221.11.51.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
221.11.51.162	attackspambots	2020-06-16T05:47:24.117849sd-86998 sshd[41861]: Invalid user tomcat from 221.11.51.162 port 33817 2020-06-16T05:47:24.122969sd-86998 sshd[41861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.11.51.162 2020-06-16T05:47:24.117849sd-86998 sshd[41861]: Invalid user tomcat from 221.11.51.162 port 33817 2020-06-16T05:47:26.453807sd-86998 sshd[41861]: Failed password for invalid user tomcat from 221.11.51.162 port 33817 ssh2 2020-06-16T05:50:54.982241sd-86998 sshd[42317]: Invalid user dataadmin2 from 221.11.51.162 port 61340 ...	2020-06-16 16:04:37
221.11.51.162	attackspambots	2020-06-08T16:11:22.098195hz01.yumiweb.com sshd\[18001\]: Invalid user oracle from 221.11.51.162 port 11621 2020-06-08T16:13:05.368402hz01.yumiweb.com sshd\[18004\]: Invalid user jboss from 221.11.51.162 port 25442 2020-06-08T16:14:47.724027hz01.yumiweb.com sshd\[18006\]: Invalid user arma3server from 221.11.51.162 port 39273 ...	2020-06-08 22:33:45
221.11.51.24	attackspambots	Web Server Scan. RayID: 58e08570ae7ceb1d, UA: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36, Country: CN	2020-05-21 03:19:16
221.11.51.162	attack	Apr 13 07:02:17 risk sshd[1234]: Did not receive identification string from 221.11.51.162 Apr 13 07:04:11 risk sshd[1406]: Invalid user vbox from 221.11.51.162 Apr 13 07:04:11 risk sshd[1406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.11.51.162 Apr 13 07:04:13 risk sshd[1406]: Failed password for invalid user vbox from 221.11.51.162 port 21923 ssh2 Apr 13 07:06:11 risk sshd[1525]: Invalid user zbox from 221.11.51.162 Apr 13 07:06:11 risk sshd[1525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.11.51.162 Apr 13 07:06:13 risk sshd[1525]: Failed password for invalid user zbox from 221.11.51.162 port 36317 ssh2 Apr 13 07:08:11 risk sshd[1607]: Invalid user vboxuser from 221.11.51.162 Apr 13 07:08:11 risk sshd[1607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.11.51.162 Apr 13 07:08:13 risk sshd[1607]: Failed password for invalid........ -------------------------------	2020-04-13 17:06:41
221.11.51.23	attack	Unauthorized connection attempt detected from IP address 221.11.51.23 to port 3389 [J]	2020-01-29 07:49:14
221.11.51.22	attackbotsspam	Unauthorized connection attempt detected from IP address 221.11.51.22 to port 808 [J]	2020-01-14 16:27:41
221.11.51.18	attack	Unauthorized connection attempt detected from IP address 221.11.51.18 to port 9999 [T]	2020-01-10 09:33:24
221.11.51.21	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5434d793cb46e7ad \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:34:10
221.11.51.25	attack	The IP has triggered Cloudflare WAF. CF-Ray: 540f83e6e8a29376 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:26:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.11.51.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2384
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;221.11.51.20.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 16:52:00 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 20.51.11.221.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.51.11.221.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.183	attackbots	01/17/2020-17:40:29.616878 222.186.173.183 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-18 06:46:23
79.137.131.34	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-18 06:31:20
175.205.113.249	attackspam	2020-01-17T20:45:52.997410host3.slimhost.com.ua sshd[852137]: Invalid user weblogic from 175.205.113.249 port 39004 2020-01-17T20:45:53.002976host3.slimhost.com.ua sshd[852137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.205.113.249 2020-01-17T20:45:52.997410host3.slimhost.com.ua sshd[852137]: Invalid user weblogic from 175.205.113.249 port 39004 2020-01-17T20:45:55.490505host3.slimhost.com.ua sshd[852137]: Failed password for invalid user weblogic from 175.205.113.249 port 39004 ssh2 2020-01-17T21:38:04.593110host3.slimhost.com.ua sshd[869392]: Invalid user Test from 175.205.113.249 port 48492 2020-01-17T21:38:04.599145host3.slimhost.com.ua sshd[869392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.205.113.249 2020-01-17T21:38:04.593110host3.slimhost.com.ua sshd[869392]: Invalid user Test from 175.205.113.249 port 48492 2020-01-17T21:38:06.584652host3.slimhost.com.ua sshd[869392]: Failed pa ...	2020-01-18 06:58:29
27.150.169.223	attack	Unauthorized connection attempt detected from IP address 27.150.169.223 to port 2220 [J]	2020-01-18 06:49:33
222.186.175.151	attackbots	" "	2020-01-18 06:48:18
80.82.70.106	attackspam	Multiport scan : 73 ports scanned 115 151 221 332 383 393 474 588 661 775 818 876 883 890 3817 6364 7654 8182 11114 13134 14300 14389 15062 16168 17539 18754 20497 20726 21211 21802 23233 23235 24911 25472 26261 26361 26374 27013 28197 28287 30301 32320 33332 34518 35008 35354 35358 36367 37272 38294 38888 42233 43755 43794 44344 44433 45470 46462 49595 51159 51620 55544 56503 57579 58458 59597 59599 59684 60442 62036 62176 63635 .....	2020-01-18 06:51:11
36.70.55.193	attackspam	RDP Brute-Force (Grieskirchen RZ2)	2020-01-18 06:49:07
159.203.143.58	attack	Jan 17 22:39:24 srv-ubuntu-dev3 sshd[92786]: Invalid user ser from 159.203.143.58 Jan 17 22:39:24 srv-ubuntu-dev3 sshd[92786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.143.58 Jan 17 22:39:24 srv-ubuntu-dev3 sshd[92786]: Invalid user ser from 159.203.143.58 Jan 17 22:39:26 srv-ubuntu-dev3 sshd[92786]: Failed password for invalid user ser from 159.203.143.58 port 40582 ssh2 Jan 17 22:42:16 srv-ubuntu-dev3 sshd[93008]: Invalid user lucie from 159.203.143.58 Jan 17 22:42:16 srv-ubuntu-dev3 sshd[93008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.143.58 Jan 17 22:42:16 srv-ubuntu-dev3 sshd[93008]: Invalid user lucie from 159.203.143.58 Jan 17 22:42:18 srv-ubuntu-dev3 sshd[93008]: Failed password for invalid user lucie from 159.203.143.58 port 41818 ssh2 Jan 17 22:45:01 srv-ubuntu-dev3 sshd[93245]: Invalid user ftpuser from 159.203.143.58 ...	2020-01-18 06:31:49
113.161.54.30	attackspam	Invalid user gta from 113.161.54.30 port 56514	2020-01-18 06:55:23
176.113.70.60	attackspambots	Jan 17 23:42:40 h2177944 kernel: \[2499341.840943\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=35782 DPT=1900 LEN=107 Jan 17 23:42:40 h2177944 kernel: \[2499341.840957\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=35782 DPT=1900 LEN=107 Jan 17 23:42:40 h2177944 kernel: \[2499341.840971\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=35781 DPT=1900 LEN=107 Jan 17 23:42:40 h2177944 kernel: \[2499341.840979\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=35781 DPT=1900 LEN=107 Jan 17 23:42:40 h2177944 kernel: \[2499341.841056\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=176.113.70.60 DST=85.214.117.9 LEN=127 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=UDP SPT=35783 DPT=1900 LEN=107 Jan 17 23	2020-01-18 07:08:12
128.199.171.89	attackspam	AbusiveCrawling	2020-01-18 06:52:46
51.161.12.231	attackspam	Unauthorized connection attempt detected from IP address 51.161.12.231 to port 8545 [J]	2020-01-18 07:24:16
62.12.115.116	attackspam	Unauthorized connection attempt detected from IP address 62.12.115.116 to port 2220 [J]	2020-01-18 06:30:57
103.248.20.118	attack	2020-01-17T11:06:33.4287591495-001 sshd[23603]: Invalid user jenkins from 103.248.20.118 port 36768 2020-01-17T11:06:33.4323941495-001 sshd[23603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.20.118 2020-01-17T11:06:33.4287591495-001 sshd[23603]: Invalid user jenkins from 103.248.20.118 port 36768 2020-01-17T11:06:34.6120371495-001 sshd[23603]: Failed password for invalid user jenkins from 103.248.20.118 port 36768 ssh2 2020-01-17T11:17:06.5353611495-001 sshd[24002]: Invalid user user2 from 103.248.20.118 port 43932 2020-01-17T11:17:06.5393661495-001 sshd[24002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.20.118 2020-01-17T11:17:06.5353611495-001 sshd[24002]: Invalid user user2 from 103.248.20.118 port 43932 2020-01-17T11:17:08.6216671495-001 sshd[24002]: Failed password for invalid user user2 from 103.248.20.118 port 43932 ssh2 2020-01-17T11:19:50.1002271495-001 sshd........ ------------------------------	2020-01-18 06:26:18
80.82.65.122	attackbotsspam	Jan 18 00:20:01 debian-2gb-nbg1-2 kernel: \[1562493.205463\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.122 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=22649 PROTO=TCP SPT=59144 DPT=4064 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-18 07:20:56

Recently Reported IPs

221.11.5.51	221.11.5.62	221.11.51.30	221.11.60.155
221.11.95.223	221.12.158.146	221.12.174.235	221.114.170.62
221.11.60.157	221.118.134.84	221.121.148.21	221.124.112.53
221.121.11.58	221.124.208.223	221.124.12.29	221.11.97.250
221.124.115.199	221.124.5.31	221.124.119.186	221.124.4.106