221.7.221.50 - IPInfo

基本信息:

城市(city): unknown

省份(region): Guangxi

国家(country): China

运营商(isp): China Unicom Guangxi Province Network

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Apr 27 03:54:02 *** sshd[28836]: Did not receive identification string from 221.7.221.50	2020-04-27 16:30:44
attackbots	Aug 23 16:50:51 lcl-usvr-01 sshd[5720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50 user=mysql Aug 23 16:50:53 lcl-usvr-01 sshd[5720]: Failed password for mysql from 221.7.221.50 port 47933 ssh2 Aug 23 16:55:44 lcl-usvr-01 sshd[7210]: Invalid user mb from 221.7.221.50 Aug 23 16:55:44 lcl-usvr-01 sshd[7210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50 Aug 23 16:55:44 lcl-usvr-01 sshd[7210]: Invalid user mb from 221.7.221.50 Aug 23 16:55:46 lcl-usvr-01 sshd[7210]: Failed password for invalid user mb from 221.7.221.50 port 20064 ssh2	2019-08-23 18:31:37
attackbots	Aug 21 02:31:31 localhost sshd\[35435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50 user=root Aug 21 02:31:33 localhost sshd\[35435\]: Failed password for root from 221.7.221.50 port 18026 ssh2 Aug 21 02:36:46 localhost sshd\[35704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50 user=root Aug 21 02:36:48 localhost sshd\[35704\]: Failed password for root from 221.7.221.50 port 45330 ssh2 Aug 21 02:42:11 localhost sshd\[36010\]: Invalid user enh from 221.7.221.50 port 19551 ...	2019-08-21 10:48:34
attackspambots	Jul 6 17:24:06 lnxded63 sshd[13308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50	2019-07-07 04:00:10
attackspambots	Jul 4 23:35:50 localhost sshd\[94485\]: Invalid user venkat from 221.7.221.50 port 63866 Jul 4 23:35:50 localhost sshd\[94485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50 Jul 4 23:35:52 localhost sshd\[94485\]: Failed password for invalid user venkat from 221.7.221.50 port 63866 ssh2 Jul 4 23:38:45 localhost sshd\[94571\]: Invalid user kun from 221.7.221.50 port 23361 Jul 4 23:38:45 localhost sshd\[94571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.221.50 ...	2019-07-05 07:41:51

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.7.221.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21207
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.7.221.50.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041102 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 12 05:47:54 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 50.221.7.221.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 50.221.7.221.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.49.94.213	attack	Sep 11 23:52:03 santamaria sshd\[29897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.94.213 user=root Sep 11 23:52:06 santamaria sshd\[29897\]: Failed password for root from 58.49.94.213 port 37815 ssh2 Sep 11 23:56:20 santamaria sshd\[29936\]: Invalid user ilie from 58.49.94.213 Sep 11 23:56:20 santamaria sshd\[29936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.49.94.213 ...	2020-09-12 06:23:01
212.94.111.13	attackspam	Lines containing failures of 212.94.111.13 Sep 11 00:02:39 penfold sshd[6782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.94.111.13 user=r.r Sep 11 00:02:41 penfold sshd[6782]: Failed password for r.r from 212.94.111.13 port 40892 ssh2 Sep 11 00:02:43 penfold sshd[6782]: Received disconnect from 212.94.111.13 port 40892:11: Bye Bye [preauth] Sep 11 00:02:43 penfold sshd[6782]: Disconnected from authenticating user r.r 212.94.111.13 port 40892 [preauth] Sep 11 00:10:23 penfold sshd[7395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.94.111.13 user=r.r Sep 11 00:10:25 penfold sshd[7395]: Failed password for r.r from 212.94.111.13 port 38984 ssh2 Sep 11 00:10:26 penfold sshd[7395]: Received disconnect from 212.94.111.13 port 38984:11: Bye Bye [preauth] Sep 11 00:10:26 penfold sshd[7395]: Disconnected from authenticating user r.r 212.94.111.13 port 38984 [preauth] Sep 11 00:14:3........ ------------------------------	2020-09-12 06:12:46
51.68.224.53	attackbotsspam	Sep 11 21:59:17 localhost sshd\[24069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.224.53 user=root Sep 11 21:59:19 localhost sshd\[24069\]: Failed password for root from 51.68.224.53 port 38880 ssh2 Sep 11 22:03:14 localhost sshd\[24285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.224.53 user=root Sep 11 22:03:16 localhost sshd\[24285\]: Failed password for root from 51.68.224.53 port 52250 ssh2 Sep 11 22:07:05 localhost sshd\[24479\]: Invalid user ngatwiri from 51.68.224.53 ...	2020-09-12 05:49:37
218.92.0.223	attackspam	Sep 11 15:13:03 dignus sshd[21158]: Failed password for root from 218.92.0.223 port 56394 ssh2 Sep 11 15:13:12 dignus sshd[21158]: Failed password for root from 218.92.0.223 port 56394 ssh2 Sep 11 15:13:12 dignus sshd[21158]: error: maximum authentication attempts exceeded for root from 218.92.0.223 port 56394 ssh2 [preauth] Sep 11 15:13:16 dignus sshd[21178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.223 user=root Sep 11 15:13:19 dignus sshd[21178]: Failed password for root from 218.92.0.223 port 22923 ssh2 ...	2020-09-12 06:19:55
107.172.188.107	attackbotsspam	Lines containing failures of 107.172.188.107 Sep 8 16:38:02 neweola sshd[9744]: Did not receive identification string from 107.172.188.107 port 32800 Sep 8 16:38:10 neweola sshd[9746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.188.107 user=r.r Sep 8 16:38:12 neweola sshd[9746]: Failed password for r.r from 107.172.188.107 port 39964 ssh2 Sep 8 16:38:12 neweola sshd[9746]: Received disconnect from 107.172.188.107 port 39964:11: Normal Shutdown, Thank you for playing [preauth] Sep 8 16:38:12 neweola sshd[9746]: Disconnected from authenticating user r.r 107.172.188.107 port 39964 [preauth] Sep 8 16:38:17 neweola sshd[9748]: Invalid user oracle from 107.172.188.107 port 43062 Sep 8 16:38:17 neweola sshd[9748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.188.107 Sep 8 16:38:18 neweola sshd[9750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0........ ------------------------------	2020-09-12 06:08:11
180.97.195.46	attackbots	Sep 11 15:38:51 main sshd[450]: Failed password for invalid user db2inst1 from 180.97.195.46 port 47474 ssh2 Sep 11 16:42:50 main sshd[1338]: Failed password for invalid user ubian from 180.97.195.46 port 45304 ssh2 Sep 11 16:53:49 main sshd[1432]: Failed password for invalid user jamila from 180.97.195.46 port 56261 ssh2 Sep 11 17:27:28 main sshd[1761]: Failed password for invalid user hy from 180.97.195.46 port 33106 ssh2 Sep 11 17:56:48 main sshd[2061]: Failed password for invalid user ubuntu from 180.97.195.46 port 39086 ssh2	2020-09-12 06:04:29
128.199.28.57	attackbots	Sep 11 23:04:06 sip sshd[1569700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.28.57 user=root Sep 11 23:04:08 sip sshd[1569700]: Failed password for root from 128.199.28.57 port 54306 ssh2 Sep 11 23:09:00 sip sshd[1569713]: Invalid user teamspeak3 from 128.199.28.57 port 41856 ...	2020-09-12 06:17:20
91.121.162.198	attackspambots	Sep 11 23:04:46 sshgateway sshd\[29917\]: Invalid user apache from 91.121.162.198 Sep 11 23:04:46 sshgateway sshd\[29917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns360380.ip-91-121-162.eu Sep 11 23:04:48 sshgateway sshd\[29917\]: Failed password for invalid user apache from 91.121.162.198 port 43254 ssh2	2020-09-12 05:57:06
43.243.75.62	attackspambots	Sep 11 19:38:34 euve59663 sshd[29584]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D43.= 243.75.62 user=3Dr.r Sep 11 19:38:35 euve59663 sshd[29584]: Failed password for r.r from 43= .243.75.62 port 36842 ssh2 Sep 11 19:38:36 euve59663 sshd[29584]: Received disconnect from 43.243.= 75.62: 11: Bye Bye [preauth] Sep 11 19:52:51 euve59663 sshd[29767]: Invalid user raudel from 43.243.= 75.62 Sep 11 19:52:51 euve59663 sshd[29767]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D43.= 243.75.62=20 Sep 11 19:52:53 euve59663 sshd[29767]: Failed password for invalid user= raudel from 43.243.75.62 port 51144 ssh2 Sep 11 19:52:53 euve59663 sshd[29767]: Received disconnect from 43.243.= 75.62: 11: Bye Bye [preauth] Sep 11 19:57:20 euve59663 sshd[29805]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D43.= 243.75.62 use........ -------------------------------	2020-09-12 06:18:46
189.240.62.227	attackspam	Sep 11 23:46:13 [host] sshd[9605]: pam_unix(sshd:a Sep 11 23:46:14 [host] sshd[9605]: Failed password Sep 11 23:52:23 [host] sshd[9843]: pam_unix(sshd:a	2020-09-12 06:24:26
142.93.7.111	attackbotsspam	142.93.7.111 - - \[12/Sep/2020:00:02:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 5983 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - \[12/Sep/2020:00:02:31 +0200\] "POST /wp-login.php HTTP/1.0" 200 5815 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.93.7.111 - - \[12/Sep/2020:00:02:31 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-12 06:04:11
49.88.112.60	attackbotsspam	Sep 11 23:39:35 server sshd[41970]: Failed password for root from 49.88.112.60 port 10958 ssh2 Sep 11 23:39:40 server sshd[41970]: Failed password for root from 49.88.112.60 port 10958 ssh2 Sep 11 23:39:42 server sshd[41970]: Failed password for root from 49.88.112.60 port 10958 ssh2	2020-09-12 06:25:19
191.241.242.21	attackbotsspam	1599843405 - 09/11/2020 18:56:45 Host: 191.241.242.21/191.241.242.21 Port: 445 TCP Blocked	2020-09-12 05:59:43
37.23.214.18	attack	(sshd) Failed SSH login from 37.23.214.18 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 11 12:56:00 server5 sshd[15108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.23.214.18 user=root Sep 11 12:56:02 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2 Sep 11 12:56:07 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2 Sep 11 12:56:12 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2 Sep 11 12:56:14 server5 sshd[15108]: Failed password for root from 37.23.214.18 port 34085 ssh2	2020-09-12 06:15:17
42.159.36.122	attack	Spam email from @mecocg.com	2020-09-12 06:12:18

最近上报的IP列表

80.99.17.116	37.187.46.74	200.150.82.139	185.254.122.32
42.159.11.136	200.52.144.170	195.154.243.10	37.6.13.33
193.165.247.106	37.191.82.202	211.42.210.5	86.56.190.22
114.237.109.112	216.109.104.12	213.157.50.108	181.36.197.68
207.182.136.170	201.210.144.199	66.28.139.35	199.16.156.153