221.13.12.45 - IPInfo

基本信息:

城市(city): Guiyang

省份(region): Guizhou

国家(country): China

运营商(isp): China Unicom Guizhou Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 221.13.12.45 to port 81 [T]	2020-01-16 08:29:53

相同子网IP讨论:

IP	类型	评论内容	时间
221.13.12.79	attack	Unauthorized connection attempt detected from IP address 221.13.12.79 to port 123	2020-06-13 06:05:18
221.13.12.19	attack	Web Server Scan. RayID: 592aa77abd9b0256, UA: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729), Country: CN	2020-05-21 03:47:26
221.13.12.222	attackspam	China's GFW probe	2020-05-15 17:35:44
221.13.12.235	attack	Unauthorized connection attempt detected from IP address 221.13.12.235 to port 992 [T]	2020-04-15 02:25:36
221.13.12.179	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.179 to port 3389 [J]	2020-03-03 02:05:51
221.13.12.142	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.142 to port 8899 [J]	2020-03-02 20:47:11
221.13.12.187	attack	Unauthorized connection attempt detected from IP address 221.13.12.187 to port 22 [J]	2020-03-02 19:21:12
221.13.12.104	attackbots	Unauthorized connection attempt detected from IP address 221.13.12.104 to port 22 [J]	2020-03-02 17:29:07
221.13.12.65	attack	Unauthorized connection attempt detected from IP address 221.13.12.65 to port 8081 [J]	2020-03-02 16:58:59
221.13.12.133	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.133 to port 8082 [J]	2020-03-02 16:29:37
221.13.12.98	attack	Unauthorized connection attempt detected from IP address 221.13.12.98 to port 8118 [J]	2020-03-02 14:47:39
221.13.12.91	attack	Unauthorized connection attempt detected from IP address 221.13.12.91 to port 8000 [J]	2020-03-02 14:14:42
221.13.12.97	attackbots	Unauthorized connection attempt detected from IP address 221.13.12.97 to port 8443 [J]	2020-02-05 09:04:55
221.13.12.118	attackbots	Unauthorized connection attempt detected from IP address 221.13.12.118 to port 443 [J]	2020-01-31 22:42:35
221.13.12.224	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.224 to port 9011 [T]	2020-01-29 10:16:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.13.12.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.13.12.45.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011502 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 16 08:29:50 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 45.12.13.221.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 45.12.13.221.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
51.255.192.217	attackspam	Oct 5 05:53:44 SilenceServices sshd[8207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.192.217 Oct 5 05:53:47 SilenceServices sshd[8207]: Failed password for invalid user SaoPaolo-123 from 51.255.192.217 port 46586 ssh2 Oct 5 05:57:10 SilenceServices sshd[9182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.192.217	2019-10-05 12:05:57
101.140.53.220	attackspam	Unauthorised access (Oct 4) SRC=101.140.53.220 LEN=40 TTL=53 ID=7472 TCP DPT=8080 WINDOW=26470 SYN Unauthorised access (Oct 4) SRC=101.140.53.220 LEN=40 TTL=53 ID=57628 TCP DPT=8080 WINDOW=26470 SYN Unauthorised access (Oct 3) SRC=101.140.53.220 LEN=40 TTL=53 ID=4496 TCP DPT=8080 WINDOW=26470 SYN Unauthorised access (Oct 1) SRC=101.140.53.220 LEN=40 TTL=53 ID=42773 TCP DPT=8080 WINDOW=26470 SYN	2019-10-05 08:16:11
212.237.31.228	attackbotsspam	2019-10-04T23:38:40.869926hub.schaetter.us sshd\[29681\]: Invalid user C3ntos2018 from 212.237.31.228 port 58036 2019-10-04T23:38:40.880898hub.schaetter.us sshd\[29681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.31.228 2019-10-04T23:38:42.862458hub.schaetter.us sshd\[29681\]: Failed password for invalid user C3ntos2018 from 212.237.31.228 port 58036 ssh2 2019-10-04T23:42:50.666848hub.schaetter.us sshd\[29721\]: Invalid user P4ssw0rt@abc from 212.237.31.228 port 42492 2019-10-04T23:42:50.677251hub.schaetter.us sshd\[29721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.31.228 ...	2019-10-05 08:22:56
155.133.82.7	attack	Oct 4 10:21:53 eddieflores sshd\[492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.133.82.7 user=root Oct 4 10:21:55 eddieflores sshd\[492\]: Failed password for root from 155.133.82.7 port 34243 ssh2 Oct 4 10:21:57 eddieflores sshd\[492\]: Failed password for root from 155.133.82.7 port 34243 ssh2 Oct 4 10:22:09 eddieflores sshd\[520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.133.82.7 user=root Oct 4 10:22:12 eddieflores sshd\[520\]: Failed password for root from 155.133.82.7 port 34258 ssh2	2019-10-05 08:35:48
103.83.81.144	attackspam	Automatic report - XMLRPC Attack	2019-10-05 08:24:00
54.200.167.186	attackspam	10/05/2019-05:57:13.062422 54.200.167.186 Protocol: 6 SURICATA TLS invalid record/traffic	2019-10-05 12:04:15
118.140.117.59	attack	Oct 5 05:56:57 vps647732 sshd[32102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.117.59 Oct 5 05:56:59 vps647732 sshd[32102]: Failed password for invalid user Motdepasse123$ from 118.140.117.59 port 44324 ssh2 ...	2019-10-05 12:11:02
139.59.59.187	attackspambots	Oct 4 02:00:05 XXX sshd[38587]: Invalid user chase from 139.59.59.187 port 59640	2019-10-05 08:31:15
209.17.97.50	attack	8088/tcp 137/udp 8000/tcp... [2019-08-05/10-04]89pkt,12pt.(tcp),1pt.(udp)	2019-10-05 08:13:25
182.61.179.75	attackbots	Oct 5 01:12:02 legacy sshd[27386]: Failed password for root from 182.61.179.75 port 62510 ssh2 Oct 5 01:16:39 legacy sshd[27502]: Failed password for root from 182.61.179.75 port 47241 ssh2 ...	2019-10-05 08:15:27
106.75.21.242	attackbots	Oct 5 05:15:44 microserver sshd[18636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.21.242 user=root Oct 5 05:15:46 microserver sshd[18636]: Failed password for root from 106.75.21.242 port 43780 ssh2 Oct 5 05:19:33 microserver sshd[18830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.21.242 user=root Oct 5 05:19:36 microserver sshd[18830]: Failed password for root from 106.75.21.242 port 46460 ssh2 Oct 5 05:23:32 microserver sshd[19487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.21.242 user=root Oct 5 05:35:17 microserver sshd[21365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.21.242 user=root Oct 5 05:35:19 microserver sshd[21365]: Failed password for root from 106.75.21.242 port 57182 ssh2 Oct 5 05:39:17 microserver sshd[21627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid	2019-10-05 12:03:19
122.195.200.148	attackspambots	Oct 5 02:29:10 h2177944 sshd\[11891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Oct 5 02:29:11 h2177944 sshd\[11891\]: Failed password for root from 122.195.200.148 port 33961 ssh2 Oct 5 02:29:14 h2177944 sshd\[11891\]: Failed password for root from 122.195.200.148 port 33961 ssh2 Oct 5 02:29:16 h2177944 sshd\[11891\]: Failed password for root from 122.195.200.148 port 33961 ssh2 ...	2019-10-05 08:33:37
114.29.237.139	attackspam	Telnet Server BruteForce Attack	2019-10-05 12:08:54
46.166.148.210	attackbotsspam	\[2019-10-04 20:10:12\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-04T20:10:12.528-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442837998513",SessionID="0x7f1e1c4990c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.148.210/58238",ACLName="no_extension_match" \[2019-10-04 20:10:16\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-04T20:10:16.532-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442837998513",SessionID="0x7f1e1c02d9c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.148.210/49155",ACLName="no_extension_match" \[2019-10-04 20:10:17\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-04T20:10:17.948-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442837998513",SessionID="0x7f1e1c564538",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.148.210/51603",ACLName="n	2019-10-05 08:24:19
104.206.128.58	attackspam	Port scan	2019-10-05 08:16:54

最近上报的IP列表

51.6.51.240	200.85.34.242	84.155.85.25	190.130.29.53
113.233.86.130	75.234.82.233	190.92.46.91	189.69.39.179
189.46.19.190	186.48.75.5	185.72.13.129	178.242.56.217
178.137.123.198	173.22.190.24	124.198.115.226	122.252.216.64
217.132.148.56	122.84.207.35	119.3.171.104	216.187.85.173