49.158.21.146 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.158.21.81	attackbotsspam	Honeypot attack, port: 445, PTR: 49-158-21-81.dynamic.elinx.com.tw.	2020-03-03 17:36:37
49.158.213.184	attackbots	Unauthorized connection attempt detected from IP address 49.158.213.184 to port 4567 [J]	2020-01-17 06:44:11
49.158.213.184	attackbots	Unauthorized connection attempt detected from IP address 49.158.213.184 to port 4567 [J]	2020-01-16 09:17:57

Type

Details

Datetime

49.158.21.81

attackbotsspam

Honeypot attack, port: 445, PTR: 49-158-21-81.dynamic.elinx.com.tw.

2020-03-03 17:36:37

49.158.213.184

attackbots

Unauthorized connection attempt detected from IP address 49.158.213.184 to port 4567 [J]

2020-01-17 06:44:11

49.158.213.184

attackbots

Unauthorized connection attempt detected from IP address 49.158.213.184 to port 4567 [J]

2020-01-16 09:17:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.158.21.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63394
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.158.21.146.			IN	A

;; AUTHORITY SECTION:
.			388	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 48 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:35:32 CST 2022
;; MSG SIZE  rcvd: 106

Host info

146.21.158.49.in-addr.arpa domain name pointer 49-158-21-146.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
146.21.158.49.in-addr.arpa	name = 49-158-21-146.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.104.204	attack	2019-12-20T00:36:29.632432 sshd[23774]: Invalid user chadwell from 49.235.104.204 port 42218 2019-12-20T00:36:29.645195 sshd[23774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.104.204 2019-12-20T00:36:29.632432 sshd[23774]: Invalid user chadwell from 49.235.104.204 port 42218 2019-12-20T00:36:32.001507 sshd[23774]: Failed password for invalid user chadwell from 49.235.104.204 port 42218 ssh2 2019-12-20T00:42:53.842713 sshd[23920]: Invalid user nahid from 49.235.104.204 port 33272 ...	2019-12-20 08:29:06
198.251.89.80	attackbots	Dec 20 01:04:23 vpn01 sshd[11466]: Failed password for root from 198.251.89.80 port 60328 ssh2 Dec 20 01:04:34 vpn01 sshd[11466]: error: maximum authentication attempts exceeded for root from 198.251.89.80 port 60328 ssh2 [preauth] ...	2019-12-20 08:25:26
148.72.206.225	attackspam	Dec 20 02:48:04 server sshd\[24607\]: Invalid user goldmine from 148.72.206.225 Dec 20 02:48:04 server sshd\[24607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-148-72-206-225.ip.secureserver.net Dec 20 02:48:06 server sshd\[24607\]: Failed password for invalid user goldmine from 148.72.206.225 port 36526 ssh2 Dec 20 03:01:35 server sshd\[29688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-148-72-206-225.ip.secureserver.net user=root Dec 20 03:01:37 server sshd\[29688\]: Failed password for root from 148.72.206.225 port 36656 ssh2 ...	2019-12-20 08:17:46
159.65.41.104	attack	Dec 19 14:45:49 kapalua sshd\[7654\]: Invalid user couples from 159.65.41.104 Dec 19 14:45:49 kapalua sshd\[7654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.41.104 Dec 19 14:45:52 kapalua sshd\[7654\]: Failed password for invalid user couples from 159.65.41.104 port 40070 ssh2 Dec 19 14:50:37 kapalua sshd\[8116\]: Invalid user alcorn from 159.65.41.104 Dec 19 14:50:37 kapalua sshd\[8116\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.41.104	2019-12-20 08:56:36
164.132.225.250	attackbots	Dec 19 14:43:19 sachi sshd\[18071\]: Invalid user Poker@2017 from 164.132.225.250 Dec 19 14:43:19 sachi sshd\[18071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=250.ip-164-132-225.eu Dec 19 14:43:20 sachi sshd\[18071\]: Failed password for invalid user Poker@2017 from 164.132.225.250 port 33798 ssh2 Dec 19 14:48:22 sachi sshd\[18535\]: Invalid user ChinaC from 164.132.225.250 Dec 19 14:48:22 sachi sshd\[18535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=250.ip-164-132-225.eu	2019-12-20 08:55:19
85.203.44.168	attack	TCP Port Scanning	2019-12-20 08:42:13
117.50.93.75	attack	Automatic report - Banned IP Access	2019-12-20 08:18:41
180.245.192.219	attackbotsspam	Unauthorized connection attempt detected from IP address 180.245.192.219 to port 445	2019-12-20 08:49:48
180.76.38.74	attackbots	Dec 19 14:16:36 wbs sshd\[18298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.38.74 user=backup Dec 19 14:16:38 wbs sshd\[18298\]: Failed password for backup from 180.76.38.74 port 44840 ssh2 Dec 19 14:22:08 wbs sshd\[18831\]: Invalid user rockley from 180.76.38.74 Dec 19 14:22:08 wbs sshd\[18831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.38.74 Dec 19 14:22:11 wbs sshd\[18831\]: Failed password for invalid user rockley from 180.76.38.74 port 36512 ssh2	2019-12-20 08:23:54
115.90.244.154	attackspam	Dec 20 00:11:06 xeon sshd[65252]: Failed password for invalid user kotoe from 115.90.244.154 port 43048 ssh2	2019-12-20 08:41:19
54.37.158.218	attackspam	Dec 19 14:06:14 eddieflores sshd\[15312\]: Invalid user killeen from 54.37.158.218 Dec 19 14:06:14 eddieflores sshd\[15312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-54-37-158.eu Dec 19 14:06:16 eddieflores sshd\[15312\]: Failed password for invalid user killeen from 54.37.158.218 port 41841 ssh2 Dec 19 14:11:13 eddieflores sshd\[15851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-54-37-158.eu user=backup Dec 19 14:11:15 eddieflores sshd\[15851\]: Failed password for backup from 54.37.158.218 port 45652 ssh2	2019-12-20 08:23:39
193.31.24.113	attack	12/20/2019-01:19:27.002188 193.31.24.113 Protocol: 17 ET INFO Session Traversal Utilities for NAT (STUN Binding Request)	2019-12-20 08:29:40
118.27.15.68	attackbotsspam	$f2bV_matches	2019-12-20 08:15:18
200.205.202.35	attackbotsspam	Dec 19 14:19:27 eddieflores sshd\[16540\]: Invalid user ortveit from 200.205.202.35 Dec 19 14:19:27 eddieflores sshd\[16540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.205.202.35 Dec 19 14:19:29 eddieflores sshd\[16540\]: Failed password for invalid user ortveit from 200.205.202.35 port 47370 ssh2 Dec 19 14:26:00 eddieflores sshd\[17144\]: Invalid user server from 200.205.202.35 Dec 19 14:26:00 eddieflores sshd\[17144\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.205.202.35	2019-12-20 08:40:06
104.236.250.88	attack	Dec 20 01:37:07 * sshd[32465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.250.88 Dec 20 01:37:08 * sshd[32465]: Failed password for invalid user bootsie from 104.236.250.88 port 41810 ssh2	2019-12-20 08:47:51

Recently Reported IPs

134.236.93.8	196.11.178.136	103.98.78.101	151.106.1.55
212.115.42.248	150.129.5.220	188.76.186.59	168.181.120.12
43.229.227.163	115.78.226.46	112.242.117.192	151.235.23.136
223.149.2.161	47.119.122.19	188.166.87.67	125.105.110.206
223.226.129.31	148.205.149.119	81.33.20.149	46.249.123.132