104.21.96.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.96.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.96.11.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:20:34 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 11.96.21.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.96.21.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.201.219.163	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-02 12:08:38
51.161.45.174	attack	Oct 2 04:18:44 124388 sshd[11937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.174 Oct 2 04:18:44 124388 sshd[11937]: Invalid user john from 51.161.45.174 port 37922 Oct 2 04:18:46 124388 sshd[11937]: Failed password for invalid user john from 51.161.45.174 port 37922 ssh2 Oct 2 04:22:14 124388 sshd[12213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.45.174 user=root Oct 2 04:22:15 124388 sshd[12213]: Failed password for root from 51.161.45.174 port 46954 ssh2	2020-10-02 12:26:36
111.229.110.107	attack	SSH Invalid Login	2020-10-02 07:56:37
175.205.111.109	attackspam	Oct 2 04:40:13 marvibiene sshd[15925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.205.111.109	2020-10-02 12:11:15
35.246.214.111	attack	35.246.214.111 - - [02/Oct/2020:05:04:57 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.246.214.111 - - [02/Oct/2020:05:04:58 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.246.214.111 - - [02/Oct/2020:05:04:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-02 12:08:07
213.32.111.52	attackbotsspam	Oct 2 02:15:38 host1 sshd[308231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.111.52 user=root Oct 2 02:15:40 host1 sshd[308231]: Failed password for root from 213.32.111.52 port 49050 ssh2 Oct 2 02:22:17 host1 sshd[308661]: Invalid user scaner from 213.32.111.52 port 57326 Oct 2 02:22:17 host1 sshd[308661]: Invalid user scaner from 213.32.111.52 port 57326 ...	2020-10-02 12:02:45
182.61.36.56	attackbotsspam	Found on CINS badguys / proto=6 . srcport=42790 . dstport=27006 . (658)	2020-10-02 07:53:44
193.57.40.15	attackbotsspam	Repeated RDP login failures. Last user: Administrator	2020-10-02 12:20:10
106.52.137.134	attack	SSH brute force	2020-10-02 12:24:43
89.144.47.28	attackspam	Sep 27 10:50:25 pipo sshd[31007]: Invalid user admin from 89.144.47.28 port 28257 Sep 27 10:50:25 pipo sshd[31007]: Disconnected from invalid user admin 89.144.47.28 port 28257 [preauth] Oct 2 04:21:11 pipo sshd[24330]: Invalid user solarus from 89.144.47.28 port 1040 Oct 2 04:21:11 pipo sshd[24330]: Disconnected from invalid user solarus 89.144.47.28 port 1040 [preauth] ...	2020-10-02 12:21:07
159.65.136.157	attackbotsspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 12:03:01
212.73.81.242	attack	Brute-force attempt banned	2020-10-02 12:23:47
45.55.182.232	attackbots	$f2bV_matches	2020-10-02 12:15:22
175.118.126.99	attackbots	"fail2ban match"	2020-10-02 07:59:29
51.75.66.92	attack	Time: Fri Oct 2 04:22:37 2020 +0200 IP: 51.75.66.92 (DE/Germany/92.ip-51-75-66.eu) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Oct 2 04:03:52 mail-03 sshd[19495]: Invalid user dario from 51.75.66.92 port 37520 Oct 2 04:03:53 mail-03 sshd[19495]: Failed password for invalid user dario from 51.75.66.92 port 37520 ssh2 Oct 2 04:18:57 mail-03 sshd[19695]: Invalid user cvs from 51.75.66.92 port 53204 Oct 2 04:18:59 mail-03 sshd[19695]: Failed password for invalid user cvs from 51.75.66.92 port 53204 ssh2 Oct 2 04:22:32 mail-03 sshd[19751]: Failed password for root from 51.75.66.92 port 33780 ssh2	2020-10-02 12:03:52

Recently Reported IPs

104.21.96.104	104.21.96.110	104.21.96.107	104.21.96.109
104.21.96.111	104.21.96.114	104.21.96.112	104.21.96.117
104.21.96.118	104.21.96.119	104.21.96.116	104.21.96.12
104.21.96.113	104.21.96.121	104.21.96.122	104.21.96.125
104.21.96.127	104.21.96.131	104.21.96.126	104.21.96.128