49.158.21.81 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: TFN Media Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Honeypot attack, port: 445, PTR: 49-158-21-81.dynamic.elinx.com.tw.	2020-03-03 17:36:37

Comments on same subnet:

IP	Type	Details	Datetime
49.158.213.184	attackbots	Unauthorized connection attempt detected from IP address 49.158.213.184 to port 4567 [J]	2020-01-17 06:44:11
49.158.213.184	attackbots	Unauthorized connection attempt detected from IP address 49.158.213.184 to port 4567 [J]	2020-01-16 09:17:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.158.21.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41784
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.158.21.81.			IN	A

;; AUTHORITY SECTION:
.			159	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030202 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 17:36:30 CST 2020
;; MSG SIZE  rcvd: 116

Host info

81.21.158.49.in-addr.arpa domain name pointer 49-158-21-81.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
81.21.158.49.in-addr.arpa	name = 49-158-21-81.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.133.21	attackspam	Automatic report - Banned IP Access	2019-09-03 12:15:02
118.169.80.23	attack	Automatic report - Banned IP Access	2019-09-03 11:51:43
54.37.159.12	attackspam	Sep 3 03:58:43 ip-172-31-1-72 sshd\[31327\]: Invalid user mailtest from 54.37.159.12 Sep 3 03:58:43 ip-172-31-1-72 sshd\[31327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.12 Sep 3 03:58:45 ip-172-31-1-72 sshd\[31327\]: Failed password for invalid user mailtest from 54.37.159.12 port 35272 ssh2 Sep 3 04:02:26 ip-172-31-1-72 sshd\[31394\]: Invalid user etherpad from 54.37.159.12 Sep 3 04:02:26 ip-172-31-1-72 sshd\[31394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.12	2019-09-03 12:24:29
218.18.101.84	attackspam	Sep 2 13:25:43 web1 sshd\[19034\]: Invalid user ftpuser from 218.18.101.84 Sep 2 13:25:43 web1 sshd\[19034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.18.101.84 Sep 2 13:25:46 web1 sshd\[19034\]: Failed password for invalid user ftpuser from 218.18.101.84 port 55826 ssh2 Sep 2 13:27:58 web1 sshd\[19275\]: Invalid user docker from 218.18.101.84 Sep 2 13:27:58 web1 sshd\[19275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.18.101.84	2019-09-03 12:08:21
93.110.220.94	attackspam	Unauthorized connection attempt from IP address 93.110.220.94 on Port 445(SMB)	2019-09-03 12:25:30
191.7.209.166	attackspambots	Unauthorized connection attempt from IP address 191.7.209.166 on Port 25(SMTP)	2019-09-03 11:57:30
217.6.112.20	attack	SMB Server BruteForce Attack	2019-09-03 11:45:50
77.247.110.127	attackbotsspam	SIPVicious Scanner Detection, PTR: PTR record not found	2019-09-03 11:53:58
146.255.101.216	attackspambots	Web App Attack	2019-09-03 11:46:12
113.172.164.0	attackspambots	Sep 3 01:03:19 ArkNodeAT sshd\[11383\]: Invalid user admin from 113.172.164.0 Sep 3 01:03:19 ArkNodeAT sshd\[11383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.164.0 Sep 3 01:03:21 ArkNodeAT sshd\[11383\]: Failed password for invalid user admin from 113.172.164.0 port 58328 ssh2	2019-09-03 11:52:36
188.213.165.189	attack	Sep 3 01:03:32 bouncer sshd\[17072\]: Invalid user admin2 from 188.213.165.189 port 48888 Sep 3 01:03:32 bouncer sshd\[17072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.213.165.189 Sep 3 01:03:34 bouncer sshd\[17072\]: Failed password for invalid user admin2 from 188.213.165.189 port 48888 ssh2 ...	2019-09-03 11:49:31
95.182.129.243	attackbots	Sep 3 07:01:33 tuotantolaitos sshd[10780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.182.129.243 Sep 3 07:01:36 tuotantolaitos sshd[10780]: Failed password for invalid user p from 95.182.129.243 port 4562 ssh2 ...	2019-09-03 12:13:17
92.119.160.143	attackspambots	Port scan	2019-09-03 11:46:45
42.104.97.242	attackbots	Sep 3 06:03:24 rpi sshd[23950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.242 Sep 3 06:03:26 rpi sshd[23950]: Failed password for invalid user snow from 42.104.97.242 port 23484 ssh2	2019-09-03 12:28:49
110.49.53.18	attack	Unauthorized connection attempt from IP address 110.49.53.18 on Port 445(SMB)	2019-09-03 12:04:29

Recently Reported IPs

149.140.64.98	109.105.6.75	113.190.254.202	193.91.98.188
94.102.13.100	60.31.186.144	111.250.145.77	116.49.14.6
215.68.138.107	42.3.200.213	90.96.30.10	107.83.99.144
179.181.129.47	175.228.67.234	41.118.6.158	233.70.113.251
223.185.108.232	151.239.105.231	147.128.155.116	165.149.94.13