28047 ssh2 ...	2020-07-27 23:32:24
190.133.161.209	attackbots	Automatic report - Port Scan Attack	2020-07-27 23:58:45
176.212.112.191	attackspam	Jul 27 13:52:19 * sshd[27089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.212.112.191 Jul 27 13:52:21 * sshd[27089]: Failed password for invalid user eca from 176.212.112.191 port 54282 ssh2	2020-07-28 00:20:51

Recently Reported IPs

101.44.245.121	104.131.72.188	83.238.116.10	252.83.203.250
88.43.34.17	79.21.210.126	17.88.177.58	70.248.29.124
209.40.44.37	6.224.192.112	230.161.27.51	168.3.18.224
104.227.77.51	65.74.49.108	52.67.160.171	93.158.44.14
143.2.160.206	2.82.1.101	7.242.62.59	170.69.57.229