221.204.102.250

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Shanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jul2003:27:54server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[anonymous]Jul2003:27:59server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:07server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:14server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[purexis]Jul2003:28:20server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[purexis]Jul2003:28:26server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:32server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:37server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]	2019-07-20 14:59:30

Type

Details

Datetime

attackspam

Jul2003:27:54server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[anonymous]Jul2003:27:59server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:07server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:14server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[purexis]Jul2003:28:20server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[purexis]Jul2003:28:26server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:32server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]Jul2003:28:37server2pure-ftpd:\(\?@221.204.102.250\)[WARNING]Authenticationfailedforuser[www]

2019-07-20 14:59:30

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.204.102.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57729
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.204.102.250.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072000 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 20 14:59:09 CST 2019
;; MSG SIZE  rcvd: 119

Host info

250.102.204.221.in-addr.arpa has no PTR record

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
250.102.204.221.in-addr.arpa	name = 250.102.204.221.adsl-pool.sx.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.42.251	attackspam	2020-06-22T21:14:54.615642shield sshd\[9000\]: Invalid user tor from 106.12.42.251 port 59356 2020-06-22T21:14:54.619160shield sshd\[9000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.42.251 2020-06-22T21:14:56.452034shield sshd\[9000\]: Failed password for invalid user tor from 106.12.42.251 port 59356 ssh2 2020-06-22T21:17:25.626153shield sshd\[9738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.42.251 user=root 2020-06-22T21:17:27.524014shield sshd\[9738\]: Failed password for root from 106.12.42.251 port 48948 ssh2	2020-06-23 05:34:15
61.177.172.102	attackbotsspam	Jun 22 23:43:24 plex sshd[28437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root Jun 22 23:43:27 plex sshd[28437]: Failed password for root from 61.177.172.102 port 30042 ssh2	2020-06-23 05:45:34
185.143.75.81	attackbotsspam	Jun 22 23:43:43 srv01 postfix/smtpd\[27976\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 22 23:43:54 srv01 postfix/smtpd\[27872\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 22 23:43:59 srv01 postfix/smtpd\[30515\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 22 23:44:19 srv01 postfix/smtpd\[30514\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 22 23:44:37 srv01 postfix/smtpd\[27872\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-23 05:49:00
144.34.210.56	attackbots	Jun 22 13:59:38 dignus sshd[4453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.210.56 user=root Jun 22 13:59:40 dignus sshd[4453]: Failed password for root from 144.34.210.56 port 55138 ssh2 Jun 22 14:02:58 dignus sshd[4844]: Invalid user user from 144.34.210.56 port 55508 Jun 22 14:02:58 dignus sshd[4844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.210.56 Jun 22 14:03:00 dignus sshd[4844]: Failed password for invalid user user from 144.34.210.56 port 55508 ssh2 ...	2020-06-23 05:21:46
123.30.239.133	attackbots	4539/tcp [2020-06-22]1pkt	2020-06-23 05:38:03
83.97.20.35	attack	Jun 22 22:36:30 debian-2gb-nbg1-2 kernel: \[15116864.118715\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.35 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=57194 DPT=14147 WINDOW=65535 RES=0x00 SYN URGP=0	2020-06-23 05:33:26
192.144.185.74	attack	7449/tcp [2020-06-22]1pkt	2020-06-23 05:38:58
27.15.155.48	attack	23/tcp [2020-06-22]1pkt	2020-06-23 05:42:48
78.169.76.58	attackspam	445/tcp [2020-06-22]1pkt	2020-06-23 05:24:51
157.230.153.75	attack	Jun 22 23:25:21 plex sshd[27769]: Invalid user vicky from 157.230.153.75 port 60725	2020-06-23 05:37:35
49.51.161.236	attackspambots	1967/udp 4389/tcp 28006/tcp... [2020-04-28/06-22]10pkt,7pt.(tcp),3pt.(udp)	2020-06-23 05:15:33
134.175.46.166	attackbotsspam	Jun 22 23:23:37 eventyay sshd[5693]: Failed password for root from 134.175.46.166 port 38992 ssh2 Jun 22 23:25:02 eventyay sshd[5713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.46.166 Jun 22 23:25:04 eventyay sshd[5713]: Failed password for invalid user pfy from 134.175.46.166 port 34756 ssh2 Jun 22 23:26:30 eventyay sshd[5738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.46.166 ...	2020-06-23 05:49:42
72.210.252.134	attackbotsspam	IMAP/SMTP Authentication Failure	2020-06-23 05:11:14
222.240.1.0	attackbotsspam	Jun 22 23:37:44 PorscheCustomer sshd[14207]: Failed password for root from 222.240.1.0 port 15476 ssh2 Jun 22 23:40:27 PorscheCustomer sshd[14329]: Failed password for root from 222.240.1.0 port 25459 ssh2 ...	2020-06-23 05:50:17
222.128.15.208	attack	Jun 22 22:23:04 server sshd[2699]: Failed password for invalid user nikolas from 222.128.15.208 port 60798 ssh2 Jun 22 22:33:33 server sshd[11242]: Failed password for invalid user ts3bot from 222.128.15.208 port 54630 ssh2 Jun 22 22:36:22 server sshd[13432]: Failed password for invalid user finance from 222.128.15.208 port 42958 ssh2	2020-06-23 05:40:26

Recently Reported IPs

101.110.63.50	129.144.180.156	5.55.121.8	77.75.25.39
5.55.82.147	104.40.4.156	40.83.126.117	162.218.48.74
212.7.222.203	203.161.96.123	117.7.190.199	134.73.76.250
2a02:2f02:3209:4f00:7004:dde3:91f8:2c21	2003:d2:1f12:51a2:29e9:91ed:a4ea:3dea	80.15.98.246	192.185.2.185
175.29.174.18	145.239.41.165	107.152.149.85	169.83.189.120