174.138.21.27 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Sep 4 00:45:53 meumeu sshd[17759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Sep 4 00:45:55 meumeu sshd[17759]: Failed password for invalid user admin from 174.138.21.27 port 49960 ssh2 Sep 4 00:50:23 meumeu sshd[18336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 ...	2019-09-04 07:07:12
attackbotsspam	Sep 2 05:21:11 MK-Soft-VM5 sshd\[30329\]: Invalid user s1 from 174.138.21.27 port 51972 Sep 2 05:21:11 MK-Soft-VM5 sshd\[30329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Sep 2 05:21:13 MK-Soft-VM5 sshd\[30329\]: Failed password for invalid user s1 from 174.138.21.27 port 51972 ssh2 ...	2019-09-02 20:02:16
attackspam	Aug 31 19:32:49 vps691689 sshd[24868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Aug 31 19:32:51 vps691689 sshd[24868]: Failed password for invalid user lq from 174.138.21.27 port 50324 ssh2 ...	2019-09-01 05:20:40
attackspambots	Aug 26 09:54:36 xtremcommunity sshd\[32589\]: Invalid user maria from 174.138.21.27 port 54394 Aug 26 09:54:36 xtremcommunity sshd\[32589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Aug 26 09:54:38 xtremcommunity sshd\[32589\]: Failed password for invalid user maria from 174.138.21.27 port 54394 ssh2 Aug 26 09:59:41 xtremcommunity sshd\[446\]: Invalid user areyes from 174.138.21.27 port 43906 Aug 26 09:59:41 xtremcommunity sshd\[446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 ...	2019-08-26 23:56:11
attack	Aug 25 02:07:00 plex sshd[23201]: Invalid user ftpuser from 174.138.21.27 port 54390	2019-08-25 08:29:29
attackbotsspam	Aug 22 10:43:05 SilenceServices sshd[25818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Aug 22 10:43:07 SilenceServices sshd[25818]: Failed password for invalid user grid from 174.138.21.27 port 60036 ssh2 Aug 22 10:47:52 SilenceServices sshd[29131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27	2019-08-22 17:01:39
attackspam	Aug 20 02:56:22 tuotantolaitos sshd[7015]: Failed password for root from 174.138.21.27 port 49694 ssh2 Aug 20 03:05:41 tuotantolaitos sshd[7359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 ...	2019-08-20 08:17:23

相同子网IP讨论:

IP	类型	评论内容	时间
174.138.211.167	attackspambots	Automatic report - Port Scan Attack	2020-05-23 07:12:35
174.138.21.225	attackbots	Sep 26 06:48:39 sachi sshd\[25746\]: Invalid user w from 174.138.21.225 Sep 26 06:48:39 sachi sshd\[25746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225 Sep 26 06:48:40 sachi sshd\[25746\]: Failed password for invalid user w from 174.138.21.225 port 38482 ssh2 Sep 26 06:54:05 sachi sshd\[26212\]: Invalid user xbot from 174.138.21.225 Sep 26 06:54:05 sachi sshd\[26212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225	2019-09-27 01:06:16
174.138.21.225	attack	Sep 25 04:34:12 lcprod sshd\[18193\]: Invalid user git from 174.138.21.225 Sep 25 04:34:12 lcprod sshd\[18193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225 Sep 25 04:34:14 lcprod sshd\[18193\]: Failed password for invalid user git from 174.138.21.225 port 37540 ssh2 Sep 25 04:39:38 lcprod sshd\[18701\]: Invalid user teamspeak3 from 174.138.21.225 Sep 25 04:39:38 lcprod sshd\[18701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225	2019-09-26 03:04:38
174.138.21.8	attack	Sep 16 21:26:59 OPSO sshd\[22590\]: Invalid user Duck from 174.138.21.8 port 40636 Sep 16 21:26:59 OPSO sshd\[22590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 16 21:27:02 OPSO sshd\[22590\]: Failed password for invalid user Duck from 174.138.21.8 port 40636 ssh2 Sep 16 21:31:02 OPSO sshd\[23617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 user=admin Sep 16 21:31:04 OPSO sshd\[23617\]: Failed password for admin from 174.138.21.8 port 52320 ssh2	2019-09-17 03:43:14
174.138.21.8	attack	Sep 13 09:45:53 auw2 sshd\[9510\]: Invalid user admin123 from 174.138.21.8 Sep 13 09:45:53 auw2 sshd\[9510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 13 09:45:55 auw2 sshd\[9510\]: Failed password for invalid user admin123 from 174.138.21.8 port 55378 ssh2 Sep 13 09:50:09 auw2 sshd\[9838\]: Invalid user 12345 from 174.138.21.8 Sep 13 09:50:09 auw2 sshd\[9838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-09-14 04:18:22
174.138.21.117	attackspambots	Sep 10 03:48:53 plusreed sshd[24925]: Invalid user administrador from 174.138.21.117 ...	2019-09-10 16:01:01
174.138.21.117	attackbots	Brute force attempt	2019-09-09 06:28:52
174.138.21.8	attackspambots	Sep 3 20:36:27 vps691689 sshd[25715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 3 20:36:29 vps691689 sshd[25715]: Failed password for invalid user raj from 174.138.21.8 port 46160 ssh2 ...	2019-09-04 02:58:08
174.138.21.117	attackbots	Sep 2 15:18:04 web1 sshd\[5311\]: Invalid user victoria from 174.138.21.117 Sep 2 15:18:04 web1 sshd\[5311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Sep 2 15:18:05 web1 sshd\[5311\]: Failed password for invalid user victoria from 174.138.21.117 port 50712 ssh2 Sep 2 15:22:28 web1 sshd\[5804\]: Invalid user sgt from 174.138.21.117 Sep 2 15:22:28 web1 sshd\[5804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117	2019-09-03 09:22:46
174.138.21.8	attack	Sep 1 17:18:26 web9 sshd\[20265\]: Invalid user wking from 174.138.21.8 Sep 1 17:18:26 web9 sshd\[20265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 1 17:18:28 web9 sshd\[20265\]: Failed password for invalid user wking from 174.138.21.8 port 59834 ssh2 Sep 1 17:23:06 web9 sshd\[21169\]: Invalid user thomas from 174.138.21.8 Sep 1 17:23:06 web9 sshd\[21169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-09-02 11:24:46
174.138.21.117	attackspam	Sep 1 01:55:42 * sshd[7378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Sep 1 01:55:44 * sshd[7378]: Failed password for invalid user sebastian from 174.138.21.117 port 46142 ssh2	2019-09-01 08:06:40
174.138.21.8	attack	Aug 29 13:50:22 yabzik sshd[13956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Aug 29 13:50:25 yabzik sshd[13956]: Failed password for invalid user 123456 from 174.138.21.8 port 58464 ssh2 Aug 29 13:55:02 yabzik sshd[15597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-08-30 01:35:15
174.138.21.117	attackbots	Aug 28 08:01:09 legacy sshd[18326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Aug 28 08:01:12 legacy sshd[18326]: Failed password for invalid user user from 174.138.21.117 port 47096 ssh2 Aug 28 08:06:06 legacy sshd[18521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 ...	2019-08-28 14:17:34
174.138.21.8	attackbotsspam	Aug 27 08:44:43 xb0 sshd[2206]: Failed password for invalid user legal2 from 174.138.21.8 port 36684 ssh2 Aug 27 08:44:43 xb0 sshd[2206]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 08:54:31 xb0 sshd[2464]: Failed password for invalid user popd from 174.138.21.8 port 38776 ssh2 Aug 27 08:54:31 xb0 sshd[2464]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 08:59:03 xb0 sshd[365]: Failed password for invalid user placrim from 174.138.21.8 port 55166 ssh2 Aug 27 08:59:04 xb0 sshd[365]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 09:03:25 xb0 sshd[31896]: Failed password for invalid user admin1 from 174.138.21.8 port 43230 ssh2 Aug 27 09:03:26 xb0 sshd[31896]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 09:07:50 xb0 sshd[30138]: Failed password for invalid user rares from 174.138.21.8 port 59590 ssh2 Aug 27 09:07:50 xb0 sshd[30138]: Received disconnect from 174.138.21.8: 11: Bye Bye........ -------------------------------	2019-08-28 02:51:31
174.138.21.117	attackbots	Aug 27 03:12:40 game-panel sshd[11093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Aug 27 03:12:42 game-panel sshd[11093]: Failed password for invalid user test from 174.138.21.117 port 54594 ssh2 Aug 27 03:17:23 game-panel sshd[11267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117	2019-08-27 11:18:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.21.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45683
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;174.138.21.27.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 20 08:17:17 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 27.21.138.174.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 27.21.138.174.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.153.14.115	attackbots	Aug 17 06:05:38 Host-KLAX-C sshd[31256]: Disconnected from invalid user hadoop 61.153.14.115 port 37444 [preauth] ...	2020-08-17 21:44:14
178.128.217.58	attackspam	Aug 17 15:09:30 nextcloud sshd\[8230\]: Invalid user tomas from 178.128.217.58 Aug 17 15:09:30 nextcloud sshd\[8230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.58 Aug 17 15:09:32 nextcloud sshd\[8230\]: Failed password for invalid user tomas from 178.128.217.58 port 46648 ssh2	2020-08-17 21:11:14
106.52.102.190	attackbotsspam	Aug 17 15:28:40 home sshd[504447]: Failed password for root from 106.52.102.190 port 39719 ssh2 Aug 17 15:31:28 home sshd[505500]: Invalid user test_qpfs from 106.52.102.190 port 54923 Aug 17 15:31:28 home sshd[505500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.102.190 Aug 17 15:31:28 home sshd[505500]: Invalid user test_qpfs from 106.52.102.190 port 54923 Aug 17 15:31:30 home sshd[505500]: Failed password for invalid user test_qpfs from 106.52.102.190 port 54923 ssh2 ...	2020-08-17 21:41:03
199.115.230.39	attack	Unauthorized SSH login attempts	2020-08-17 21:13:01
175.24.42.136	attack	Aug 17 15:20:23 server sshd[3295]: Failed password for invalid user stefan from 175.24.42.136 port 52370 ssh2 Aug 17 15:23:16 server sshd[4631]: Failed password for invalid user df from 175.24.42.136 port 55788 ssh2 Aug 17 15:26:10 server sshd[6079]: Failed password for invalid user dixie from 175.24.42.136 port 59224 ssh2	2020-08-17 21:30:35
192.158.42.9	attackbotsspam	Unauthorised access (Aug 17) SRC=192.158.42.9 LEN=52 TTL=108 ID=22729 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-17 21:02:23
222.186.42.155	attackbots	Aug 17 14:57:58 dev0-dcde-rnet sshd[28267]: Failed password for root from 222.186.42.155 port 12218 ssh2 Aug 17 14:58:07 dev0-dcde-rnet sshd[28269]: Failed password for root from 222.186.42.155 port 62615 ssh2	2020-08-17 20:58:55
176.122.158.234	attackspambots	Aug 17 17:47:51 gw1 sshd[19555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.122.158.234 Aug 17 17:47:53 gw1 sshd[19555]: Failed password for invalid user info from 176.122.158.234 port 60386 ssh2 ...	2020-08-17 21:00:54
117.107.213.245	attackbotsspam	Aug 17 15:06:30 ip40 sshd[7538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.107.213.245 Aug 17 15:06:32 ip40 sshd[7538]: Failed password for invalid user kim from 117.107.213.245 port 58750 ssh2 ...	2020-08-17 21:07:33
118.27.72.164	attackspam	[Mon Aug 17 11:34:13 2020 GMT] amazon [URIBL_INV,NO_FM_NAME_IP_HOSTN], Subject: アカウント所有権の証明（名前、その他個人	2020-08-17 21:09:50
190.15.213.19	attackspam	Aug 17 12:54:28 rush sshd[695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.15.213.19 Aug 17 12:54:31 rush sshd[695]: Failed password for invalid user user from 190.15.213.19 port 22530 ssh2 Aug 17 12:55:31 rush sshd[756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.15.213.19 ...	2020-08-17 21:02:40
178.32.205.2	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-17T11:54:37Z and 2020-08-17T12:05:39Z	2020-08-17 21:42:42
106.12.210.166	attackbots	Aug 17 13:24:14 santamaria sshd\[28475\]: Invalid user ted from 106.12.210.166 Aug 17 13:24:14 santamaria sshd\[28475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.210.166 Aug 17 13:24:16 santamaria sshd\[28475\]: Failed password for invalid user ted from 106.12.210.166 port 51712 ssh2 ...	2020-08-17 20:57:54
165.22.220.253	attackspambots	165.22.220.253 - - [17/Aug/2020:13:56:36 +0100] "POST /wp-login.php HTTP/1.1" 200 2023 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.220.253 - - [17/Aug/2020:13:56:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2286 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.220.253 - - [17/Aug/2020:13:56:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-17 21:13:34
120.203.160.18	attackbots	2020-08-17T16:03:13.841475lavrinenko.info sshd[5011]: Invalid user ec2-user from 120.203.160.18 port 21789 2020-08-17T16:03:13.852291lavrinenko.info sshd[5011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.203.160.18 2020-08-17T16:03:13.841475lavrinenko.info sshd[5011]: Invalid user ec2-user from 120.203.160.18 port 21789 2020-08-17T16:03:16.094894lavrinenko.info sshd[5011]: Failed password for invalid user ec2-user from 120.203.160.18 port 21789 ssh2 2020-08-17T16:05:07.973910lavrinenko.info sshd[5095]: Invalid user etluser from 120.203.160.18 port 32328 ...	2020-08-17 21:18:31

最近上报的IP列表

213.160.229.6	73.144.130.23	5.189.177.232	181.46.161.145
118.24.246.193	177.94.168.173	226.76.229.43	114.236.79.253
135.16.73.155	149.40.146.134	88.117.114.22	199.131.130.11
121.183.243.145	112.156.68.125	246.218.245.10	117.62.83.152
184.76.195.238	153.233.92.247	151.232.165.16	110.254.0.74