104.21.62.239 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.62.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47019
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.62.239.			IN	A

;; AUTHORITY SECTION:
.			434	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 01:26:28 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 239.62.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 239.62.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.189.196.117	attack	Telnetd brute force attack detected by fail2ban	2020-03-29 01:39:18
39.121.250.200	attackspam	1585399273 - 03/28/2020 13:41:13 Host: 39.121.250.200/39.121.250.200 Port: 23 TCP Blocked	2020-03-29 01:25:50
68.183.90.78	attack	Fail2Ban - SSH Bruteforce Attempt	2020-03-29 01:19:31
51.158.27.3	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-29 01:32:30
118.172.127.217	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-29 01:21:59
49.247.207.56	attackspambots	Mar 28 17:21:23 game-panel sshd[20907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.207.56 Mar 28 17:21:24 game-panel sshd[20907]: Failed password for invalid user sgf from 49.247.207.56 port 53922 ssh2 Mar 28 17:29:39 game-panel sshd[21245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.207.56	2020-03-29 01:30:19
68.183.22.85	attack	Mar 28 15:56:42 ns392434 sshd[8224]: Invalid user g from 68.183.22.85 port 38040 Mar 28 15:56:42 ns392434 sshd[8224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.85 Mar 28 15:56:42 ns392434 sshd[8224]: Invalid user g from 68.183.22.85 port 38040 Mar 28 15:56:44 ns392434 sshd[8224]: Failed password for invalid user g from 68.183.22.85 port 38040 ssh2 Mar 28 17:37:03 ns392434 sshd[21415]: Invalid user jenkins from 68.183.22.85 port 36800 Mar 28 17:37:03 ns392434 sshd[21415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.85 Mar 28 17:37:03 ns392434 sshd[21415]: Invalid user jenkins from 68.183.22.85 port 36800 Mar 28 17:37:05 ns392434 sshd[21415]: Failed password for invalid user jenkins from 68.183.22.85 port 36800 ssh2 Mar 28 17:40:47 ns392434 sshd[21955]: Invalid user ylt from 68.183.22.85 port 49446	2020-03-29 01:37:17
189.112.179.115	attackspam	$f2bV_matches	2020-03-29 01:31:10
41.193.22.146	attackbots	DATE:2020-03-28 13:36:50, IP:41.193.22.146, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 01:46:45
95.154.81.65	attack	DATE:2020-03-28 13:37:04, IP:95.154.81.65, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 01:31:37
132.232.67.247	attack	2020-03-28T15:57:42.527478rocketchat.forhosting.nl sshd[23406]: Invalid user user from 132.232.67.247 port 58656 2020-03-28T15:57:44.542377rocketchat.forhosting.nl sshd[23406]: Failed password for invalid user user from 132.232.67.247 port 58656 ssh2 2020-03-28T16:03:09.751985rocketchat.forhosting.nl sshd[23533]: Invalid user kellyan from 132.232.67.247 port 60636 ...	2020-03-29 01:56:23
91.40.56.73	attack	SSH Brute-Force reported by Fail2Ban	2020-03-29 02:06:05
186.249.184.236	attackspam	[Sat Mar 28 19:41:04.142197 2020] [:error] [pid 31096:tid 140512430552832] [client 186.249.184.236:39371] [client 186.249.184.236] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xn9F4E@o3ApevSkgCAxvsQAABDk"] ...	2020-03-29 01:29:12
49.235.143.244	attack	Invalid user epmd from 49.235.143.244 port 58248	2020-03-29 02:01:32
45.123.221.128	attackspam	Automatic report - XMLRPC Attack	2020-03-29 01:45:53

Recently Reported IPs

103.68.166.4	103.66.208.68	103.68.251.111	103.68.34.103
103.66.223.151	103.66.34.40	103.68.53.89	103.69.114.27
103.68.78.0	103.69.193.97	103.69.150.6	103.69.126.230
103.69.216.139	104.21.62.24	103.68.77.68	103.69.216.226
103.69.217.27	103.68.43.52	103.69.217.37	103.69.30.21