221.13.12.45 - IPInfo

基本信息:

城市(city): Guiyang

省份(region): Guizhou

国家(country): China

运营商(isp): China Unicom Guizhou Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 221.13.12.45 to port 81 [T]	2020-01-16 08:29:53

相同子网IP讨论:

IP	类型	评论内容	时间
221.13.12.79	attack	Unauthorized connection attempt detected from IP address 221.13.12.79 to port 123	2020-06-13 06:05:18
221.13.12.19	attack	Web Server Scan. RayID: 592aa77abd9b0256, UA: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729), Country: CN	2020-05-21 03:47:26
221.13.12.222	attackspam	China's GFW probe	2020-05-15 17:35:44
221.13.12.235	attack	Unauthorized connection attempt detected from IP address 221.13.12.235 to port 992 [T]	2020-04-15 02:25:36
221.13.12.179	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.179 to port 3389 [J]	2020-03-03 02:05:51
221.13.12.142	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.142 to port 8899 [J]	2020-03-02 20:47:11
221.13.12.187	attack	Unauthorized connection attempt detected from IP address 221.13.12.187 to port 22 [J]	2020-03-02 19:21:12
221.13.12.104	attackbots	Unauthorized connection attempt detected from IP address 221.13.12.104 to port 22 [J]	2020-03-02 17:29:07
221.13.12.65	attack	Unauthorized connection attempt detected from IP address 221.13.12.65 to port 8081 [J]	2020-03-02 16:58:59
221.13.12.133	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.133 to port 8082 [J]	2020-03-02 16:29:37
221.13.12.98	attack	Unauthorized connection attempt detected from IP address 221.13.12.98 to port 8118 [J]	2020-03-02 14:47:39
221.13.12.91	attack	Unauthorized connection attempt detected from IP address 221.13.12.91 to port 8000 [J]	2020-03-02 14:14:42
221.13.12.97	attackbots	Unauthorized connection attempt detected from IP address 221.13.12.97 to port 8443 [J]	2020-02-05 09:04:55
221.13.12.118	attackbots	Unauthorized connection attempt detected from IP address 221.13.12.118 to port 443 [J]	2020-01-31 22:42:35
221.13.12.224	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.224 to port 9011 [T]	2020-01-29 10:16:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.13.12.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.13.12.45.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011502 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 16 08:29:50 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 45.12.13.221.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 45.12.13.221.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
182.61.40.227	attackspambots	Dec 8 20:35:33 areeb-Workstation sshd[9154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.227 Dec 8 20:35:35 areeb-Workstation sshd[9154]: Failed password for invalid user zimbra from 182.61.40.227 port 59814 ssh2 ...	2019-12-08 23:10:00
177.128.120.22	attackspambots	SSH Brute Force	2019-12-08 22:42:43
183.207.181.138	attackspam	failed root login	2019-12-08 23:09:11
201.99.116.44	attackspambots	Port scan on 1 port(s): 23	2019-12-08 22:57:04
121.225.17.196	attackbots	FTP Brute Force	2019-12-08 22:34:26
182.136.11.37	attackbots	Scanning	2019-12-08 22:55:07
177.11.234.190	attackspam	Automatic report - Port Scan Attack	2019-12-08 22:32:40
104.248.197.40	attackbotsspam	Dec 7 22:09:31 ahost sshd[2920]: reveeclipse mapping checking getaddrinfo for 217132.cloudwaysapps.com [104.248.197.40] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 7 22:09:31 ahost sshd[2920]: Invalid user webadmin from 104.248.197.40 Dec 7 22:09:31 ahost sshd[2920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.40 Dec 7 22:09:32 ahost sshd[2920]: Failed password for invalid user webadmin from 104.248.197.40 port 58236 ssh2 Dec 7 22:09:32 ahost sshd[2920]: Received disconnect from 104.248.197.40: 11: Bye Bye [preauth] Dec 7 22:16:34 ahost sshd[3616]: reveeclipse mapping checking getaddrinfo for 217132.cloudwaysapps.com [104.248.197.40] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 7 22:16:34 ahost sshd[3616]: Invalid user ipnms from 104.248.197.40 Dec 7 22:16:34 ahost sshd[3616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.40 Dec 7 22:16:37 ahost sshd[3616]: Fai........ ------------------------------	2019-12-08 22:54:33
45.40.135.73	attackspambots	Automatic report - XMLRPC Attack	2019-12-08 22:42:22
222.186.175.182	attack	Dec 8 19:59:34 gw1 sshd[7765]: Failed password for root from 222.186.175.182 port 34844 ssh2 Dec 8 19:59:47 gw1 sshd[7765]: Failed password for root from 222.186.175.182 port 34844 ssh2 Dec 8 19:59:47 gw1 sshd[7765]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 34844 ssh2 [preauth] ...	2019-12-08 23:00:38
188.165.211.99	attackspam	Dec 8 04:51:00 kapalua sshd\[10077\]: Invalid user friends from 188.165.211.99 Dec 8 04:51:00 kapalua sshd\[10077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=edtech.com.pk Dec 8 04:51:01 kapalua sshd\[10077\]: Failed password for invalid user friends from 188.165.211.99 port 48028 ssh2 Dec 8 04:56:29 kapalua sshd\[11177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=edtech.com.pk user=root Dec 8 04:56:30 kapalua sshd\[11177\]: Failed password for root from 188.165.211.99 port 57004 ssh2	2019-12-08 23:01:38
106.12.99.233	attackspambots	Dec 8 14:50:35 h2177944 sshd\[29689\]: Invalid user server from 106.12.99.233 port 19159 Dec 8 14:50:35 h2177944 sshd\[29689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.99.233 Dec 8 14:50:37 h2177944 sshd\[29689\]: Failed password for invalid user server from 106.12.99.233 port 19159 ssh2 Dec 8 14:57:58 h2177944 sshd\[29964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.99.233 user=root ...	2019-12-08 22:38:53
2a00:c380:c0de:0:5054:ff:fe7e:d742	attackbots	T: f2b postfix aggressive 3x	2019-12-08 22:31:34
202.98.229.44	attack	SSH Brute-Force reported by Fail2Ban	2019-12-08 23:06:32
129.211.113.29	attackspambots	--- report --- Dec 8 08:29:09 sshd: Connection from 129.211.113.29 port 52358 Dec 8 08:29:12 sshd: Invalid user ffffffff from 129.211.113.29 Dec 8 08:29:12 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.113.29 Dec 8 08:29:14 sshd: Failed password for invalid user ffffffff from 129.211.113.29 port 52358 ssh2 Dec 8 08:29:15 sshd: Received disconnect from 129.211.113.29: 11: Bye Bye [preauth]	2019-12-08 22:57:51

最近上报的IP列表

51.6.51.240	200.85.34.242	84.155.85.25	190.130.29.53
113.233.86.130	75.234.82.233	190.92.46.91	189.69.39.179
189.46.19.190	186.48.75.5	185.72.13.129	178.242.56.217
178.137.123.198	173.22.190.24	124.198.115.226	122.252.216.64
217.132.148.56	122.84.207.35	119.3.171.104	216.187.85.173