59.0.75.71 - IPInfo

基本信息:

城市(city): Masan

省份(region): Gwangju

国家(country): Korea Republic of

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Telnet Server BruteForce Attack	2019-09-10 08:31:37

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.0.75.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39116
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.0.75.71.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 08:31:17 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 71.75.0.59.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 71.75.0.59.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
195.154.200.150	attackbots	Aug 13 19:39:18 ms-srv sshd[4863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.200.150 Aug 13 19:39:21 ms-srv sshd[4863]: Failed password for invalid user update from 195.154.200.150 port 48038 ssh2	2020-02-03 01:02:46
195.154.181.46	attackbots	Unauthorized connection attempt detected from IP address 195.154.181.46 to port 2220 [J]	2020-02-03 01:05:58
107.170.244.110	attackspambots	Unauthorized connection attempt detected from IP address 107.170.244.110 to port 2220 [J]	2020-02-03 01:00:42
185.176.27.42	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-03 01:04:34
156.236.119.178	attackbotsspam	Unauthorized connection attempt detected from IP address 156.236.119.178 to port 2220 [J]	2020-02-03 01:36:34
129.28.181.103	attack	Jan 27 02:41:19 nbi-636 sshd[20984]: Invalid user roseanne from 129.28.181.103 port 40928 Jan 27 02:41:22 nbi-636 sshd[20984]: Failed password for invalid user roseanne from 129.28.181.103 port 40928 ssh2 Jan 27 02:41:22 nbi-636 sshd[20984]: Received disconnect from 129.28.181.103 port 40928:11: Bye Bye [preauth] Jan 27 02:41:22 nbi-636 sshd[20984]: Disconnected from 129.28.181.103 port 40928 [preauth] Jan 27 02:48:26 nbi-636 sshd[23204]: User r.r from 129.28.181.103 not allowed because not listed in AllowUsers Jan 27 02:48:26 nbi-636 sshd[23204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.181.103 user=r.r Jan 27 02:48:27 nbi-636 sshd[23204]: Failed password for invalid user r.r from 129.28.181.103 port 60430 ssh2 Jan 27 02:48:27 nbi-636 sshd[23204]: Received disconnect from 129.28.181.103 port 60430:11: Bye Bye [preauth] Jan 27 02:48:27 nbi-636 sshd[23204]: Disconnected from 129.28.181.103 port 60430 [preauth] Jan 27........ -------------------------------	2020-02-03 01:08:12
195.139.163.3	attackbots	Jan 19 18:46:39 ms-srv sshd[48538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.139.163.3 Jan 19 18:46:41 ms-srv sshd[48538]: Failed password for invalid user jared from 195.139.163.3 port 56190 ssh2	2020-02-03 01:33:30
88.250.85.219	attackspambots	Honeypot attack, port: 81, PTR: 88.250.85.219.static.ttnet.com.tr.	2020-02-03 01:16:20
124.117.250.190	attack	Feb 2 17:23:51 silence02 sshd[963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.117.250.190 Feb 2 17:23:54 silence02 sshd[963]: Failed password for invalid user vnc from 124.117.250.190 port 47626 ssh2 Feb 2 17:28:40 silence02 sshd[1200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.117.250.190	2020-02-03 01:12:57
195.154.119.178	attack	Oct 4 12:45:12 ms-srv sshd[44113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.119.178 user=root Oct 4 12:45:14 ms-srv sshd[44113]: Failed password for invalid user root from 195.154.119.178 port 47888 ssh2	2020-02-03 01:17:10
193.112.219.207	attackspambots	Jan 27 02:29:44 euve59663 sshd[32148]: Invalid user daniela from 193.11= 2.219.207 Jan 27 02:29:44 euve59663 sshd[32148]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D193= .112.219.207=20 Jan 27 02:29:46 euve59663 sshd[32148]: Failed password for invalid user= daniela from 193.112.219.207 port 39404 ssh2 Jan 27 02:29:46 euve59663 sshd[32148]: Received disconnect from 193.112= .219.207: 11: Bye Bye [preauth] Jan 27 02:45:21 euve59663 sshd[26724]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D193= .112.219.207 user=3Dr.r Jan 27 02:45:23 euve59663 sshd[26724]: Failed password for r.r from 19= 3.112.219.207 port 53292 ssh2 Jan 27 02:45:23 euve59663 sshd[26724]: Received disconnect from 193.112= .219.207: 11: Bye Bye [preauth] Jan 27 02:49:11 euve59663 sshd[26782]: Invalid user sk from 193.112.219= .207 Jan 27 02:49:11 euve59663 sshd[26782]: pam_unix(sshd:auth):........ -------------------------------	2020-02-03 01:25:38
122.51.81.247	attack	Lines containing failures of 122.51.81.247 Jan 27 03:08:38 shared01 sshd[27577]: Invalid user jean from 122.51.81.247 port 57464 Jan 27 03:08:38 shared01 sshd[27577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.81.247 Jan 27 03:08:40 shared01 sshd[27577]: Failed password for invalid user jean from 122.51.81.247 port 57464 ssh2 Jan 27 03:08:40 shared01 sshd[27577]: Received disconnect from 122.51.81.247 port 57464:11: Bye Bye [preauth] Jan 27 03:08:40 shared01 sshd[27577]: Disconnected from invalid user jean 122.51.81.247 port 57464 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.51.81.247	2020-02-03 01:18:57
222.174.48.54	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-03 01:01:31
185.175.93.101	attack	Feb 2 18:27:02 debian-2gb-nbg1-2 kernel: \[2923675.957582\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.101 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=61499 PROTO=TCP SPT=45007 DPT=5903 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-03 01:33:58
5.201.179.131	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-03 01:14:26

最近上报的IP列表

117.63.246.194	190.229.77.193	208.172.62.39	215.98.227.144
208.178.58.170	130.176.10.86	52.60.189.115	180.148.5.23
189.211.207.162	50.201.12.90	45.136.109.171	45.95.55.121
163.39.53.72	187.172.171.124	203.48.186.85	107.184.85.51
11.67.196.15	142.114.155.141	89.210.145.210	213.211.122.13