174.138.21.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 16 21:26:59 OPSO sshd\[22590\]: Invalid user Duck from 174.138.21.8 port 40636 Sep 16 21:26:59 OPSO sshd\[22590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 16 21:27:02 OPSO sshd\[22590\]: Failed password for invalid user Duck from 174.138.21.8 port 40636 ssh2 Sep 16 21:31:02 OPSO sshd\[23617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 user=admin Sep 16 21:31:04 OPSO sshd\[23617\]: Failed password for admin from 174.138.21.8 port 52320 ssh2	2019-09-17 03:43:14
attack	Sep 13 09:45:53 auw2 sshd\[9510\]: Invalid user admin123 from 174.138.21.8 Sep 13 09:45:53 auw2 sshd\[9510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 13 09:45:55 auw2 sshd\[9510\]: Failed password for invalid user admin123 from 174.138.21.8 port 55378 ssh2 Sep 13 09:50:09 auw2 sshd\[9838\]: Invalid user 12345 from 174.138.21.8 Sep 13 09:50:09 auw2 sshd\[9838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-09-14 04:18:22
attackspambots	Sep 3 20:36:27 vps691689 sshd[25715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 3 20:36:29 vps691689 sshd[25715]: Failed password for invalid user raj from 174.138.21.8 port 46160 ssh2 ...	2019-09-04 02:58:08
attack	Sep 1 17:18:26 web9 sshd\[20265\]: Invalid user wking from 174.138.21.8 Sep 1 17:18:26 web9 sshd\[20265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Sep 1 17:18:28 web9 sshd\[20265\]: Failed password for invalid user wking from 174.138.21.8 port 59834 ssh2 Sep 1 17:23:06 web9 sshd\[21169\]: Invalid user thomas from 174.138.21.8 Sep 1 17:23:06 web9 sshd\[21169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-09-02 11:24:46
attack	Aug 29 13:50:22 yabzik sshd[13956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8 Aug 29 13:50:25 yabzik sshd[13956]: Failed password for invalid user 123456 from 174.138.21.8 port 58464 ssh2 Aug 29 13:55:02 yabzik sshd[15597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-08-30 01:35:15
attackbotsspam	Aug 27 08:44:43 xb0 sshd[2206]: Failed password for invalid user legal2 from 174.138.21.8 port 36684 ssh2 Aug 27 08:44:43 xb0 sshd[2206]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 08:54:31 xb0 sshd[2464]: Failed password for invalid user popd from 174.138.21.8 port 38776 ssh2 Aug 27 08:54:31 xb0 sshd[2464]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 08:59:03 xb0 sshd[365]: Failed password for invalid user placrim from 174.138.21.8 port 55166 ssh2 Aug 27 08:59:04 xb0 sshd[365]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 09:03:25 xb0 sshd[31896]: Failed password for invalid user admin1 from 174.138.21.8 port 43230 ssh2 Aug 27 09:03:26 xb0 sshd[31896]: Received disconnect from 174.138.21.8: 11: Bye Bye [preauth] Aug 27 09:07:50 xb0 sshd[30138]: Failed password for invalid user rares from 174.138.21.8 port 59590 ssh2 Aug 27 09:07:50 xb0 sshd[30138]: Received disconnect from 174.138.21.8: 11: Bye Bye........ -------------------------------	2019-08-28 02:51:31
attackbots	Aug 24 12:03:23 cp sshd[13121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.8	2019-08-24 19:05:33

相同子网IP讨论:

IP	类型	评论内容	时间
174.138.211.167	attackspambots	Automatic report - Port Scan Attack	2020-05-23 07:12:35
174.138.21.225	attackbots	Sep 26 06:48:39 sachi sshd\[25746\]: Invalid user w from 174.138.21.225 Sep 26 06:48:39 sachi sshd\[25746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225 Sep 26 06:48:40 sachi sshd\[25746\]: Failed password for invalid user w from 174.138.21.225 port 38482 ssh2 Sep 26 06:54:05 sachi sshd\[26212\]: Invalid user xbot from 174.138.21.225 Sep 26 06:54:05 sachi sshd\[26212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225	2019-09-27 01:06:16
174.138.21.225	attack	Sep 25 04:34:12 lcprod sshd\[18193\]: Invalid user git from 174.138.21.225 Sep 25 04:34:12 lcprod sshd\[18193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225 Sep 25 04:34:14 lcprod sshd\[18193\]: Failed password for invalid user git from 174.138.21.225 port 37540 ssh2 Sep 25 04:39:38 lcprod sshd\[18701\]: Invalid user teamspeak3 from 174.138.21.225 Sep 25 04:39:38 lcprod sshd\[18701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.225	2019-09-26 03:04:38
174.138.21.117	attackspambots	Sep 10 03:48:53 plusreed sshd[24925]: Invalid user administrador from 174.138.21.117 ...	2019-09-10 16:01:01
174.138.21.117	attackbots	Brute force attempt	2019-09-09 06:28:52
174.138.21.27	attackspambots	Sep 4 00:45:53 meumeu sshd[17759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Sep 4 00:45:55 meumeu sshd[17759]: Failed password for invalid user admin from 174.138.21.27 port 49960 ssh2 Sep 4 00:50:23 meumeu sshd[18336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 ...	2019-09-04 07:07:12
174.138.21.117	attackbots	Sep 2 15:18:04 web1 sshd\[5311\]: Invalid user victoria from 174.138.21.117 Sep 2 15:18:04 web1 sshd\[5311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Sep 2 15:18:05 web1 sshd\[5311\]: Failed password for invalid user victoria from 174.138.21.117 port 50712 ssh2 Sep 2 15:22:28 web1 sshd\[5804\]: Invalid user sgt from 174.138.21.117 Sep 2 15:22:28 web1 sshd\[5804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117	2019-09-03 09:22:46
174.138.21.27	attackbotsspam	Sep 2 05:21:11 MK-Soft-VM5 sshd\[30329\]: Invalid user s1 from 174.138.21.27 port 51972 Sep 2 05:21:11 MK-Soft-VM5 sshd\[30329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Sep 2 05:21:13 MK-Soft-VM5 sshd\[30329\]: Failed password for invalid user s1 from 174.138.21.27 port 51972 ssh2 ...	2019-09-02 20:02:16
174.138.21.117	attackspam	Sep 1 01:55:42 * sshd[7378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Sep 1 01:55:44 * sshd[7378]: Failed password for invalid user sebastian from 174.138.21.117 port 46142 ssh2	2019-09-01 08:06:40
174.138.21.27	attackspam	Aug 31 19:32:49 vps691689 sshd[24868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Aug 31 19:32:51 vps691689 sshd[24868]: Failed password for invalid user lq from 174.138.21.27 port 50324 ssh2 ...	2019-09-01 05:20:40
174.138.21.117	attackbots	Aug 28 08:01:09 legacy sshd[18326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Aug 28 08:01:12 legacy sshd[18326]: Failed password for invalid user user from 174.138.21.117 port 47096 ssh2 Aug 28 08:06:06 legacy sshd[18521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 ...	2019-08-28 14:17:34
174.138.21.117	attackbots	Aug 27 03:12:40 game-panel sshd[11093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Aug 27 03:12:42 game-panel sshd[11093]: Failed password for invalid user test from 174.138.21.117 port 54594 ssh2 Aug 27 03:17:23 game-panel sshd[11267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117	2019-08-27 11:18:50
174.138.21.27	attackspambots	Aug 26 09:54:36 xtremcommunity sshd\[32589\]: Invalid user maria from 174.138.21.27 port 54394 Aug 26 09:54:36 xtremcommunity sshd\[32589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 Aug 26 09:54:38 xtremcommunity sshd\[32589\]: Failed password for invalid user maria from 174.138.21.27 port 54394 ssh2 Aug 26 09:59:41 xtremcommunity sshd\[446\]: Invalid user areyes from 174.138.21.27 port 43906 Aug 26 09:59:41 xtremcommunity sshd\[446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.27 ...	2019-08-26 23:56:11
174.138.21.27	attack	Aug 25 02:07:00 plex sshd[23201]: Invalid user ftpuser from 174.138.21.27 port 54390	2019-08-25 08:29:29
174.138.21.117	attack	Aug 22 13:38:47 debian sshd\[23064\]: Invalid user ftpuser from 174.138.21.117 port 33096 Aug 22 13:38:47 debian sshd\[23064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.21.117 Aug 22 13:38:49 debian sshd\[23064\]: Failed password for invalid user ftpuser from 174.138.21.117 port 33096 ssh2 ...	2019-08-23 02:52:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 174.138.21.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40649
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;174.138.21.8.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082302 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 24 19:05:27 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 8.21.138.174.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 8.21.138.174.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
117.66.243.77	attackbots	Invalid user jake from 117.66.243.77 port 40446	2019-10-31 14:52:47
193.70.33.75	attackbots	Invalid user user from 193.70.33.75 port 37064	2019-10-31 14:44:15
190.221.81.6	attack	Oct 31 07:33:49 sso sshd[6141]: Failed password for root from 190.221.81.6 port 56968 ssh2 ...	2019-10-31 14:51:49
106.12.181.184	attack	2019-10-31T06:15:07.461377abusebot-5.cloudsearch.cf sshd\[28565\]: Invalid user maximo from 106.12.181.184 port 56514	2019-10-31 14:21:47
185.176.27.162	attackspambots	Oct 31 07:22:15 mc1 kernel: \[3789256.364729\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.162 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=60578 PROTO=TCP SPT=58087 DPT=10051 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 31 07:22:17 mc1 kernel: \[3789257.902635\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.162 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=12940 PROTO=TCP SPT=58087 DPT=40404 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 31 07:24:19 mc1 kernel: \[3789379.566181\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.162 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=51770 PROTO=TCP SPT=58087 DPT=44455 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-31 14:33:16
203.195.148.54	attack	Port Scan: TCP/443	2019-10-31 14:41:33
182.253.75.250	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-10-31 14:39:15
182.61.41.203	attack	Oct 31 04:47:08 localhost sshd\[5463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.41.203 user=root Oct 31 04:47:10 localhost sshd\[5463\]: Failed password for root from 182.61.41.203 port 59038 ssh2 Oct 31 04:52:38 localhost sshd\[5733\]: Invalid user kate from 182.61.41.203 Oct 31 04:52:38 localhost sshd\[5733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.41.203 Oct 31 04:52:40 localhost sshd\[5733\]: Failed password for invalid user kate from 182.61.41.203 port 50152 ssh2 ...	2019-10-31 14:57:48
45.120.51.111	attackbots	Unauthorized access detected from banned ip	2019-10-31 14:22:28
66.249.69.70	attack	Automatic report - Banned IP Access	2019-10-31 14:26:52
95.19.192.122	attack	Lines containing failures of 95.19.192.122 Oct 27 14:50:27 shared02 sshd[24730]: Invalid user gq from 95.19.192.122 port 58300 Oct 27 14:50:27 shared02 sshd[24730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.19.192.122 Oct 27 14:50:29 shared02 sshd[24730]: Failed password for invalid user gq from 95.19.192.122 port 58300 ssh2 Oct 27 14:50:29 shared02 sshd[24730]: Received disconnect from 95.19.192.122 port 58300:11: Bye Bye [preauth] Oct 27 14:50:29 shared02 sshd[24730]: Disconnected from invalid user gq 95.19.192.122 port 58300 [preauth] Oct 28 14:54:29 shared02 sshd[17416]: Invalid user pao from 95.19.192.122 port 34670 Oct 28 14:54:29 shared02 sshd[17416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.19.192.122 Oct 28 14:54:31 shared02 sshd[17416]: Failed password for invalid user pao from 95.19.192.122 port 34670 ssh2 Oct 28 14:54:31 shared02 sshd[17416]: Received disconnect........ ------------------------------	2019-10-31 14:54:15
54.38.184.10	attack	Oct 31 06:42:01 anodpoucpklekan sshd[79814]: Invalid user backups from 54.38.184.10 port 57330 ...	2019-10-31 14:50:17
118.70.4.28	attackbots	Unauthorised access (Oct 31) SRC=118.70.4.28 LEN=52 TTL=115 ID=27261 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-31 14:20:46
139.217.222.124	attack	Oct 31 07:01:51 meumeu sshd[14743]: Failed password for root from 139.217.222.124 port 51834 ssh2 Oct 31 07:08:04 meumeu sshd[15621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.222.124 Oct 31 07:08:06 meumeu sshd[15621]: Failed password for invalid user test from 139.217.222.124 port 34076 ssh2 ...	2019-10-31 14:26:17
36.79.70.12	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/36.79.70.12/ ID - 1H : (53) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ID NAME ASN : ASN7713 IP : 36.79.70.12 CIDR : 36.79.64.0/19 PREFIX COUNT : 2255 UNIQUE IP COUNT : 2765312 ATTACKS DETECTED ASN7713 : 1H - 3 3H - 6 6H - 7 12H - 13 24H - 24 DateTime : 2019-10-31 04:52:40 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-31 14:57:31

最近上报的IP列表

246.98.95.15	11.205.99.108	41.5.202.121	26.128.129.201
65.98.248.52	233.155.122.50	175.44.90.255	78.36.6.224
135.104.134.144	178.5.90.220	223.227.61.160	106.12.33.181
83.211.35.48	37.78.221.194	124.228.147.111	185.176.27.250
109.173.71.28	60.182.187.163	183.150.217.248	117.164.225.221