104.200.144.21

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Total Server Solutions L.L.C.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Feb 12 00:33:21 mercury smtpd[14994]: 66a183f2249afe8f smtp event=failed-command address=104.200.144.21 host=sendpoker.com command="RCPT to:" result="550 Invalid recipient" ...	2020-03-04 02:42:53

Comments on same subnet:

IP	Type	Details	Datetime
104.200.144.166	attackspam	SSH Brute Force	2020-04-29 13:37:26
104.200.144.166	attack	Feb 16 05:12:15 sachi sshd\[2133\]: Invalid user roz from 104.200.144.166 Feb 16 05:12:15 sachi sshd\[2133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166 Feb 16 05:12:17 sachi sshd\[2133\]: Failed password for invalid user roz from 104.200.144.166 port 60464 ssh2 Feb 16 05:15:14 sachi sshd\[2427\]: Invalid user spencer from 104.200.144.166 Feb 16 05:15:14 sachi sshd\[2427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166	2020-02-16 23:43:58
104.200.144.166	attackspam	Feb 9 06:38:11 srv-ubuntu-dev3 sshd[69672]: Invalid user jtx from 104.200.144.166 Feb 9 06:38:11 srv-ubuntu-dev3 sshd[69672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166 Feb 9 06:38:11 srv-ubuntu-dev3 sshd[69672]: Invalid user jtx from 104.200.144.166 Feb 9 06:38:13 srv-ubuntu-dev3 sshd[69672]: Failed password for invalid user jtx from 104.200.144.166 port 56382 ssh2 Feb 9 06:41:17 srv-ubuntu-dev3 sshd[70089]: Invalid user eie from 104.200.144.166 Feb 9 06:41:17 srv-ubuntu-dev3 sshd[70089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166 Feb 9 06:41:17 srv-ubuntu-dev3 sshd[70089]: Invalid user eie from 104.200.144.166 Feb 9 06:41:19 srv-ubuntu-dev3 sshd[70089]: Failed password for invalid user eie from 104.200.144.166 port 58026 ssh2 Feb 9 06:44:27 srv-ubuntu-dev3 sshd[70413]: Invalid user uqk from 104.200.144.166 ...	2020-02-09 20:38:10
104.200.144.166	attack	Jan 3 21:23:48 ws25vmsma01 sshd[53744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166 Jan 3 21:23:50 ws25vmsma01 sshd[53744]: Failed password for invalid user jyd from 104.200.144.166 port 33162 ssh2 ...	2020-01-04 06:12:45
104.200.144.1	attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:34:35
104.200.144.166	attack	2020-01-01T07:08:35.234788shield sshd\[22116\]: Invalid user freusen from 104.200.144.166 port 34482 2020-01-01T07:08:35.239076shield sshd\[22116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166 2020-01-01T07:08:37.103556shield sshd\[22116\]: Failed password for invalid user freusen from 104.200.144.166 port 34482 ssh2 2020-01-01T07:11:03.942293shield sshd\[23017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.200.144.166 user=root 2020-01-01T07:11:05.455850shield sshd\[23017\]: Failed password for root from 104.200.144.166 port 33920 ssh2	2020-01-01 15:13:11
104.200.144.191	attack	Jul 22 11:50:26 warning: unknown[104.200.144.191]: SASL LOGIN authentication failed: authentication failure Jul 22 11:50:27 warning: unknown[104.200.144.191]: SASL LOGIN authentication failed: authentication failure Jul 22 11:50:27 warning: unknown[104.200.144.191]: SASL LOGIN authentication failed: authentication failure	2019-07-23 11:10:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.200.144.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46697
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.200.144.21.			IN	A

;; AUTHORITY SECTION:
.			403	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030300 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 04 02:42:49 CST 2020
;; MSG SIZE  rcvd: 118

Host info

21.144.200.104.in-addr.arpa domain name pointer sendpoker.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.144.200.104.in-addr.arpa	name = sendpoker.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.69.28.75	attack	Invalid user sc from 201.69.28.75 port 51328	2020-05-02 13:30:16
68.183.129.210	attackbots	2020-05-02T05:56:16.667559rocketchat.forhosting.nl sshd[9693]: Failed password for root from 68.183.129.210 port 48904 ssh2 2020-05-02T06:01:18.889118rocketchat.forhosting.nl sshd[9758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.129.210 user=root 2020-05-02T06:01:20.697447rocketchat.forhosting.nl sshd[9758]: Failed password for root from 68.183.129.210 port 60490 ssh2 ...	2020-05-02 13:50:38
222.252.11.10	attack	May 2 05:00:50 ip-172-31-62-245 sshd\[18048\]: Invalid user marcio from 222.252.11.10\ May 2 05:00:52 ip-172-31-62-245 sshd\[18048\]: Failed password for invalid user marcio from 222.252.11.10 port 61027 ssh2\ May 2 05:05:52 ip-172-31-62-245 sshd\[18094\]: Failed password for root from 222.252.11.10 port 36561 ssh2\ May 2 05:10:39 ip-172-31-62-245 sshd\[18207\]: Invalid user foo from 222.252.11.10\ May 2 05:10:41 ip-172-31-62-245 sshd\[18207\]: Failed password for invalid user foo from 222.252.11.10 port 49517 ssh2\	2020-05-02 13:52:17
115.217.19.197	attackbotsspam	2020-05-02T04:57:08.472911abusebot-3.cloudsearch.cf sshd[23153]: Invalid user hua from 115.217.19.197 port 34928 2020-05-02T04:57:08.479917abusebot-3.cloudsearch.cf sshd[23153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.217.19.197 2020-05-02T04:57:08.472911abusebot-3.cloudsearch.cf sshd[23153]: Invalid user hua from 115.217.19.197 port 34928 2020-05-02T04:57:10.518695abusebot-3.cloudsearch.cf sshd[23153]: Failed password for invalid user hua from 115.217.19.197 port 34928 ssh2 2020-05-02T05:01:41.154379abusebot-3.cloudsearch.cf sshd[23434]: Invalid user engineering from 115.217.19.197 port 35390 2020-05-02T05:01:41.160156abusebot-3.cloudsearch.cf sshd[23434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.217.19.197 2020-05-02T05:01:41.154379abusebot-3.cloudsearch.cf sshd[23434]: Invalid user engineering from 115.217.19.197 port 35390 2020-05-02T05:01:43.008497abusebot-3.cloudsearch.cf sshd[2 ...	2020-05-02 13:32:48
222.186.173.238	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-02 13:33:45
95.165.196.6	attackbots	Port probing on unauthorized port 23	2020-05-02 13:16:38
161.35.138.226	attack	05/01/2020-23:57:03.749277 161.35.138.226 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-02 13:24:31
107.174.233.133	attack	Invalid user nhy from 107.174.233.133 port 47050	2020-05-02 13:37:00
36.75.210.51	attack	Unauthorised access (May 2) SRC=36.75.210.51 LEN=52 TTL=118 ID=30665 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-02 13:28:21
45.32.112.28	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-05-02 13:20:48
104.248.182.179	attackbotsspam	Invalid user ehsan from 104.248.182.179 port 49596	2020-05-02 13:27:44
180.76.179.213	attackbotsspam	5x Failed Password	2020-05-02 13:30:34
37.187.122.195	attack	(sshd) Failed SSH login from 37.187.122.195 (FR/France/ns332025.ip-37-187-122.eu): 5 in the last 3600 secs	2020-05-02 13:17:07
113.172.173.254	attackbotsspam	2020-05-0205:57:081jUjH1-0000n9-EF\<=info@whatsup2013.chH=\(localhost\)[113.172.173.254]:54775P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3079id=002690c3c8e3c9c15d58ee42a5517b6784f9b8@whatsup2013.chT="Youtrulymakemysoulhot"forsimonhoare2@gmail.compansonjsanchez@gmail.com2020-05-0205:54:081jUjE7-0000Z5-DJ\<=info@whatsup2013.chH=\(localhost\)[113.172.126.84]:35547P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3201id=afde45161d36e3efc88d3b689c5b515d6e23de65@whatsup2013.chT="Youmakemysoulcomfy"forkinnu1234@gmail.comcplmcbride0811@gmail.com2020-05-0205:54:161jUjEF-0000Zz-6K\<=info@whatsup2013.chH=\(localhost\)[222.252.43.174]:33660P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3149id=02ad1b484368424ad6d365c92edaf0ec8acdb9@whatsup2013.chT="Younodoubtknow\,Isacrificedhappiness"formodeymkh@gmail.comalando1996@gmail.com2020-05-0205:54:261jUjEP-0000av-A2\<=info@whatsup2013.chH=\(l	2020-05-02 13:13:55
51.79.21.228	attackbotsspam	May 2 07:04:45 vh1 sshd[24561]: Failed password for r.r from 51.79.21.228 port 49454 ssh2 May 2 07:04:45 vh1 sshd[24562]: Received disconnect from 51.79.21.228: 11: Bye Bye May 2 07:04:46 vh1 sshd[24573]: Invalid user admin from 51.79.21.228 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.79.21.228	2020-05-02 13:19:36

Recently Reported IPs

113.173.50.157	45.143.223.40	105.12.2.92	103.12.161.196
49.145.235.132	171.35.172.44	132.144.178.222	162.223.226.188
115.216.56.39	47.103.9.234	115.207.107.147	101.51.59.228
95.47.49.250	208.33.226.110	103.136.43.174	49.235.21.109
45.183.172.20	103.119.141.203	103.100.83.238	101.108.4.36