104.21.40.240 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.40.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33641
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.40.240.			IN	A

;; AUTHORITY SECTION:
.			466	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 19:32:55 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 240.40.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 240.40.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.250.212.237	attackbots	Honeypot attack, port: 23, PTR: c83-250-212-237.bredband.comhem.se.	2019-08-06 13:57:58
18.21.176.208	attack	Aug 6 09:26:49 www sshd\[150667\]: Invalid user pi from 18.21.176.208 Aug 6 09:26:49 www sshd\[150668\]: Invalid user pi from 18.21.176.208 Aug 6 09:26:50 www sshd\[150667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.21.176.208 Aug 6 09:26:50 www sshd\[150668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.21.176.208 ...	2019-08-06 14:36:10
188.165.242.200	attack	$f2bV_matches_ltvn	2019-08-06 14:39:13
36.239.55.121	attack	:	2019-08-06 14:34:59
218.69.91.84	attackbotsspam	Aug 6 01:38:22 xtremcommunity sshd\[19669\]: Invalid user opc from 218.69.91.84 port 55953 Aug 6 01:38:22 xtremcommunity sshd\[19669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.69.91.84 Aug 6 01:38:24 xtremcommunity sshd\[19669\]: Failed password for invalid user opc from 218.69.91.84 port 55953 ssh2 Aug 6 01:44:10 xtremcommunity sshd\[19895\]: Invalid user com from 218.69.91.84 port 52947 Aug 6 01:44:10 xtremcommunity sshd\[19895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.69.91.84 ...	2019-08-06 13:58:29
139.228.5.114	attackspam	Aug 6 02:30:59 localhost sshd\[22353\]: Invalid user pi from 139.228.5.114 port 43760 Aug 6 02:30:59 localhost sshd\[22355\]: Invalid user pi from 139.228.5.114 port 43764 ...	2019-08-06 14:03:41
104.206.128.38	attackbots	9595/tcp 81/tcp 161/udp... [2019-06-11/08-05]47pkt,15pt.(tcp),1pt.(udp)	2019-08-06 14:04:06
23.129.64.213	attack	20 attempts against mh-misbehave-ban on ice.magehost.pro	2019-08-06 13:56:14
221.124.17.233	attackspambots	Aug 6 04:07:30 django sshd[75193]: Invalid user cod2 from 221.124.17.233 Aug 6 04:07:30 django sshd[75193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.124.17.233 Aug 6 04:07:33 django sshd[75193]: Failed password for invalid user cod2 from 221.124.17.233 port 34918 ssh2 Aug 6 04:07:33 django sshd[75194]: Received disconnect from 221.124.17.233: 11: Bye Bye Aug 6 04:20:29 django sshd[76009]: Invalid user levi from 221.124.17.233 Aug 6 04:20:29 django sshd[76009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.124.17.233 Aug 6 04:20:31 django sshd[76009]: Failed password for invalid user levi from 221.124.17.233 port 57936 ssh2 Aug 6 04:20:31 django sshd[76010]: Received disconnect from 221.124.17.233: 11: Bye Bye Aug 6 04:25:34 django sshd[77380]: Invalid user maurice from 221.124.17.233 Aug 6 04:25:34 django sshd[77380]: pam_unix(sshd:auth): authentication failure; ........ -------------------------------	2019-08-06 14:19:35
89.142.57.194	attackspambots	DATE:2019-08-06 03:31:20, IP:89.142.57.194, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-08-06 14:32:48
209.17.97.42	attackbots	Automatic report - Banned IP Access	2019-08-06 14:20:04
191.53.232.20	attack	firewall-block, port(s): 445/tcp	2019-08-06 13:47:07
218.92.0.212	attackspam	Aug 5 23:31:15 ny01 sshd[2799]: Failed password for root from 218.92.0.212 port 37813 ssh2 Aug 5 23:31:28 ny01 sshd[2799]: error: maximum authentication attempts exceeded for root from 218.92.0.212 port 37813 ssh2 [preauth] Aug 5 23:31:33 ny01 sshd[2833]: Failed password for root from 218.92.0.212 port 42575 ssh2	2019-08-06 14:46:35
61.144.244.211	attack	Aug 6 03:31:31 tuxlinux sshd[9680]: Invalid user hzh from 61.144.244.211 port 44078 Aug 6 03:31:31 tuxlinux sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Aug 6 03:31:31 tuxlinux sshd[9680]: Invalid user hzh from 61.144.244.211 port 44078 Aug 6 03:31:31 tuxlinux sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Aug 6 03:31:31 tuxlinux sshd[9680]: Invalid user hzh from 61.144.244.211 port 44078 Aug 6 03:31:31 tuxlinux sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.144.244.211 Aug 6 03:31:33 tuxlinux sshd[9680]: Failed password for invalid user hzh from 61.144.244.211 port 44078 ssh2 ...	2019-08-06 14:43:35
206.189.184.9	attackspam	[TueAug0603:32:16.6903652019][:error][pid22420:tid47942473561856][client206.189.184.9:51874][client206.189.184.9]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"fit-easy.com"][uri"/currency.sql"][unique_id"XUjYoDSl5ahJ74UDFCatIQAAAQc"][TueAug0603:32:22.7374612019][:error][pid5257:tid47942500878080][client206.189.184.9:52692][client206.189.184.9]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITIC	2019-08-06 13:52:49

Recently Reported IPs

104.21.40.234	104.21.40.42	104.21.40.43	104.21.40.245
104.21.40.7	104.18.232.221	104.21.40.3	104.21.40.26
104.21.40.92	104.21.41.120	104.21.40.90	104.21.40.52
104.21.41.112	104.21.41.141	104.21.41.13	104.21.41.113
104.21.41.161	104.21.41.12	104.21.41.178	104.21.41.199