104.21.30.175 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.30.175
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53502
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.30.175.			IN	A

;; AUTHORITY SECTION:
.			39	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 20:26:29 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 175.30.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 175.30.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.84.146.16	attack	failed logins	2020-06-05 20:24:12
194.187.249.55	attackspambots	(From hacker@pandora.com) PLEASE FORWARD THIS EMAIL TO SOMEONE IN YOUR COMPANY WHO IS ALLOWED TO MAKE IMPORTANT DECISIONS! We have hacked your website http://www.hotzchiropractic.com and extracted your databases. How did this happen? Our team has found a vulnerability within your site that we were able to exploit. After finding the vulnerability we were able to get your database credentials and extract your entire database and move the information to an offshore server. What does this mean? We will systematically go through a series of steps of totally damaging your reputation. First your database will be leaked or sold to the highest bidder which they will use with whatever their intentions are. Next if there are e-mails found they will be e-mailed that their information has been sold or leaked and your site http://www.hotzchiropractic.com was at fault thusly damaging your reputation and having angry customers/associates with whatever angry customers/associates do. Lastly any links that you have	2020-06-05 20:26:45
188.213.49.211	attack	/?a=fetch&content=%3Cphp%3Edie(@md5(HelloThinkPHP))%3C/php%3E /App/?content=die(md5(HelloThinkPHP)) /index.php/module/action/param1/$%7B@die(md5(HelloThinkPHP))%7D	2020-06-05 20:58:35
113.190.252.87	attack	113.190.252.87 - - [05/Jun/2020:14:03:57 +0200] "GET /wp-login.php HTTP/1.1" 200 6521 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 113.190.252.87 - - [05/Jun/2020:14:04:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 113.190.252.87 - - [05/Jun/2020:14:04:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-05 20:20:48
106.201.112.16	attackspambots	Jun 5 13:54:17 menkisyscloudsrv97 sshd[12499]: Invalid user pi from 106.201.112.16 Jun 5 13:54:17 menkisyscloudsrv97 sshd[12501]: Invalid user pi from 106.201.112.16 Jun 5 13:54:19 menkisyscloudsrv97 sshd[12501]: Failed password for invalid user pi from 106.201.112.16 port 47204 ssh2 Jun 5 13:54:19 menkisyscloudsrv97 sshd[12499]: Failed password for invalid user pi from 106.201.112.16 port 47196 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.201.112.16	2020-06-05 20:47:11
222.186.30.112	attack	Jun 5 14:55:45 abendstille sshd\[19110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root Jun 5 14:55:47 abendstille sshd\[19110\]: Failed password for root from 222.186.30.112 port 48007 ssh2 Jun 5 14:55:48 abendstille sshd\[19110\]: Failed password for root from 222.186.30.112 port 48007 ssh2 Jun 5 14:55:51 abendstille sshd\[19110\]: Failed password for root from 222.186.30.112 port 48007 ssh2 Jun 5 14:55:53 abendstille sshd\[19458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root ...	2020-06-05 20:58:16
51.158.171.38	attackbots	Jun 5 12:26:32 mxgate1 postfix/postscreen[29601]: CONNECT from [51.158.171.38]:51995 to [176.31.12.44]:25 Jun 5 12:26:38 mxgate1 postfix/postscreen[29601]: PASS NEW [51.158.171.38]:51995 Jun 5 12:26:39 mxgate1 postfix/smtpd[29628]: connect from riquezaetica.com[51.158.171.38] Jun x@x Jun 5 12:26:40 mxgate1 postfix/smtpd[29628]: disconnect from riquezaetica.com[51.158.171.38] ehlo=2 starttls=1 mail=1 rcpt=0/1 quhostname=1 commands=5/6 Jun 5 12:36:40 mxgate1 postfix/postscreen[30170]: CONNECT from [51.158.171.38]:41863 to [176.31.12.44]:25 Jun 5 12:36:42 mxgate1 postfix/postscreen[30170]: PASS OLD [51.158.171.38]:41863 Jun 5 12:36:42 mxgate1 postfix/smtpd[30176]: connect from riquezaetica.com[51.158.171.38] Jun x@x Jun 5 12:36:42 mxgate1 postfix/smtpd[30176]: disconnect from riquezaetica.com[51.158.171.38] ehlo=2 starttls=1 mail=1 rcpt=0/1 quhostname=1 commands=5/6 Jun 5 12:46:41 mxgate1 postfix/postscreen[30212]: CONNECT from [51.158.171.38]:33300 to [176.31.12......... -------------------------------	2020-06-05 20:51:32
142.93.56.57	attackspam	Jun 5 14:34:14 server sshd[28692]: Failed password for root from 142.93.56.57 port 56354 ssh2 Jun 5 14:38:09 server sshd[28947]: Failed password for root from 142.93.56.57 port 55884 ssh2 ...	2020-06-05 20:48:27
49.235.216.127	attackbots	Fail2Ban	2020-06-05 20:54:45
89.248.160.150	attack	Fail2Ban Ban Triggered	2020-06-05 20:32:18
13.78.39.16	attack	Jun 5 13:53:48 km20725 sshd[21057]: Did not receive identification string from 13.78.39.16 port 50504 Jun 5 13:54:01 km20725 sshd[21060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.78.39.16 user=r.r Jun 5 13:54:03 km20725 sshd[21060]: Failed password for r.r from 13.78.39.16 port 44570 ssh2 Jun 5 13:54:04 km20725 sshd[21060]: Received disconnect from 13.78.39.16 port 44570:11: Normal Shutdown, Thank you for playing [preauth] Jun 5 13:54:04 km20725 sshd[21060]: Disconnected from authenticating user r.r 13.78.39.16 port 44570 [preauth] Jun 5 13:54:12 km20725 sshd[21132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.78.39.16 user=r.r Jun 5 13:54:15 km20725 sshd[21132]: Failed password for r.r from 13.78.39.16 port 32984 ssh2 Jun 5 13:54:16 km20725 sshd[21132]: Received disconnect from 13.78.39.16 port 32984:11: Normal Shutdown, Thank you for playing [preauth] Jun 5 13:5........ -------------------------------	2020-06-05 20:49:31
105.19.51.2	attackbotsspam	Automatic report - Port Scan Attack	2020-06-05 20:15:30
81.51.200.217	attackspam	Unauthorized connection attempt detected from IP address 81.51.200.217 to port 22	2020-06-05 20:22:40
41.218.203.43	attackspam	Unauthorized access to SSH at 5/Jun/2020:12:03:55 +0000. Received: (SSH-2.0-libssh2_1.9.0)	2020-06-05 20:25:05
178.165.99.208	attackbotsspam	"fail2ban match"	2020-06-05 20:20:21

Recently Reported IPs

45.13.90.102	104.21.30.177	104.21.30.18	104.21.30.180
104.21.30.185	104.21.30.189	104.21.30.191	104.21.30.196
104.21.30.199	104.21.30.200	104.21.30.201	104.21.30.203
104.21.30.207	104.21.30.212	104.21.30.214	104.21.30.215
104.21.30.22	104.21.30.221	181.49.191.155	104.21.30.222