104.21.93.189 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.93.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.93.189.			IN	A

;; AUTHORITY SECTION:
.			307	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:17:13 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 189.93.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.93.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.160.6.31	attackspam	217.160.6.31 - - [19/Oct/2019:05:50:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 217.160.6.31 - - [19/Oct/2019:05:50:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 217.160.6.31 - - [19/Oct/2019:05:50:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 217.160.6.31 - - [19/Oct/2019:05:50:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 217.160.6.31 - - [19/Oct/2019:05:50:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 217.160.6.31 - - [19/Oct/2019:05:50:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-19 17:02:49
116.102.182.42	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-10-2019 04:50:16.	2019-10-19 16:57:35
114.67.98.243	attackspam	Oct 19 09:01:49 meumeu sshd[10827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.98.243 Oct 19 09:01:50 meumeu sshd[10827]: Failed password for invalid user reaper from 114.67.98.243 port 35206 ssh2 Oct 19 09:06:43 meumeu sshd[11672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.98.243 ...	2019-10-19 16:53:27
190.39.244.231	attack	Unauthorised access (Oct 19) SRC=190.39.244.231 LEN=52 TTL=50 ID=23222 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-19 17:07:41
103.55.24.118	attackspambots	[SatOct1905:49:54.6731982019][:error][pid18333:tid139811838981888][client103.55.24.118:26028][client103.55.24.118]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"148.251.104.76"][uri"/4c68fb94/admin.php"][unique_id"XaqH4kgdLaSYISOp9B0W7wAAAQ0"][SatOct1905:49:55.2760862019][:error][pid18333:tid139811891431168][client103.55.24.118:26265][client103.55.24.118]ModSecurity:Accessdeniedwithcode403\(ph	2019-10-19 17:10:37
117.34.74.3	attack	[SatOct1905:49:27.4263832019][:error][pid11942:tid46955520046848][client117.34.74.3:7192][client117.34.74.3]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"136.243.224.52"][uri"/34e0f388/admin.php"][unique_id"XaqHxyNuTsSQBHJUagOimgAAAI8"][SatOct1905:49:28.2751852019][:error][pid12023:tid46955520046848][client117.34.74.3:7259][client117.34.74.3]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch	2019-10-19 17:14:56
62.234.106.199	attack	Oct 19 01:31:32 plusreed sshd[7076]: Invalid user dell1234 from 62.234.106.199 ...	2019-10-19 17:01:33
89.151.133.81	attackbots	Oct 19 06:44:50 www sshd\[207314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.151.133.81 user=root Oct 19 06:44:52 www sshd\[207314\]: Failed password for root from 89.151.133.81 port 39826 ssh2 Oct 19 06:50:56 www sshd\[207373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.151.133.81 user=root ...	2019-10-19 16:36:57
31.173.240.51	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-10-2019 04:50:19.	2019-10-19 16:52:25
220.76.205.178	attackbots	Oct 19 04:05:46 Tower sshd[12539]: Connection from 220.76.205.178 port 32865 on 192.168.10.220 port 22 Oct 19 04:05:47 Tower sshd[12539]: Failed password for root from 220.76.205.178 port 32865 ssh2 Oct 19 04:05:47 Tower sshd[12539]: Received disconnect from 220.76.205.178 port 32865:11: Bye Bye [preauth] Oct 19 04:05:47 Tower sshd[12539]: Disconnected from authenticating user root 220.76.205.178 port 32865 [preauth]	2019-10-19 16:38:20
196.188.42.130	attackbotsspam	Oct 18 17:42:56 php1 sshd\[21564\]: Invalid user ak47 from 196.188.42.130 Oct 18 17:42:56 php1 sshd\[21564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.188.42.130 Oct 18 17:42:58 php1 sshd\[21564\]: Failed password for invalid user ak47 from 196.188.42.130 port 55311 ssh2 Oct 18 17:50:46 php1 sshd\[22185\]: Invalid user three from 196.188.42.130 Oct 18 17:50:46 php1 sshd\[22185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.188.42.130	2019-10-19 16:39:53
92.100.244.82	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-10-2019 04:50:20.	2019-10-19 16:50:37
34.89.91.184	attack	Oct 19 10:25:40 pornomens sshd\[22329\]: Invalid user www from 34.89.91.184 port 51918 Oct 19 10:25:40 pornomens sshd\[22329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.89.91.184 Oct 19 10:25:42 pornomens sshd\[22329\]: Failed password for invalid user www from 34.89.91.184 port 51918 ssh2 ...	2019-10-19 17:06:29
190.191.194.9	attack	SSH bruteforce (Triggered fail2ban)	2019-10-19 16:42:11
125.212.201.6	attack	Oct 19 10:31:23 MK-Soft-VM3 sshd[17646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.201.6 Oct 19 10:31:24 MK-Soft-VM3 sshd[17646]: Failed password for invalid user admin from 125.212.201.6 port 56458 ssh2 ...	2019-10-19 16:37:52

Recently Reported IPs

104.21.93.181	104.21.93.188	104.21.93.19	104.21.93.191
104.21.93.194	104.21.93.193	104.21.93.192	104.21.93.195
104.21.93.198	104.21.93.196	104.21.93.200	104.21.93.203
104.21.93.197	104.21.93.2	104.21.93.204	104.21.93.199
104.21.93.205	104.21.93.206	104.21.93.207	104.21.93.210