14.21.42.158 - IPInfo

基本信息:

城市(city): Huizhou

省份(region): Guangdong

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2020-10-13T18:51:46.6904971495-001 sshd[42431]: Invalid user hypo from 14.21.42.158 port 38852 2020-10-13T18:51:46.6996961495-001 sshd[42431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 2020-10-13T18:51:46.6904971495-001 sshd[42431]: Invalid user hypo from 14.21.42.158 port 38852 2020-10-13T18:51:49.0716691495-001 sshd[42431]: Failed password for invalid user hypo from 14.21.42.158 port 38852 ssh2 2020-10-13T18:55:51.5233111495-001 sshd[42664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 user=root 2020-10-13T18:55:53.1929741495-001 sshd[42664]: Failed password for root from 14.21.42.158 port 57124 ssh2 ...	2020-10-14 07:39:43
attackspam	$f2bV_matches	2020-09-17 02:25:34
attackspambots	Sep 16 12:40:14 h2829583 sshd[32092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158	2020-09-16 18:44:10
attackspambots	Aug 23 06:25:20 Host-KLAX-C sshd[23579]: Disconnected from invalid user guest 14.21.42.158 port 53002 [preauth] ...	2020-08-23 20:45:17
attackspam	Invalid user anil from 14.21.42.158 port 57170	2020-08-23 08:19:12
attackbotsspam	SSH Brute-force	2020-08-21 05:32:48
attackbots	Aug 16 14:49:29 srv-ubuntu-dev3 sshd[92648]: Invalid user jr from 14.21.42.158 Aug 16 14:49:29 srv-ubuntu-dev3 sshd[92648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 Aug 16 14:49:29 srv-ubuntu-dev3 sshd[92648]: Invalid user jr from 14.21.42.158 Aug 16 14:49:32 srv-ubuntu-dev3 sshd[92648]: Failed password for invalid user jr from 14.21.42.158 port 35574 ssh2 Aug 16 14:51:03 srv-ubuntu-dev3 sshd[92891]: Invalid user sasha from 14.21.42.158 Aug 16 14:51:03 srv-ubuntu-dev3 sshd[92891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 Aug 16 14:51:03 srv-ubuntu-dev3 sshd[92891]: Invalid user sasha from 14.21.42.158 Aug 16 14:51:05 srv-ubuntu-dev3 sshd[92891]: Failed password for invalid user sasha from 14.21.42.158 port 50260 ssh2 Aug 16 14:52:26 srv-ubuntu-dev3 sshd[93082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 user=r ...	2020-08-16 22:34:37
attackspambots	2020-07-03T14:02:57.825994dmca.cloudsearch.cf sshd[9778]: Invalid user stack from 14.21.42.158 port 47378 2020-07-03T14:02:57.832505dmca.cloudsearch.cf sshd[9778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 2020-07-03T14:02:57.825994dmca.cloudsearch.cf sshd[9778]: Invalid user stack from 14.21.42.158 port 47378 2020-07-03T14:03:00.079112dmca.cloudsearch.cf sshd[9778]: Failed password for invalid user stack from 14.21.42.158 port 47378 ssh2 2020-07-03T14:07:52.346812dmca.cloudsearch.cf sshd[9858]: Invalid user jy from 14.21.42.158 port 52306 2020-07-03T14:07:52.352470dmca.cloudsearch.cf sshd[9858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 2020-07-03T14:07:52.346812dmca.cloudsearch.cf sshd[9858]: Invalid user jy from 14.21.42.158 port 52306 2020-07-03T14:07:54.764591dmca.cloudsearch.cf sshd[9858]: Failed password for invalid user jy from 14.21.42.158 port 52306 ssh2 ...	2020-07-04 01:18:04
attack	SSH Brute Force	2020-06-29 20:57:50
attackspambots	Jun 21 01:09:50 vmd48417 sshd[25866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158	2020-06-21 08:27:00
attack	SSH login attempts.	2020-06-21 00:51:06
attackspambots	Ssh brute force	2020-06-20 08:05:08
attackbotsspam	Failed password for invalid user vmail from 14.21.42.158 port 53992 ssh2	2020-06-17 02:54:36
attackspambots	$f2bV_matches	2020-05-13 12:30:55
attackspambots	Apr 26 22:31:05 v22019038103785759 sshd\[16425\]: Failed password for root from 14.21.42.158 port 57500 ssh2 Apr 26 22:34:14 v22019038103785759 sshd\[16649\]: Invalid user master from 14.21.42.158 port 36110 Apr 26 22:34:14 v22019038103785759 sshd\[16649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 Apr 26 22:34:15 v22019038103785759 sshd\[16649\]: Failed password for invalid user master from 14.21.42.158 port 36110 ssh2 Apr 26 22:40:21 v22019038103785759 sshd\[17084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 user=root ...	2020-04-27 05:06:34
attackbotsspam	2020-04-03T03:56:27.383926Z b06a1f6898e7 New connection: 14.21.42.158:37576 (172.17.0.4:2222) [session: b06a1f6898e7] 2020-04-03T04:10:29.233296Z fb406600ee85 New connection: 14.21.42.158:37398 (172.17.0.4:2222) [session: fb406600ee85]	2020-04-03 14:24:24
attackspam	Mar 29 15:17:07 vps647732 sshd[9410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.42.158 Mar 29 15:17:09 vps647732 sshd[9410]: Failed password for invalid user mfl from 14.21.42.158 port 44758 ssh2 ...	2020-03-29 21:37:05
attackspambots	IP blocked	2020-03-13 08:49:12

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.21.42.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63689
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.21.42.158.			IN	A

;; AUTHORITY SECTION:
.			173	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031202 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 08:49:09 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 158.42.21.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.42.21.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.33.236.23	attack	Sep 14 20:24:50 web9 sshd\[21497\]: Invalid user design from 178.33.236.23 Sep 14 20:24:50 web9 sshd\[21497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.236.23 Sep 14 20:24:52 web9 sshd\[21497\]: Failed password for invalid user design from 178.33.236.23 port 49288 ssh2 Sep 14 20:29:55 web9 sshd\[22513\]: Invalid user smmsp from 178.33.236.23 Sep 14 20:29:55 web9 sshd\[22513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.236.23	2019-09-15 14:32:46
103.31.54.72	attackspam	" "	2019-09-15 14:55:54
162.62.19.79	attackspambots	" "	2019-09-15 14:54:19
5.39.93.158	attackspam	Sep 14 20:25:07 kapalua sshd\[31377\]: Invalid user wwwtest from 5.39.93.158 Sep 14 20:25:07 kapalua sshd\[31377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3280070.ip-5-39-93.eu Sep 14 20:25:10 kapalua sshd\[31377\]: Failed password for invalid user wwwtest from 5.39.93.158 port 55716 ssh2 Sep 14 20:28:45 kapalua sshd\[31665\]: Invalid user shade from 5.39.93.158 Sep 14 20:28:45 kapalua sshd\[31665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3280070.ip-5-39-93.eu	2019-09-15 14:30:30
151.243.22.14	attackspambots	" "	2019-09-15 14:42:23
222.186.52.78	attack	Sep 15 02:11:20 ny01 sshd[29156]: Failed password for root from 222.186.52.78 port 38400 ssh2 Sep 15 02:11:22 ny01 sshd[29156]: Failed password for root from 222.186.52.78 port 38400 ssh2 Sep 15 02:12:15 ny01 sshd[29315]: Failed password for root from 222.186.52.78 port 22073 ssh2	2019-09-15 14:14:44
137.97.134.12	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-15 14:37:29
218.152.133.89	attackbots	Sep 15 04:55:08 host proftpd\[34904\]: 0.0.0.0 $218.152.133.89\[218.152.133.89\]$ - USER anonymous: no such user found from 218.152.133.89 \[218.152.133.89\] to 62.210.146.38:21 ...	2019-09-15 14:34:08
51.91.248.153	attackbotsspam	Sep 15 08:11:49 xeon sshd[65280]: Failed password for invalid user rupesh from 51.91.248.153 port 48366 ssh2	2019-09-15 14:39:45
121.157.82.202	attack	Invalid user xtra from 121.157.82.202 port 37508	2019-09-15 14:46:55
49.88.112.85	attackspam	2019-09-15T07:04:41.511790abusebot-8.cloudsearch.cf sshd\[21974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85 user=root	2019-09-15 15:06:50
167.71.203.150	attack	Sep 15 08:29:16 eventyay sshd[19353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.203.150 Sep 15 08:29:19 eventyay sshd[19353]: Failed password for invalid user zw from 167.71.203.150 port 42844 ssh2 Sep 15 08:38:07 eventyay sshd[19497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.203.150 ...	2019-09-15 15:01:16
46.161.27.150	attack	19/9/15@01:33:15: FAIL: Alarm-Intrusion address from=46.161.27.150 ...	2019-09-15 14:09:14
121.160.31.94	attack	port scan and connect, tcp 23 (telnet)	2019-09-15 14:28:34
119.96.221.11	attackbots	Sep 15 02:10:34 web1 postfix/smtpd[12918]: warning: unknown[119.96.221.11]: SASL LOGIN authentication failed: authentication failure ...	2019-09-15 14:22:32

最近上报的IP列表

171.227.161.105	27.117.211.148	66.148.53.32	51.38.213.132
221.216.221.60	143.120.100.43	191.128.60.154	185.92.25.46
185.197.137.80	94.163.152.154	122.51.98.140	84.204.107.207
178.171.69.92	209.96.118.240	115.100.74.232	108.149.111.151
125.75.4.83	201.226.25.64	88.247.35.60	202.87.6.16