104.21.54.235 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.54.235
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35763
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.54.235.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:36:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 235.54.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 235.54.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.27.237.237	attackbots	Unauthorised access (Nov 6) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=15784 TCP DPT=8080 WINDOW=39040 SYN Unauthorised access (Nov 6) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=35293 TCP DPT=8080 WINDOW=38771 SYN Unauthorised access (Nov 5) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=46435 TCP DPT=8080 WINDOW=38771 SYN Unauthorised access (Nov 5) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=51013 TCP DPT=8080 WINDOW=39040 SYN Unauthorised access (Nov 5) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=54047 TCP DPT=8080 WINDOW=39040 SYN Unauthorised access (Nov 4) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=53853 TCP DPT=8080 WINDOW=39040 SYN Unauthorised access (Nov 3) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=48012 TCP DPT=8080 WINDOW=39040 SYN Unauthorised access (Nov 3) SRC=50.27.237.237 LEN=40 TOS=0x10 PREC=0x40 TTL=54 ID=6530 TCP DPT=8080 WINDOW=39040 SYN	2019-11-06 18:52:26
49.235.35.12	attackspam	Nov 6 06:17:00 ip-172-31-62-245 sshd\[25063\]: Invalid user koln from 49.235.35.12\ Nov 6 06:17:02 ip-172-31-62-245 sshd\[25063\]: Failed password for invalid user koln from 49.235.35.12 port 60738 ssh2\ Nov 6 06:21:27 ip-172-31-62-245 sshd\[25111\]: Invalid user changem from 49.235.35.12\ Nov 6 06:21:30 ip-172-31-62-245 sshd\[25111\]: Failed password for invalid user changem from 49.235.35.12 port 60318 ssh2\ Nov 6 06:25:27 ip-172-31-62-245 sshd\[25185\]: Invalid user luanvandiemcao from 49.235.35.12\	2019-11-06 18:38:30
73.59.165.164	attack	Nov 6 12:31:41 server sshd\[7358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-59-165-164.hsd1.tn.comcast.net user=root Nov 6 12:31:43 server sshd\[7358\]: Failed password for root from 73.59.165.164 port 34250 ssh2 Nov 6 12:41:25 server sshd\[9726\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-59-165-164.hsd1.tn.comcast.net user=root Nov 6 12:41:26 server sshd\[9726\]: Failed password for root from 73.59.165.164 port 50048 ssh2 Nov 6 12:45:12 server sshd\[10741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-59-165-164.hsd1.tn.comcast.net user=root ...	2019-11-06 18:41:18
159.203.36.154	attackbots	2019-11-06T07:23:11.356019shield sshd\[16520\]: Invalid user uz5YtIl2zx from 159.203.36.154 port 58954 2019-11-06T07:23:11.360283shield sshd\[16520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.36.154 2019-11-06T07:23:13.431502shield sshd\[16520\]: Failed password for invalid user uz5YtIl2zx from 159.203.36.154 port 58954 ssh2 2019-11-06T07:27:05.621241shield sshd\[17171\]: Invalid user red from 159.203.36.154 port 49544 2019-11-06T07:27:05.626570shield sshd\[17171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.36.154	2019-11-06 18:45:30
70.18.218.223	attackspam	Nov 4 00:04:12 rb06 sshd[6505]: reveeclipse mapping checking getaddrinfo for pool-70-18-218-223.ny325.east.verizon.net [70.18.218.223] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 4 00:04:14 rb06 sshd[6505]: Failed password for invalid user take from 70.18.218.223 port 53150 ssh2 Nov 4 00:04:14 rb06 sshd[6505]: Received disconnect from 70.18.218.223: 11: Bye Bye [preauth] Nov 4 00:19:15 rb06 sshd[25780]: reveeclipse mapping checking getaddrinfo for pool-70-18-218-223.ny325.east.verizon.net [70.18.218.223] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 4 00:19:15 rb06 sshd[25780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.18.218.223 user=r.r Nov 4 00:19:16 rb06 sshd[25780]: Failed password for r.r from 70.18.218.223 port 38600 ssh2 Nov 4 00:19:16 rb06 sshd[25780]: Received disconnect from 70.18.218.223: 11: Bye Bye [preauth] Nov 4 00:22:50 rb06 sshd[25754]: reveeclipse mapping checking getaddrinfo for pool-70-18-218-223.ny325........ -------------------------------	2019-11-06 18:38:11
45.143.220.14	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-11-06 18:28:32
182.55.136.224	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-06 18:30:06
27.254.90.106	attackbotsspam	Nov 6 11:18:58 [host] sshd[15906]: Invalid user bluesun from 27.254.90.106 Nov 6 11:18:58 [host] sshd[15906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.90.106 Nov 6 11:19:00 [host] sshd[15906]: Failed password for invalid user bluesun from 27.254.90.106 port 33899 ssh2	2019-11-06 18:26:40
80.66.77.230	attackspambots	2019-11-06T08:21:37.008835host3.slimhost.com.ua sshd[3968902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.66.77.230 2019-11-06T08:21:37.003288host3.slimhost.com.ua sshd[3968902]: Invalid user usuario from 80.66.77.230 port 53130 2019-11-06T08:21:38.844124host3.slimhost.com.ua sshd[3968902]: Failed password for invalid user usuario from 80.66.77.230 port 53130 ssh2 2019-11-06T08:25:27.221106host3.slimhost.com.ua sshd[3971820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.66.77.230 user=root 2019-11-06T08:25:29.628819host3.slimhost.com.ua sshd[3971820]: Failed password for root from 80.66.77.230 port 34646 ssh2 ...	2019-11-06 18:31:28
85.244.80.184	attackspambots	Tried sshing with brute force.	2019-11-06 19:00:22
182.61.175.96	attackspambots	Nov 6 03:34:52 lanister sshd[13421]: Invalid user princesa from 182.61.175.96 Nov 6 03:34:54 lanister sshd[13421]: Failed password for invalid user princesa from 182.61.175.96 port 52394 ssh2 Nov 6 03:38:49 lanister sshd[13461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.96 user=root Nov 6 03:38:51 lanister sshd[13461]: Failed password for root from 182.61.175.96 port 34140 ssh2 ...	2019-11-06 18:44:24
202.157.176.31	attackspam	Automatic report - XMLRPC Attack	2019-11-06 18:26:22
45.143.220.16	attackspam	\[2019-11-06 05:13:44\] SECURITY\[1204\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-06T05:13:44.315+0100",Severity="Error",Service="SIP",EventVersion="2",AccountID="701146455378010",SessionID="0x7fe264314c68",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/45.143.220.16/57217",Challenge="3e67c247",ReceivedChallenge="3e67c247",ReceivedHash="0d76744cd2e5c7496eeebf08171b484b" \[2019-11-06 05:28:31\] SECURITY\[1204\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-06T05:28:31.938+0100",Severity="Error",Service="SIP",EventVersion="2",AccountID="+46455378010",SessionID="0x7fe26411ade8",LocalAddress="IPV4/UDP/204.8.216.89/5060",RemoteAddress="IPV4/UDP/45.143.220.16/62995",Challenge="3c4ea60b",ReceivedChallenge="3c4ea60b",ReceivedHash="7e58f902426dd0c305555ddf3f1d0c2f" \[2019-11-06 08:41:46\] SECURITY\[1204\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-06T08:41:46.592+0100",Severity="Error",Service="SIP", ...	2019-11-06 18:25:15
86.102.88.242	attackspam	Nov 6 07:24:54 v22018076622670303 sshd\[18460\]: Invalid user P\)o9I\u7Y\^ from 86.102.88.242 port 39506 Nov 6 07:24:54 v22018076622670303 sshd\[18460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.102.88.242 Nov 6 07:24:56 v22018076622670303 sshd\[18460\]: Failed password for invalid user P\)o9I\u7Y\^ from 86.102.88.242 port 39506 ssh2 ...	2019-11-06 18:57:31
146.48.96.196	attack	SSH Brute Force, server-1 sshd[5683]: Failed password for invalid user ts from 146.48.96.196 port 49722 ssh2	2019-11-06 18:49:18

Recently Reported IPs

104.21.54.224	104.21.54.230	104.21.54.236	104.21.7.29
104.21.54.237	104.21.54.238	104.21.54.239	104.21.54.240
104.21.54.242	104.21.54.247	104.21.54.25	104.21.54.243
104.21.54.244	104.21.54.28	104.21.54.26	104.21.54.31
104.21.54.32	104.21.54.33	104.21.54.41	104.21.54.35