107.173.21.141

Basic Info

City: Buffalo

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
107.173.219.152	attack	Unauthorised access (Sep 21) SRC=107.173.219.152 LEN=40 TTL=239 ID=42462 TCP DPT=1433 WINDOW=1024 SYN	2020-09-22 03:16:45
107.173.219.152	attackbotsspam	Unauthorised access (Sep 21) SRC=107.173.219.152 LEN=40 TTL=239 ID=42462 TCP DPT=1433 WINDOW=1024 SYN	2020-09-21 19:02:03
107.173.213.43	attack	SSH Brute Force	2020-09-01 21:51:13
107.173.213.43	attack	SSH Bruteforce Attempt (failed auth)	2020-08-25 15:04:23
107.173.219.50	attackspam	Jun 23 17:24:26 ny01 sshd[17981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.219.50 Jun 23 17:24:28 ny01 sshd[17981]: Failed password for invalid user ntn from 107.173.219.50 port 53235 ssh2 Jun 23 17:29:05 ny01 sshd[19023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.219.50	2020-06-24 07:07:35
107.173.219.152	attackspam	1433/tcp 445/tcp... [2020-02-25/04-10]8pkt,2pt.(tcp)	2020-04-11 06:28:09
107.173.219.152	attack	US_New ColoCrossing_<177>1586090720 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: {TCP} 107.173.219.152:41126	2020-04-05 21:21:17
107.173.214.214	spamattack	Login Error Attack	2020-03-27 08:31:59
107.173.219.152	attackbots	Unauthorized connection attempt detected from IP address 107.173.219.152 to port 1433 [J]	2020-03-02 23:35:56
107.173.219.172	attack	Portscan or hack attempt detected by psad/fwsnort	2020-02-26 08:03:52
107.173.219.101	attack	Jan 17 17:02:29 localhost postfix/smtpd\[31453\]: warning: unknown\[107.173.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 17:02:36 localhost postfix/smtpd\[31585\]: warning: unknown\[107.173.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 17:02:47 localhost postfix/smtpd\[31453\]: warning: unknown\[107.173.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 17:03:11 localhost postfix/smtpd\[31453\]: warning: unknown\[107.173.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 17 17:03:18 localhost postfix/smtpd\[31585\]: warning: unknown\[107.173.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-18 03:24:39
107.173.219.180	attackspam	Port 1433 Scan	2019-10-12 16:45:12
107.173.219.151	attackspambots	Unauthorized connection attempt from IP address 107.173.219.151 on Port 445(SMB)	2019-09-20 12:21:01
107.173.219.167	attack	SMB Server BruteForce Attack	2019-08-01 05:28:49
107.173.219.151	attackbotsspam	Unauthorised access (Jul 26) SRC=107.173.219.151 LEN=40 TTL=239 ID=16392 TCP DPT=445 WINDOW=1024 SYN	2019-07-27 03:25:32

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       107.172.0.0 - 107.175.255.255
CIDR:           107.172.0.0/14
NetName:        CC-17
NetHandle:      NET-107-172-0-0-1
Parent:         NET107 (NET-107-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   HostPapa (HOSTP-7)
RegDate:        2013-12-27
Updated:        2024-02-02
Comment:        Geofeed https://geofeeds.oniaas.io/geofeeds.csv
Ref:            https://rdap.arin.net/registry/ip/107.172.0.0



OrgName:        HostPapa
OrgId:          HOSTP-7
Address:        325 Delaware Avenue
Address:        Suite 300
City:           Buffalo
StateProv:      NY
PostalCode:     14202
Country:        US
RegDate:        2016-06-06
Updated:        2025-10-05
Ref:            https://rdap.arin.net/registry/entity/HOSTP-7


OrgAbuseHandle: NETAB23-ARIN
OrgAbuseName:   NETABUSE
OrgAbusePhone:  +1-905-315-3455 
OrgAbuseEmail:  net-abuse-global@hostpapa.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/NETAB23-ARIN

OrgTechHandle: NETTE9-ARIN
OrgTechName:   NETTECH
OrgTechPhone:  +1-905-315-3455 
OrgTechEmail:  net-tech-global@hostpapa.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NETTE9-ARIN

RTechHandle: NETTE11-ARIN
RTechName:   NETTECH-COLOCROSSING
RTechPhone:  +1-800-518-9716 
RTechEmail:  support@colocrossing.com
RTechRef:    https://rdap.arin.net/registry/entity/NETTE11-ARIN

RAbuseHandle: NETAB27-ARIN
RAbuseName:   NETABUSE-COLOCROSSING
RAbusePhone:  +1-800-518-9716 
RAbuseEmail:  abuse@colocrossing.com
RAbuseRef:    https://rdap.arin.net/registry/entity/NETAB27-ARIN

# end


# start

NetRange:       107.173.21.128 - 107.173.21.255
CIDR:           107.173.21.128/25
NetName:        CC-107-173-21-0-25
NetHandle:      NET-107-173-21-128-1
Parent:         CC-17 (NET-107-172-0-0-1)
NetType:        Reassigned
OriginAS:       
Organization:   RackNerd LLC (RL-872)
RegDate:        2023-08-21
Updated:        2023-08-21
Ref:            https://rdap.arin.net/registry/ip/107.173.21.128


OrgName:        RackNerd LLC
OrgId:          RL-872
Address:        10602 N. Trademark Pkwy Suite 511
City:           Rancho Cucamonga
StateProv:      CA
PostalCode:     91730
Country:        US
RegDate:        2021-10-20
Updated:        2022-03-02
Comment:        https://www.racknerd.com
Comment:        Support is available 24x7 at support@racknerd.com
Comment:        Report abuse to: reportabuse@racknerd.com
Ref:            https://rdap.arin.net/registry/entity/RL-872


OrgAbuseHandle: RAD128-ARIN
OrgAbuseName:   RackNerd Abuse Department
OrgAbusePhone:  +1-888-881-6373 
OrgAbuseEmail:  reportabuse@racknerd.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/RAD128-ARIN

OrgTechHandle: RACKN3-ARIN
OrgTechName:   RackNerd NOC
OrgTechPhone:  +1-888-881-6373 
OrgTechEmail:  support@racknerd.com
OrgTechRef:    https://rdap.arin.net/registry/entity/RACKN3-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.173.21.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64386
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;107.173.21.141.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026042100 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 22 01:30:14 CST 2026
;; MSG SIZE  rcvd: 107

Host info

141.21.173.107.in-addr.arpa domain name pointer 107-173-21-141-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.21.173.107.in-addr.arpa	name = 107-173-21-141-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.173.8.178	attack	Aug 29 20:42:08 game-panel sshd[3885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.173.8.178 Aug 29 20:42:10 game-panel sshd[3885]: Failed password for invalid user wq from 59.173.8.178 port 39616 ssh2 Aug 29 20:45:25 game-panel sshd[4083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.173.8.178	2019-08-30 05:05:21
139.59.92.117	attackbots	Aug 29 23:20:13 pkdns2 sshd\[21014\]: Invalid user user2 from 139.59.92.117Aug 29 23:20:15 pkdns2 sshd\[21014\]: Failed password for invalid user user2 from 139.59.92.117 port 40132 ssh2Aug 29 23:24:48 pkdns2 sshd\[21187\]: Invalid user vishalj from 139.59.92.117Aug 29 23:24:50 pkdns2 sshd\[21187\]: Failed password for invalid user vishalj from 139.59.92.117 port 57822 ssh2Aug 29 23:29:22 pkdns2 sshd\[21430\]: Invalid user anton from 139.59.92.117Aug 29 23:29:24 pkdns2 sshd\[21430\]: Failed password for invalid user anton from 139.59.92.117 port 47290 ssh2 ...	2019-08-30 04:54:16
212.83.170.21	attackbots	\[2019-08-29 17:14:58\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '212.83.170.21:2902' - Wrong password \[2019-08-29 17:14:58\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-29T17:14:58.042-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5313",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.170.21/59171",Challenge="3c3bb786",ReceivedChallenge="3c3bb786",ReceivedHash="2a9429986f27f4cfda37f0a70735aaa0" \[2019-08-29 17:16:39\] NOTICE\[1829\] chan_sip.c: Registration from '\' failed for '212.83.170.21:2968' - Wrong password \[2019-08-29 17:16:39\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-29T17:16:39.949-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6483",SessionID="0x7f7b30462f68",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.170.	2019-08-30 05:17:24
58.87.124.196	attack	DATE:2019-08-29 22:29:35, IP:58.87.124.196, PORT:ssh SSH brute force auth (ermes)	2019-08-30 04:49:34
159.65.144.233	attackbotsspam	Aug 29 22:22:23 ns37 sshd[22740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.144.233 Aug 29 22:22:25 ns37 sshd[22740]: Failed password for invalid user admin from 159.65.144.233 port 18824 ssh2 Aug 29 22:28:54 ns37 sshd[23023]: Failed password for root from 159.65.144.233 port 63849 ssh2	2019-08-30 05:20:12
180.76.176.174	attackspam	Aug 29 10:41:55 php1 sshd\[7554\]: Invalid user zh from 180.76.176.174 Aug 29 10:41:55 php1 sshd\[7554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.176.174 Aug 29 10:41:58 php1 sshd\[7554\]: Failed password for invalid user zh from 180.76.176.174 port 48972 ssh2 Aug 29 10:45:06 php1 sshd\[7807\]: Invalid user ascension from 180.76.176.174 Aug 29 10:45:06 php1 sshd\[7807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.176.174	2019-08-30 04:52:59
37.59.31.133	attackspambots	Aug 29 20:56:17 game-panel sshd[4425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.31.133 Aug 29 20:56:19 game-panel sshd[4425]: Failed password for invalid user rparks from 37.59.31.133 port 56235 ssh2 Aug 29 21:00:10 game-panel sshd[4549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.31.133	2019-08-30 05:08:55
165.22.249.96	attackspam	Aug 29 22:29:17 cvbmail sshd\[11248\]: Invalid user sivanan.apa from 165.22.249.96 Aug 29 22:29:17 cvbmail sshd\[11248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.249.96 Aug 29 22:29:19 cvbmail sshd\[11248\]: Failed password for invalid user sivanan.apa from 165.22.249.96 port 35790 ssh2	2019-08-30 04:57:41
105.159.254.100	attackspam	Aug 29 21:45:29 mail sshd\[17191\]: Failed password for invalid user ck from 105.159.254.100 port 36864 ssh2 Aug 29 22:01:52 mail sshd\[17434\]: Invalid user db2fenc1 from 105.159.254.100 port 37412 Aug 29 22:01:52 mail sshd\[17434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.159.254.100 ...	2019-08-30 05:18:04
144.131.134.105	attack	Aug 29 21:02:40 game-panel sshd[4626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.131.134.105 Aug 29 21:02:42 game-panel sshd[4626]: Failed password for invalid user wmcx from 144.131.134.105 port 42655 ssh2 Aug 29 21:09:32 game-panel sshd[4898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.131.134.105	2019-08-30 05:13:41
213.14.214.229	attackbotsspam	Aug 29 20:33:11 MK-Soft-VM7 sshd\[22548\]: Invalid user user2 from 213.14.214.229 port 49340 Aug 29 20:33:11 MK-Soft-VM7 sshd\[22548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.14.214.229 Aug 29 20:33:13 MK-Soft-VM7 sshd\[22548\]: Failed password for invalid user user2 from 213.14.214.229 port 49340 ssh2 ...	2019-08-30 04:45:46
94.15.228.139	attackbots	Automatic report - Port Scan Attack	2019-08-30 05:16:36
208.102.113.11	attackbotsspam	Aug 29 22:29:46 nginx sshd[94003]: Invalid user parol from 208.102.113.11 Aug 29 22:29:46 nginx sshd[94003]: Connection closed by 208.102.113.11 port 58292 [preauth]	2019-08-30 04:42:41
202.91.86.100	attack	Aug 29 10:44:10 php1 sshd\[9538\]: Invalid user tahir from 202.91.86.100 Aug 29 10:44:10 php1 sshd\[9538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.91.86.100 Aug 29 10:44:12 php1 sshd\[9538\]: Failed password for invalid user tahir from 202.91.86.100 port 32980 ssh2 Aug 29 10:49:12 php1 sshd\[10143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.91.86.100 user=www-data Aug 29 10:49:15 php1 sshd\[10143\]: Failed password for www-data from 202.91.86.100 port 49174 ssh2	2019-08-30 04:57:17
54.37.64.101	attackbotsspam	2019-08-29T21:00:48.195385abusebot.cloudsearch.cf sshd\[8407\]: Invalid user postgres from 54.37.64.101 port 43190	2019-08-30 05:15:04

Recently Reported IPs

67.205.161.4	114.32.23.23	47.92.251.10	45.63.97.69
2606:4700:10::6814:7911	2606:4700:10::6816:4353	2606:4700:10::ac43:2399	2606:4700:10::6814:8739
110.78.158.251	47.251.42.6	186.64.116.75	130.94.48.58
2606:4700:10::6814:5530	2606:4700:10::6816:439d	172.238.47.12	66.132.195.44
159.203.95.246	2606:4700:10::6814:9130	2606:4700:10::6814:6488	2606:4700:10::6814:6678