131.210.54.134

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.210.54.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18663
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.210.54.134.			IN	A

;; AUTHORITY SECTION:
.			216	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050402 1800 900 604800 86400

;; Query time: 224 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 05 12:45:07 CST 2023
;; MSG SIZE  rcvd: 107

Host info

Host 134.54.210.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.54.210.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.69.226.48	attackspambots	2020-04-16T05:43:49.136211centos sshd[32557]: Invalid user ubnt from 94.69.226.48 port 59394 2020-04-16T05:43:50.499274centos sshd[32557]: Failed password for invalid user ubnt from 94.69.226.48 port 59394 ssh2 2020-04-16T05:46:11.842892centos sshd[32734]: Invalid user apaga from 94.69.226.48 port 35648 ...	2020-04-16 20:04:24
117.97.170.103	attackspam	Unauthorized connection attempt from IP address 117.97.170.103 on Port 445(SMB)	2020-04-16 20:31:35
113.190.156.151	attack	Unauthorized connection attempt from IP address 113.190.156.151 on Port 445(SMB)	2020-04-16 20:21:38
49.233.193.225	attack	Apr 16 15:15:50 www sshd\[204998\]: Invalid user test from 49.233.193.225 Apr 16 15:15:50 www sshd\[204998\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.193.225 Apr 16 15:15:52 www sshd\[204998\]: Failed password for invalid user test from 49.233.193.225 port 58964 ssh2 ...	2020-04-16 20:23:33
200.236.114.43	attackbotsspam	Automatic report - Port Scan Attack	2020-04-16 20:33:37
188.166.232.14	attackspambots	Invalid user home from 188.166.232.14 port 34120	2020-04-16 20:13:03
129.211.49.211	attackspam	Unauthorized SSH login attempts	2020-04-16 20:19:53
122.213.201.138	attackspam	SSH Authentication Attempts Exceeded	2020-04-16 20:09:03
222.186.173.215	attackspambots	Apr 16 14:30:15 eventyay sshd[4563]: Failed password for root from 222.186.173.215 port 21888 ssh2 Apr 16 14:30:19 eventyay sshd[4563]: Failed password for root from 222.186.173.215 port 21888 ssh2 Apr 16 14:30:23 eventyay sshd[4563]: Failed password for root from 222.186.173.215 port 21888 ssh2 Apr 16 14:30:26 eventyay sshd[4563]: Failed password for root from 222.186.173.215 port 21888 ssh2 ...	2020-04-16 20:36:10
64.225.115.188	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 52 - port: 29351 proto: TCP cat: Misc Attack	2020-04-16 19:54:19
178.154.200.6	attack	[Thu Apr 16 12:53:42.339223 2020] [:error] [pid 1438:tid 140331672659712] [client 178.154.200.6:46874] [client 178.154.200.6] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xpfy5nmg8WH53TAJLeEvCwAAALY"] ...	2020-04-16 20:11:15
83.24.218.222	attackbots	Apr 16 14:15:56 nextcloud sshd\[25188\]: Invalid user ubuntu from 83.24.218.222 Apr 16 14:15:56 nextcloud sshd\[25188\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.24.218.222 Apr 16 14:15:59 nextcloud sshd\[25188\]: Failed password for invalid user ubuntu from 83.24.218.222 port 32820 ssh2	2020-04-16 20:16:58
42.119.193.69	attackspam	Unauthorized connection attempt from IP address 42.119.193.69 on Port 445(SMB)	2020-04-16 20:06:29
122.114.87.17	attackbots	Lines containing failures of 122.114.87.17 Apr 16 10:24:52 UTC__SANYALnet-Labs__cac1 sshd[1600]: Connection from 122.114.87.17 port 2570 on 104.167.106.93 port 22 Apr 16 10:25:26 UTC__SANYALnet-Labs__cac1 sshd[1600]: User r.r from 122.114.87.17 not allowed because not listed in AllowUsers Apr 16 10:25:26 UTC__SANYALnet-Labs__cac1 sshd[1600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.87.17 user=r.r Apr 16 10:25:27 UTC__SANYALnet-Labs__cac1 sshd[1600]: Failed password for invalid user r.r from 122.114.87.17 port 2570 ssh2 Apr 16 10:25:27 UTC__SANYALnet-Labs__cac1 sshd[1600]: Connection closed by 122.114.87.17 port 2570 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.114.87.17	2020-04-16 20:03:11
64.37.62.186	attack	xmlrpc attack	2020-04-16 20:36:52

Recently Reported IPs

89.47.67.30	255.112.194.97	4.40.12.224	227.95.87.76
198.199.119.88	181.206.105.228	10.242.152.164	37.167.237.6
59.80.77.95	115.126.115.203	232.30.212.181	31.14.175.252
149.207.250.99	17.17.141.102	90.97.45.6	136.38.164.157
159.120.237.213	211.115.91.227	231.172.138.14	101.31.85.143