104.21.34.239 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.34.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.34.239.			IN	A

;; AUTHORITY SECTION:
.			350	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 21:00:04 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 239.34.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.34.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
211.148.135.196	attack	Sep 14 21:07:59 eventyay sshd[993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.148.135.196 Sep 14 21:08:01 eventyay sshd[993]: Failed password for invalid user alessandro from 211.148.135.196 port 57347 ssh2 Sep 14 21:13:33 eventyay sshd[1144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.148.135.196 ...	2019-09-15 03:15:10
167.71.48.4	attack	167.71.48.4 - - [14/Sep/2019:20:22:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.48.4 - - [14/Sep/2019:20:22:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.48.4 - - [14/Sep/2019:20:22:35 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.48.4 - - [14/Sep/2019:20:22:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.48.4 - - [14/Sep/2019:20:22:35 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.48.4 - - [14/Sep/2019:20:22:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-15 03:22:33
37.59.224.39	attackspam	Sep 14 21:54:27 pkdns2 sshd\[26200\]: Invalid user prueba1 from 37.59.224.39Sep 14 21:54:29 pkdns2 sshd\[26200\]: Failed password for invalid user prueba1 from 37.59.224.39 port 34658 ssh2Sep 14 21:58:50 pkdns2 sshd\[26359\]: Invalid user deploy from 37.59.224.39Sep 14 21:58:53 pkdns2 sshd\[26359\]: Failed password for invalid user deploy from 37.59.224.39 port 57924 ssh2Sep 14 22:03:18 pkdns2 sshd\[26551\]: Invalid user kafka from 37.59.224.39Sep 14 22:03:20 pkdns2 sshd\[26551\]: Failed password for invalid user kafka from 37.59.224.39 port 52719 ssh2 ...	2019-09-15 03:09:15
158.69.112.95	attackbots	Sep 14 20:52:56 MainVPS sshd[27861]: Invalid user taivi from 158.69.112.95 port 40822 Sep 14 20:52:56 MainVPS sshd[27861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.112.95 Sep 14 20:52:56 MainVPS sshd[27861]: Invalid user taivi from 158.69.112.95 port 40822 Sep 14 20:52:58 MainVPS sshd[27861]: Failed password for invalid user taivi from 158.69.112.95 port 40822 ssh2 Sep 14 20:56:45 MainVPS sshd[28117]: Invalid user deploy from 158.69.112.95 port 56672 ...	2019-09-15 03:26:40
193.32.160.136	attackbotsspam	2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-14 13:27:05 H=([193.32.160.145]) [193.32.160.136]:32048 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found ...	2019-09-15 03:06:02
141.98.9.5	attackbotsspam	Sep 14 20:44:51 webserver postfix/smtpd\[2471\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 20:45:37 webserver postfix/smtpd\[2471\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 20:46:22 webserver postfix/smtpd\[1556\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 20:47:08 webserver postfix/smtpd\[1556\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 20:47:54 webserver postfix/smtpd\[1556\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-15 03:04:54
45.40.194.129	attack	Sep 14 15:30:25 vps200512 sshd\[14758\]: Invalid user csanak from 45.40.194.129 Sep 14 15:30:25 vps200512 sshd\[14758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.194.129 Sep 14 15:30:27 vps200512 sshd\[14758\]: Failed password for invalid user csanak from 45.40.194.129 port 58746 ssh2 Sep 14 15:34:52 vps200512 sshd\[14818\]: Invalid user vyaragavan from 45.40.194.129 Sep 14 15:34:52 vps200512 sshd\[14818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.194.129	2019-09-15 03:40:19
183.131.82.99	attack	Automated report - ssh fail2ban: Sep 14 20:40:25 wrong password, user=root, port=11754, ssh2 Sep 14 20:40:28 wrong password, user=root, port=11754, ssh2 Sep 14 20:40:30 wrong password, user=root, port=11754, ssh2	2019-09-15 03:17:46
51.83.15.30	attackspam	Sep 15 02:23:22 webhost01 sshd[1719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.15.30 Sep 15 02:23:25 webhost01 sshd[1719]: Failed password for invalid user recruit from 51.83.15.30 port 34150 ssh2 ...	2019-09-15 03:34:47
45.227.253.117	attack	Sep 14 21:03:27 relay postfix/smtpd\[10813\]: warning: unknown\[45.227.253.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 21:15:39 relay postfix/smtpd\[21415\]: warning: unknown\[45.227.253.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 21:15:49 relay postfix/smtpd\[19171\]: warning: unknown\[45.227.253.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 21:19:16 relay postfix/smtpd\[14355\]: warning: unknown\[45.227.253.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 14 21:19:26 relay postfix/smtpd\[21970\]: warning: unknown\[45.227.253.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-15 03:22:50
111.250.177.89	attackbots	Unauthorised access (Sep 14) SRC=111.250.177.89 LEN=40 PREC=0x20 TTL=53 ID=11795 TCP DPT=23 WINDOW=21868 SYN	2019-09-15 03:33:45
67.205.136.215	attackbots	Sep 14 20:18:35 tux-35-217 sshd\[8940\]: Invalid user kraft from 67.205.136.215 port 48254 Sep 14 20:18:35 tux-35-217 sshd\[8940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.136.215 Sep 14 20:18:38 tux-35-217 sshd\[8940\]: Failed password for invalid user kraft from 67.205.136.215 port 48254 ssh2 Sep 14 20:22:58 tux-35-217 sshd\[8951\]: Invalid user cronuser from 67.205.136.215 port 36608 Sep 14 20:22:58 tux-35-217 sshd\[8951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.136.215 ...	2019-09-15 03:08:15
45.136.109.40	attackbotsspam	firewall-block, port(s): 8040/tcp, 8082/tcp, 8234/tcp, 8294/tcp, 8352/tcp, 8362/tcp, 8419/tcp, 8435/tcp, 8491/tcp, 8716/tcp, 8786/tcp, 8937/tcp, 8940/tcp, 8955/tcp, 8972/tcp, 8976/tcp	2019-09-15 03:19:19
37.187.114.135	attackspambots	Sep 14 20:41:09 SilenceServices sshd[3866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.114.135 Sep 14 20:41:10 SilenceServices sshd[3866]: Failed password for invalid user putty from 37.187.114.135 port 52214 ssh2 Sep 14 20:45:36 SilenceServices sshd[5985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.114.135	2019-09-15 02:59:48
125.224.62.34	attackspam	Sep 13 20:39:22 localhost kernel: [2159379.646567] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=125.224.62.34 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=52154 PROTO=TCP SPT=61883 DPT=37215 WINDOW=39390 RES=0x00 SYN URGP=0 Sep 13 20:39:22 localhost kernel: [2159379.646573] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=125.224.62.34 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=52154 PROTO=TCP SPT=61883 DPT=37215 SEQ=758669438 ACK=0 WINDOW=39390 RES=0x00 SYN URGP=0 Sep 14 14:23:11 localhost kernel: [2223208.886177] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=125.224.62.34 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=59498 PROTO=TCP SPT=61883 DPT=37215 WINDOW=39390 RES=0x00 SYN URGP=0 Sep 14 14:23:11 localhost kernel: [2223208.886203] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=125.224.62.34 DST=[mungedIP2] LEN=40 TOS=0x00 PR	2019-09-15 03:01:44

Recently Reported IPs

104.21.34.237	176.31.232.18	104.21.34.245	104.21.34.249
104.21.34.25	104.21.34.252	27.92.18.95	104.21.34.253
104.21.34.254	104.21.34.27	104.21.34.30	104.21.34.34
104.21.34.35	157.218.188.70	104.21.34.38	104.21.34.42
104.21.34.43	104.21.34.47	104.21.34.5	104.21.34.51