104.131.73.120

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.131.73.105	attackbotsspam	Apr 22 14:02:40 h2829583 sshd[3756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.73.105 Apr 22 14:02:41 h2829583 sshd[3756]: Failed password for invalid user ting from 104.131.73.105 port 50909 ssh2	2020-04-22 22:53:39
104.131.73.105	attackbotsspam	Apr 6 18:12:29 debian sshd[31686]: Unable to negotiate with 104.131.73.105 port 59019: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Apr 6 18:14:13 debian sshd[31744]: Unable to negotiate with 104.131.73.105 port 40782: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-04-07 07:48:46
104.131.73.105	attackspambots	Apr 6 11:22:47 124388 sshd[9556]: Failed password for invalid user wp-user from 104.131.73.105 port 38281 ssh2 Apr 6 11:24:31 124388 sshd[9594]: Invalid user nagios from 104.131.73.105 port 48281 Apr 6 11:24:31 124388 sshd[9594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.73.105 Apr 6 11:24:31 124388 sshd[9594]: Invalid user nagios from 104.131.73.105 port 48281 Apr 6 11:24:33 124388 sshd[9594]: Failed password for invalid user nagios from 104.131.73.105 port 48281 ssh2	2020-04-06 20:18:48
104.131.73.105	attack	$f2bV_matches	2020-04-05 22:45:36
104.131.73.105	attackspam	IP attempted unauthorised action	2020-03-28 12:16:10
104.131.73.105	attack	" "	2020-03-19 05:21:29
104.131.73.105	attack	Mar 6 00:15:15 tuxlinux sshd[27299]: Invalid user 217 from 104.131.73.105 port 52565 Mar 6 00:15:15 tuxlinux sshd[27299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.73.105 Mar 6 00:15:15 tuxlinux sshd[27299]: Invalid user 217 from 104.131.73.105 port 52565 Mar 6 00:15:15 tuxlinux sshd[27299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.73.105 Mar 6 00:15:15 tuxlinux sshd[27299]: Invalid user 217 from 104.131.73.105 port 52565 Mar 6 00:15:15 tuxlinux sshd[27299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.73.105 Mar 6 00:15:17 tuxlinux sshd[27299]: Failed password for invalid user 217 from 104.131.73.105 port 52565 ssh2 ...	2020-03-08 02:29:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.131.73.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32448
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.131.73.120.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021602 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 12:03:00 CST 2022
;; MSG SIZE  rcvd: 107

Host info

120.73.131.104.in-addr.arpa domain name pointer edgestudio.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
120.73.131.104.in-addr.arpa	name = edgestudio.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.89.242.138	attack	2020-08-08T16:01:55.4726101495-001 sshd[41736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.242.138 user=root 2020-08-08T16:01:57.2600241495-001 sshd[41736]: Failed password for root from 118.89.242.138 port 40166 ssh2 2020-08-08T16:04:15.7038951495-001 sshd[41857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.242.138 user=root 2020-08-08T16:04:17.3761051495-001 sshd[41857]: Failed password for root from 118.89.242.138 port 47782 ssh2 2020-08-08T16:06:34.1731421495-001 sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.242.138 user=root 2020-08-08T16:06:36.2617481495-001 sshd[41956]: Failed password for root from 118.89.242.138 port 55398 ssh2 ...	2020-08-09 05:34:13
114.231.82.97	attackspambots	MAIL: User Login Brute Force Attempt	2020-08-09 05:11:52
104.248.132.216	attack	104.248.132.216 - - [08/Aug/2020:22:07:22 +0100] "POST /wp-login.php HTTP/1.1" 200 1956 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.132.216 - - [08/Aug/2020:22:07:23 +0100] "POST /wp-login.php HTTP/1.1" 200 1953 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.132.216 - - [08/Aug/2020:22:07:23 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 05:25:38
49.234.219.31	attack	2020-08-08T20:23:03.532948vps-d63064a2 sshd[50833]: User root from 49.234.219.31 not allowed because not listed in AllowUsers 2020-08-08T20:23:05.743172vps-d63064a2 sshd[50833]: Failed password for invalid user root from 49.234.219.31 port 46430 ssh2 2020-08-08T20:27:44.062238vps-d63064a2 sshd[50931]: User root from 49.234.219.31 not allowed because not listed in AllowUsers 2020-08-08T20:27:44.080797vps-d63064a2 sshd[50931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.219.31 user=root 2020-08-08T20:27:44.062238vps-d63064a2 sshd[50931]: User root from 49.234.219.31 not allowed because not listed in AllowUsers 2020-08-08T20:27:46.185171vps-d63064a2 sshd[50931]: Failed password for invalid user root from 49.234.219.31 port 57980 ssh2 ...	2020-08-09 05:30:07
222.186.61.115	attackbots	Sent packet to closed port: 55443	2020-08-09 05:21:29
49.83.38.137	attackbots	20 attempts against mh-ssh on flare	2020-08-09 05:21:53
104.131.13.199	attackbots	Aug 8 23:07:26 abendstille sshd\[26587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root Aug 8 23:07:27 abendstille sshd\[26587\]: Failed password for root from 104.131.13.199 port 49098 ssh2 Aug 8 23:11:09 abendstille sshd\[30560\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root Aug 8 23:11:11 abendstille sshd\[30560\]: Failed password for root from 104.131.13.199 port 59716 ssh2 Aug 8 23:14:49 abendstille sshd\[2515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root ...	2020-08-09 05:23:37
93.95.240.245	attackspambots	2020-08-09T00:10:43.796275snf-827550 sshd[6099]: Failed password for root from 93.95.240.245 port 40904 ssh2 2020-08-09T00:14:51.896926snf-827550 sshd[7632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.95.240.245 user=root 2020-08-09T00:14:54.101338snf-827550 sshd[7632]: Failed password for root from 93.95.240.245 port 50802 ssh2 ...	2020-08-09 05:16:19
165.22.94.219	attack	WordPress login Brute force / Web App Attack on client site.	2020-08-09 05:02:58
218.92.0.215	attackspambots	Aug 8 23:14:08 abendstille sshd\[1672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.215 user=root Aug 8 23:14:10 abendstille sshd\[1672\]: Failed password for root from 218.92.0.215 port 49835 ssh2 Aug 8 23:14:13 abendstille sshd\[1672\]: Failed password for root from 218.92.0.215 port 49835 ssh2 Aug 8 23:14:15 abendstille sshd\[1672\]: Failed password for root from 218.92.0.215 port 49835 ssh2 Aug 8 23:14:16 abendstille sshd\[1915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.215 user=root ...	2020-08-09 05:15:31
111.93.58.18	attackspambots	2020-08-08T20:44:19.648335shield sshd\[6610\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.58.18 user=root 2020-08-08T20:44:21.681754shield sshd\[6610\]: Failed password for root from 111.93.58.18 port 36858 ssh2 2020-08-08T20:48:42.407413shield sshd\[7648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.58.18 user=root 2020-08-08T20:48:44.548808shield sshd\[7648\]: Failed password for root from 111.93.58.18 port 47334 ssh2 2020-08-08T20:53:09.888352shield sshd\[9340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.58.18 user=root	2020-08-09 05:14:51
159.65.146.72	attack	159.65.146.72 - - [08/Aug/2020:21:27:59 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.146.72 - - [08/Aug/2020:21:28:01 +0100] "POST /wp-login.php HTTP/1.1" 200 4434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.65.146.72 - - [08/Aug/2020:21:28:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 05:20:06
36.7.159.45	attackspambots	08/08/2020-16:38:28.674781 36.7.159.45 Protocol: 6 ET SCAN Potential SSH Scan	2020-08-09 05:05:42
20.39.190.185	attackbots	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-08-09 05:31:01
182.140.89.40	attack	MAIL: User Login Brute Force Attempt	2020-08-09 05:28:28

Recently Reported IPs

104.131.69.252	104.131.73.126	104.131.80.22	238.98.216.120
104.131.81.182	104.131.82.17	104.131.83.47	104.131.91.106
104.131.95.55	104.131.99.102	104.143.10.190	104.143.143.134
104.143.32.132	104.143.9.110	104.143.9.111	104.143.9.80
104.145.227.246	104.149.134.210	104.149.14.71	104.149.158.13